SourceForge.net > Develop > Parallel Distributed Shell

Parallel Distributed Shell

Programming Languages: C

License: GNU General Public License (GPL)

Repositories

CVS browse code, statistics cvs -d:pserver:anonymous@pdsh.cvs.sourceforge.net:/cvsroot/pdsh login cvs -z3 -d:pserver:anonymous@pdsh.cvs.sourceforge.net:/cvsroot/pdsh co -P modulename

What's happening?

ltdl.c has a security vulnerability

I believe the copy of ltdl.c that ships with pdsh has a security vulnerability: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3736 However, the way that pdsh uses it appears to be safe. Since, pdsh only calls lt_dlopen on a fixed directory that is only writeable by root, the vulnerability cannot be exploited. Still, it would probably be a good idea to pull a copy of ltdl.c...

2009-12-07 05:44:09 UTC by bpellin

Bugs (7 open / 11 total)
Support Requests (0 open / 0 total)
Patches (0 open / 3 total)
Feature Requests (3 open / 7 total)
Mailing Lists (2 total)
CVS Repository (0 commits, 14 reads)
Browse CVS

Parallel Distributed Shell

Code

Repositories

What's happening?

ltdl.c has a security vulnerability

Links You May Need

Project Admins

Our Numbers

About SourceForge

Find Software

Develop Software

Community

Help