Local User Access Bypass in Debian and Ubuntu Linux X.Org
CVE-2011-4613

Currently unrated

Key Information:

Vendor

Canonical

Status
Ubuntu Linux
Debian Linux
Linux
X Server
Vendor
CVE Published:
5 February 2014

What is CVE-2011-4613?

The X.Org X wrapper in Debian GNU/Linux and Ubuntu Linux fails to adequately authenticate the TTY of users attempting to initiate an X session. This oversight allows a local user to manipulate stdin to link it with a file perceived as the console TTY, thereby bypassing security measures designed to maintain access control. This vulnerability poses a significant risk in environments where local user integrity is paramount, enabling unauthorized access and potential system compromise.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=652249
x_refsource_MISC
http://www.ubuntu.com/usn/USN-1349-1
vendor-advisoryx_refsource_UBUNTU
http://www.debian.org/security/2011/dsa-2364
vendor-advisoryx_refsource_DEBIAN

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.