VulnerableCode Package Details - pkg:alpm/archlinux/gdm@3.38.2.1-1

Search for packages

Package details: pkg:alpm/archlinux/gdm@3.38.2.1-1

Essentials
History (3)

purl	pkg:alpm/archlinux/gdm@3.38.2.1-1

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-3g4p-dnnv-aaap	A flaw was found in GDM in versions prior to 3.38.2.1. A race condition in the handling of session shutdown makes it possible to bypass the lock screen for a user that has autologin enabled, accessing their session without authentication. This is similar to CVE-2017-12164, but requires more difficult conditions to exploit.	CVE-2020-27837

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:47:05.500010+00:00	Arch Linux Importer	Fixing	VCID-3g4p-dnnv-aaap	https://security.archlinux.org/AVG-1380	36.0.0
2024-09-18T02:02:29.056663+00:00	Arch Linux Importer	Fixing	VCID-3g4p-dnnv-aaap	https://security.archlinux.org/AVG-1380	34.0.1
2024-01-03T22:28:29.865274+00:00	Arch Linux Importer	Fixing	VCID-3g4p-dnnv-aaap	https://security.archlinux.org/AVG-1380	34.0.0rc1