[CAN-2005-0023] /usr/sbin/gnome-pty-helper: writes arbitrary utmp records
Bug #22887 reported by
Debian Bug Importer
This bug report is a duplicate of:
Bug #22052: [CVE-2005-0023] /usr/sbin/gnome-pty-helper: writes arbitrary utmp records.
Edit
Remove
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libzvt (Ubuntu) |
Won't Fix
|
Low
|
Unassigned |
Bug Description
Automatically imported from Debian bug report #330907 http://
http://
Changed in vte: | |
status: | Unconfirmed → Confirmed |
Changed in vte: | |
status: | Unconfirmed → Confirmed |
Changed in vte: | |
assignee: | pitti → nobody |
Changed in vte (Ubuntu): | |
importance: | Medium → Low |
Changed in vte (Ubuntu): | |
status: | Confirmed → Triaged |
Changed in vte: | |
importance: | Unknown → High |
Changed in vte (Ubuntu): | |
status: | Incomplete → Triaged |
Changed in vte: | |
importance: | High → Undecided |
status: | Confirmed → New |
importance: | Undecided → Unknown |
status: | New → Unknown |
Changed in vte: | |
importance: | Unknown → High |
status: | Unknown → Confirmed |
information type: | Public → Public Security |
affects: | vte (Ubuntu) → libzvt (Ubuntu) |
Changed in vte (Debian): | |
status: | Confirmed → Unknown |
affects: | vte → ubuntu |
no longer affects: | ubuntu |
affects: | vte (Debian) → ubuntu |
Changed in ubuntu: | |
importance: | Unknown → Undecided |
status: | Unknown → New |
no longer affects: | ubuntu |
To post a comment you must log in.
On Tue, Sep 20, 2005 at 09:01:20AM +1000, Paul Szabo wrote: gnome-pty- helper
> Package: libzvt2
> Version: 1.4.2-19
> Severity: critical
> File: /usr/sbin/
> Justification: root security hole
> gnome-pty-helper can be made to write utmp/wtmp records with arbitrary
> DISPLAY (host) settings. I am not sure if it can be tricked into erasing
> existing records.
Why is this filed at severity: critical? What is the attack vector here
which permits root privilege escalation?
-- www.debian. org/
Steve Langasek Give me a lever long enough and a Free OS
Debian Developer to set it on, and I can move the world.
<email address hidden> http://