gnome-pty-helper in GNOME libzvt2 and libvte4 allows local users to spoof the logon hostname via a modified DISPLAY environment variable. NOTE: the severity of this issue has been disputed.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnome libvte4 |
||
gnome libzvt2 1.4.2.19 |