CVE-2009-3736

EUVD-2009-3708
ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 26%
Affected Products (NVD)
VendorProductVersion
gnulibtool
1.5
gnulibtool
1.5.2
gnulibtool
1.5.4
gnulibtool
1.5.6
gnulibtool
1.5.8
gnulibtool
1.5.10
gnulibtool
1.5.12
gnulibtool
1.5.14
gnulibtool
1.5.16
gnulibtool
1.5.18
gnulibtool
1.5.20
gnulibtool
1.5.22
gnulibtool
1.5.24
gnulibtool
1.5.26
gnulibtool
2.2.6a:a
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
bochs
bookworm
2.7+dfsg-4
fixed
bullseye
2.6.11+dfsg-4
fixed
etch
no-dsa
lenny
no-dsa
sid
2.8+dfsg-2
fixed
trixie
2.8+dfsg-2
fixed
clamav
bookworm
1.0.5+dfsg-1~deb12u1
fixed
bullseye
0.103.10+dfsg-0+deb11u1
fixed
etch
no-dsa
lenny
no-dsa
sid
1.4.1+dfsg-1
fixed
trixie
1.4.1+dfsg-1
fixed
collectd
bookworm
5.12.0-14
fixed
bullseye
5.12.0-7
fixed
etch
no-dsa
lenny
no-dsa
sid
5.12.0-20
fixed
ggobi
bookworm
2.1.11-2
fixed
bullseye
2.1.11-2
fixed
etch
no-dsa
lenny
no-dsa
sid
2.1.12-1
fixed
trixie
2.1.12-1
fixed
gnu-smalltalk
bullseye
3.2.5-1.3
fixed
etch
no-dsa
lenny
no-dsa
graphicsmagick
bookworm
1.4+really1.3.40-4
fixed
bullseye
1.4+really1.3.36+hg16481-2+deb11u1
fixed
bullseye (security)
1.4+really1.3.36+hg16481-2+deb11u1
fixed
etch
no-dsa
lenny
no-dsa
sid
1.4+really1.3.45-1
fixed
trixie
1.4+really1.3.45-1
fixed
graphviz
bookworm
2.42.2-7+deb12u1
fixed
bullseye
2.42.2-5+deb11u1
fixed
etch
no-dsa
lenny
no-dsa
sid
2.42.4-2
fixed
trixie
2.42.4-2
fixed
hamlib
bookworm
4.5.4-1
fixed
bullseye
4.0-7
fixed
etch
no-dsa
lenny
no-dsa
sid
4.5.5-4
fixed
trixie
4.5.5-4
fixed
heartbeat
bookworm
1:3.0.6-13
fixed
bullseye
1:3.0.6-11+deb11u1
fixed
etch
no-dsa
lenny
no-dsa
sid
1:3.0.6-15
fixed
trixie
1:3.0.6-15
fixed
hercules
bookworm
3.13-7
fixed
bullseye
3.13-7
fixed
etch
no-dsa
lenny
no-dsa
sid
3.13-8
fixed
trixie
3.13-8
fixed
hypre
bookworm
2.26.0-3
fixed
bullseye
2.18.2-1
fixed
etch
no-dsa
lenny
no-dsa
sid
2.31.0-3
fixed
trixie
2.31.0-2
fixed
imagemagick
bookworm
8:6.9.11.60+dfsg-1.6+deb12u2
fixed
bookworm (security)
8:6.9.11.60+dfsg-1.6+deb12u1
fixed
bullseye
8:6.9.11.60+dfsg-1.3+deb11u4
fixed
bullseye (security)
8:6.9.11.60+dfsg-1.3+deb11u3
fixed
etch
no-dsa
lenny
no-dsa
sid
8:7.1.1.39+dfsg1-2
fixed
trixie
8:6.9.13.12+dfsg1-1
fixed
jags
bookworm
4.3.1-1
fixed
bullseye
4.3.0-3
fixed
etch
no-dsa
lenny
no-dsa
sid
4.3.2-1
fixed
trixie
4.3.2-1
fixed
lam
bookworm
7.1.4-7
fixed
bullseye
7.1.4-6.1
fixed
etch
no-dsa
lenny
no-dsa
sid
7.1.4-7.2
fixed
trixie
7.1.4-7.2
fixed
libextractor
bookworm
1:1.11-7
fixed
bullseye
1:1.11-2
fixed
etch
no-dsa
lenny
no-dsa
sid
1:1.13-7
fixed
trixie
1:1.13-7
fixed
libmcrypt
bookworm
2.5.8-7
fixed
bullseye
2.5.8-3.4
fixed
etch
no-dsa
lenny
no-dsa
sid
2.5.8-8
fixed
trixie
2.5.8-8
fixed
libprelude
bookworm
5.2.0-5
fixed
bullseye
5.2.0-3+deb11u1
fixed
etch
no-dsa
lenny
no-dsa
sid
5.2.0-5.6
fixed
trixie
5.2.0-5.6
fixed
libtool
bookworm
2.4.7-7~deb12u1
fixed
bullseye
