[Bug 1008036] New: VUL-0: CVE-2016-1000002: gdm: infoleak before screenlock
http://bugzilla.suse.com/show_bug.cgi?id=1008036 Bug ID: 1008036 Summary: VUL-0: CVE-2016-1000002: gdm: infoleak before screenlock Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.2 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: fezhang@suse.com Reporter: krahmer@suse.com QA Contact: qa-bugs@suse.de Found By: Security Response Team Blocker: --- CVE-2016-1000002 According to DWF: Gnome GDM 3.14.2 and possibly later are vulnerable to an information disclosure vulnerability, specifically when a laptop screen is closed to trigger the screen lock, and the lid is then re-opened the previous contents of the screen are visible for approx 1 second (long enough to take a picture of video record it) before the lock screen kicks in. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-1000002 https://github.com/distributedweaknessfiling/DWF-Database-Artifacts/blob/mas... -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.suse.com/show_bug.cgi?id=1008036
Sebastian Krahmer
http://bugzilla.suse.com/show_bug.cgi?id=1008036
http://bugzilla.suse.com/show_bug.cgi?id=1008036#c1
Sebastian Krahmer
http://bugzilla.suse.com/show_bug.cgi?id=1008036
Ludwig Nussel
participants (1)
-
bugzilla_noreply@novell.com