Описание
The daemon in GDM through 3.29.1 does not properly unexport display objects from its D-Bus interface when they are destroyed, which allows a local attacker to trigger a use-after-free via a specially crafted sequence of D-Bus method calls, resulting in a denial of service or potential code execution.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 3.28.2-0ubuntu1.4 |
| cosmic | released | 3.29.91-1ubuntu1 |
| devel | released | 3.29.91-1ubuntu1 |
| disco | released | 3.29.91-1ubuntu1 |
| eoan | released | 3.29.91-1ubuntu1 |
| esm-apps/xenial | needed | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | released | 3.28.2-0ubuntu1.4 |
| esm-infra/focal | released | 3.29.91-1ubuntu1 |
| focal | released | 3.29.91-1ubuntu1 |
Показывать по
4.6 Medium
CVSS2
7.8 High
CVSS3
Связанные уязвимости
The daemon in GDM through 3.29.1 does not properly unexport display objects from its D-Bus interface when they are destroyed, which allows a local attacker to trigger a use-after-free via a specially crafted sequence of D-Bus method calls, resulting in a denial of service or potential code execution.
The daemon in GDM through 3.29.1 does not properly unexport display objects from its D-Bus interface when they are destroyed, which allows a local attacker to trigger a use-after-free via a specially crafted sequence of D-Bus method calls, resulting in a denial of service or potential code execution.
The daemon in GDM through 3.29.1 does not properly unexport display ob ...
4.6 Medium
CVSS2
7.8 High
CVSS3