crawl before 4.0.0 beta23 does not properly apply a size check when copying a certain environment variable, which may allow local users to gain privileges, possibly as a result of a buffer overflow.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Crawl |
Linley_henzell |
* |
4.0.0_b23 |
References