Mageni Mageni Security LLC

Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Fedora Core 9 FEDORA-2009-1189 (gedit)

Information

Severity

Severity

Medium

Family

Family

Fedora Local Security Checks

CVSSv2 Base

CVSSv2 Base

6.9

CVSSv2 Vector

CVSSv2 Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Solution Type

Solution Type

Vendor Patch

Created

Created

15 years ago

Modified

Modified

6 years ago

Share

Summary

The remote host is missing an update to gedit announced via advisory FEDORA-2009-1189.

Insight

Insight

Update Information: Untrusted search path vulnerability in gedit's Python module allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to an erroneous setting of sys.path by the PySys_SetArgv function. ChangeLog: * Mon Jan 26 2009 Ray Strode - 1:2.22.3-3 - Fix bug 481556 in a more functional way. * Mon Jan 26 2009 Ray Strode - 1:2.22.3-2 - Fix up python plugin path to close up a security attack vectors (bug 481556).

Solution

Solution

Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update gedit' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-1189

Common Vulnerabilities and Exposures (CVE)

References