Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:31625
HistoryJan 19, 2015 - 12:00 a.m.

[USN-2475-1] GTK+ update

2015-01-1900:00:00
vulners.com
25
JSON

==========================================================================
Ubuntu Security Notice USN-2475-1
January 15, 2015

gtk+3.0 update

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 14.04 LTS

Summary:

GTK+ improperly handled the menu key, possibly allowing lock screen bypass.

Software Description:

  • gtk+3.0: GTK+ graphical user interface library

Details:

Clemens Fries discovered that GTK+ allowed bypassing certain screen locks
by using the menu key. An attacker with physical access could possibly use
this flaw to gain access to a locked session.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 LTS:
libgtk-3-0 3.10.8-0ubuntu1.4

After a standard system update you need to restart your session to make
all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2475-1
https://launchpad.net/bugs/1366790

Package Information:
https://launchpad.net/ubuntu/+source/gtk+3.0/3.10.8-0ubuntu1.4

– ubuntu-security-announce mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

JSON