The start_authentication function in lightdm-gtk-greeter.c in LightDM GTK+ Greeter prior to 1.7.1 does not properly handle the return value from the lightdm_greeter_get_authentication_user function, which allows local users to cause a denial of service (NULL pointer dereference) via an empty username.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
opensuse opensuse 12.2 |
||
opensuse opensuse 13.1 |
||
opensuse opensuse 12.3 |
||
lightdm gtk\\+ greeter project lightdm gtk\\+ greeter 1.5.2 |
||
lightdm gtk\\+ greeter project lightdm gtk\\+ greeter 1.5.1 |
||
lightdm gtk\\+ greeter project lightdm gtk\\+ greeter 1.1.3 |
||
lightdm gtk\\+ greeter project lightdm gtk\\+ greeter 1.1.2 |
||
lightdm gtk\\+ greeter project lightdm gtk\\+ greeter |
||
lightdm gtk\\+ greeter project lightdm gtk\\+ greeter 1.3.0 |
||
lightdm gtk\\+ greeter project lightdm gtk\\+ greeter 1.1.6 |
||
lightdm gtk\\+ greeter project lightdm gtk\\+ greeter 1.6.1 |
||
lightdm gtk\\+ greeter project lightdm gtk\\+ greeter 1.6.0 |
||
lightdm gtk\\+ greeter project lightdm gtk\\+ greeter 1.1.5 |
||
lightdm gtk\\+ greeter project lightdm gtk\\+ greeter 1.1.4 |
||
lightdm gtk\\+ greeter project lightdm gtk\\+ greeter 1.5.0 |
||
lightdm gtk\\+ greeter project lightdm gtk\\+ greeter 1.3.1 |
||
lightdm gtk\\+ greeter project lightdm gtk\\+ greeter 1.1.1 |
Vulmon