oss-sec mailing list archives

CVE Request -- xscreensaver -- exits when activated

From: Jan Lieskovsky <jlieskov () redhat com>
Date: Fri, 03 Jun 2011 19:27:04 +0200


Hello, Josh, Steve, vendors,

it was found that xscreensaver terminated, when it was activated uponlaunch. A local proximate attacker could use this deficiency to access

resources, which should be otherwise protected by authentication.

References:
[1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=627382
[2] https://bugzilla.redhat.com/show_bug.cgi?id=703483

Could you allocate a CVE id for this?

Thank you & Regards, Jan.
--
Jan iankko Lieskovsky / Red Hat Security Response Team

Current thread:

CVE Request -- xscreensaver -- exits when activated Jan Lieskovsky (Jun 03)
- Re: CVE Request -- xscreensaver -- exits when activated Josh Bressers (Jun 06)