2
Candidate: CVE-2007-3508
4
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=431858
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3508
7
** DISPUTED ** Integer overflow in the process_envvars function in
8
elf/rtld.c in glibc before 2.5-rc4 might allow local users to execute
9
arbitrary code via a large LD_HWCAP_MASK environment variable value. NOTE:
10
the glibc maintainers state that they do not believe that this issue is
11
exploitable for code execution.
14
jdstrand> upstream believes this to be unexploitable
19
dapper_glibc: ignored (unexploitable)
20
edgy_glibc: needed (reached end-of-life)
21
feisty_glibc: needed (reached end-of-life)
22
gutsy_glibc: released (2.6.1-1ubuntu8)
23
hardy_glibc: not-affected
24
intrepid_glibc: not-affected
25
jaunty_glibc: not-affected