Bug#569667: CVE-2009-4641: allows physically proximate attackers to access an unattended workstation
Emilio Pozuelo Monfort
pochu at debian.org
Mon Feb 15 18:09:18 UTC 2010
forcemerge 560049 569667
thanks
On 13/02/10 11:04, Giuseppe Iuculano wrote:
> CVE-2009-4641[0]:
> | gnome-screensaver 2.28.0 does not resume adherence to its activation
> | settings after an inhibiting application becomes unavailable on the
> | session bus, which allows physically proximate attackers to access an
> | unattended workstation on which screen locking had been intended.
>
> If you fix the vulnerability please also make sure to include the
> CVE id in your changelog entry.
This is already fixed in unstable, though it doesn't have the CVE in the
changelog entry (we fixed it before the CVE was published).
Emilio
More information about the pkg-gnome-maintainers
mailing list