Vulnerability-Lookup

RHEA-2010:0272

Vulnerability from csaf_redhat - Published: 2010-03-30 00:00 - Updated: 2025-11-21 17:23

Summary

Red Hat Enhancement Advisory: valgrind bug fix and enhancement update

Notes

Topic

A Valgrind update that re-bases to upstream version 3.5.0, adds support for new Intel64/AMD64 instructions, and fixes several bugs is now available.

Details

Valgrind is a tool to help you find memory-management problems in your programs. When a program is run under Valgrind's supervision, all reads and writes of memory are checked, and calls to malloc/new/free/delete are intercepted. As a result, Valgrind can detect a lot of problems that are otherwise very hard to find/diagnose. This update re-bases Valgrind to upstream version 3.5.0 (BZ#522330), and applies several enhancements and fixes including the following: * Valgrind now supports cmpxchg instructions. This allows Valgrind to profile code that uses the Intel cmpxchg instruction. (BZ#476271) * The rebase also adds emulation for the 0x67 address-size-override prefix and support for multiple 0x66 operand size prefixes. This prevents unexpected "unhandled instruction bytes" errors when using Valgrind to profile programs that use these prefixes. (BZ#515768 and BZ#530165) All Valgrind users should apply this update.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Low"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "A Valgrind update that re-bases to upstream version 3.5.0, adds support for new Intel64/AMD64 instructions, and fixes several bugs is now available.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Valgrind is a tool to help you find memory-management problems in your\nprograms. When a program is run under Valgrind\u0027s supervision, all reads and\nwrites of memory are checked, and calls to malloc/new/free/delete are\nintercepted. As a result, Valgrind can detect a lot of problems that are\notherwise very hard to find/diagnose.\n\nThis update re-bases Valgrind to upstream version 3.5.0 (BZ#522330), and\napplies several enhancements and fixes including the following:\n\n* Valgrind now supports cmpxchg instructions. This allows Valgrind to\nprofile code that uses the Intel cmpxchg instruction. (BZ#476271)\n\n* The rebase also adds emulation for the 0x67 address-size-override prefix\nand support for multiple 0x66 operand size prefixes. This prevents\nunexpected \"unhandled instruction bytes\" errors when using Valgrind to\nprofile programs that use these prefixes. (BZ#515768 and BZ#530165)\n\nAll Valgrind users should apply this update.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHEA-2010:0272",
        "url": "https://access.redhat.com/errata/RHEA-2010:0272"
      },
      {
        "category": "external",
        "summary": "515768",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=515768"
      },
      {
        "category": "external",
        "summary": "530165",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=530165"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhea-2010_0272.json"
      }
    ],
    "title": "Red Hat Enhancement Advisory: valgrind bug fix and enhancement update",
    "tracking": {
      "current_release_date": "2025-11-21T17:23:55+00:00",
      "generator": {
        "date": "2025-11-21T17:23:55+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHEA-2010:0272",
      "initial_release_date": "2010-03-30T00:00:00+00:00",
      "revision_history": [
        {
          "date": "2010-03-30T00:00:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2010-03-29T09:20:27+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:23:55+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
                  "product_id": "5Client-Workstation",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux (v. 5 server)",
                "product": {
                  "name": "Red Hat Enterprise Linux (v. 5 server)",
                  "product_id": "5Server",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:5::server"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "valgrind-devel-1:3.5.0-1.el5.x86_64",
                "product": {
                  "name": "valgrind-devel-1:3.5.0-1.el5.x86_64",
