Updated GDM packages are available which correct a bug allowing local users
to read any text files on the system, and a denial of service issue if
XDMCP is enabled.
GDM is the GNOME Display Manager for X.
Versions of GDM prior to 2.4.1.6 contain a bug where GDM will run as root
when examining the ~/.xsession-errors file when using the "examine session
errors" feature, allowing local users the ability to read any text file
on the system by creating a symlink. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CAN-2003-0547 to
this issue.
Red Hat Linux 8.0 and 9 are vulnerable to this issue. Versions of GDM in
earlier releases did not have the "examine session errors" feature and
therefore are not vulnerable to this issue.
Also addressed by these erratum packages are two problems in the X Display
Manager Control Protocol (XDMCP) which allow a denial of service attack
(DoS) by crashing the gdm daemon. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the names CAN-2003-0548 and
CAN-2003-0549 to these issues.
This attack is only possible if XDMCP is enabled. XDMCP is not enabled by
default in Red Hat Linux distributions, and as documented XDMCP should only
ever be run on trusted networks.
Users of GDM are advised to upgrade to these erratum packages which disable
the "examine session errors" feature and contain backported security fixes
for the XDMCP issues.
| Red Hat Linux 7.1 |
|
| SRPMS: |
ftp://updates.redhat.com/7.1/en/os/SRPMS/gdm-2.0beta2-46.src.rpm
Missing file |
9704d602c1d7101b95ca80f09d115cf4 |
| |
| IA-32: |
ftp://updates.redhat.com/7.1/en/os/i386/gdm-2.0beta2-46.i386.rpm
Missing file |
1badaf70349be1f21e4b4a990835a247 |
| |
| Red Hat Linux 7.1 for iSeries |
|
| SRPMS: |
ftp://updates.redhat.com/7.1/en/os/iSeries/SRPMS/gdm-2.0beta2-46.src.rpm
Missing file |
9704d602c1d7101b95ca80f09d115cf4 |
| |
| iSeries: |
ftp://updates.redhat.com/7.1/en/os/iSeries/ppc/gdm-2.0beta2-46.ppc.rpm
Missing file |
c4d56f8b41f1a006c575dd7c5fdbad03 |
| |
| Red Hat Linux 7.1 for pSeries |
|
| SRPMS: |
ftp://updates.redhat.com/7.1/en/os/pSeries/SRPMS/gdm-2.0beta2-46.src.rpm
Missing file |
9704d602c1d7101b95ca80f09d115cf4 |
| |
| pSeries: |
ftp://updates.redhat.com/7.1/en/os/pSeries/ppc/gdm-2.0beta2-46.ppc.rpm
Missing file |
c4d56f8b41f1a006c575dd7c5fdbad03 |
| |
| Red Hat Linux 7.2 |
|
| SRPMS: |
ftp://updates.redhat.com/7.2/en/os/SRPMS/gdm-2.2.3.1-21.src.rpm
Missing file |
380aa52d404a7e1a5ad64e94ced8a938 |
| |
| IA-32: |
ftp://updates.redhat.com/7.2/en/os/i386/gdm-2.2.3.1-21.i386.rpm
Missing file |
abeb24df46ba93d175819a9222f86071 |
| |
| IA-64: |
ftp://updates.redhat.com/7.2/en/os/ia64/gdm-2.2.3.1-21.ia64.rpm
Missing file |
987175704054c3852c3275d4ce8155c2 |
| |
| Red Hat Linux 7.3 |
|
| SRPMS: |
ftp://updates.redhat.com/7.3/en/os/SRPMS/gdm-2.2.3.1-23.src.rpm
Missing file |
9c6defce518879748d5e335e5ff54d4f |
| |
| IA-32: |
ftp://updates.redhat.com/7.3/en/os/i386/gdm-2.2.3.1-23.i386.rpm
Missing file |
a8b30c05951f1d88f0f374b84772be16 |
| |
| Red Hat Linux 8.0 |
|
| SRPMS: |
ftp://updates.redhat.com/8.0/en/os/SRPMS/gdm-2.4.0.7-14.src.rpm
Missing file |
3085c2df6e5215d23f2f0458cccaa578 |
| |
| IA-32: |
ftp://updates.redhat.com/8.0/en/os/i386/gdm-2.4.0.7-14.i386.rpm
Missing file |
22311861baaec59b7c32b3258f6f40b1 |
| |
| Red Hat Linux 9 |
|
| SRPMS: |
ftp://updates.redhat.com/9/en/os/SRPMS/gdm-2.4.1.3-5.1.src.rpm
Missing file |
8df8308fc16b3a2c8fbaf1fd99142274 |
| |
| IA-32: |
ftp://updates.redhat.com/9/en/os/i386/gdm-2.4.1.3-5.1.i386.rpm
Missing file |
64eea2519454422dba6f451573e0c3e3 |
| |
GDM allows local user to read any file.