Untrusted search path vulnerability in Gauche before 0.8.6-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| gauche | gauche | 0.8.4 |
| gauche | gauche | 0.8.2 |
| gauche | gauche | 0.8.3 |
| gauche | gauche | 0.8 |
| gauche | gauche | 0.8.1 |
| gauche | gauche | 0.8.5 |