                  "product_id": "valgrind-devel-1:3.5.0-1.el5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/valgrind-devel@3.5.0-1.el5?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "valgrind-1:3.5.0-1.el5.x86_64",
                "product": {
                  "name": "valgrind-1:3.5.0-1.el5.x86_64",
                  "product_id": "valgrind-1:3.5.0-1.el5.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/valgrind@3.5.0-1.el5?arch=x86_64\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "valgrind-devel-1:3.5.0-1.el5.i386",
                "product": {
                  "name": "valgrind-devel-1:3.5.0-1.el5.i386",
                  "product_id": "valgrind-devel-1:3.5.0-1.el5.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/valgrind-devel@3.5.0-1.el5?arch=i386\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "valgrind-1:3.5.0-1.el5.i386",
                "product": {
                  "name": "valgrind-1:3.5.0-1.el5.i386",
                  "product_id": "valgrind-1:3.5.0-1.el5.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/valgrind@3.5.0-1.el5?arch=i386\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "valgrind-1:3.5.0-1.el5.src",
                "product": {
                  "name": "valgrind-1:3.5.0-1.el5.src",
                  "product_id": "valgrind-1:3.5.0-1.el5.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/valgrind@3.5.0-1.el5?arch=src\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "valgrind-devel-1:3.5.0-1.el5.ppc64",
                "product": {
                  "name": "valgrind-devel-1:3.5.0-1.el5.ppc64",
                  "product_id": "valgrind-devel-1:3.5.0-1.el5.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/valgrind-devel@3.5.0-1.el5?arch=ppc64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "valgrind-1:3.5.0-1.el5.ppc64",
                "product": {
                  "name": "valgrind-1:3.5.0-1.el5.ppc64",
                  "product_id": "valgrind-1:3.5.0-1.el5.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/valgrind@3.5.0-1.el5?arch=ppc64\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "valgrind-devel-1:3.5.0-1.el5.ppc",
                "product": {
                  "name": "valgrind-devel-1:3.5.0-1.el5.ppc",
                  "product_id": "valgrind-devel-1:3.5.0-1.el5.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/valgrind-devel@3.5.0-1.el5?arch=ppc\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "valgrind-1:3.5.0-1.el5.ppc",
                "product": {
                  "name": "valgrind-1:3.5.0-1.el5.ppc",
                  "product_id": "valgrind-1:3.5.0-1.el5.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/valgrind@3.5.0-1.el5?arch=ppc\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-1:3.5.0-1.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
          "product_id": "5Client-Workstation:valgrind-1:3.5.0-1.el5.i386"
        },
        "product_reference": "valgrind-1:3.5.0-1.el5.i386",
        "relates_to_product_reference": "5Client-Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-1:3.5.0-1.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
          "product_id": "5Client-Workstation:valgrind-1:3.5.0-1.el5.ppc"
        },
        "product_reference": "valgrind-1:3.5.0-1.el5.ppc",
        "relates_to_product_reference": "5Client-Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-1:3.5.0-1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
          "product_id": "5Client-Workstation:valgrind-1:3.5.0-1.el5.ppc64"
        },
        "product_reference": "valgrind-1:3.5.0-1.el5.ppc64",
        "relates_to_product_reference": "5Client-Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-1:3.5.0-1.el5.src as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
          "product_id": "5Client-Workstation:valgrind-1:3.5.0-1.el5.src"
        },
        "product_reference": "valgrind-1:3.5.0-1.el5.src",
        "relates_to_product_reference": "5Client-Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-1:3.5.0-1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
          "product_id": "5Client-Workstation:valgrind-1:3.5.0-1.el5.x86_64"
        },
        "product_reference": "valgrind-1:3.5.0-1.el5.x86_64",
