VDB

GCVE-110-MAGEIA-2014-26

GCVE-110-MAGEIA-2014-26
Advisory Published
Vulnetix · Advisory published January 24, 2014
Updated lightdm-gtk-greeter package fixes security vulnerability: lightdm-gtk-greeter uses the lightdm-gobject API incorrectly and does not handle lightdm_greeter_get_authentication_user() returning NULL when the username of the previous authentication is invalid resulting in a NULL pointer dereference in start_authentication(). This constitutes a local denial of service which can be triggered by any unprivileged attacker requiring the intervention of an administrator to restart lightdm (CVE-2014-0979).

Affected Products

VendorProductVersionsPlatforms
Mageiatortoisehg0 (affected), 2.9.2-1.mga4 (unaffected)
Mageialightdm-gtk-greeter0 (affected), 1.3.1-6.1.mga3 (unaffected), 0 (affected), 1.3.1-6.1.mga3 (unaffected)

Browse GCVE Records

73,280 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›