Red Hat Bugzilla – Bug 171824
CAN-2005-1705 gdb arbitrary command execution
Last modified: 2008-08-02 19:40:33 EDT
gdb before 6.3 searches the current working directory to load the
.gdbinit configuration file, which allows local users to execute
arbitrary commands as the user running gdb.
More information can be found in the gentoo BTS:
Fixed in gdb-6.1post-1.20040607.43.0.1
From User-Agent: XML-RPC
gdb-6.1post-1.20040607.43.0.1 has been pushed for FC3, which should resolve this issue. If these problems are still present in this version, then please make note of it in this bug report.
Fedora Core 3 is now maintained by the Fedora Legacy project for security
updates only. If this problem is a security issue, please reopen and
reassign to the Fedora Legacy product. If it is not a security issue and
hasn't been resolved in the current FC5 updates or in the FC6 test
release, reopen and change the version to match.
Already processed a long time ago and fixed according to Comment 1.