This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Gnome First view 2008-04-06
Product Screensaver Last view 2010-03-19
Version 2.20.0 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:gnome:screensaver

Activity : Overall

Related : CVE

  Date Alert Description
6.2 2010-03-19 CVE-2010-0732

gdk/gdkwindow.c in GTK+ before 2.18.5, as used in gnome-screensaver before 2.28.1, performs implicit paints on windows of type GDK_WINDOW_FOREIGN, which triggers an X error in certain circumstances and consequently allows physically proximate attackers to bypass screen locking and access an unattended workstation by pressing the Enter key many times.

7.2 2010-02-11 CVE-2010-0414

gnome-screensaver before 2.28.2 allows physically proximate attackers to bypass screen locking and access an unattended workstation by moving the mouse position to an external monitor and then disconnecting that monitor.

4.7 2008-04-06 CVE-2008-0887

gnome-screensaver before 2.22.1, when a remote authentication server is enabled, crashes upon an unlock attempt during a network outage, which allows physically proximate attackers to gain access to the locked session, a related issue to CVE-2007-1859.

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-362 Race Condition

Open Source Vulnerability Database (OSVDB)

id Description
62219 gnome-screensaver Monitor Topology Change Screen Lock Bypass
61203 GTK+ gdk/gdkwindow.c gdk_window_begin_implicit_paint() Function Foreign Windo...
43986 gnome-screensaver NIS Authentication Method Screen Lock Bypass

OpenVAS Exploits

id Description
2010-05-28 Name : Mandriva Update for gtk+2.0 MDVSA-2010:109 (gtk+2.0)
File : nvt/gb_mandriva_MDVSA_2010_109.nasl
2010-03-02 Name : Fedora Update for gnome-screensaver FEDORA-2010-1556
File : nvt/gb_fedora_2010_1556_gnome-screensaver_fc12.nasl
2010-03-02 Name : Fedora Update for gnome-screensaver FEDORA-2010-1855
File : nvt/gb_fedora_2010_1855_gnome-screensaver_fc12.nasl
2010-02-19 Name : Mandriva Update for gnome-screensaver MDVSA-2010:040 (gnome-screensaver)
File : nvt/gb_mandriva_MDVSA_2010_040.nasl
2010-02-18 Name : FreeBSD Ports: gnome-screensaver
File : nvt/freebsd_gnome-screensaver.nasl
2010-02-15 Name : Ubuntu Update for gnome-screensaver vulnerability USN-898-1
File : nvt/gb_ubuntu_USN_898_1.nasl
2010-01-22 Name : Mandriva Update for mmc-wizard MDVA-2010:040 (mmc-wizard)
File : nvt/gb_mandriva_MDVA_2010_040.nasl
2009-10-13 Name : SLES10: Security update for xscreensaver
File : nvt/sles10_xscreensaver.nasl
2009-10-10 Name : SLES9: Security update for xscreensaver
File : nvt/sles9p5031340.nasl
2009-04-09 Name : Mandriva Update for gnome-screensaver MDVSA-2008:132 (gnome-screensaver)
File : nvt/gb_mandriva_MDVSA_2008_132.nasl
2009-03-23 Name : Ubuntu Update for gnome-screensaver vulnerabilities USN-669-1
File : nvt/gb_ubuntu_USN_669_1.nasl
2009-03-06 Name : RedHat Update for gnome-screensaver RHSA-2008:0197-01
File : nvt/gb_RHSA-2008_0197-01_gnome-screensaver.nasl
2009-03-06 Name : RedHat Update for gnome-screensaver RHSA-2008:0218-01
File : nvt/gb_RHSA-2008_0218-01_gnome-screensaver.nasl
2009-02-17 Name : Fedora Update for gnome-screensaver FEDORA-2008-3017
File : nvt/gb_fedora_2008_3017_gnome-screensaver_fc8.nasl
2009-02-16 Name : Fedora Update for gnome-screensaver FEDORA-2008-2967
File : nvt/gb_fedora_2008_2967_gnome-screensaver_fc7.nasl
2008-09-24 Name : Gentoo Security Advisory GLSA 200804-12 (gnome-screensaver)
File : nvt/glsa_200804_12.nasl

