ALT-PU-2015-1937-1
Package xscreensaver updated to version 5.34-alt1 for branch sisyphus in task 152329.
Closed vulnerabilities
Published: 2015-11-10
BDU:2015-12118
Уязвимость операционной системы Ubuntu, позволяющая нарушителю обойти блокировку экрана
Severity: LOW (2.1)
References:
Published: 2015-11-10
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2015-8025
driver/subprocs.c in XScreenSaver before 5.34 does not properly perform an internal consistency check, which allows physically proximate attackers to bypass the lock screen by hot swapping monitors.
Severity: LOW (2.1)
References:
- openSUSE-SU-2015:2032
- openSUSE-SU-2015:2032
- DSA-3438
- DSA-3438
- [oss-security] 20151024 CVE request: xscreensaver aborts when unpluging second monitor cable when asking password
- [oss-security] 20151024 CVE request: xscreensaver aborts when unpluging second monitor cable when asking password
- [oss-security] 20151025 Re: CVE request: xscreensaver aborts when unpluging second monitor cable when asking password
- [oss-security] 20151025 Re: CVE request: xscreensaver aborts when unpluging second monitor cable when asking password
- [oss-security] 20151029 Re: CVE request: xscreensaver aborts when unpluging second monitor cable when asking password
- [oss-security] 20151029 Re: CVE request: xscreensaver aborts when unpluging second monitor cable when asking password
- http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html
- http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html
- 1034052
- 1034052
- USN-2789-1
- USN-2789-1
- https://twitter.com/Thaolia/status/656823859304398848
- https://twitter.com/Thaolia/status/656823859304398848
- https://www.jwz.org/blog/2015/10/xscreensaver-5-34/
- https://www.jwz.org/blog/2015/10/xscreensaver-5-34/