gnome-screensaver: lock bypass [LWN.net]

Package(s):

gnome-screensaver

CVE #(s):

CVE-2008-0887

Created:

April 2, 2008

Updated:

July 7, 2008

Description:

From the Red Hat advisory: A flaw was found in the way gnome-screensaver verified user passwords. When a system used a remote directory service for login credentials, a local attacker able to cause a network outage could cause gnome-screensaver to crash, unlocking the screen.

Alerts:

Red Hat	RHSA-2008:0197-01	2008-04-02
Red Hat	RHSA-2008:0218-01	2008-04-03
Fedora	FEDORA-2008-2967	2008-04-08
Fedora	FEDORA-2008-3017	2008-04-08
Gentoo	200804-12	2008-04-11
SuSE	SUSE-SR:2008:014	2008-07-04
Mandriva	MDVSA-2008:132	2008-07-04

(Log in to post comments)