CVE-2007-3381
published 2007-08-07CVE-2007-3381: The GDM daemon in GNOME Display Manager (GDM) before 2.14.13, 2.16.x before 2.16.7, 2.18.x before 2.18.4, and 2.19.x before 2.19.5 does not properly handle…
PriorityP48low1.5CVSS 2.0
AVLACMAuSCNINAP
EPSS
0.33%
24.4th percentile
The GDM daemon in GNOME Display Manager (GDM) before 2.14.13, 2.16.x before 2.16.7, 2.18.x before 2.18.4, and 2.19.x before 2.19.5 does not properly handle NULL return values from the g_strsplit function, which allows local users to cause a denial of service (persistent daemon crash) via a crafted command to the daemon's socket, related to (1) gdm.c and (2) gdmconfig.c in daemon/, and (3) gdmconfig.c and (4) gdmflexiserver.c in gui/.
Affected
35 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| gnome | gdm | <= 2.14.12 | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
| gnome | gdm | — | — |
CVSS provenance
nvdv2.01.5LOWAV:L/AC:M/Au:S/C:N/I:N/A:P
vendor_redhat1.5LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-gfgf-h5fj-26vx: The GDM daemon in GNOME Display Manager (GDM) before 2
ghsa_unreviewed·2022-05-01
CVE-2007-3381 [LOW] CWE-20 GHSA-gfgf-h5fj-26vx: The GDM daemon in GNOME Display Manager (GDM) before 2
The GDM daemon in GNOME Display Manager (GDM) before 2.14.13, 2.16.x before 2.16.7, 2.18.x before 2.18.4, and 2.19.x before 2.19.5 does not properly handle NULL return values from the g_strsplit function, which allows local users to cause a denial of service (persistent daemon crash) via a crafted command to the daemon's socket, related to (1) gdm.c and (2) gdmconfig.c in daemon/, and (3) gdmconfig.c and (4) gdmflexiserver.c in gui/.
Red Hat
Gdm denial of service
vendor_redhat·2007-07-30·CVSS 1.5
CVE-2007-3381 [LOW] Gdm denial of service
Gdm denial of service
The GDM daemon in GNOME Display Manager (GDM) before 2.14.13, 2.16.x before 2.16.7, 2.18.x before 2.18.4, and 2.19.x before 2.19.5 does not properly handle NULL return values from the g_strsplit function, which allows local users to cause a denial of service (persistent daemon crash) via a crafted command to the daemon's socket, related to (1) gdm.c and (2) gdmconfig.c in daemon/, and (3) gdmconfig.c and (4) gdmflexiserver.c in gui/.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2007-3381 Gdm denial of service
bugzilla·2007-07-31·CVSS 1.5
CVE-2007-3381 [LOW] CVE-2007-3381 Gdm denial of service
CVE-2007-3381 Gdm denial of service
+++ This bug was initially created as a clone of CVE-2007-3381 +++
JLANTHEA reported a denial of service flaw in the way that gdm listens on its
unix domain socket. Any local user can crash the locally running X session.
-- Additional comment from [email protected] on 2007-07-10 14:41 EST --
Created gdm tracking bugs for this issue
CVE-2007-3381 Doesn't affect: F7 ()
CVE-2007-3381 Doesn't affect: FC6 ()
CVE-2007-3381 Doesn't affect: Fdevel ()
CVE-2007-3381 Doesn't affect: RHAPS-EL3 ()
CVE-2007-3381 Doesn't affect: RHAPS-EL4 ()
CVE-2007-3381 Doesn't affect: RHDS3 ()
CVE-2007-3381 Doesn't affect: Stacks-v1 ()
CVE-2007-3381 Doesn't affect: rhel-2.1 ()
CVE-2007-3381 Doesn't affect: rhel-3 ()
CVE-2007-3381 Doesn't affect: rhel-4.5.z ()
CVE-2007-3381 Doe
Bugzilla
CVE-2007-3381 Gdm denial of service
bugzilla·2007-07-31·CVSS 1.5
CVE-2007-3381 [LOW] CVE-2007-3381 Gdm denial of service
CVE-2007-3381 Gdm denial of service
+++ This bug was initially created as a clone of CVE-2007-3381 +++
JLANTHEA reported a denial of service flaw in the way that gdm listens on its
unix domain socket. Any local user can crash the locally running X session.