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2014-12-15 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201412-08.nasl - Type: ACT_GATHER_INFO
2013-07-12 Name: The remote Oracle Linux host is missing a security update.
File: oraclelinux_ELSA-2008-0197.nasl - Type: ACT_GATHER_INFO
2013-01-25 Name: The remote SuSE 11 host is missing one or more security updates.
File: suse_11_gnome-screensaver-100318.nasl - Type: ACT_GATHER_INFO
2012-08-01 Name: The remote Scientific Linux host is missing a security update.
File: sl_20080402_gnome_screensaver_on_SL5_x.nasl - Type: ACT_GATHER_INFO
2010-07-30 Name: The remote Mandriva Linux host is missing a security update.
File: mandriva_MDVSA-2010-040.nasl - Type: ACT_GATHER_INFO
2010-07-01 Name: The remote Fedora host is missing a security update.
File: fedora_2010-1556.nasl - Type: ACT_GATHER_INFO
2010-05-28 Name: The remote Mandriva Linux host is missing one or more security updates.
File: mandriva_MDVSA-2010-109.nasl - Type: ACT_GATHER_INFO
2010-03-31 Name: The remote openSUSE host is missing a security update.
File: suse_11_1_gnome-screensaver-100318.nasl - Type: ACT_GATHER_INFO
2010-03-31 Name: The remote openSUSE host is missing a security update.
File: suse_11_0_gnome-screensaver-100318.nasl - Type: ACT_GATHER_INFO
2010-02-16 Name: The remote openSUSE host is missing a security update.
File: suse_11_2_gnome-screensaver-100214.nasl - Type: ACT_GATHER_INFO
2010-02-15 Name: The remote FreeBSD host is missing a security-related update.
File: freebsd_pkg_0a82ac0c188611dfb0d10015f2db7bde.nasl - Type: ACT_GATHER_INFO
2010-02-11 Name: The remote Ubuntu host is missing a security-related patch.
File: ubuntu_USN-898-1.nasl - Type: ACT_GATHER_INFO
2010-01-06 Name: The remote CentOS host is missing a security update.
File: centos_RHSA-2008-0197.nasl - Type: ACT_GATHER_INFO
2009-09-24 Name: The remote SuSE 9 host is missing a security-related patch.
File: suse9_12174.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote Mandriva Linux host is missing a security update.
File: mandriva_MDVSA-2008-132.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote Ubuntu host is missing a security-related patch.
File: ubuntu_USN-669-1.nasl - Type: ACT_GATHER_INFO
2008-07-28 Name: The remote openSUSE host is missing a security update.
File: suse_xscreensaver-5333.nasl - Type: ACT_GATHER_INFO
2008-07-28 Name: The remote SuSE 10 host is missing a security-related patch.
File: suse_xscreensaver-5334.nasl - Type: ACT_GATHER_INFO
2008-06-26 Name: The remote openSUSE host is missing a security update.
File: suse_gnome-screensaver-5172.nasl - Type: ACT_GATHER_INFO
2008-06-24 Name: The remote SuSE 10 host is missing a security-related patch.
File: suse_gnome-screensaver-5179.nasl - Type: ACT_GATHER_INFO
2008-06-18 Name: The remote openSUSE host is missing a security update.
File: suse_gnome-screensaver-5175.nasl - Type: ACT_GATHER_INFO
2008-05-22 Name: The remote Red Hat host is missing a security update.
File: redhat-RHSA-2008-0218.nasl - Type: ACT_GATHER_INFO
2008-04-17 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-200804-12.nasl - Type: ACT_GATHER_INFO
2008-04-11 Name: The remote Fedora host is missing a security update.
File: fedora_2008-3017.nasl - Type: ACT_GATHER_INFO
2008-04-11 Name: The remote Fedora host is missing a security update.
File: fedora_2008-2967.nasl - Type: ACT_GATHER_INFO