Tuesday, February 12, 2013

[USN-1716-1] gnome-screensaver vulnerability

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/
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=j0Ws
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-1716-1
February 12, 2013

gnome-screensaver vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 12.10

Summary:

gnome-screensaver would allow unintended access to the user session.

Software Description:
- gnome-screensaver: GNOME screen saver and locker

Details:

It was discovered that gnome-screensaver did not start automatically after
logging in. This may result in the screen not being automatically locked
after the inactivity timeout is reached, permitting an attacker with
physical access to gain access to an unlocked session.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.10:
gnome-screensaver 3.6.0-0ubuntu2.1

After a standard system update you need to restart your session to make
all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-1716-1
CVE-2013-1050

Package Information:
https://launchpad.net/ubuntu/+source/gnome-screensaver/3.6.0-0ubuntu2.1

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)