CVE-2010-4000 Information

Description

gnome-shell in GNOME Shell 2.31.5 places a zero-length directory name in the LD_LIBRARY_PATH which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

Reference

https://bugzilla.redhat.com/show_bug.cgi?id=644561