CVE-2009-0314
published 2009-01-28CVE-2009-0314: Untrusted search path vulnerability in the Python module in gedit allows local users to execute arbitrary code via a Trojan horse Python file in the current…
PriorityP420medium6.9CVSS 2.0
AVLACMAuNCCICAC
EPSS
0.62%
45.4th percentile
Untrusted search path vulnerability in the Python module in gedit allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | gedit | < gedit 2.22.3-2 (bookworm) | gedit 2.22.3-2 (bookworm) |
| fedoraproject | fedora | — | — |
| gnome | gedit | >= 0 < 2.22.3-2 | 2.22.3-2 |
| gnome | gedit | >= 0 < 2.22.3-2 | 2.22.3-2 |
| gnome | gedit | >= 0 < 2.22.3-2 | 2.22.3-2 |
| gnome | gedit | >= 0 < 2.22.3-2 | 2.22.3-2 |
| gnome | libpeas | < 0.5.3 | 0.5.3 |
CVSS provenance
nvdv2.06.9MEDIUMAV:L/AC:M/Au:N/C:C/I:C/A:C
osv6.9MEDIUM
vendor_debian6.9LOW
vendor_redhat6.9MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
kernel: qla2xxx NPIV vport management pseudofiles are world writable
vendor_redhat·2010-01-19·CVSS 1.9
CVE-2009-3556 [LOW] CWE-732 kernel: qla2xxx NPIV vport management pseudofiles are world writable
kernel: qla2xxx NPIV vport management pseudofiles are world writable
A certain Red Hat configuration step for the qla2xxx driver in the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5, when N_Port ID Virtualization (NPIV) hardware is used, sets world-writable permissions for the (1) vport_create and (2) vport_delete files under /sys/class/scsi_host/, which allows local users to make arbitrary changes to SCSI host attributes by modifying these files.
Statement: This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 3, 4 and Red Hat Enterprise MRG. Shipped kernels do not include upstream commit d025c9db that introduced the problem.
This upstream commit was backported in Red Hat Enterprise Linux 5 via RHBA-2008:0314 update. Issue was add
Debian
CVE-2009-0314: gedit - Untrusted search path vulnerability in the Python module in gedit allows local u...
vendor_debian·2009·CVSS 6.9
CVE-2009-0314 [MEDIUM] CVE-2009-0314: gedit - Untrusted search path vulnerability in the Python module in gedit allows local u...
Untrusted search path vulnerability in the Python module in gedit allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).
Scope: local
bookworm: resolved (fixed in 2.22.3-2)
bullseye: resolved (fixed in 2.22.3-2)
forky: resolved (fixed in 2.22.3-2)
sid: resolved (fixed in 2.22.3-2)
trixie: resolved (fixed in 2.22.3-2)
Red Hat
gedit: untrusted python modules search path
vendor_redhat·2008-08-06·CVSS 6.9
CVE-2009-0314 [MEDIUM] gedit: untrusted python modules search path
gedit: untrusted python modules search path
Untrusted search path vulnerability in the Python module in gedit allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).
Statement: This issue does not affect gedit as shipped in Red Hat Enterprise Linux 3 and 4. It does affect gedit in Red Hat Enterprise Linux 5.
Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.
Package: gedit (Red Hat Enterprise Linux 5) - Will not fix
GHSA
GHSA-7wfg-2ggr-wcjc: Untrusted search path vulnerability in the Python module in gedit allows local users to execute arbitrary code via a Trojan horse Python file in the c
ghsa_unreviewed·2022-05-02·CVSS 6.9
CVE-2009-0314 [MEDIUM] CWE-426 GHSA-7wfg-2ggr-wcjc: Untrusted search path vulnerability in the Python module in gedit allows local users to execute arbitrary code via a Trojan horse Python file in the c
Untrusted search path vulnerability in the Python module in gedit allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).
OSV
CVE-2009-0314: Untrusted search path vulnerability in the Python module in gedit allows local users to execute arbitrary code via a Trojan horse Python file in the c
osv·2009-01-28·CVSS 6.9
CVE-2009-0314 [MEDIUM] CVE-2009-0314: Untrusted search path vulnerability in the Python module in gedit allows local users to execute arbitrary code via a Trojan horse Python file in the c
Untrusted search path vulnerability in the Python module in gedit allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2007-4567 kernel: ipv6_hop_jumbo remote system crash
bugzilla·2009-12-18·CVSS 7.8
CVE-2007-4567 [HIGH] CVE-2007-4567 kernel: ipv6_hop_jumbo remote system crash
CVE-2007-4567 kernel: ipv6_hop_jumbo remote system crash
Originally discovered by Victor Julien that there is a way to crash the Linux kernel by sending a single IPv6 packet at it.
1) The CVE-2007-4567 issue was reported to Red Hat in September 2007. Red Hat Enterprise Linux 5 was found not to be affected.
2) On December 18, 2009, a customer reported to us that Red Hat Enterprise Linux 5 was vulnerable to CVE-2007-4567.
3) Investigations showed that the issue was introduced in the RHBA-2008-0314 update on May 21, 2008 via a backport of a collection of patches for DoD IPv6 conformance.
4) Updates released on January 7, 2010 for Red Hat Enterprise Linux 5, resolving CVE-2007-4567.
Note that the Linux kernels as shipped with Red Hat Enterprise Linux 3, 4, and Red Hat Enterprise MRG are
Bugzilla
CVE-2009-0314 gedit: untrusted python modules search path
bugzilla·2009-01-26·CVSS 6.9
CVE-2009-0314 [MEDIUM] CVE-2009-0314 gedit: untrusted python modules search path
CVE-2009-0314 gedit: untrusted python modules search path
Untrusted search path vulnerability in gedit's Python module allows local
users to execute arbitrary code via a Trojan horse Python file in the
current working directory, related to an erroneous setting of sys.path
by the PySys_SetArgv function.
References:
http://www.nabble.com/Bug-484305%3A-bicyclerepair%3A-bike.vim-imports-untrusted-python-files-from-cwd-td18848099.html
Debian bug report for similar eog issue:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504352#4
Proposed patch:
Not sure, if gedi'ts upstream has been reported about this issue.
The Debian patch for similar eog's Python related issue,
available at:
http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=5;filename=02_sanitize_sys.path.patch;att=1;bug=504352
shou
http://bugzilla.gnome.org/show_bug.cgi?id=569214http://secunia.com/advisories/33759http://secunia.com/advisories/33769http://secunia.com/advisories/34522http://security.gentoo.org/glsa/glsa-200903-41.xmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2009:039http://www.openwall.com/lists/oss-security/2009/01/26/2http://www.securityfocus.com/bid/33445https://bugzilla.redhat.com/show_bug.cgi?id=481556https://exchange.xforce.ibmcloud.com/vulnerabilities/48271https://www.redhat.com/archives/fedora-package-announce/2009-January/msg01195.htmlhttp://bugzilla.gnome.org/show_bug.cgi?id=569214http://secunia.com/advisories/33759http://secunia.com/advisories/33769http://secunia.com/advisories/34522http://security.gentoo.org/glsa/glsa-200903-41.xmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2009:039http://www.openwall.com/lists/oss-security/2009/01/26/2http://www.securityfocus.com/bid/33445https://bugzilla.redhat.com/show_bug.cgi?id=481556https://exchange.xforce.ibmcloud.com/vulnerabilities/48271https://www.redhat.com/archives/fedora-package-announce/2009-January/msg01195.html
2009-01-28
Published