CVE-2011-1760

NameCVE-2011-1760
Descriptionutils/opcontrol in OProfile 0.9.6 and earlier might allow local users to conduct eval injection attacks and gain privileges via shell metacharacters in the -e argument.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-2254-1, DSA-2254-2
NVD severityhigh (attack range: local)
Debian Bugs624212

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
oprofilesource(unstable)0.9.6-1.2medium624212
oprofilesourcelenny0.9.3-2+lenny2highDSA-2254-2
oprofilesourcesqueeze0.9.6-1.1+squeeze2highDSA-2254-2

Search for package or bug name: Reporting problems