Your submission was sent successfully! Close

USN-866-1: gnome-screensaver vulnerability

7 December 2009

gnome-screensaver vulnerability

Releases

Packages

Details

It was discovered that gnome-screensaver did not always re-enable itself
after applications requested it to ignore idle timers. This may result in the
screen not being automatically locked after the inactivity timeout is
reached, permitting an attacker with physical access to gain access to an
unlocked session.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 9.10

After a standard system upgrade you need to restart your session to effect
the necessary changes.

References