USN-537-1: gnome-screensaver vulnerability

Releases

• Ubuntu 7.10

Packages

• gnome-screensaver -

Details

Jens Askengren discovered that gnome-screensaver became confused when
running under Compiz, and could lose keyboard lock focus. A local
attacker could exploit this to bypass the user's locked screen saver.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 7.10

• gnome-screensaver - 2.20.0-0ubuntu4.2

After a standard system upgrade you need to restart your session to effect
the necessary changes.

References

• CVE-2007-3920

Related notices

• USN-537-2: compiz, compiz-core