[SECURITY] Fedora 40 Update: gnome-tour-46.0-2.fc40

A guided tour and greeter for GNOME...

SUSE CVE-2014-0979

The startauthentication function in lightdm-gtk-greeter.c in LightDM GTK+ Greeter before 1.7.1 does not properly handle the return value from the lightdmgreetergetauthenticationuser function, which allows local users to cause a denial of service NULL pointer dereference via an empty username...

SUSE CVE-2015-0856

daemon/Greeter.cpp in sddm before 0.13.0 does not properly disable the KDE crash handler, which allows local users to gain privileges by crashing a greeter when using certain themes, as demonstrated by the plasma-workspace breeze theme...

Mageia: Security Advisory (MGASA-2014-0026)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : systemd (openSUSE-2020-208)

This update for systemd fixes the following issues : - CVE-2020-1712 bscbsc1162108 Fix a heap use-after-free vulnerability, when asynchronous Polkit queries were performed while handling Dbus messages. A local unprivileged attacker could have abused this flaw to crash systemd services or...

CVE-2019-19521

libc in OpenBSD 6.6 allows authentication bypass via the -schallenge username, as demonstrated by smtpd, ldapd, or radiusd. This is related to gen/authsubr.c and gen/authenticate.c in libc and login/login.c and xenocara/app/xenodm/greeter/verify.c...

Authentication flaw

libc in OpenBSD 6.6 allows authentication bypass via the -schallenge username, as demonstrated by smtpd, ldapd, or radiusd. This is related to gen/authsubr.c and gen/authenticate.c in libc and login/login.c and xenocara/app/xenodm/greeter/verify.c...

LightDM (Ubuntu 16.04/16.10) - 'Guest Account' Local Privilege Escalation

Source: https://blogs.securiteam.com/index.php/archives/3134 Vulnerability Summary The following advisory describes a local privilege escalation via LightDM found in Ubuntu versions 16.10 / 16.04 LTS. Ubuntu is an open source software platform that runs everywhere from IoT devices, the smartphone...

SSD Advisory – Ubuntu LightDM Guest Account Local Privilege Escalation（CVE-2017-7358）

Vulnerability Summary The following advisory describes a local privilege escalation via LightDM found in Ubuntu versions 16.10 / 16.04 LTS. Ubuntu is an open source software platform that runs everywhere from IoT devices, the smartphone, the tablet and the PC to the server and the cloud. LightDM ...

DEBIAN-CVE-2015-0856

daemon/Greeter.cpp in sddm before 0.13.0 does not properly disable the KDE crash handler, which allows local users to gain privileges by crashing a greeter when using certain themes, as demonstrated by the plasma-workspace breeze theme...

UBUNTU-CVE-2015-0856

daemon/Greeter.cpp in sddm before 0.13.0 does not properly disable the KDE crash handler, which allows local users to gain privileges by crashing a greeter when using certain themes, as demonstrated by the plasma-workspace breeze theme...

CVE-2015-0856

daemon/Greeter.cpp in sddm before 0.13.0 does not properly disable the KDE crash handler, which allows local users to gain privileges by crashing a greeter when using certain themes, as demonstrated by the plasma-workspace breeze theme...

SDDM 'Greeter.cpp' Local Denial of Service Vulnerability

SDDM is a QML-based X11 display manager. A local denial of service vulnerability exists in SDDM. An attacker can exploit this vulnerability to crash the application and cause a denial of service...

openSUSE Security Update : lightdm-gtk-greeter (openSUSE-SU-2014:0071-1)

add lightdm-gtk-greeter-handle-invalid-user.patch in order to fix a NULL pointer dereference after authentication of an invalid username has failed bnc857303, CVE-2014-0979 - add lightdm-gtk-greeter-invalid-lastsession.patch fix segfault when lastsession is an invalid session lp1161883 - add...

Ubuntu Update for indicator-datetime USN-2186-1

Check for the Version of indicator-datetime OpenVAS Vulnerability Test $Id: gbubuntuUSN21861.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for indicator-datetime USN-2186-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This...

Ubuntu Date and Time Indicator privilege escalation

It's possible to run applications as greeter user...

[USN-2186-1] Date and Time Indicator vulnerability

========================================================================== Ubuntu Security Notice USN-2186-1 April 30, 2014 indicator-datetime vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...

CVE-2013-7374

The Ubuntu Date and Time Indicator aka indicator-datetime 13.10.0+13.10.x before 13.10.0+13.10.20131023.2-0ubuntu1.1 does not properly restrict access to Evolution, which allows local users to bypass the greeter screen restrictions by clicking the date...

Sql injection

The Ubuntu Date and Time Indicator aka indicator-datetime 13.10.0+13.10.x before 13.10.0+13.10.20131023.2-0ubuntu1.1 does not properly restrict access to Evolution, which allows local users to bypass the greeter screen restrictions by clicking the date...

CVE-2013-7374

CVE-2013-7374 affects Ubuntu indicator-datetime (indicator-datetime package) on Ubuntu 13.10. The vulnerability allows a local user to bypass greeter screen restrictions by clicking the date, enabling access to Evolution and potentially other apps with greeter privileges. The Ubuntu Security Noti...