usttrace in LTTng Userspace Tracer (aka UST) 0.7 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
Software | From | Fixed in |
---|---|---|
lttng / ust | 0.7 | 0.7.x |