oss-sec mailing list archives
Re: KDE Plasma vulnerability: need CVE
From: Albert Astals Cid <aacid () kde org>
Date: Wed, 10 Feb 2016 01:00:49 +0100
El Tuesday 09 February 2016, a les 18:37:26, cve-assign () mitre org va escriure:
https://www.kde.org/info/security/advisory-20160209-1.txt https://bugs.kde.org/show_bug.cgi?id=358125 https://bugzilla.opensuse.org/show_bug.cgi?id=964548 Qt allows to have no screens. If all XRandR screens are disconnected there are also no QScreens. This is from an X11 perspective wrong, but we have to deal with it. No QScreens means that all views are destroyed and no new ones are created. Thus all windows close and the greeter exited successfully which in turn unlocked the screen.Use CVE-2016-2312.
Thanks for the quick answer :) Cheers, Albert
-- CVE assignment team, MITRE CVE Numbering Authority M/S M300 202 Burlington Road, Bedford, MA 01730 USA [ PGP key available through http://cve.mitre.org/cve/request_id.html ]
Current thread:
- KDE Plasma vulnerability: need CVE Albert Astals Cid (Feb 09)
- Re: KDE Plasma vulnerability: need CVE cve-assign (Feb 09)
- Re: KDE Plasma vulnerability: need CVE Albert Astals Cid (Feb 09)
- Re: KDE Plasma vulnerability: need CVE cve-assign (Feb 09)