uim -- privilege escalation vulnerability

ID FB03B1C6-8A8A-11D9-81F7-02023F003C9F
Type freebsd
Reporter FreeBSD
Modified 2005-02-21T00:00:00


The uim developers reports:

Takumi ASAKI discovered that uim always trusts environment variables. But this is not correct behavior, sometimes environment variables shouldn't be trusted. This bug causes privilege escalation when libuim is linked against setuid/setgid application. Since GTK+ prohibits setuid/setgid applications, the bug appears only in 'immodule for Qt' enabled Qt. (Normal Qt is also safe.)