Troy Dawson wrote:
> Synopsis: Low: gdb security and bug fix update
> Issue date: 2007-06-11
> CVE Names: CVE-2006-4146
>
> Various buffer overflows and underflows were found in the DWARF expression
> computation stack in GDB. If an attacker could trick a user into loading
> an executable containing malicious debugging information into GDB, they may
> be able to execute arbitrary code with the privileges of the user.
> (CVE-2006-4146)
>
> SL 3.0.x
>
> SRPMS:
> gdb-6.3.0.0-1.138.el3.src.rpm
> i386:
> gdb-6.3.0.0-1.138.el3.i386.rpm
> gdb-6.3.0.0-1.138.el3.x86_64.rpm
> x86_64:
> gdb-6.3.0.0-1.138.el3.i386.rpm
>
>
> -Connie Sieh
> -Troy Dawson
>