        "relates_to_product_reference": "5Client-Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-devel-1:3.5.0-1.el5.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
          "product_id": "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.i386"
        },
        "product_reference": "valgrind-devel-1:3.5.0-1.el5.i386",
        "relates_to_product_reference": "5Client-Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-devel-1:3.5.0-1.el5.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
          "product_id": "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.ppc"
        },
        "product_reference": "valgrind-devel-1:3.5.0-1.el5.ppc",
        "relates_to_product_reference": "5Client-Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-devel-1:3.5.0-1.el5.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
          "product_id": "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.ppc64"
        },
        "product_reference": "valgrind-devel-1:3.5.0-1.el5.ppc64",
        "relates_to_product_reference": "5Client-Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-devel-1:3.5.0-1.el5.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
          "product_id": "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.x86_64"
        },
        "product_reference": "valgrind-devel-1:3.5.0-1.el5.x86_64",
        "relates_to_product_reference": "5Client-Workstation"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-1:3.5.0-1.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:valgrind-1:3.5.0-1.el5.i386"
        },
        "product_reference": "valgrind-1:3.5.0-1.el5.i386",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-1:3.5.0-1.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:valgrind-1:3.5.0-1.el5.ppc"
        },
        "product_reference": "valgrind-1:3.5.0-1.el5.ppc",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-1:3.5.0-1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:valgrind-1:3.5.0-1.el5.ppc64"
        },
        "product_reference": "valgrind-1:3.5.0-1.el5.ppc64",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-1:3.5.0-1.el5.src as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:valgrind-1:3.5.0-1.el5.src"
        },
        "product_reference": "valgrind-1:3.5.0-1.el5.src",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-1:3.5.0-1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:valgrind-1:3.5.0-1.el5.x86_64"
        },
        "product_reference": "valgrind-1:3.5.0-1.el5.x86_64",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-devel-1:3.5.0-1.el5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:valgrind-devel-1:3.5.0-1.el5.i386"
        },
        "product_reference": "valgrind-devel-1:3.5.0-1.el5.i386",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-devel-1:3.5.0-1.el5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:valgrind-devel-1:3.5.0-1.el5.ppc"
        },
        "product_reference": "valgrind-devel-1:3.5.0-1.el5.ppc",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-devel-1:3.5.0-1.el5.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:valgrind-devel-1:3.5.0-1.el5.ppc64"
        },
        "product_reference": "valgrind-devel-1:3.5.0-1.el5.ppc64",
        "relates_to_product_reference": "5Server"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "valgrind-devel-1:3.5.0-1.el5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
          "product_id": "5Server:valgrind-devel-1:3.5.0-1.el5.x86_64"
        },
        "product_reference": "valgrind-devel-1:3.5.0-1.el5.x86_64",
        "relates_to_product_reference": "5Server"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2008-4865",
      "discovery_date": "2008-10-27T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "469657"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options.  NOTE: the severity of this issue has been disputed, but CVE is including this issue because execution of a program from an untrusted directory is a common scenario.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "valgrind: .valgrindrc loaded from untrusted locations",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2008-4865\n\nThe Red Hat Product Security has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here: https://access.redhat.com/security/updates/classification/",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "5Client-Workstation:valgrind-1:3.5.0-1.el5.i386",
