CVE-2009-3736

Source
https://nvd.nist.gov/vuln/detail/CVE-2009-3736
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2009-3736.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2009-3736
Related
Published
2009-11-29T13:07:52Z
Modified
2024-11-20T23:00:04Z
Summary
[none]
Details

ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file.

References

Affected packages

Debian:11 / clamav

Package

Name
clamav
Purl
pkg:deb/debian/clamav?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.95+dfsg-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / clamav

Package

Name
clamav
Purl
pkg:deb/debian/clamav?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.95+dfsg-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / clamav

Package

Name
clamav
Purl
pkg:deb/debian/clamav?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.95+dfsg-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / collectd

Package

Name
collectd
Purl
pkg:deb/debian/collectd?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.2-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / collectd

Package

Name
collectd
Purl
pkg:deb/debian/collectd?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.2-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / collectd

Package

Name
collectd
Purl
pkg:deb/debian/collectd?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.8.2-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / ggobi

Package

Name
ggobi
Purl
pkg:deb/debian/ggobi?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.1.9~20091212-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / ggobi

Package

Name
ggobi
Purl
pkg:deb/debian/ggobi?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.1.9~20091212-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / ggobi

Package

Name
ggobi
Purl
pkg:deb/debian/ggobi?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.1.9~20091212-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / gnu-smalltalk

Package

Name
gnu-smalltalk
Purl
pkg:deb/debian/gnu-smalltalk?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.1-2

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / graphicsmagick

Package

Name
graphicsmagick
Purl
pkg:deb/debian/graphicsmagick?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.3.5-6

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / graphicsmagick

Package

Name
graphicsmagick
Purl
pkg:deb/debian/graphicsmagick?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.3.5-6

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / graphicsmagick

Package

Name
graphicsmagick
Purl
pkg:deb/debian/graphicsmagick?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.3.5-6

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / graphviz

Package

Name
graphviz
Purl
pkg:deb/debian/graphviz?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.26.3-14

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / graphviz

Package

Name
graphviz
Purl
pkg:deb/debian/graphviz?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.26.3-14

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / graphviz

Package

Name
graphviz
Purl
pkg:deb/debian/graphviz?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.26.3-14

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / hamlib

Package

Name
hamlib
Purl
pkg:deb/debian/hamlib?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.2.10-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / hamlib

Package

Name
hamlib
Purl
pkg:deb/debian/hamlib?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.2.10-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / hamlib

Package

Name
hamlib
Purl
pkg:deb/debian/hamlib?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.2.10-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / heartbeat

Package

Name
heartbeat
Purl
pkg:deb/debian/heartbeat?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.1.4-7

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:12 / heartbeat

Package

Name
heartbeat
Purl
pkg:deb/debian/heartbeat?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.1.4-7

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / heartbeat

Package

Name
heartbeat
Purl
pkg:deb/debian/heartbeat?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.1.4-7

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:11 / hercules

Package

Name
hercules
Purl
pkg:deb/debian/hercules?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.06-1.2

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / hercules

Package

Name
hercules
Purl
pkg:deb/debian/hercules?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.06-1.2

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / hercules

Package

Name
hercules
Purl
pkg:deb/debian/hercules?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.06-1.2

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / hypre

Package

Name
hypre
Purl
pkg:deb/debian/hypre?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.4.0b-5

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / hypre

Package

Name
hypre
Purl
pkg:deb/debian/hypre?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.4.0b-5

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / hypre

Package

Name
hypre
Purl
pkg:deb/debian/hypre?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.4.0b-5

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / imagemagick

Package

Name
imagemagick
Purl
pkg:deb/debian/imagemagick?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6:6.2.3.1-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / imagemagick

Package

Name
imagemagick
Purl
pkg:deb/debian/imagemagick?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6:6.2.3.1-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / imagemagick

Package

Name
imagemagick
Purl
pkg:deb/debian/imagemagick?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6:6.2.3.1-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / jags

Package

Name
jags
Purl
pkg:deb/debian/jags?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.0.4-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / jags

Package

Name
jags
Purl
pkg:deb/debian/jags?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.0.4-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / jags

Package

Name
jags
Purl
pkg:deb/debian/jags?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.0.4-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / lam

