Lucene search
Gentoo FoundationMGASA-2014-0501HistoryDec 01, 2014 - 8:57 p.m.
Updated gnome-shell and gnome-settings-daemon packages fix security vulnerability
2014-12-0120:57:09
Gentoo Foundation
advisories.mageia.org
15
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.001
Percentile
26.7%
The lock screen in gnome-shell does not disable taking screenshots via the Print Screen key, and several consecutive screenshot requests can trigger an out-of-memory situation, causing the lock screen to be killed, thus allowing it to be bypassed (CVE-2014-7300).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 4 | noarch | gnome-shell | < 3.10.2.1-7.1 | gnome-shell-3.10.2.1-7.1.mga4 |
| Mageia | 4 | noarch | gnome-settings-daemon | < 3.10.2-2.1 | gnome-settings-daemon-3.10.2-2.1.mga4 |
Related
ubuntucve
ubuntucve
CVE-2014-7300
2014-12-25 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2015-0535)
2015-10-06 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0515-1)
2021-04-19 00:00:00
Fedora Update for gnome-shell FEDORA-2014-12690
2014-10-19 00:00:00
nvd
nvd
CVE-2014-7300
2014-12-25 21:59:02
prion
prion
Design/Logic Flaw
2014-12-25 21:59:00
redhat
redhat
(RHSA-2015:0535) Low: GNOME Shell security, bug fix, and enhancement update
2015-03-05 00:00:00
centos
centos
clutter, cogl, gnome, mutter security update
2015-03-17 13:27:42
nessus
nessus
CentOS 7 : clutter / cogl / gnome-shell / mutter (CESA-2015:0535)
2015-03-18 00:00:00
Oracle Linux 7 : GNOME / Shell (ELSA-2015-0535)
2015-03-13 00:00:00
RHEL 7 : GNOME Shell (RHSA-2015:0535)
2015-03-05 00:00:00
debiancve
debiancve
CVE-2014-7300
2014-12-25 21:59:02
fedora
fedora
[SECURITY] Fedora 20 Update: gnome-shell-3.10.4-9.fc20
2014-10-18 16:58:08
cvelist
cvelist
CVE-2014-7300
2014-12-25 21:00:00
oraclelinux
oraclelinux
GNOME Shell security, bug fix, and enhancement update
2015-03-11 00:00:00
cve
cve
CVE-2014-7300
2014-12-25 21:59:02
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.001
Percentile
26.7%
Related for MGASA-2014-0501