CVE-2014-1846

NameCVE-2014-1846
DescriptionEnlightenment before 0.17.6 might allow local users to gain privileges via vectors involving the gdb method.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severitymedium (attack range: local)
Debian Bugs737705

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
e17 (PTS)jessie0.17.6-1fixed
stretch0.17.6-1.1fixed
bullseye, sid, buster0.22.4-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
e17source(unstable)0.17.3-3medium737705

Notes

https://git.enlightenment.org/core/enlightenment.git/commit/?id=ea605237bb64ee09341121461b3d2c0f5dbe832d
https://git.enlightenment.org/core/enlightenment.git/commit/?id=126afd0fda493deec8398088e6e928b4d2e5f463
https://git.enlightenment.org/core/enlightenment.git/commit/?id=8cabf2708520539cf25ca0a876f9c044f6d56a77

Search for package or bug name: Reporting problems