[Security] KDM Password-less login vulnerability
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
kdebase (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
Dapper |
Fix Released
|
High
|
Kees Cook | ||
Edgy |
Fix Released
|
High
|
Kees Cook | ||
Feisty |
Fix Released
|
High
|
Kees Cook | ||
Gutsy |
Fix Released
|
High
|
Unassigned |
Bug Description
Binary package hint: kdebase
KDE Security Advisory: KDM passwordless login vulnerability
Original Release Date: 2007-09-19
URL: http://
0. References
1. Systems affected:
KDM as shipped with KDE 3.3.0 up to including 3.5.7. KDE 3.2.x and
older and newer versions than KDE 3.5.7 are not affected.
2. Overview:
KDM can be tricked into performing a password-less login even for
accounts with a password set under certain circumstances, namely
autologin to be configured and "shutdown with password" enabled.
This vulnerability was discovered and reported by Kees Huijgen.
3. Impact:
KDM might allow a normal user to login as another user or even
root without properly supplying login credentials.
4. Solution:
Source code patches have been made available which fix these
for information about how to obtain updated binary packages.
5. Patch:
A patch for KDE 3.5.0 - KDE 3.5.7 is available from
ftp://ftp.
A patch for KDE 3.3.0 - KDE 3.4.2 is available from
ftp://ftp.
Affects Dapper through Gutsy - I am working on debdiffs now for Dapper through Feisty. Gutsy update will be done normally seeing as there will be other updates with it.