Package name
tomboy
Date
2011-02-22
Advisory ID
MDVSA-2011:035
Affected versions
2010.1 x86_64 , 2010.1 i586 , 2010.0 x86_64 , 2010.0 i586

Problem description

A vulnerability has been found and corrected in tomboy:

The (1) tomboy and (2) tomboy-panel scripts in GNOME Tomboy 1.5.2 and
earlier place a zero-length directory name in the LD_LIBRARY_PATH,
which allows local users to gain privileges via a Trojan horse shared
library in the current working directory. NOTE: vector 1 exists
because of an incorrect fix for CVE-2005-4790.2 (CVE-2010-4005).

The updated packages have been patched to correct this issue.

Updated packages

2010.1 x86_64

 12e3f75397e9b658a2e3b71304b539b1  2010.1/x86_64/tomboy-1.2.2-1.2mdv2010.2.x86_64.rpm 
 7ae06762ea10c2b4dd45665e229a067f  2010.1/SRPMS/tomboy-1.2.2-1.2mdv2010.2.src.rpm

2010.1 i586

 26e9dcc1068205ee5ede6f05ededc139  2010.1/i586/tomboy-1.2.2-1.2mdv2010.2.i586.rpm 
 7ae06762ea10c2b4dd45665e229a067f  2010.1/SRPMS/tomboy-1.2.2-1.2mdv2010.2.src.rpm

2010.0 x86_64

 33f43681714e4070055106b737517502  2010.0/x86_64/tomboy-1.0.0-1.1mdv2010.0.x86_64.rpm 
 d71d1a01b20a8c9b9aa9fec89a77eb70  2010.0/SRPMS/tomboy-1.0.0-1.1mdv2010.0.src.rpm

2010.0 i586

 f46925c284ce934fd8f05f759e5a11e3  2010.0/i586/tomboy-1.0.0-1.1mdv2010.0.i586.rpm 
 d71d1a01b20a8c9b9aa9fec89a77eb70  2010.0/SRPMS/tomboy-1.0.0-1.1mdv2010.0.src.rpm

References