This bug was fixed in the package gdm - 2.32.0-0ubuntu15
---------------
gdm (2.32.0-0ubuntu15) natty; urgency=low
* SECURITY UPDATE: race condition allowing privilege escalation
- debian/patches/43_CVE-2011-0727.patch: fix
daemon/gdm-session-worker.c to copy files as session user rather
than root followed by a subsequent chown. (LP: #746053)
- CVE-2011-0727
-- Steve Beattie <[email protected]> Mon, 04 Apr 2011 20:42:03 -0700
** Branch linked: lp:~ubuntu-desktop/gdm/ubuntu
** Changed in: gdm (Ubuntu)
Status: New => Fix Released
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-0727
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/746053
Title:
Fix privilege escalation vulnerability (CVE-2011-0727)
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
