CVE-2011-1709
Publication date 31 May 2011
Last updated 24 July 2024
Ubuntu priority
GNOME Display Manager (gdm) before 2.32.2, when glib 2.28 is used, enables execution of a web browser with the uid of the gdm account, which allows local users to gain privileges via vectors involving the x-scheme-handler/http MIME type.
Status
Package | Ubuntu Release | Status |
---|---|---|
gdm | 11.04 natty |
Fixed 2.32.1-0ubuntu3.2
|
10.10 maverick |
Not affected
|
|
10.04 LTS lucid |
Not affected
|
|
8.04 LTS hardy | Ignored end of life |
Notes
References
Related Ubuntu Security Notices (USN)
- USN-1142-1
- GDM vulnerability
- 1 June 2011