Package

Name
lam
Purl
pkg:deb/debian/lam?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.1.2-1.6

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / lam

Package

Name
lam
Purl
pkg:deb/debian/lam?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.1.2-1.6

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / lam

Package

Name
lam
Purl
pkg:deb/debian/lam?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.1.2-1.6

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / libextractor

Package

Name
libextractor
Purl
pkg:deb/debian/libextractor?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.5.23+dfsg-4

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / libextractor

Package

Name
libextractor
Purl
pkg:deb/debian/libextractor?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.5.23+dfsg-4

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / libextractor

Package

Name
libextractor
Purl
pkg:deb/debian/libextractor?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.5.23+dfsg-4

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / libprelude

Package

Name
libprelude
Purl
pkg:deb/debian/libprelude?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.9.14-2

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / libprelude

Package

Name
libprelude
Purl
pkg:deb/debian/libprelude?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.9.14-2

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / libtool

Package

Name
libtool
Purl
pkg:deb/debian/libtool?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2.6b-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / libtool

Package

Name
libtool
Purl
pkg:deb/debian/libtool?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2.6b-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / libtool

Package

Name
libtool
Purl
pkg:deb/debian/libtool?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2.6b-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / mp4h

Package

Name
mp4h
Purl
pkg:deb/debian/mp4h?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.3.1-4.1

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / mp4h

Package

Name
mp4h
Purl
pkg:deb/debian/mp4h?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.3.1-4.1

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / mp4h

Package

Name
mp4h
Purl
pkg:deb/debian/mp4h?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.3.1-4.1

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / openmpi

Package

Name
openmpi
Purl
pkg:deb/debian/openmpi?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.3.3-4

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / openmpi

Package

Name
openmpi
Purl
pkg:deb/debian/openmpi?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.3.3-4

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / openmpi

Package

Name
openmpi
Purl
pkg:deb/debian/openmpi?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.3.3-4

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / parser

Package

Name
parser
Purl
pkg:deb/debian/parser?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.4.0-2

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:12 / parser

Package

Name
parser
Purl
pkg:deb/debian/parser?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.4.0-2

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / parser

Package

Name
parser
Purl
pkg:deb/debian/parser?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.4.0-2

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:11 / parser-mysql

Package

Name
parser-mysql
Purl
pkg:deb/debian/parser-mysql?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.3-2

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:12 / parser-mysql

Package

Name
parser-mysql
Purl
pkg:deb/debian/parser-mysql?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.3-2

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / parser-mysql

Package

Name
parser-mysql
Purl
pkg:deb/debian/parser-mysql?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.3-2

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:11 / pinball

Package

Name
pinball
Purl
pkg:deb/debian/pinball?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.3.1-11

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / pinball

Package

Name
pinball
Purl
pkg:deb/debian/pinball?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.3.1-11

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / pinball

Package

Name
pinball
Purl
pkg:deb/debian/pinball?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.3.1-11

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / redland

Package

Name
redland
Purl
pkg:deb/debian/redland?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.0.10-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / redland

Package

Name
redland
Purl
pkg:deb/debian/redland?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.0.10-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / redland

Package

Name
redland
Purl
pkg:deb/debian/redland?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.0.10-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / sdcc

Package

Name
sdcc
Purl
pkg:deb/debian/sdcc?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.0-5

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / sdcc

Package

Name
sdcc
Purl
pkg:deb/debian/sdcc?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.0-5

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / sdcc

Package

Name
sdcc
Purl
pkg:deb/debian/sdcc?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.0-5

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / synfig

Package

Name
synfig
Purl
pkg:deb/debian/synfig?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.62.00-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / synfig

Package

Name
synfig
Purl
pkg:deb/debian/synfig?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.62.00-1

Ecosystem specific

{
    "urgency": "low"
}

Debian:11 / xmlsec1

Package

Name
xmlsec1
Purl
pkg:deb/debian/xmlsec1?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.2.14-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:12 / xmlsec1

Package

Name
xmlsec1
Purl
pkg:deb/debian/xmlsec1?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.2.14-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / xmlsec1

Package

Name
xmlsec1
Purl
pkg:deb/debian/xmlsec1?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.2.14-1

Ecosystem specific

{
    "urgency": "unimportant"
}