vicious-extensions/ve-misc.c in GNOME Display Manager (gdm) 2.20.x before 2.20.11, when GDM debug is enabled, logs the user password when it contains invalid UTF8 encoded characters, which might allow local users to gain privileges by reading the information from syslog logs.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2012-12-21T02:00:00
Updated: 2024-08-07T02:32:16.591Z
Reserved: 2010-06-21T00:00:00
Link: CVE-2010-2387
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-12-21T05:46:13.853
Modified: 2024-11-21T01:16:33.050
Link: CVE-2010-2387
Redhat