SUSE-SA:2006:007: binutils,kdelibs3,kdegraphics3,koffice,dia,lyx

This script is Copyright (C) 2006-2010 Tenable Network Security, Inc.

Synopsis :

The remote host is missing a vendor-supplied security patch

Description :

The remote host is missing the patch for the advisory SUSE-SA:2006:007 (binutils,kdelibs3,kdegraphics3,koffice,dia,lyx).

A SUSE specific patch to the GNU linker 'ld' removes redundant RPATH
and RUNPATH components when linking binaries.

Due to a bug in this routine ld occasionally left empty RPATH
components. When running a binary with empty RPATH components the
dynamic linker tries to load shared libraries from the current

By tricking users into running an affected application in a
directory that contains a specially crafted shared library an
attacker could execute arbitrary code with the user id of the

Solution :

Risk factor :


Family: SuSE Local Security Checks

Nessus Plugin ID: 20901 ()

Bugtraq ID:


Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now