Gentoo Security Advisory GLSA 200606-14 (gdm) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200606-14.

Solution

All GDM users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=gnome-base/gdm-2.8.0.8' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200606-14 http://bugs.gentoo.org/show_bug.cgi?id=135027 http://bugzilla.gnome.org/show_bug.cgi?id=343476 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2006-2452

Insight

An authentication error in GDM could allow users to gain elevated privileges.

Severity

Classification

CVE CVE-2006-2452

CVSS	Base Score: 3.7 AV:L/AC:H/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Gentoo Security Advisory GLSA 200709-04 (po4a)
Gentoo Security Advisory GLSA 200906-04 (mod_jk)
Gentoo Security Advisory GLSA 200409-32 (getmail)
Gentoo Security Advisory GLSA 200701-17 (libgtop)
Gentoo Security Advisory GLSA 200602-14 (noweb)

Take action and discover your vulnerabilities