Synopsis:	Moderate: nss_db security update
Issue date:	2010-04-13
CVE Names:	CVE-2010-0826

It was discovered that nss_db did not specify a path to the directory to 
be used as the database environment for the Berkeley Database library, 
causing it to use the current working directory as the default. This 
could possibly allow a local attacker to obtain sensitive information. 
(CVE-2010-0826)

SL 5.x

     SRPMS:
nss_db-2.2-35.4.el5_5.src.rpm
     i386:
nss_db-2.2-35.4.el5_5.i386.rpm
     x86_64:
nss_db-2.2-35.4.el5_5.i386.rpm
nss_db-2.2-35.4.el5_5.x86_64.rpm

-Connie Sieh
-Troy Dawson