Bug#569667: CVE-2009-4641: allows physically proximate attackers to access an unattended workstation
Giuseppe Iuculano
iuculano at debian.org
Sat Feb 13 10:04:04 UTC 2010
Package: gnome-screensaver
Version: 2.28.2-1
Severity: serious
Tags: security
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for gnome-screensaver.
CVE-2009-4641[0]:
| gnome-screensaver 2.28.0 does not resume adherence to its activation
| settings after an inhibiting application becomes unavailable on the
| session bus, which allows physically proximate attackers to access an
| unattended workstation on which screen locking had been intended.
If you fix the vulnerability please also make sure to include the
CVE id in your changelog entry.
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4641
http://security-tracker.debian.org/tracker/CVE-2009-4641
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAkt2eRIACgkQNxpp46476aqbhACeNDF0BLFItAXsh7rk6EA/2RxX
M7oAn2XrICAIfQf07JUjnWMUM5lou11F
=HlQu
-----END PGP SIGNATURE-----
More information about the pkg-gnome-maintainers
mailing list