Denial of Service Vulnerability in GNOME Display Manager
CVE-2007-3381

Currently unrated

Key Information:

Vendor: Gnome
Status: Gdm
Vendor: CVE Published:; 7 August 2007

What is CVE-2007-3381?

The GNOME Display Manager (GDM) is susceptible to a Denial of Service vulnerability due to improper handling of NULL return values from the g_strsplit function. This flaw allows local users to exploit a crafted command sent to the daemon’s socket, potentially resulting in persistent daemon crashes. The affected versions include GDM prior to 2.14.13, various versions in the 2.16, 2.18, and 2.19 series. It is crucial for users to update to the latest versions to mitigate this vulnerability.

References

http://security.gentoo.org/glsa/glsa-200709-11.xml

vendor-advisoryx_refsource_GENTOO

http://ftp.gnome.org/pub/GNOME/sources/gdm/2.16/gdm-2.16....

x_refsource_CONFIRM

http://secunia.com/advisories/26313

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 7, 2007
Vulnerability Reserved
Jun 25, 2007

JSON

Gnome

What is CVE-2007-3381?

References

Timeline