[Bug 227295] [NEW] [ldm] [CVE-2008-1293] information disclosure

hk47 Tue, 06 May 2008 05:40:57 -0700

*** This bug is a security vulnerability ***

Public security bug reported:


Binary package hint: ldm

References:
DSA-1561-1 (http://www.debian.org/security/2008/dsa-1561)

Quoting:
"Christian Herzog discovered that within the Linux Terminal Server Project,
it was possible to connect to X on any LTSP client from any host on the
network, making client windows and keystrokes visible to that host."

** Affects: ldm (Ubuntu)
     Importance: Undecided
         Status: New

** Affects: ldm (Debian)
     Importance: Unknown
         Status: Unknown

** Visibility changed to: Public

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2008-1293

** Bug watch added: Debian Bug tracker #469462
   http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=469462

** Also affects: ldm (Debian) via
   http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=469462
   Importance: Unknown
       Status: Unknown

-- 
[ldm] [CVE-2008-1293] information disclosure
https://bugs.launchpad.net/bugs/227295
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 227295] [NEW] [ldm] [CVE-2008-1293] information disclosure

Reply via email to