Browse Source

[gnome-screensaver] Updated (2.20.0 -> 2.22.2) : SECURITY - MEDIUM

CVE-2007-6389 (Low) :
The notify feature in GNOME screensaver (gnome-screensaver) 2.20.0 might allow local users to
read the clipboard contents and X selection data for a locked session by using ctrl-V.

CVE-2008-0887 (Medium) :
gnome-screensaver before 2.22.1, when a remote authentication server is enabled, crashes
upon an unlock attempt during a network outage, which allows physically proximate attackers to
gain access to the locked session, a related issue to CVE-2007-1859.
early
Aldas Nabazas 17 years ago
parent
commit
989c9af28e
  1. 9
      gnome2/gnome-screensaver/gnome-screensaver.desc

9
gnome2/gnome-screensaver/gnome-screensaver.desc

@ -2,7 +2,7 @@
[COPY] This copyright note is auto-generated by ./scripts/Create-CopyPatch.
[COPY]
[COPY] Filename: package/.../gnome-screensaver/gnome-screensaver.desc
[COPY] Copyright (C) 2006 - 2007 The OpenSDE Project
[COPY] Copyright (C) 2006 - 2008 The OpenSDE Project
[COPY]
[COPY] More information can be found in the files COPYING and README.
[COPY]
@ -19,8 +19,6 @@
[T] is desktop neutral. It simplifies and streamlines the experience for
[T] the user and provides more capability for the system administrator.
[U] http://live.gnome.org/GnomeScreensaver/
[A] William Jon McCann <mccann@jhu.edu
@ -30,10 +28,9 @@
[L] GPL
[S] Beta
[V] 2.20.0
[V] 2.22.2
[P] X -----5---9 250.000
[O] . $base/package/*/*/gnome2-conf.in
[D] 3331563295 gnome-screensaver-2.20.0.tar.bz2 http://ftp.gnome.org/pub/GNOME/sources/gnome-screensaver/2.20/
[D] 1497056944 gnome-screensaver-2.22.2.tar.bz2 http://ftp.gnome.org/pub/GNOME/sources/gnome-screensaver/2.22/

Loading…
Cancel
Save