CVE-2010-0285
Published: 24 February 2010
gnome-screensaver 2.14.3, 2.22.2, 2.27.x, 2.28.0, and 2.28.3, when the X configuration enables the extend screen option, allows physically proximate attackers to bypass screen locking, access an unattended workstation, and view half of the GNOME desktop by attaching an external monitor.
Notes
Author | Note |
---|---|
mdeslaur | code doesn't seem present in 2.22.2, but have not tested. code seems to have been introduced in 2.23.3 |
Priority
Status
Package | Release | Status |
---|---|---|
gnome-screensaver Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
hardy |
Not vulnerable
(code not present)
|
|
intrepid |
Released
(2.24.0-0ubuntu2.1)
|
|
jaunty |
Released
(2.24.0-0ubuntu6.1)
|
|
karmic |
Released
(2.28.0-0ubuntu3.5)
|
|
upstream |
Needs triage
|
|
Patches: upstream: http://git.gnome.org/browse/gnome-screensaver/commit/?id=2f597ea9f1f363277fd4dfc109fa41bbc6225aca |