Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2012-0959

Remote Login Service (RLS) 1.0.0 does not properly clear account information when switching users, which might allow physically proximate users to obtain login credentials.

Related bugs and status

CVE-2012-0959 (Candidate) is related to these bugs:

Bug #1070896: Remote Login Service stores servers from previous user

		In	Importance	Status
1070896	Remote Login Service stores servers from previous user	Remote Login Service	High	Fix Released
1070896	Remote Login Service stores servers from previous user	remote-login-service (Ubuntu)	High	Fix Released
1070896	Remote Login Service stores servers from previous user	remote-login-service (Ubuntu Quantal)	High	Fix Released
1070896	Remote Login Service stores servers from previous user	remote-login-service (Ubuntu Raring)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://bugs.launchpad...
UBUNTU: USN-1624-1
XF: remote-login-info-disc...