2.4.6-15
fixed
etch
no-dsa
lenny
no-dsa
sid
2.4.7-8
fixed
trixie
2.4.7-7
fixed
mp4h
bookworm
1.3.1-17
fixed
bullseye
1.3.1-17
fixed
etch
no-dsa
lenny
no-dsa
sid
1.3.1-17.1
fixed
trixie
1.3.1-17.1
fixed
openmpi
bookworm
4.1.4-3
fixed
bullseye
4.1.0-10
fixed
etch
no-dsa
lenny
no-dsa
sid
5.0.5-3
fixed
trixie
4.1.6-13.3
fixed
parser
bookworm
3.4.6-3
fixed
bullseye
3.4.6-2
fixed
etch
no-dsa
lenny
no-dsa
sid
3.4.6-5
fixed
trixie
3.4.6-5
fixed
parser-mysql
bookworm
10.8-3
fixed
bullseye
10.8-3
fixed
etch
no-dsa
lenny
no-dsa
sid
10.8-3
fixed
trixie
10.8-3
fixed
pdsh
bookworm
2.34-0.2
fixed
bullseye
2.31-3
fixed
etch
no-dsa
lenny
no-dsa
sid
2.34-3
fixed
trixie
2.34-3
fixed
pinball
bookworm
0.3.20201218-4
fixed
bullseye
0.3.20201218-4
fixed
etch
no-dsa
lenny
no-dsa
sid
0.3.20230219-1
fixed
trixie
0.3.20230219-1
fixed
proftpd-dfsg
bookworm
1.3.8+dfsg-4+deb12u3
fixed
bullseye
1.3.7a+dfsg-12+deb11u2
fixed
etch
no-dsa
lenny
no-dsa
sid
1.3.8.b+dfsg-3
fixed
trixie
1.3.8.b+dfsg-2
fixed
redland
bookworm
1.0.17-3
fixed
bullseye
1.0.17-1.1
fixed
etch
no-dsa
lenny
no-dsa
sid
1.0.17-4
fixed
trixie
1.0.17-4
fixed
sdcc
bookworm
4.2.0+dfsg-1
fixed
bullseye
4.0.0+dfsg-2
fixed
etch
no-dsa
lenny
no-dsa
sid
4.4.0+dfsg-2
fixed
trixie
4.4.0+dfsg-2
fixed
synfig
bookworm
1.5.1+dfsg-3
fixed
bullseye
1.4.0+dfsg-2
fixed
etch
no-dsa
lenny
no-dsa
sid
1.5.1+dfsg-4
fixed
xmlsec1
bookworm
1.2.37-2
fixed
bullseye
1.2.31-1
fixed
etch
no-dsa
lenny
no-dsa
sid
1.2.41-1
fixed
trixie
1.2.41-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libtool
dapper
ignored
hardy
ignored
intrepid
ignored
jaunty
ignored
karmic
ignored
lucid
not-affected
maverick
not-affected
natty
not-affected
oneiric
not-affected
precise
not-affected
quantal
not-affected
raring
not-affected
References
ftp://ftp.gnu.org/gnu/libtool/libtool-2.2.6a-2.2.6b.diff.gz
http://git.savannah.gnu.org/cgit/libtool.git/commit/?h=branch-1-5&id=29b48580df75f0c5baa2962548a4c101ec7ed7ec
http://hamlib.svn.sourceforge.net/viewvc/hamlib/trunk/libltdl/Makefile.am?revision=2841&view=markup
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035133.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035168.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054656.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054915.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054921.html
http://lists.gnu.org/archive/html/libtool/2009-11/msg00059.html
http://lists.gnu.org/archive/html/libtool/2009-11/msg00065.html
http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html
http://secunia.com/advisories/37414
http://secunia.com/advisories/37489
http://secunia.com/advisories/37997
http://secunia.com/advisories/38190
http://secunia.com/advisories/38577
http://secunia.com/advisories/38617
http://secunia.com/advisories/38696
http://secunia.com/advisories/38915
http://secunia.com/advisories/39299
http://secunia.com/advisories/39347
