CVE-2012-1111

lightdm < 1.0.9 - Unauthorized File Descriptor Exposure

Title source: llm
STIX 2.1

Description

lightdm before 1.0.9 does not properly close file descriptors before opening a child process, which allows local users to write to the lightdm log or have other unspecified impact.

References (5)

Core 5
Core References
Mailing List vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2012-03/msg00019.html
Exploit mailing-list x_refsource_mlist
http://seclists.org/oss-sec/2012/q1/566
Exploit mailing-list x_refsource_mlist
http://seclists.org/oss-sec/2012/q1/557

Scores

EPSS 0.0047
EPSS Percentile 37.3%

Details

CWE
CWE-200
Status published
Products (42)
robert_ancell/lightdm 0.0.1
robert_ancell/lightdm 0.0.2
robert_ancell/lightdm 0.0.3
robert_ancell/lightdm 0.0.4
robert_ancell/lightdm 0.1.0
robert_ancell/lightdm 0.1.1
robert_ancell/lightdm 0.1.2
robert_ancell/lightdm 0.2.0
robert_ancell/lightdm 0.2.1
robert_ancell/lightdm 0.2.2
... and 32 more
Published Oct 27, 2014
Tracked Since Feb 18, 2026