5 matches found
Fedora 22 : sddm-0.12.0-5.fc22 (2015-9f996ea146)
sddm-0.12.0-5.fc22 - Security fix for CVE-2015-0856 ---- Refresh to latest stable upstream release, see: https://github.com/sddm/sddm/wiki/0.12.0 -Release-Announcement Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...
CVE-2015-0856
CVE-2015-0856 affects sddm’s greeter: in versions prior to 0.13.0, the Greeter.cpp path does not disable the KDE crash handler, enabling local users to escalate privileges by crashing the greeter under certain themes (notably plasma-workspace breeze). The impact is local elevation to partial conf...
CVE-2015-0856
daemon/Greeter.cpp in sddm before 0.13.0 does not properly disable the KDE crash handler, which allows local users to gain privileges by crashing a greeter when using certain themes, as demonstrated by the plasma-workspace breeze theme...
Mageia: Security Advisory (MGASA-2015-0429)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated sddm packages fixes security vulnerability
Pavel Avgustinov discovered that SDDM does not disable the KDE crash handler, and certain themes would allow shell access to the sddm user as a result in case of a crash CVE-2015-0856. Only SDDM users using the Breeze theme from plasma-workspace are affected...