CVE-2003-0188

NameCVE-2003-0188
Descriptionlv reads a .lv file from the current working directory, which allows local users to execute arbitrary commands as other lv users by placing malicious .lv files into other directories.
SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-304

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
lv (PTS)bullseye4.51-8fixed
bookworm4.51-9fixed
forky, sid, trixie4.51-10fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
lvsourcewoody4.49.4-7woody2DSA-304
lvsource(unstable)4.49.5-2
Search for package or bug name: Reporting problems