173 matches found
CVE-2011-3349
lightdm before 0.9.6 writes in .dmrc and Xauthority files using root permissions while the files are in user controlled folders. A local user can overwrite root-owned files via a symlink, which can allow possible privilege escalation...
Privilege escalation
lightdm before 0.9.6 writes in .dmrc and Xauthority files using root permissions while the files are in user controlled folders. A local user can overwrite root-owned files via a symlink, which can allow possible privilege escalation...
CVE-2011-3349
lightdm before 0.9.6 writes in .dmrc and Xauthority files using root permissions while the files are in user controlled folders. A local user can overwrite root-owned files via a symlink, which can allow possible privilege escalation...
CVE-2011-3349
LightDM before 0.9.6 writes in .dmrc and Xauthority files with root permissions while the files are in user-controlled folders. A local user can overwrite root-owned files via a symlink, which can allow possible privilege escalation. Exploitation status is not provided in the linked documents; no...
CVE-2011-3349
lightdm before 0.9.6 writes in .dmrc and Xauthority files using root permissions while the files are in user controlled folders. A local user can overwrite root-owned files via a symlink, which can allow possible privilege escalation...
Design/Logic Flaw
In pam/gkr-pam-module.c in GNOME Keyring before 3.27.2, the user's password is kept in a session-child process spawned from the LightDM daemon. This can expose the credential in cleartext...
CVE-2018-20781
In pam/gkr-pam-module.c in GNOME Keyring before 3.27.2, the user's password is kept in a session-child process spawned from the LightDM daemon. This can expose the credential in cleartext...
Fedora 27 : lightdm (2017-159a1060f6)
lightdm-1.24.0 - Disable guest login as system default preset CVE-2017-8900 - Modernize spec-file Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...
[SECURITY] Fedora 27 Update: lightdm-1.24.0-1.fc27
Lightdm is a display manager that: Is cross-desktop - supports different desktops Supports different display technologies Is lightweight - low memory usage and fast performance...
[SECURITY] Fedora 25 Update: lightdm-1.18.3-5.fc25
Lightdm is a display manager that: Is cross-desktop - supports different desktops Supports different display technologies Is lightweight - low memory usage and fast performance...
Fedora Update for lightdm FEDORA-2017-66adafeb3b
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 25 : lightdm (2017-66adafeb3b)
Disable guest login as system default preset CVE-2017-8900 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
Fedora Update for lightdm FEDORA-2017-d793fef58f
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 26 : lightdm (2017-d793fef58f)
lightdm-1.24.0 - Disable guest login as system default preset CVE-2017-8900 - Modernize spec-file Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...
[SECURITY] Fedora 26 Update: lightdm-1.24.0-1.fc26
Lightdm is a display manager that: Is cross-desktop - supports different desktops Supports different display technologies Is lightweight - low memory usage and fast performance...
CVE-2015-8316
Array index error in LightDM aka Light Display Manager 1.14.3, 1.16.x before 1.16.6 when the XDMCP server is enabled allows remote attackers to cause a denial of service process crash via an XDMCP request packet with no address...
DEBIAN-CVE-2015-8316
Array index error in LightDM aka Light Display Manager 1.14.3, 1.16.x before 1.16.6 when the XDMCP server is enabled allows remote attackers to cause a denial of service process crash via an XDMCP request packet with no address...
Design/Logic Flaw
Array index error in LightDM aka Light Display Manager 1.14.3, 1.16.x before 1.16.6 when the XDMCP server is enabled allows remote attackers to cause a denial of service process crash via an XDMCP request packet with no address...
CVE-2015-8316
Array index error in LightDM aka Light Display Manager 1.14.3, 1.16.x before 1.16.6 when the XDMCP server is enabled allows remote attackers to cause a denial of service process crash via an XDMCP request packet with no address...
CVE-2015-8316
Array index error in LightDM aka Light Display Manager 1.14.3, 1.16.x before 1.16.6 when the XDMCP server is enabled allows remote attackers to cause a denial of service process crash via an XDMCP request packet with no address...