CVE-2014-1949

Sažetak

GTK+ 3.10.9 and earlier, as used in cinnamon-screensaver, gnome-screensaver, and other applications, allows physically proximate attackers to bypass the lock screen by pressing the menu button.

Reference

https://bugzilla.redhat.com/show_bug.cgi?id=1064695
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=759145
http://www.ubuntu.com/usn/USN-2475-1
https://github.com/linuxmint/cinnamon-screensaver/issues/44
http://seclists.org/oss-sec/2014/q1/331
http://seclists.org/oss-sec/2014/q1/327
http://advisories.mageia.org/MGASA-2014-0374.html
http://www.mandriva.com/security/advisories?name=MDVSA-2015:162

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

03-08-2023 - 17:16

Objavljeno

16-01-2015 - 16:59