Synopsis: Low: gdb security and bug fix update
Issue date: 2007-05-01
CVE Names: CVE-2006-4146
Various buffer overflows and underflows were found in the DWARF expression
computation stack in GDB. If a user loaded an executable containing
malicious debugging information into GDB, an attacker might be able to
execute arbitrary code with the privileges of the user. (CVE-2006-4146)
SRPMS:
gdb-6.3.0.0-1.143.el4.src.rpm
i386:
gdb-6.3.0.0-1.143.el4.i386.rpm
x86_64:
gdb-6.3.0.0-1.143.el4.x86_64.rpm
-Connie Sieh
-Troy Dawson