Unrated severityNVD Advisory· Published Mar 31, 2011· Updated Apr 29, 2026
CVE-2011-0727
CVE-2011-0727
Description
GNOME Display Manager (gdm) 2.x before 2.32.1 allows local users to change the ownership of arbitrary files via a symlink attack on a (1) dmrc or (2) face icon file under /var/cache/gdm/.
Affected products
27cpe:2.3:a:gnome:gdm:2.0:*:*:*:*:*:*:*+ 26 more
- cpe:2.3:a:gnome:gdm:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.3:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.4:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.6:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.8:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.13:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.14:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.15:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.16:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.17:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.18:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.19:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.20:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.21:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.22:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.23:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.24:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.25:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.26:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.27:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.28:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.29:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.30:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.31:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gdm:2.32:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
20- mail.gnome.org/archives/gdm-list/2011-March/msg00020.htmlnvdPatch
- bugzilla.redhat.com/show_bug.cginvdPatch
- secunia.com/advisories/43714nvdVendor Advisory
- secunia.com/advisories/43854nvdVendor Advisory
- www.vupen.com/english/advisories/2011/0786nvdVendor Advisory
- www.vupen.com/english/advisories/2011/0787nvdVendor Advisory
- www.vupen.com/english/advisories/2011/0797nvdVendor Advisory
- ftp.gnome.org/pub/GNOME/sources/gdm/2.32/gdm-2.32.1.newsnvd
- lists.fedoraproject.org/pipermail/package-announce/2011-April/057333.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2011-April/057931.htmlnvd
- secunia.com/advisories/44021nvd
- securitytracker.com/idnvd
- www.debian.org/security/2011/dsa-2205nvd
- www.mandriva.com/security/advisoriesnvd
- www.redhat.com/support/errata/RHSA-2011-0395.htmlnvd
- www.securityfocus.com/bid/47063nvd
- www.ubuntu.com/usn/USN-1099-1nvd
- www.vupen.com/english/advisories/2011/0847nvd
- www.vupen.com/english/advisories/2011/0911nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/66377nvd
News mentions
0No linked articles in our index yet.