CVE-2018-14424 — Use After Free in Display Manager

CWE-416 — Use After Free9 documents8 sources

Severity

7.8HIGHNVD

EPSS

0.0%

top 84.86%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Gnome Display Manager

Timeline

PublishedAug 14

Latest updateMay 14

Description

The daemon in GDM through 3.29.1 does not properly unexport display objects from its D-Bus interface when they are destroyed, which allows a local attacker to trigger a use-after-free via a specially crafted sequence of D-Bus method calls, resulting in a denial of service or potential code execution.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

▶NVDgnome/gnome_display_manager3.29.1

🔴Vulnerability Details

GHSA

GHSA-c4j5-hwcp-h2qq: The daemon in GDM through 3↗2022-05-14

▶

OSV

CVE-2018-14424: The daemon in GDM through 3↗2018-08-14

▶

CVEList

CVE-2018-14424: The daemon in GDM through 3↗2018-08-14

▶

📋Vendor Advisories

Red Hat

gdm: use-after-free in the GDM daemon↗2018-08-13

▶

Ubuntu

GDM vulnerability↗2018-08-13

▶

Debian

CVE-2018-14424: gdm3 - The daemon in GDM through 3.29.1 does not properly unexport display objects from...↗2018

▶

💬Community

Bugzilla

CVE-2018-14424 gdm: use-after-free in the GDM daemon [fedora-all]↗2018-08-13

▶

Bugzilla

CVE-2018-14424 gdm: use-after-free in the GDM daemon↗2018-07-20

▶