First published: Fri Dec 21 2012(Updated: )
vicious-extensions/ve-misc.c in GNOME Display Manager (gdm) 2.20.x before 2.20.11, when GDM debug is enabled, logs the user password when it contains invalid UTF8 encoded characters, which might allow local users to gain privileges by reading the information from syslog logs.
Credit: secalert_us@oracle.com
Affected Software | Affected Version | How to fix |
---|---|---|
Gnome Gnome Display Manager | =2.20.8 | |
Gnome Gnome Display Manager | =2.20.10 | |
Gnome Gnome Display Manager | =2.20.6 | |
Gnome Gnome Display Manager | =2.20.0 | |
Gnome Gnome Display Manager | =2.20.5 | |
Gnome Gnome Display Manager | =2.20.1 | |
Gnome Gnome Display Manager | =2.20.3 | |
Gnome Gnome Display Manager | =2.20.2 | |
Gnome Gnome Display Manager | =2.20.9 | |
Gnome Gnome Display Manager | =2.20.7 | |
Gnome Gnome Display Manager | =2.20.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.