[CAN-2005-0023] gnome-pty-helper writes arbitrary utmp records
Submitted by Loïc Minier
Link to original bug (#317312)
Description
Hi,
This vulnerability is identified as CAN-2005-0023.
Paul Szabo exposed proof of concept code to record arbitrary DISPLAY strings to the utmp records in Debian bug http://bugs.debian.org/329156. This bug affects vte's code, but was reported against it's GNOME 1 counterpart, libzvt2.
One workaround he suggests is that gnome-pty-helper verifies the DISPLAY is correct, by connecting to it.
Bye,
Version: 0.14.x
Resolution: RESOLVED OBSOLETE