Описание
The X.Org X wrapper (xserver-wrapper.c) in Debian GNU/Linux and Ubuntu Linux does not properly verify the TTY of a user who is starting X, which allows local users to bypass intended access restrictions by associating stdin with a file that is misinterpreted as the console TTY.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1:7.6+10ubuntu1 |
| hardy | ignored | end of life |
| lucid | released | 1:7.5+5ubuntu1.1 |
| maverick | released | 1:7.5+6ubuntu3.1 |
| natty | released | 1:7.6+4ubuntu3.2 |
| oneiric | released | 1:7.6+7ubuntu7.1 |
| upstream | released | 1:7.6+10 |
Показывать по
EPSS
4.6 Medium
CVSS2
Связанные уязвимости
The X.Org X wrapper (xserver-wrapper.c) in Debian GNU/Linux and Ubuntu Linux does not properly verify the TTY of a user who is starting X, which allows local users to bypass intended access restrictions by associating stdin with a file that is misinterpreted as the console TTY.
The X.Org X wrapper (xserver-wrapper.c) in Debian GNU/Linux and Ubuntu Linux does not properly verify the TTY of a user who is starting X, which allows local users to bypass intended access restrictions by associating stdin with a file that is misinterpreted as the console TTY.
The X.Org X wrapper (xserver-wrapper.c) in Debian GNU/Linux and Ubuntu ...
The X.Org X wrapper (xserver-wrapper.c) in Debian GNU/Linux and Ubuntu Linux does not properly verify the TTY of a user who is starting X, which allows local users to bypass intended access restrictions by associating stdin with a file that is misinterpreted as the console TTY.
Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
4.6 Medium
CVSS2