Additional Distro Versions Vuln to usn-2789-1
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
xscreensaver (Debian) |
Fix Released
|
Unknown
|
|||
xscreensaver (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Not sure if you're aware, but I'm able to replicate usb-2789-1 on
$ cat /etc/lsb-release
DISTRIB_ID=Ubuntu
DISTRIB_
DISTRIB_
DISTRIB_
Current release in vivid:
||/ Name Version Architecture Description
+++-===
ii xscreensaver 5.30-1ubuntu1 amd64 Screensaver daemon and frontend for X11
The bug page only lists 12.04LTS as being vulnerable.
I was able to reproduce by having a dual screen (desktop) setup, and unplugging the *secondary* (as according to display settings), whilst the xscreensaver password unlock dialog was open.
Changed in xscreensaver (Debian): | |
status: | Unknown → Fix Released |
Changed in xscreensaver (Ubuntu): | |
status: | Confirmed → Fix Released |
Yes, we're aware. In Ubuntu 15.04, xscreensaver is in Universe, which means it is community maintained and doesn't get official security updates.