Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

USN-669-1: gnome-screensaver vulnerabilities

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) USN-669-1: gnome-screensaver vulnerabilities
# 1  
Old 11-11-2008
USN-669-1: gnome-screensaver vulnerabilities
Referenced CVEs:
CVE-2007-6389, CVE-2008-0887


Description:
===========================================================Ubuntu Security Notice USN-669-1 November 11, 2008gnome-screensaver vulnerabilitiesCVE-2007-6389, CVE-2008-0887===========================================================A security issue affects the following Ubuntu releases:Ubuntu 6.06 LTSUbuntu 7.10This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.The problem can be corrected by upgrading your system to thefollowing package versions:Ubuntu 6.06 LTS: gnome-screensaver 2.14.3-0ubuntu1.1Ubuntu 7.10: gnome-screensaver 2.20.0-0ubuntu4.3After a standard system upgrade you need to restart all user sessions onyour computer to effect the necessary changes.Details follow:It was discovered that the notify feature in gnome-screensaver could leta local attacker read the clipboard contents of a locked session byusing Ctrl-V. (CVE-2007-6389)Alan Matsuoka discovered that gnome-screensaver did not properly handlenetwork outages when using a remote authentication service. During anetwork interruption, or by disconnecting the network cable, a localattacker could gain access to locked sessions. (CVE-2008-0887)





More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

unicode

unicode-screensaver(6x) 				    unicode-screensaver manual					   unicode-screensaver(6x)

NAME

       unicode - displays unicode characters

SYNOPSIS

       unicode [-display host:display.screen] [-visual visual] [-window] [-root] [-fps] [-foreground color] [-background color]

DESCRIPTION

       unicode-screensaver is a simple screensaver application that repeatedly randomly picks an unicode character and displays it in a very large
       font size together with its unicode code point and the character name.

OPTIONS

       -visual visual
	       Specify which visual to use.  Legal values are the name of a visual class, or the id number (decimal or hex) of a specific visual.

       -window Draw on a newly-created window.	This is the default.

       -root   Draw on the root window.

       -fps    Display the current frame rate and CPU load.

       -background
	       Set the background color (e.g. black, white, green, red). The default is white.

       -foreground
	       Set the font color (e.g. black, white, green, red). The default is black.

ENVIRONMENT

       DISPLAY to get the default host and display number.

       XENVIRONMENT
	       to get the name of a resource file that overrides the global resources stored in the RESOURCE_MANAGER property.

SEE ALSO

       X(1), xscreensaver(1)

COPYRIGHT

       Copyright (C) 2009 by Joachim Breitner.	Permission to use, copy, modify, distribute, and sell this software and its documentation for  any
       purpose	is  hereby  granted without fee, provided that the above copyright notice appear in all copies and that both that copyright notice
       and this permission notice appear in supporting documentation.  No representations are made about the suitability of this software for  any
       purpose.  It is provided "as is" without express or implied warranty.

AUTHOR

       Joachim Breitner

X Version 11							    Version 0.4 					   unicode-screensaver(6x)