Package: x2goclient
Version: 4.0.1.0-1
Severity: grave
Tags: security
Justification: user security hole


Hi.

It seems that per default (and I even found no way to disable it) x2goclient 
(and perhaps other
related tools?) transmit the content of the clipboard to the remote host.

As this may easily contain passwords or other sensitive information, this is a 
extremely
critical hole.


Cheers,
Chris.


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Reply via email to