First published: Tue Aug 05 2008(Updated: )
Stack-based buffer overflow in the libbecompat library in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4), and Ingres 2006 release 2 (aka 9.1.0) on Linux and HP-UX allows local users to gain privileges by setting a long value of an environment variable before running (1) verifydb, (2) iimerge, or (3) csreport.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
HP HP-UX | ||
Linux Linux kernel | ||
Ingres Ingres | =2.6 | |
Ingres Ingres | =2006-9.0.4 | |
Ingres Ingres | =2006-9.1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.