aru Posted June 14, 2006 Report Share Posted June 14, 2006 Mandriva Advisories MDKSA-2006:100 : gdm Updated gdm packages fix vulnerability June 13th, 2006 A vulnerability in gdm could allow a user to activate the gdm setup program if the administrator configured a gdm theme that provided a user list.The user could do so by choosing the setup option from the menu, clicking the user list, then entering his own password instead of root's. The updated packages have been patched to correct this issue. The released versions of Mandriva GNU/Linux affected are: 2006.0Full information about this advisory, including the updated packages, is available at: www.mandriva.com/security/advisories?name=MDKSA-2006:100 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2452 Posted automatically by aru (mdksec2mub v: mdksec2mub,v 1.2 2006/06/01 20:04:28 pituko Exp $) Link to comment Share on other sites More sharing options...
Recommended Posts