CVE-2020-16125
Description
gdm3 versions before 3.36.2 or 3.38.2 would start gnome-initial-setup if gdm3 cant contact the accountservice service via dbus in a timely manner; on Ubuntu (and potentially derivatives) this could be be chained with an additional issue that could allow a local user to create a new privileged account.
Risk Information
Base Score
6.8
MODERATE
Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
22.102
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| GNOME Display Manager (USN-4614-1) gdm3_3.38.1-2ubuntu1.1_amd64.deb | Linux |
| GNOME Display Manager (USN-4614-1) gdm3_3.28.3-0ubuntu18.04.6_i386.deb | Linux |
| GNOME Display Manager (USN-4614-1) gdm3_3.28.3-0ubuntu18.04.6_amd64.deb | Linux |
| GNOME Display Manager (USN-4614-1) gdm3_3.36.3-0ubuntu0.20.04.2_amd64.deb | Linux |
| SUSE-SU-2020:3614-1(SUSE Linux Enterprise Server 12-SP5 ) gdm-3.10.0.1-54.17.2.x86_64.rpm | Linux |
| SUSE-SU-2020:3614-1(SUSE Linux Enterprise Server 12-SP5 ) gdm-debuginfo-3.10.0.1-54.17.2.x86_64.rpm | Linux |
| SUSE-SU-2020:3614-1(SUSE Linux Enterprise Server 12-SP5 ) gdm-debugsource-3.10.0.1-54.17.2.x86_64.rpm | Linux |
| SUSE-SU-2020:3614-1(SUSE Linux Enterprise Server 12-SP5 ) gdm-lang-3.10.0.1-54.17.2.noarch.rpm | Linux |
| SUSE-SU-2020:3614-1(SUSE Linux Enterprise Server 12-SP5 ) gdmflexiserver-3.10.0.1-54.17.2.noarch.rpm | Linux |
| SUSE-SU-2020:3614-1(SUSE Linux Enterprise Server 12-SP5 ) libgdm1-3.10.0.1-54.17.2.x86_64.rpm | Linux |
| SUSE-SU-2020:3614-1(SUSE Linux Enterprise Server 12-SP5 ) libgdm1-debuginfo-3.10.0.1-54.17.2.x86_64.rpm | Linux |
| SUSE-SU-2020:3614-1(SUSE Linux Enterprise Server 12-SP5 ) typelib-1_0-Gdm-1_0-3.10.0.1-54.17.2.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gjs-1.56.2-5.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gjs-1.56.2-5.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gtk2-2.24.32-5.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gtk2-2.24.32-5.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gvfs-1.36.2-11.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) atkmm-2.24.2-7.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) atkmm-2.24.2-7.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gamin-0.1.10-32.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gamin-0.1.10-32.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) woff2-1.0.2-5.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) woff2-1.0.2-5.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) cairomm-1.12.0-8.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) cairomm-1.12.0-8.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gtkmm24-2.24.5-6.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gtkmm24-2.24.5-6.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gtkmm30-3.22.2-3.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gtkmm30-3.22.2-3.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) pangomm-2.40.1-6.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) pangomm-2.40.1-6.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) enchant2-2.2.3-3.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) enchant2-2.2.3-3.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) geoclue2-2.5.5-2.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) geoclue2-2.5.5-2.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) glibmm24-2.56.0-2.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) glibmm24-2.56.0-2.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gvfs-afc-1.36.2-11.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gvfs-afp-1.36.2-11.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gvfs-goa-1.36.2-11.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gvfs-mtp-1.36.2-11.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gvfs-smb-1.36.2-11.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) nautilus-3.28.1-15.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gvfs-fuse-1.36.2-11.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) libdazzle-3.28.5-2.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) libdazzle-3.28.5-2.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) libvisual-0.4.0-25.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) libvisual-0.4.0-25.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gtk2-devel-2.24.32-5.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gtk2-devel-2.24.32-5.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gvfs-devel-1.36.2-11.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gvfs-devel-1.36.2-11.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) libepubgen-0.1.0-3.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) libepubgen-0.1.0-3.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) soundtouch-2.0.0-3.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) soundtouch-2.0.0-3.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) dleyna-core-0.6.0-3.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) dleyna-core-0.6.0-3.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gnome-boxes-3.36.5-8.el8.rocky.0.1.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gvfs-client-1.36.2-11.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gvfs-client-1.36.2-11.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) libsigc++20-2.10.0-6.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) libsigc++20-2.10.0-6.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) OpenEXR-libs-2.2.0-12.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) OpenEXR-libs-2.2.0-12.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) geocode-glib-3.26.0-3.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) geocode-glib-3.26.0-3.