Slackware 9.0 / 9.1 / current : gdm security update (SSA:2003-300-01)

low Nessus Plugin ID 18732

Synopsis

The remote Slackware host is missing a security update.

Description

GDM is the GNOME Display Manager, and is commonly used to provide a graphical login for local users. Upgraded gdm packages are available for Slackware 9.0, 9.1, and -current. These fix two vulnerabilities which could allow a local user to crash or freeze gdm, preventing access to the machine until a reboot. Sites using gdm should upgrade, especially sites such as computer labs that use gdm to provide public or semi-public access.

Solution

Update the affected gdm package.

See Also

http://www.nessus.org/u?6cbd1a82

Plugin Details

Severity: Low

ID: 18732

File Name: Slackware_SSA_2003-300-01.nasl

Version: 1.16

Type: local

Published: 7/13/2005

Updated: 1/14/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Low

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: p-cpe:/a:slackware:slackware_linux:gdm, cpe:/o:slackware:slackware_linux, cpe:/o:slackware:slackware_linux:9.0, cpe:/o:slackware:slackware_linux:9.1

Required KB Items: Host/local_checks_enabled, Host/Slackware/release, Host/Slackware/packages

Patch Publication Date: 10/27/2003

Reference Information

CVE: CVE-2003-0793, CVE-2003-0794

SSA: 2003-300-01