Jose Luis Rivas Contreras wrote: > Benjamin Seidenberg wrote: >> Package: xscreensaver >> Version: 5.03-3 >> Severity: serious >> Tags: security >> Justification: Security Hole - Unintended information disclosure >> >> When xcompmgr is running, the fireworxx hack will display over the live >> screen >> (including any changes post screen-lock). This does not occur when >> xcompmgr is not running. > > I do not understand when you say "over the live screen", what do you mean? > > How does this affect in the security? When displays information? > > Regards, > Jose Luis.
Normally the screensaver displays fireworks shooting, with a black background. However, when xcompmgr is enabled, the background is instead the display, with all applications running. It's not just a snapshot of when the screensaver activated, any new events (popups, emails, instant messages) are shown as well.
signature.asc
Description: OpenPGP digital signature
