Troy Dawson wrote: > Synopsis: Low: gdb security and bug fix update > Issue date: 2007-06-11 > CVE Names: CVE-2006-4146 > > Various buffer overflows and underflows were found in the DWARF expression > computation stack in GDB. If an attacker could trick a user into loading > an executable containing malicious debugging information into GDB, they may > be able to execute arbitrary code with the privileges of the user. > (CVE-2006-4146) > > SL 3.0.x > > SRPMS: > gdb-6.3.0.0-1.138.el3.src.rpm > i386: > gdb-6.3.0.0-1.138.el3.i386.rpm > gdb-6.3.0.0-1.138.el3.x86_64.rpm > x86_64: > gdb-6.3.0.0-1.138.el3.i386.rpm > > > -Connie Sieh > -Troy Dawson >