CVE-2015-8316

Name of the Vulnerable Software and Affected Versions LightDM versions 1.14.3, 1.16.x through 1.16.5

Description The issue is related to an array index error in LightDM when the XDMCP server is enabled, allowing remote attackers to cause a denial of service by crashing the process. This can be achieved via an XDMCP request packet with no address.

Recommendations For LightDM version 1.14.3, consider upgrading to a version later than 1.14.3. For LightDM versions 1.16.x through 1.16.5, upgrade to version 1.16.6 or later to resolve the issue. As a temporary workaround, consider disabling the XDMCP server until a patch is available.