CVE-2011-0727

Related Files

Mandriva Linux Security Advisory 2011-070

Posted Apr 8, 2011

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2011-070 - GNOME Display Manager 2.x before 2.32.1 allows local users to change the ownership of arbitrary files via a symlink attack on a face icon file under /var/cache/gdm/. The updated packages have been patched to correct this issue.

tags | advisory, arbitrary, local

systems | linux, mandriva

advisories | CVE-2011-0727

SHA-256 | 0f118fb359865e8ede51fb480d81a21ec3b20361b945d201f83a80eb5aee21c4

Download | Favorite | View

Ubuntu Security Notice USN-1099-1

Posted Mar 31, 2011

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1099-1 - Sebastian Krahmer discovered that GDM (GNOME Display Manager) did not properly drop privileges when handling the cache directories used to store users' dmrc and face icon files. This could allow a local attacker to change the ownership of arbitrary files, thereby gaining root privileges.

tags | advisory, arbitrary, local, root

systems | linux, ubuntu

advisories | CVE-2011-0727

SHA-256 | d514ab3fe4b1a1fc21f19d2440ed651da9ef009bb9076b19c86d194bffa0846f

Download | Favorite | View

Debian Security Advisory 2205-1

Posted Mar 28, 2011

Authored by Debian | Site debian.org

Debian Linux Security Advisory 2205-1 - Sebastian Krahmer discovered that the gdm3, the GNOME Desktop Manager, does not properly drop privileges when manipulating files related to the logged-in user. As a result, local users can gain root privileges.

tags | advisory, local, root

systems | linux, debian

advisories | CVE-2011-0727

SHA-256 | fd54d56a30cf7567ea53ed3b6cd7635bfef96b45f84c66c859941eb5f71da7a7

Download | Favorite | View