CVE-2010-0412 Information

Description

stap-server in SystemTap 1.1 does not properly restrict the value of the -B (aka BUILD) option which allows attackers to have an unspecified impact via vectors associated with executing the make program a different vulnerability than CVE-2009-4273.

Reference

http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035201.html http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035261.html http://lists.fedoraproject.org/pipermail/scm-commits/2010-February/394714.html http://www.securityfocus.com/bid/38316 https://exchange.xforce.ibmcloud.com/vulnerabilities/56611