-- Additional comment from [email protected] on 2007-07-10 14:41 EST --
Created gdm tracking bugs for this issue
CVE-2007-3381 Doesn't affect: F7 ()
CVE-2007-3381 Doesn't affect: FC6 ()
CVE-2007-3381 Doesn't affect: Fdevel ()
CVE-2007-3381 Doesn't affect: RHAPS-EL3 ()
CVE-2007-3381 Doesn't affect: RHAPS-EL4 ()
CVE-2007-3381 Doesn't affect: RHDS3 ()
CVE-2007-3381 Doesn't affect: Stacks-v1 ()
CVE-2007-3381 Doesn't affect: rhel-2.1 ()
CVE-2007-3381 Doesn't affect: rhel-3 ()
CVE-2007-3381 Doesn't affect: rhel-4.5.z ()
CVE-2007-3381 Doe
Bugzilla
CVE-2007-3381 Gdm denial of service
bugzilla·2007-07-10·CVSS 1.5
CVE-2007-3381 [LOW] CVE-2007-3381 Gdm denial of service
CVE-2007-3381 Gdm denial of service
JLANTHEA reported a denial of service flaw in the way that gdm listens on its
unix domain socket. Any local user can crash the locally running X session.
Acknowledgements:
Red Hat would like to thank JLANTHEA for reporting this issue.
Discussion:
This has been laked early:
http://svn.gnome.org/viewcvs/gdm2/branches/gnome-2-16/ChangeLog?r1=5100&r2=5099&pathrev=5100
---
This issue has been addressed in following products:
Red Hat Linux Enterprise 5
Via RHSA-2007:0777, https://rhn.redhat.com/errata/RHSA-2007-0777.html
http://ftp.gnome.org/pub/GNOME/sources/gdm/2.14/gdm-2.14.13.newshttp://ftp.gnome.org/pub/GNOME/sources/gdm/2.16/gdm-2.16.7.changeshttp://ftp.gnome.org/pub/GNOME/sources/gdm/2.18/gdm-2.18.4.newshttp://ftp.gnome.org/pub/GNOME/sources/gdm/2.19/gdm-2.19.5.newshttp://secunia.com/advisories/26313http://secunia.com/advisories/26368http://secunia.com/advisories/26520http://secunia.com/advisories/26879http://secunia.com/advisories/26900http://security.gentoo.org/glsa/glsa-200709-11.xmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2007:169http://www.redhat.com/support/errata/RHSA-2007-0777.htmlhttp://www.securityfocus.com/archive/1/475451/30/5550/threadedhttp://www.securityfocus.com/bid/25191http://www.securitytracker.com/id?1018523http://www.vupen.com/english/advisories/2007/2781https://issues.rpath.com/browse/RPL-1599https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10887http://ftp.gnome.org/pub/GNOME/sources/gdm/2.14/gdm-2.14.13.newshttp://ftp.gnome.org/pub/GNOME/sources/gdm/2.16/gdm-2.16.7.changeshttp://ftp.gnome.org/pub/GNOME/sources/gdm/2.18/gdm-2.18.4.newshttp://ftp.gnome.org/pub/GNOME/sources/gdm/2.19/gdm-2.19.5.newshttp://secunia.com/advisories/26313http://secunia.com/advisories/26368http://secunia.com/advisories/26520http://secunia.com/advisories/26879http://secunia.com/advisories/26900http://security.gentoo.org/glsa/glsa-200709-11.xmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2007:169http://www.redhat.com/support/errata/RHSA-2007-0777.htmlhttp://www.securityfocus.com/archive/1/475451/30/5550/threadedhttp://www.securityfocus.com/bid/25191http://www.securitytracker.com/id?1018523http://www.vupen.com/english/advisories/2007/2781https://issues.rpath.com/browse/RPL-1599https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10887
2007-08-07
Published