Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:30964
HistoryAug 04, 2014 - 12:00 a.m.

[USN-2303-1] Unity vulnerability

2014-08-0400:00:00
vulners.com
18
JSON

==========================================================================
Ubuntu Security Notice USN-2303-1
July 31, 2014

unity vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 14.04 LTS

Summary:

The Unity lock screen could possibly be bypassed in certain circumstances.

Software Description:

  • unity: Interface designed for efficiency of space and interaction.

Details:

It was discovered that in certain circumstances Unity failed to
successfully grab the keyboard when switching to the lock screen. A local
attacker could possibly use this issue to run commands, and unlock the
current session.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 LTS:
unity 7.2.2+14.04.20140714-0ubuntu1.1

After a standard system update you need to restart your session to make all
the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2303-1
https://launchpad.net/bugs/1349128

Package Information:
https://launchpad.net/ubuntu/+source/unity/7.2.2+14.04.20140714-0ubuntu1.1

– ubuntu-security-announce mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

JSON