libgtop
Page content
- Author: voroskoi
- Vulnerable: 2.14.3-1
- Unaffected: 2.14.3-2siwenna1
Liu Qishuai has reported a vulnerability in libgtop2, which can be exploited by malicious, local users to gain escalated privileges. The vulnerability is caused due to a boundary error within the “glibtop_get_proc_map_s()” function in sysdeps/linux/procmap.c. This can be exploited to cause a stack-based buffer overflow by running a process with a specially crafted long path and tricking a victim into running an application using the library (e.g. gnome-system-monitor).
- Bug Tracker URL: http://bugs.frugalware.org/task/1626
CVEs:
- There is no CVE for this issue, see: http://secunia.com/advisories/23736