Summary
Ubuntu Update for Linux kernel vulnerabilities USN-1142-1
Solution
Please Install the Updated Packages.
Insight
Henne Vogelsang discovered that under certain PolicyKit configurations, GDM could be made to launch a browser. A local attacker could exploit this to gain access to files with the privileges of the gdm user. PolicyKit is not configured in this manner in Ubuntu by default.
Affected
gdm on Ubuntu 11.04
Severity
Classification
-
CVE CVE-2011-1709 -
CVSS Base Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities