Bug#569667: CVE-2009-4641: allows physically proximate attackers to access an unattended workstation
forcemerge 560049 569667 thanks On 13/02/10 11:04, Giuseppe Iuculano wrote: CVE-2009-4641[0]: | gnome-screensaver 2.28.0 does not resume adherence to its activation | settings after an inhibiting application becomes unavailable on the | session bus, which allows physically proximate attackers to access an | unattended workstation on which screen locking had been intended. If you fix the vulnerability please also make sure to include the CVE id in your changelog entry. This is already fixed in unstable, though it doesn't have the CVE in the changelog entry (we fixed it before the CVE was published). Emilio -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4b798dce.8020...@debian.org
Bug#569667: CVE-2009-4641: allows physically proximate attackers to access an unattended workstation
Package: gnome-screensaver Version: 2.28.2-1 Severity: serious Tags: security -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, the following CVE (Common Vulnerabilities Exposures) id was published for gnome-screensaver. CVE-2009-4641[0]: | gnome-screensaver 2.28.0 does not resume adherence to its activation | settings after an inhibiting application becomes unavailable on the | session bus, which allows physically proximate attackers to access an | unattended workstation on which screen locking had been intended. If you fix the vulnerability please also make sure to include the CVE id in your changelog entry. For further information see: [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4641 http://security-tracker.debian.org/tracker/CVE-2009-4641 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAkt2eRIACgkQNxpp46476aqbhACeNDF0BLFItAXsh7rk6EA/2RxX M7oAn2XrICAIfQf07JUjnWMUM5lou11F =HlQu -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org