Insufficient sanitisation in the OCaml compiler versions 4.04.0 and 4.04.1allows external code to be executed with raised privilege in binaries marked as setuid, by setting the CAML_CPLUGINS, CAML_NATIVE_CPLUGINS, orCAML_BYTE_CPLUGINS environment variable.