SUSE-SU-2015:2053-2

Опубликовано: 29 дек. 2015

Источник: suse-cvrf

Описание

Security update for xscreensaver

The xscreensaver package was updated to fix the following security issue:

CVE-2015-8025: Fixed a crash when hot-swapping monitors while locked (bsc#952062).

Список пакетов

SUSE Linux Enterprise Desktop 12 SP1

xscreensaver-5.22-7.1

xscreensaver-data-5.22-7.1

SUSE Linux Enterprise Server 12 SP1

xscreensaver-5.22-7.1

xscreensaver-data-5.22-7.1

SUSE Linux Enterprise Server for SAP Applications 12 SP1

xscreensaver-5.22-7.1

xscreensaver-data-5.22-7.1

Ссылки

https://www.suse.com/support/update/announcement/2015/suse-su-20152053-2/
Link for SUSE-SU-2015:2053-2
https://lists.suse.com/pipermail/sle-security-updates/2015-December/001769.html
E-Mail link for SUSE-SU-2015:2053-2
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/952062
SUSE Bug 952062
https://www.suse.com/security/cve/CVE-2015-8025/
SUSE CVE CVE-2015-8025 page

Описание

driver/subprocs.c in XScreenSaver before 5.34 does not properly perform an internal consistency check, which allows physically proximate attackers to bypass the lock screen by hot swapping monitors.

Затронутые продукты

SUSE Linux Enterprise Desktop 12 SP1:xscreensaver-5.22-7.1

SUSE Linux Enterprise Desktop 12 SP1:xscreensaver-data-5.22-7.1

SUSE Linux Enterprise Server 12 SP1:xscreensaver-5.22-7.1

SUSE Linux Enterprise Server 12 SP1:xscreensaver-data-5.22-7.1

Ссылки

https://www.suse.com/security/cve/CVE-2015-8025.html
CVE-2015-8025
https://bugzilla.suse.com/952062
SUSE Bug 952062
https://bugzilla.suse.com/970335
SUSE Bug 970335

SUSE-SU-2015:2053-2

Описание

Список пакетов

SUSE Linux Enterprise Desktop 12 SP1

SUSE Linux Enterprise Server 12 SP1

SUSE Linux Enterprise Server for SAP Applications 12 SP1

Ссылки

Уязвимость: CVE-2015-8025

Описание

Затронутые продукты

Ссылки