Vulnerability in Gentoo Portage

CVE-2008-4394

Multiple untrusted search path vulnerabilities in Portage before 2.1.4.5 include the current working directory in the Python search path, which allows local users to execute arbitrary code via a modified Python module that is loaded by the…

EPSS: 0.003 (25.6th percentile) — read the EPSS interpretation.

Affected products

  • Gentoo Portage — versions 2.0.51.22, 2.1.1, 2.1.3.10
  • N/a — versions n/a

References