Описание
vicious-extensions/ve-misc.c in GNOME Display Manager (gdm) 2.20.x before 2.20.11, when GDM debug is enabled, logs the user password when it contains invalid UTF8 encoded characters, which might allow local users to gain privileges by reading the information from syslog logs.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.6.1-0ubuntu1 |
| hardy | ignored | end of life |
| lucid | not-affected | 2.30.2.is.2.30.0-0ubuntu5.2 |
| oneiric | not-affected | 3.0.4-0ubuntu11 |
| precise | not-affected | 3.0.4-0ubuntu15 |
| quantal | not-affected | 3.6.1-0ubuntu1 |
| upstream | released | 2.20.11 |
Показывать по
Ссылки на источники
1.9 Low
CVSS2
Связанные уязвимости
vicious-extensions/ve-misc.c in GNOME Display Manager (gdm) 2.20.x before 2.20.11, when GDM debug is enabled, logs the user password when it contains invalid UTF8 encoded characters, which might allow local users to gain privileges by reading the information from syslog logs.
vicious-extensions/ve-misc.c in GNOME Display Manager (gdm) 2.20.x before 2.20.11, when GDM debug is enabled, logs the user password when it contains invalid UTF8 encoded characters, which might allow local users to gain privileges by reading the information from syslog logs.
vicious-extensions/ve-misc.c in GNOME Display Manager (gdm) 2.20.x bef ...
vicious-extensions/ve-misc.c in GNOME Display Manager (gdm) 2.20.x before 2.20.11, when GDM debug is enabled, logs the user password when it contains invalid UTF8 encoded characters, which might allow local users to gain privileges by reading the information from syslog logs.
1.9 Low
CVSS2