Launchpad CVE tracker

CVE 2005-0023

gnome-pty-helper in GNOME libzvt2 and libvte4 allows local users to spoof the logon hostname via a modified DISPLAY environment variable. NOTE: the severity of this issue has been disputed.

Related bugs and status

CVE-2005-0023 (Candidate) is related to these bugs:

Bug #22052: [CVE-2005-0023] /usr/sbin/gnome-pty-helper: writes arbitrary utmp records

		In	Importance	Status
22052	[CVE-2005-0023] /usr/sbin/gnome-pty-helper: writes arbitrary utmp records	vte (Ubuntu)	Medium	Triaged
22052	[CVE-2005-0023] /usr/sbin/gnome-pty-helper: writes arbitrary utmp records	vte (Debian)	Unknown	Confirmed
22052	[CVE-2005-0023] /usr/sbin/gnome-pty-helper: writes arbitrary utmp records	Gnome Virtual Terminal Emulator	High	Expired
22052	[CVE-2005-0023] /usr/sbin/gnome-pty-helper: writes arbitrary utmp records	libzvt (Ubuntu)	Low	Won't Fix
22052	[CVE-2005-0023] /usr/sbin/gnome-pty-helper: writes arbitrary utmp records	libzvt (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2005-0023

References