gdm
Page content
- Author: voroskoi
- Vulnerable: 2.16.0-2
- Unaffected: 2.16.4-1siwenna1
A vulnerability has been reported in the gdmchooser application of the GNOME Display Manager, which can be exploited by malicious, local users to gain escalated privileges. The vulnerability is caused due to a format string error within the “gdm_chooser_add_host()” function in gdm2/gui/gdmchooser.c. This can be exploited to execute arbitrary code with the privileges of the gdmchooser application by entering a specially crafted string when providing a remote host.
- Bug Tracker URL: http://bugs.frugalware.org/task/1539