http://secunia.com/advisories/43617
http://secunia.com/advisories/55721
http://security.gentoo.org/glsa/glsa-201311-10.xml
http://support.avaya.com/css/P8/documents/100074869
http://www.mandriva.com/security/advisories?name=MDVSA-2009:307
http://www.mandriva.com/security/advisories?name=MDVSA-2010:035
http://www.mandriva.com/security/advisories?name=MDVSA-2010:091
http://www.mandriva.com/security/advisories?name=MDVSA-2010:105
http://www.redhat.com/support/errata/RHSA-2010-0039.html
http://www.securityfocus.com/bid/37128
http://www.vupen.com/english/advisories/2011/0574
https://bugzilla.redhat.com/show_bug.cgi?id=537941
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11687
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6951
https://rhn.redhat.com/errata/RHSA-2010-0095.html
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01512.html
ftp://ftp.gnu.org/gnu/libtool/libtool-2.2.6a-2.2.6b.diff.gz
http://git.savannah.gnu.org/cgit/libtool.git/commit/?h=branch-1-5&id=29b48580df75f0c5baa2962548a4c101ec7ed7ec
http://hamlib.svn.sourceforge.net/viewvc/hamlib/trunk/libltdl/Makefile.am?revision=2841&view=markup
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035133.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035168.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054656.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054915.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054921.html
http://lists.gnu.org/archive/html/libtool/2009-11/msg00059.html
http://lists.gnu.org/archive/html/libtool/2009-11/msg00065.html
http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html
http://secunia.com/advisories/37414
http://secunia.com/advisories/37489
http://secunia.com/advisories/37997
http://secunia.com/advisories/38190
http://secunia.com/advisories/38577
http://secunia.com/advisories/38617
http://secunia.com/advisories/38696
http://secunia.com/advisories/38915
http://secunia.com/advisories/39299
http://secunia.com/advisories/39347
http://secunia.com/advisories/43617
http://secunia.com/advisories/55721
http://security.gentoo.org/glsa/glsa-201311-10.xml
http://support.avaya.com/css/P8/documents/100074869
http://www.mandriva.com/security/advisories?name=MDVSA-2009:307
http://www.mandriva.com/security/advisories?name=MDVSA-2010:035
http://www.mandriva.com/security/advisories?name=MDVSA-2010:091
http://www.mandriva.com/security/advisories?name=MDVSA-2010:105
http://www.redhat.com/support/errata/RHSA-2010-0039.html
http://www.securityfocus.com/bid/37128
http://www.vupen.com/english/advisories/2011/0574
https://bugzilla.redhat.com/show_bug.cgi?id=537941
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11687
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6951
https://rhn.redhat.com/errata/RHSA-2010-0095.html
https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01512.html