** Description changed: Binary package hint: couchdb - The following was posted to oss-security please notice that even though - it mentions Debian it looks like this patch only lives in Ubuntu: + The following was posted to oss-security: Date: Wed, 25 Aug 2010 14:52:52 -0400 From: Dan Rosenberg <dan.j.rosenb...@gmail.com> Subject: [oss-security] CVE request: CouchDB insecure library loading (Debian/Ubuntu only) I discovered that the /usr/bin/couchdb script on Debian/Ubuntu sets an insecure LD_LIBRARY_PATH environment variable, such that libraries from the current directory are loaded. If a local attacker placed a maliciously crafted shared library in a directory and an administrator were tricked into launching CouchDB from this directory, arbitrary code execution could be achieved. This vulnerability is only triggered when the /usr/bin/couchdb script is executed explicitly, since the init script (/etc/init.d/couchdb) changes the current directory before launching CouchDB. The vulnerability was introduced by Debian patch "mozjs1.9_ldlibpath.patch" on 3/24/2009.
-- CouchDB insecure library loading https://bugs.launchpad.net/bugs/632201 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
