Ubuntu Security Notice USN-269-1
11th April, 2006
xscreensaver vulnerability
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 5.04
- Ubuntu 4.10
Details
In some cases, xscreensaver did not properly grab the keyboard when
reading the password for unlocking the screen, so that the password
was typed into the currently active application window.
The only known vulnerable case was when xscreensaver activated while
an rdesktop session was currently active.
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 5.04:
- xscreensaver-gl
- xscreensaver-nognome
- xscreensaver-gnome
- xscreensaver
- Ubuntu 4.10:
- xscreensaver-gl
- xscreensaver-nognome
- xscreensaver-gnome
- xscreensaver
To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.
None