16 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-14424
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The daemon in GDM through 3.29.1 does not properly unexport display objects from its D-Bus interface when they are destroyed, which allows a local attacker to...
SUSE: Security Advisory (SUSE-SU-2018:2771-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP3 : gdm (EulerOS-SA-2021-1787)
According to the versions of the gdm package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability was discovered in gdm before 3.31.4. When timed login is enabled in configuration, an attacker could bypass the lock screen by...
SUSE: Security Advisory (SUSE-SU-2018:2527-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : gdm (openSUSE-2019-708)
This update for gdm provides the following fixes : This security issue was fixed : - CVE-2018-14424: The daemon in GDM did not properly unexport display objects from its D-Bus interface when they are destroyed, which allowed a local attacker to trigger a use-after-free via a specially crafted...
Fedora 28 : 1:gdm (2018-6740c38cf4)
gdm 3.28.3 release, fixing CVE-2018-14424. - CVE-2018-14424 - double free fix - lifecycle fixes to libgdm/GdmClient - follow up fixes dealing with login screen reaping form last release - allow pam modules to use SIGUSR1 - set PWD for user session - tell cirrus not to use wayland - Translation...
SUSE SLED15 / SLES15 Security Update : gdm (SUSE-SU-2018:2771-1)
This update for gdm provides the following fixes : This security issue was fixed : CVE-2018-14424: The daemon in GDM did not properly unexport display objects from its D-Bus interface when they are destroyed, which allowed a local attacker to trigger a use-after-free via a specially crafted...
openSUSE: Security Advisory for gdm (openSUSE-SU-2018:2818-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : gdm (openSUSE-2018-1037)
This update for gdm provides the following fixes : This security issue was fixed : - CVE-2018-14424: The daemon in GDM did not properly unexport display objects from its D-Bus interface when they are destroyed, which allowed a local attacker to trigger a use-after-free via a specially crafted...
Security update for gdm (moderate)
This update for gdm provides the following fixes: This security issue was fixed: - CVE-2018-14424: The daemon in GDM did not properly unexport display objects from its D-Bus interface when they are destroyed, which allowed a local attacker to trigger a use-after-free via a specially crafted...
SUSE SLED12 / SLES12 Security Update : gdm (SUSE-SU-2018:2527-1)
This update for gdm fixes the following security issue : - CVE-2018-14424: The daemon in GDM did not properly unexport display objects from its D-Bus interface when they are destroyed, which allowed a local attacker to trigger a use-after-free via a specially crafted sequence of D-Bus method call...
CVE-2018-14424
The CVE-2018-14424 issue affects the GDM daemon (GNOME Display Manager) and is caused by the daemon not properly unexporting display objects from its D-Bus interface when they are destroyed. This creates a local-use-after-free condition that can lead to a denial of service and, in the worst case,...
Debian DSA-4270-1 : gdm3 - security update
Chris Coulson discovered a use-after-free flaw in the GNOME Display Manager, triggerable by an unprivileged user via a specially crafted sequence of D-Bus method calls, leading to denial of service or potentially the execution of arbitrary code. C Tenable Network Security, Inc. The descriptive te...
[SECURITY] [DSA 4270-1] gdm3 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4270-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 13, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4270-1] gdm3 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4270-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 13, 2018 https://www.debian.org/security/faq -...
CVE-2018-14424
The daemon in GDM through 3.29.1 does not properly unexport display objects from its D-Bus interface when they are destroyed, which allows a local attacker to trigger a use-after-free via a specially crafted sequence of D-Bus method calls, resulting in a denial of service or potential code...