2 matches found
Scientific Linux Security Update : xterm on SL4.x i386/x86_64
A bug was found in the way xterm packages were built that caused the pseudo-terminal device files of the xterm emulated terminals to be owned by the incorrect group. This flaw did not affect Red Hat Enterprise Linux 4 Update 4 and earlier. CVE-2007-2797 %NASLMINLEVEL 70300 C Tenable Network...
(mesg: error: tty device is not owned by group `tty')
xterm, including 192-7.el4 in Red Hat Enterprise Linux and 208-3.1 in Debian GNU/Linux, sets the wrong group ownership of tty devices, which allows local users to write data to other users' terminals...