USN-4533-1: LTSP Display Manager vulnerabilities
22 September 2020
LTSP Display Manager could be made to escalate user privileges.
- ldm - LTSP display manager
Veeti Veteläinen discovered that the LTSP Display Manager (ldm)
incorrectly handled user logins from unsupported shells. A local attacker
could possibly use this issue to gain root privileges. (CVE-2019-20373)