Ubuntu Security Notice (C) 2011-2014 Canonical, Inc. / NASL script (C) 2011-2014 Tenable Network Security, Inc.
The remote Ubuntu host is missing one or more security-related patches.
It was discovered that Light Display Manager incorrectly handled
privileges when reading .dmrc files. A local attacker could exploit
this issue to read arbitrary configuration files, bypassing intended
It was discovered that Light Display Manager incorrectly handled links
when adjusting permissions on .Xauthority files. A local attacker
could exploit this issue to access arbitrary files, and possibly
obtain increased privileges. In the default Ubuntu installation, this
would be prevented by the Yama link restrictions. (CVE-2011-4105).
Update the affected liblightdm-gobject-1-0, liblightdm-qt-1-0 and / or
Risk factor :
Low / CVSS Base Score : 1.9
CVSS Temporal Score : 1.6
Public Exploit Available : true