Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2014-0979

The start_authentication function in lightdm-gtk-greeter.c in LightDM GTK+ Greeter before 1.7.1 does not properly handle the return value from the lightdm_greeter_get_authentication_user function, which allows local users to cause a denial of service (NULL pointer dereference) via an empty username.

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2014010...
CONFIRM: https://bugs.launchpad...
CONFIRM: https://bugzilla.novel...
SUSE: openSUSE-SU-2014:0071
SECUNIA: 56211
SECUNIA: 56423
FEDORA: FEDORA-2014-1647
FEDORA: FEDORA-2014-1648
BID: 64679

Launchpad.net

CVE 2014-0979

Related bugs

References