|
|
Log in / Subscribe / Register

gdm: privilege escalation

Package(s):gdm CVE #(s):CVE-2006-2452
Created:June 8, 2006 Updated:June 14, 2006
Description: gdm has a privilege escalation vulnerability that is tied to the face browser feature. If face browser is enabled, arbitrary users can access the gdm configuration screen, a feature that is normally accessible only to root. Other user accounts, and possibly the root account can then be subverted.
Alerts:
Mandriva MDKSA-2006:100 gdm 2006-06-13
Gentoo 200606-14 gdm 2006-06-12
Fedora FEDORA-2006-692 gdm 2006-06-09
SuSE SUSE-SR:2006:013 phpMyAdmin, gdm 2006-06-09
Ubuntu USN-293-1 gdm 2006-06-09
rPath rPSA-2006-0098-1 gdm 2006-06-08
to post comments

gdm: privilege escalation

Posted Jun 15, 2006 7:41 UTC (Thu) by mjcox@redhat.com (guest, #31775) [Link] (1 responses)

Note this issue did not affect the version of gdm as shipped with Red Hat Enterprise Linux 2.1, 3, or 4.

gdm: privilege escalation

Posted Jun 15, 2006 19:59 UTC (Thu) by mattdm (subscriber, #18) [Link]

Thank you very much for posting here!


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds