Описание
X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate attackers to obtain sensitive information, as demonstrated by reading passwords from a tty.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 2:1.13.3-0ubuntu6 |
| hardy | ignored | end of life |
| lucid | released | 2:1.7.6-2ubuntu7.12 |
| oneiric | released | 2:1.10.4-1ubuntu4.5 |
| precise | released | 2:1.11.4-0ubuntu10.13 |
| quantal | released | 2:1.13.0-0ubuntu6.2 |
| upstream | released | 1.13.4 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | DNE | |
| oneiric | DNE | |
| precise | released | 2:1.13.0-0ubuntu6.1~precise3 |
| quantal | DNE | |
| upstream | needs-triage |
Показывать по
EPSS
2.1 Low
CVSS2
Связанные уязвимости
X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate attackers to obtain sensitive information, as demonstrated by reading passwords from a tty.
X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate attackers to obtain sensitive information, as demonstrated by reading passwords from a tty.
X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly ...
X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate attackers to obtain sensitive information, as demonstrated by reading passwords from a tty.
ELSA-2013-1620: xorg-x11-server security and bug fix update (LOW)
EPSS
2.1 Low
CVSS2