CVE 2018-14424
The daemon in GDM through 3.29.1 does not properly unexport display objects from its D-Bus interface when they are destroyed, which allows a local attacker to trigger a use-after-free via a specially crafted sequence of D-Bus method calls, resulting in a denial of service or potential code execution.
Related bugs and status
CVE-2018-14424 (Candidate) is related to these bugs:
Bug #1778011: SRU: PRIME Power Saving mode draws too much power
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1778011 | SRU: PRIME Power Saving mode draws too much power | nvidia-prime (Ubuntu) | High | Fix Released | ||
| 1778011 | SRU: PRIME Power Saving mode draws too much power | nvidia-prime (Ubuntu Bionic) | High | Fix Released | ||
| 1778011 | SRU: PRIME Power Saving mode draws too much power | ubuntu-drivers-common (Ubuntu) | High | Fix Released | ||
| 1778011 | SRU: PRIME Power Saving mode draws too much power | ubuntu-drivers-common (Ubuntu Bionic) | High | Fix Released | ||
| 1778011 | SRU: PRIME Power Saving mode draws too much power | gdm3 (Ubuntu) | High | Fix Released | ||
| 1778011 | SRU: PRIME Power Saving mode draws too much power | gdm3 (Ubuntu Bionic) | High | Fix Released | ||
| 1778011 | SRU: PRIME Power Saving mode draws too much power | nvidia-graphics-drivers-390 (Ubuntu) | High | Fix Released | ||
| 1778011 | SRU: PRIME Power Saving mode draws too much power | nvidia-graphics-drivers-390 (Ubuntu Bionic) | High | Fix Released | ||
| 1778011 | SRU: PRIME Power Saving mode draws too much power | nvidia-settings (Ubuntu) | High | Fix Released | ||
| 1778011 | SRU: PRIME Power Saving mode draws too much power | nvidia-settings (Ubuntu Bionic) | High | Fix Released | ||
| 1778011 | SRU: PRIME Power Saving mode draws too much power | HWE Next | Undecided | Fix Released | ||
| 1778011 | SRU: PRIME Power Saving mode draws too much power | sddm (Ubuntu) | Undecided | Confirmed | ||
| 1778011 | SRU: PRIME Power Saving mode draws too much power | sddm (Ubuntu Bionic) | Undecided | Confirmed | ||
Bug #1782152: GDM blocks SIGUSR1 used in PAM scripts
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1782152 | GDM blocks SIGUSR1 used in PAM scripts | gdm3 (Ubuntu) | Medium | Fix Released | ||
| 1782152 | GDM blocks SIGUSR1 used in PAM scripts | gdm3 (Ubuntu Bionic) | Medium | Fix Released | ||
| 1782152 | GDM blocks SIGUSR1 used in PAM scripts | gdm3 (Ubuntu Cosmic) | Medium | Fix Released | ||
| 1782152 | GDM blocks SIGUSR1 used in PAM scripts | gdm3 (Ubuntu Xenial) | Medium | Fix Released | ||
| 1782152 | GDM blocks SIGUSR1 used in PAM scripts | gdm3 (Debian) | Unknown | Fix Released | ||
Bug #1786933: New upstream release 3.28.x
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1786933 | New upstream release 3.28.x | gdm3 (Ubuntu) | Undecided | Fix Released | ||
| 1786933 | New upstream release 3.28.x | gdm3 (Ubuntu Bionic) | Undecided | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
