SUSE-SU-2018:2771-1

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2018-14424

Published: 20 Sept 2018, 09:47

Last modified:04 Feb 2026, 04:39

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

20 Sept 2018, 09:47

Published

Vulnerability first disclosed

04 Feb 2026, 04:39

Last Modified

Vulnerability information updated

Description

Security update for gdm This update for gdm provides the following fixes: This security issue was fixed: - CVE-2018-14424: The daemon in GDM did not properly unexport display objects from its D-Bus interface when they are destroyed, which allowed a local attacker to trigger a use-after-free via a specially crafted sequence of D-Bus method calls, resulting in a denial of service or potential code execution (bsc#1103737) These non-security issues were fixed: - Enable pam_keyinit module (bsc#1081947) - Fix a build race in SLE (bsc#1103093)

Affected Systems

suse•gdm&distro=SUSE Linux Enterprise Module for Desktop Applications 15
< 3.26.2.1-13.9.1

SUSE-SU-2018:2771-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (5)