          "5Client-Workstation:valgrind-1:3.5.0-1.el5.ppc",
          "5Client-Workstation:valgrind-1:3.5.0-1.el5.ppc64",
          "5Client-Workstation:valgrind-1:3.5.0-1.el5.src",
          "5Client-Workstation:valgrind-1:3.5.0-1.el5.x86_64",
          "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.i386",
          "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.ppc",
          "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.ppc64",
          "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.x86_64",
          "5Server:valgrind-1:3.5.0-1.el5.i386",
          "5Server:valgrind-1:3.5.0-1.el5.ppc",
          "5Server:valgrind-1:3.5.0-1.el5.ppc64",
          "5Server:valgrind-1:3.5.0-1.el5.src",
          "5Server:valgrind-1:3.5.0-1.el5.x86_64",
          "5Server:valgrind-devel-1:3.5.0-1.el5.i386",
          "5Server:valgrind-devel-1:3.5.0-1.el5.ppc",
          "5Server:valgrind-devel-1:3.5.0-1.el5.ppc64",
          "5Server:valgrind-devel-1:3.5.0-1.el5.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2008-4865"
        },
        {
          "category": "external",
          "summary": "RHBZ#469657",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=469657"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2008-4865",
          "url": "https://www.cve.org/CVERecord?id=CVE-2008-4865"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-4865",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-4865"
        }
      ],
      "release_date": "2008-10-27T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2010-03-30T00:00:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
          "product_ids": [
            "5Client-Workstation:valgrind-1:3.5.0-1.el5.i386",
            "5Client-Workstation:valgrind-1:3.5.0-1.el5.ppc",
            "5Client-Workstation:valgrind-1:3.5.0-1.el5.ppc64",
            "5Client-Workstation:valgrind-1:3.5.0-1.el5.src",
            "5Client-Workstation:valgrind-1:3.5.0-1.el5.x86_64",
            "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.i386",
            "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.ppc",
            "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.ppc64",
            "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.x86_64",
            "5Server:valgrind-1:3.5.0-1.el5.i386",
            "5Server:valgrind-1:3.5.0-1.el5.ppc",
            "5Server:valgrind-1:3.5.0-1.el5.ppc64",
            "5Server:valgrind-1:3.5.0-1.el5.src",
            "5Server:valgrind-1:3.5.0-1.el5.x86_64",
            "5Server:valgrind-devel-1:3.5.0-1.el5.i386",
            "5Server:valgrind-devel-1:3.5.0-1.el5.ppc",
            "5Server:valgrind-devel-1:3.5.0-1.el5.ppc64",
            "5Server:valgrind-devel-1:3.5.0-1.el5.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHEA-2010:0272"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 3.7,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "5Client-Workstation:valgrind-1:3.5.0-1.el5.i386",
            "5Client-Workstation:valgrind-1:3.5.0-1.el5.ppc",
            "5Client-Workstation:valgrind-1:3.5.0-1.el5.ppc64",
            "5Client-Workstation:valgrind-1:3.5.0-1.el5.src",
            "5Client-Workstation:valgrind-1:3.5.0-1.el5.x86_64",
            "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.i386",
            "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.ppc",
            "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.ppc64",
            "5Client-Workstation:valgrind-devel-1:3.5.0-1.el5.x86_64",
            "5Server:valgrind-1:3.5.0-1.el5.i386",
            "5Server:valgrind-1:3.5.0-1.el5.ppc",
            "5Server:valgrind-1:3.5.0-1.el5.ppc64",
            "5Server:valgrind-1:3.5.0-1.el5.src",
            "5Server:valgrind-1:3.5.0-1.el5.x86_64",
            "5Server:valgrind-devel-1:3.5.0-1.el5.i386",
            "5Server:valgrind-devel-1:3.5.0-1.el5.ppc",
            "5Server:valgrind-devel-1:3.5.0-1.el5.ppc64",
            "5Server:valgrind-devel-1:3.5.0-1.el5.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "valgrind: .valgrindrc loaded from untrusted locations"
    }
  ]
}

