Mailinglist Archive: opensuse-bugs (4689 mails)

< Previous Next >
[Bug 579280] VUL-0: KDE4: Screen may be unlocked without password (due to memory leak?)
  • From: bugzilla_noreply@xxxxxxxxxx
  • Date: Sat, 13 Feb 2010 11:32:22 +0000
  • Message-id: <20100213113222.BCEF9245522@xxxxxxxxxxxxxxxxxxxxxx>
http://bugzilla.novell.com/show_bug.cgi?id=579280

http://bugzilla.novell.com/show_bug.cgi?id=579280#c17


--- Comment #17 from Marcus Meissner <meissner@xxxxxxxxxx> 2010-02-13 11:32:21
UTC ---
Reply-To: oss-security@xxxxxxxxxxxxxxxxxx
Date: Fri, 12 Feb 2010 13:18:13 -0500
From: Jeff Mitchell <mitchell@xxxxxxx>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.7)
Gecko/20100111
+Thunderbird/3.0.1
To: oss-security@xxxxxxxxxxxxxxxxxx
Subject: [oss-security] Re: CVE Request: KDE screensaver unlock issue similar
to GNOME one

[-- PGP Ausgabe folgt (aktuelle Zeit: Sam 13 Feb 2010 12:31:38 CET) --]
gpg: Signature made Fre 12 Feb 2010 19:18:17 CET using DSA key ID D0AE1825
gpg: Unterschrift kann nicht geprüft werden: Öffentlicher Schlüssel nicht
gefunden
[-- Ende der PGP-Ausgabe --]

[-- Die folgenden Daten sind signiert --]

Sorry it's not in the same thread, as I wasn't subscribed to this list
at the time.

I can verify that only KDE SC 4.4.0 is affected. Released versions of
4.3 are *not* affected by this bug.

I have committed a patch to the KDE SVN server as revision 1089213. See
https://bugs.kde.org/show_bug.cgi?id=217882#c16

Although this solved the problem for me locally, I'm in the process of
having other testers verify that they can no longer reproduce the
problem with this patch, and will report back once this is verified.

Thanks,
Jeff


[-- Ende der signierten Daten --]

--
Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
< Previous Next >
References