Debian DLA-935-1 : lxterminal security update
Medium Nessus Plugin ID 100107
SynopsisThe remote Debian host is missing a security update.
DescriptionIt was discovered that there was a local denial of service vulnerability in lxterminal, the terminal emulator for the LXDE desktop environment.
This was caused by an insecure use of temporary files for a socket file.
For Debian 7 'Wheezy', this issue has been fixed in lxterminal version 0.1.11-4+deb7u1.
We recommend that you upgrade your lxterminal packages.
NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpgrade the affected lxterminal, and lxterminal-dbg packages.