Mageia: Security Advisory (MGASA-2020-0412)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2020-0412 Updated sddm package fixes a security vulnerability

Fabian Vogt discovered a flaw in sddm before 0.19.0. A local attacker can take advantage of a race condition when creating the Xauthority file to escalate privileges CVE-2020-28049...

Updated sddm package fixes a security vulnerability

Fabian Vogt discovered a flaw in sddm before 0.19.0. A local attacker can take advantage of a race condition when creating the Xauthority file to escalate privileges CVE-2020-28049...

openSUSE Security Update : sddm (openSUSE-2020-1870)

This update for sddm fixes the following issue : - Fix X not having access control on startup boo1177201, CVE-2020-28049. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2020-1870. The text description o...

openSUSE: Security Advisory for sddm (openSUSE-SU-2020:1870-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2020:1870-1 Security update for sddm

This update for sddm fixes the following issue: - Fix X not having access control on startup boo1177201, CVE-2020-28049...

Debian: Security Advisory (DLA-2436-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 4783-1] sddm security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4783-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 05, 2020 https://www.debian.org/security/faq -...

CVE-2020-28049

creationtimestamp| type| source ---|---|--- 2020-11-04 22:42:36+00:00| seen| https://t.me/cibsecurity/15843...

CVE-2020-28049

CVE-2020-28049 affects SDDM prior to 0.19.0. A race during Xauthority file creation allows a local unprivileged user to connect to the X server for a brief window, exposing X display contents and potentially keystrokes or clipboard data. Root cause: race condition in Xauthority handling when star...

CVE-2020-28049

An issue was discovered in SDDM before 0.19.0. It incorrectly starts the X server in a way that - for a short time period - allows local unprivileged users to create a connection to the X server without providing proper authentication. A local attacker can thus access X server display contents an...