3 matches found
CVE-2008-3277
CVE-2008-3277 describes an untrusted search path (RPATH) vulnerability in ibutils, specifically in the Red Hat build script for the ibmssh executable. The issue allows local privilege escalation via a Trojan Horse program in refix/lib/ due to an incorrect ELF header RPATH. Affected products/versi...
Oracle Linux 5 : ibutils (ELSA-2012-0311)
The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2012-0311 advisory. - Add patch for CVE-2008-3277 Resolves: bz768400 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note th...
Scientific Linux Security Update : ibutils on SL5.x i386/x86_64 (20120221)
The ibutils packages provide InfiniBand network and path diagnostics. It was found that the ibmssh executable had an insecure relative RPATH runtime library search path set in the ELF Executable and Linking Format header. A local user able to convince another user to run ibmssh in an...