[SecurityRoadmap] parts of desktop visible when screen is locked (nvidia, intel)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
gnome-screensaver (Ubuntu) |
Invalid
|
Medium
|
Unassigned |
Bug Description
When running screen saver, attacker having physical access to the LOCKED computer, can see what was on our screen that we locked (i.e. important document, email with passwords, etc etc).
1. run screensaver
2. move the mouse
This bug brings back so many memories!
I remember reporting it around 2008, and also in 2007 (in debian probably).
* Drivers: seen it on Intel GFX (i945, and GM960) ; and on nvidia
* X software: back in 2007 I definatelly didnt used no compiz/bery/etc (it was on Debian then) . Now on Ubuntu I seen it with the default settings, on nvidia binary driver.
Triggering: this occured very often if I had 2 monitors (laptop + external VGA) in other resolution.
Now, on PC, I seen it so far 1 during 3 days, will test more.
Ubuntu 9.04 amd64, nvidia driver, gnome default.
Probably running fullscreen programs or switching otherwise the resolution is a factor to reproduce this problem.
visibility: | private → public |
description: | updated |
tags: |
added: screensaver security removed: dnf fail snail |
summary: |
- [9.04 amd64 + nvidia = FAIL] security hole in screensaver + Security hole in screensaver! Exposes screen/desktop image even if + screen is LOCKED. nvidia, intel gfx; Old bug. |
Changed in ubuntu: | |
importance: | Undecided → Medium |
status: | New → Confirmed |
summary: |
- parts of desktop visible when screen is locked (nvidia, intel) + [SecurityRoadmap] parts of desktop visible when screen is locked + (nvidia, intel) |
is this dup of / related to bug #220226 ?