Lucene search

K
ubuntucveUbuntu.comUB:CVE-2014-1949
HistoryJan 16, 2015 - 12:00 a.m.

CVE-2014-1949

2015-01-1600:00:00
ubuntu.com
ubuntu.com
9

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.001

Percentile

26.7%

GTK+ 3.10.9 and earlier, as used in cinnamon-screensaver,
gnome-screensaver, and other applications, allows physically proximate
attackers to bypass the lock screen by pressing the menu button.

Bugs

Notes

Author Note
mdeslaur although this issue was reported against cinnamon-screensaver, the actual problem lies in gtk+3.0, and also affects gnome-screensaver
OSVersionArchitecturePackageVersionFilename
ubuntu14.04noarchgtk+3.0< 3.10.8-0ubuntu1.4UNKNOWN

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.001

Percentile

26.7%