This bug was fixed in the package eterm - 0.9.4.0debian1-2ubuntu1.7.10.1
--------------- eterm (0.9.4.0debian1-2ubuntu1.7.10.1) gutsy-security; urgency=low
* SECURITY UPDATE: + src/startup.c (LP: #216604) - Fix opening the terminal on display :0 if no DISPLAY environment variable is specified to prevent local attackers from hijacking X11 connections in certain environments.
* References + http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1692 + http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=473127
-- Emanuele Gentili <email address hidden> Tue, 22 Apr 2008 23:35:49 +0200
This bug was fixed in the package eterm - 0.9.4.0debian1- 2ubuntu1. 7.10.1
--------------- 0debian1- 2ubuntu1. 7.10.1) gutsy-security; urgency=low
eterm (0.9.4.
* SECURITY UPDATE:
+ src/startup.c (LP: #216604)
- Fix opening the terminal on display :0 if no DISPLAY
environment variable is specified to prevent local
attackers from hijacking X11 connections in certain
environments.
* References www.cve. mitre.org/ cgi-bin/ cvename. cgi?name= CVE-2008- 1692 bugs.debian. org/cgi- bin/bugreport. cgi?bug= 473127
+ http://
+ http://
-- Emanuele Gentili <email address hidden> Tue, 22 Apr 2008 23:35:49 +0200