Package: xlockmore-gl Version: 1:5.13-2 Severity: grave Tags: security Justification: user security hole
I have set up my FVWM so windows related to Gaim always are put on the same virtual desktop. Occassionally Gaim creates a new window without any user interaction (for example when loosing network connection or when receiving a new message). When this happens FVWM switches to the relevant virtual desktop and puts the new Gaim window there. When this happens and `xlock` is running, `xlock` dies and anybody can get access to my account. `xlock` is started with the command `xlock -mode blank` (through a FVWM menu). I haven't tested with other programs than Gaim (yet). I haven't tested with starting `xlock` directly from a command line (yet). /Jacob -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing') Architecture: powerpc (ppc) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.8-powerpc Locale: LANG=fo_FO.ISO8859-1, LC_CTYPE=fo_FO.ISO8859-1 (charmap=ISO-8859-1) Versions of packages xlockmore-gl depends on: ii libc6 2.3.2.ds1-22 GNU C Library: Shared libraries an ii libgcc1 1:3.4.3-13 GCC support library ii libice6 4.3.0.dfsg.1-13 Inter-Client Exchange library ii libpam0g 0.76-22 Pluggable Authentication Modules l ii libsm6 4.3.0.dfsg.1-13 X Window System Session Management ii libstdc++5 1:3.3.6-5 The GNU Standard C++ Library v3 ii libx11-6 4.3.0.dfsg.1-13 X Window System protocol client li ii libxext6 4.3.0.dfsg.1-13 X Window System miscellaneous exte ii libxmu6 4.3.0.dfsg.1-13 X Window System miscellaneous util ii libxpm4 4.3.0.dfsg.1-13 X pixmap library ii xlibmesa-gl [libgl1] 4.3.0.dfsg.1-13 Mesa 3D graphics library [XFree86] ii xlibmesa-glu [libglu1] 4.3.0.dfsg.1-13 Mesa OpenGL utility library [XFree ii xlibs 4.3.0.dfsg.1-13 X Keyboard Extension (XKB) configu -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]