vicious-extensions/ve-misc.c in GNOME Display Manager (gdm) 2.20.x before 2.20.11, when GDM debug is enabled, logs the user password when it contains invalid UTF8 encoded characters, which might allow local users to gain privileges by reading the information from syslog logs.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: oracle
Published: 2012-12-21T02:00:00
Updated: 2017-08-16T14:57:01
Reserved: 2010-06-21T00:00:00
Link: CVE-2010-2387
JSON object: View
NVD Information
Status : Modified
Published: 2012-12-21T05:46:13.853
Modified: 2017-08-17T01:32:43.167
Link: CVE-2010-2387
JSON object: View
Redhat Information
No data.
CWE