=====================================================================
                                    CERT-Renater

                         Note d'Information No. 2011/VULN266
_____________________________________________________________________

DATE                      : 30/03/2011

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Systems running GDM version prior to 2.32.1.

======================================================================
http://mail.gnome.org/archives/gdm-list/2011-March/msg00020.html
______________________________________________________________________

The 2.32.1 release is a security bug fix release of the GNOME Display Manager
(GDM) program with the following fixes:

- CVE-2011-0727 - Change to user before copying user files to prevent
local root exploit
- Reorganize Solaris login device permissions code
- Various user manager fixes
- XDMCP ipv6 fixes
-Translation updates

Documentation & Downloading
===========================

Online Documentation - http://www.gnome.org/projects/gdm/
Latest Stable        - http://ftp.gnome.org/pub/GNOME/sources/gdm/2.32/
Latest Unstable      - http://ftp.gnome.org/pub/GNOME/sources/gdm/2.91/
Bug Reporting        - http://bugzilla.gnome.org in the "gdm" category.


======================================================================

           =========================================================
           Les serveurs de référence du CERT-Renater
           http://www.urec.fr/securite
           http://www.cru.fr/securite
           http://www.renater.fr
           =========================================================
           + CERT-RENATER          | tel : 01-53-94-20-44          +
           + 23 - 25 Rue Daviel    | fax : 01-53-94-20-41          +
           + 75013 Paris           | email: certsvp@renater.fr     +
           =========================================================