GNU locate in findutils 4.1 on Slackware 7.1 and 8.0 allows local users to gain privileges via an old formatted filename database (locatedb) that contains an entry with an out-of-range offset, which causes locate to write to arbitrary process memory.
| Product | Vendor | Version |
|---|---|---|
| n/a | n/a | 3.4.4 |