Bug 177682

Summary: Untrusted search path vulnerability (CVE-2008-4865)
Product: [Developer tools] valgrind Reporter: Maurice van der Pot <griffon26>
Component: generalAssignee: Julian Seward <jseward>
Status: RESOLVED FIXED    
Severity: normal    
Priority: NOR    
Version: 3.3 SVN   
Target Milestone: ---   
Platform: Gentoo Packages   
OS: Linux   
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4865
Latest Commit: Version Fixed In:
Attachments: Patch to fix vulnerability

Description Maurice van der Pot 2008-12-13 14:50:39 UTC 
Created attachment 29294 [details]
Patch to fix vulnerability

CVE-2008-4865 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4865):
  Untrusted search path vulnerability in valgrind allows local users to
  execute arbitrary programs via a Trojan horse .valgrindrc file in the
  current working directory, as demonstrated using a malicious
  --db-command options.  NOTE: the severity of this issue has been
  disputed, but CVE is including this issue because execution of a
  program from an untrusted directory is a common scenario.

See also http://bugs.gentoo.org/show_bug.cgi?id=245317

Attached is an updated (wrt the above report) patch that applies to current SVN HEAD.
Comment 1 Julian Seward 2008-12-23 16:53:37 UTC 
I believe this was fixed in r8798.