LightDM through 1.22.0, when systemd is used in Ubuntu 16.10 and 17.x, allows physically proximate attackers to bypass intended AppArmor restrictions and visit the home directories of arbitrary users by establishing a guest session.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/98554 | Third Party Advisory VDB Entry |
https://launchpad.net/bugs/1663157 | Issue Tracking Patch Vendor Advisory |
https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-8900.html | Patch Vendor Advisory |
https://www.ubuntu.com/usn/usn-3285-1/ | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2017-05-12T06:54:00
Updated: 2017-05-24T09:57:01
Reserved: 2017-05-11T00:00:00
Link: CVE-2017-8900
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-05-12T07:29:00.233
Modified: 2019-10-03T00:03:26.223
Link: CVE-2017-8900
JSON object: View
Redhat Information
No data.
CWE