CVE-2008-4865 (GCVE-0-2008-4865)

Vulnerability from cvelistv5 – Published: 2008-10-31 22:00 – Updated: 2024-08-07 10:31

Summary

Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options. NOTE: the severity of this issue has been disputed, but CVE is including this issue because execution of a program from an untrusted directory is a common scenario.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://sourceforge.net/mailarchive/forum.php?thre…	mailing-listx_refsource_MLIST
	http://www.openwall.com/lists/oss-security/2008/10/28/5	mailing-listx_refsource_MLIST
	http://www.openwall.com/lists/oss-security/2008/10/27/4	mailing-listx_refsource_MLIST
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://secunia.com/advisories/33568	third-party-advisoryx_refsource_SECUNIA
	http://www.openwall.com/lists/oss-security/2008/10/29/5	mailing-listx_refsource_MLIST
	http://www.openwall.com/lists/oss-security/2008/10/29/9	mailing-listx_refsource_MLIST
	http://security.gentoo.org/glsa/glsa-200902-03.xml	vendor-advisoryx_refsource_GENTOO

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T10:31:27.918Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "[valgrind-announce] 20090103 Valgrind-3.4.0 is available",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://sourceforge.net/mailarchive/forum.php?thread_name=200901032045.17604.jseward%40acm.org\u0026forum_name=valgrind-announce"
          },
          {
            "name": "[oss-security] 20081028 Re: CVE request: lynx (old) .mailcap handling flaw",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2008/10/28/5"
          },
          {
            "name": "[oss-security] 20081027 Re: CVE request: lynx (old) .mailcap handling flaw",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2008/10/27/4"
          },
          {
            "name": "SUSE-SR:2009:002",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
          },
          {
            "name": "33568",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/33568"
          },
          {
            "name": "[oss-security] 20081029 Re: CVE request: lynx (old) .mailcap handling flaw",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2008/10/29/5"
          },
          {
            "name": "[oss-security] 20081029 Re: CVE request: lynx (old) .mailcap handling flaw",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2008/10/29/9"
          },
          {
            "name": "GLSA-200902-03",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200902-03.xml"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2008-10-27T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options.  NOTE: the severity of this issue has been disputed, but CVE is including this issue because execution of a program from an untrusted directory is a common scenario."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2009-01-07T10:00:00",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "[valgrind-announce] 20090103 Valgrind-3.4.0 is available",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://sourceforge.net/mailarchive/forum.php?thread_name=200901032045.17604.jseward%40acm.org\u0026forum_name=valgrind-announce"
        },
        {
          "name": "[oss-security] 20081028 Re: CVE request: lynx (old) .mailcap handling flaw",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2008/10/28/5"
        },
        {
          "name": "[oss-security] 20081027 Re: CVE request: lynx (old) .mailcap handling flaw",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2008/10/27/4"
        },
        {
          "name": "SUSE-SR:2009:002",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
        },
        {
          "name": "33568",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/33568"
        },
        {
          "name": "[oss-security] 20081029 Re: CVE request: lynx (old) .mailcap handling flaw",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2008/10/29/5"
        },
        {
          "name": "[oss-security] 20081029 Re: CVE request: lynx (old) .mailcap handling flaw",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2008/10/29/9"
        },
        {
          "name": "GLSA-200902-03",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200902-03.xml"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2008-4865",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Untrusted search path vulnerability in valgrind before 3.4.0 allows local users to execute arbitrary programs via a Trojan horse .valgrindrc file in the current working directory, as demonstrated using a malicious --db-command options.  NOTE: the severity of this issue has been disputed, but CVE is including this issue because execution of a program from an untrusted directory is a common scenario."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "[valgrind-announce] 20090103 Valgrind-3.4.0 is available",
              "refsource": "MLIST",
              "url": "http://sourceforge.net/mailarchive/forum.php?thread_name=200901032045.17604.jseward%40acm.org\u0026forum_name=valgrind-announce"
            },
            {
              "name": "[oss-security] 20081028 Re: CVE request: lynx (old) .mailcap handling flaw",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2008/10/28/5"
            },
            {
              "name": "[oss-security] 20081027 Re: CVE request: lynx (old) .mailcap handling flaw",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2008/10/27/4"
            },
            {
              "name": "SUSE-SR:2009:002",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html"
            },
            {
              "name": "33568",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/33568"
            },
            {
              "name": "[oss-security] 20081029 Re: CVE request: lynx (old) .mailcap handling flaw",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2008/10/29/5"
            },
            {
              "name": "[oss-security] 20081029 Re: CVE request: lynx (old) .mailcap handling flaw",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2008/10/29/9"
            },
            {
              "name": "GLSA-200902-03",
              "refsource": "GENTOO",
              "url": "http://security.gentoo.org/glsa/glsa-200902-03.xml"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2008-4865",
    "datePublished": "2008-10-31T22:00:00",
    "dateReserved": "2008-10-31T00:00:00",
    "dateUpdated": "2024-08-07T10:31:27.918Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

RHEA-2010:0272

CVE-2008-4865 (GCVE-0-2008-4865)

Tags

Sightings

Nomenclature