Package: gnome-screensaver Severity: grave Tags: security Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for gnome-screensaver.
CVE-2008-1683[0]: | xscreensaver on Fedora 8, when an NIS authentication server is | enabled, exits if this server is unavailable as the xscreensaver | process is starting, which allows physically proximate attackers to | gain access to a workstation session for which locking was intended, a | related issue to CVE-2007-1859. The CVE text is somehow wrong I think. Reading the redhat bugzilla in the references this is a gnome-screensaver issue and was not reproducible in xscreensaver. Patch is on: https://bugzilla.redhat.com/attachment.cgi?id=297817 If you fix the vulnerability please also make sure to include the CVE id in your changelog entry. For further information see: [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1683 http://security-tracker.debian.net/tracker/CVE-2008-1683 -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
pgpGLBJTV3M5U.pgp
Description: PGP signature