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gnome-photos-3.28.1-4.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gvfs-archive-1.36.2-11.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gvfs-gphoto2-1.36.2-11.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) dleyna-server-0.6.0-3.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) geoclue2-libs-2.5.5-2.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) geoclue2-libs-2.5.5-2.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) geoclue2-demos-2.5.5-2.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gnome-terminal-3.28.3-3.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gtk2-immodules-2.24.32-5.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gtk2-immodules-2.24.32-5.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gtk2-devel-docs-2.24.32-5.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gtk2-immodule-xim-2.24.32-5.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gtk2-immodule-xim-2.24.32-5.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) chrome-gnome-shell-10.1-7.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) geocode-glib-devel-3.26.0-3.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) geocode-glib-devel-3.26.0-3.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gnome-photos-tests-3.28.1-4.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) nautilus-extensions-3.28.1-15.el8.i686.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) nautilus-extensions-3.28.1-15.el8.x86_64.rpm | Linux |
| GNOME security, bug fix, and enhancement update (RLSA-2021:1586) gnome-terminal-nautilus-3.28.3-3.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update pangomm-2.40.1-6.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update pangomm-2.40.1-6.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update libepubgen-0.1.0-3.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update libepubgen-0.1.0-3.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update woff2-1.0.2-5.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update woff2-1.0.2-5.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update libsigc++20-2.10.0-6.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update libsigc++20-2.10.0-6.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update libvisual-0.4.0-25.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update libvisual-0.4.0-25.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update enchant2-2.2.3-3.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update enchant2-2.2.3-3.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update geoclue2-2.5.5-2.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update geoclue2-2.5.5-2.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update geoclue2-demos-2.5.5-2.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update geoclue2-libs-2.5.5-2.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update geoclue2-libs-2.5.5-2.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update geocode-glib-3.26.0-3.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update geocode-glib-3.26.0-3.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update geocode-glib-devel-3.26.0-3.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update geocode-glib-devel-3.26.0-3.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update OpenEXR-libs-2.2.0-12.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update OpenEXR-libs-2.2.0-12.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update atkmm-2.24.2-7.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update atkmm-2.24.2-7.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update cairomm-1.12.0-8.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update cairomm-1.12.0-8.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update dleyna-core-0.6.0-3.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update dleyna-core-0.6.0-3.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update dleyna-server-0.6.0-3.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update soundtouch-2.0.0-3.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update soundtouch-2.0.0-3.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update glibmm24-2.56.0-2.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update glibmm24-2.56.0-2.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gnome-boxes-3.36.5-8.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gnome-photos-3.28.1-4.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gnome-photos-tests-3.28.1-4.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gtk2-2.24.32-5.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gtk2-2.24.32-5.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gtk2-devel-2.24.32-5.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gtk2-devel-2.24.32-5.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gtk2-devel-docs-2.24.32-5.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gtk2-immodule-xim-2.24.32-5.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gtk2-immodule-xim-2.24.32-5.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gtk2-immodules-2.24.32-5.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gtk2-immodules-2.24.32-5.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gtkmm24-2.24.5-6.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gtkmm24-2.24.5-6.el8.x86_64.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gtkmm30-3.22.2-3.el8.i686.rpm | Linux |
| Moderate: GNOME security, bug fix, and enhancement update gtkmm30-3.22.2-3.el8.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234