CVE-2007-3912

Name of the Vulnerable Software and Affected Versions: debian-goodies versions prior to 0.34

Description: The issue concerns multiple vulnerabilities in the debian-goodies package of the Debian GNU/Linux operating system. These vulnerabilities can be exploited by a local attacker to compromise the confidentiality, integrity, and availability of protected information. Specifically, the checkrestart utility in debian-goodies is vulnerable to shell metacharacters in the name of the executable file for a running process, allowing local users to gain privileges.

Recommendations: For versions prior to 0.34, update to version 0.34 or later to resolve the issue. As a temporary workaround, consider restricting access to the checkrestart utility to minimize the risk of exploitation.