Ubuntu
eterm package

  1. Bug #216604
  2. Comment #19

Comment 19 for bug 216604

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package eterm - 0.9.4.0debian1-2ubuntu1.7.10.1

---------------
eterm (0.9.4.0debian1-2ubuntu1.7.10.1) gutsy-security; urgency=low

  * SECURITY UPDATE:
   + src/startup.c (LP: #216604)
    - Fix opening the terminal on display :0 if no DISPLAY
      environment variable is specified to prevent local
      attackers from hijacking X11 connections in certain
      environments.

  * References
   + http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1692
   + http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=473127

 -- Emanuele Gentili <email address hidden> Tue, 22 Apr 2008 23:35:49 +0200