[compiz] CVE-2007-3920
Colin Guthrie
gmane at colin.guthr.ie
Tue Nov 6 02:33:15 PST 2007
Hanno Böck wrote:
> A bypass for screensaver password dialogs has been found within compiz.
>
> What about it?
> Ubuntu created a patch, gentoo took the same:
> https://bugs.gentoo.org/show_bug.cgi?id=196878
I'm no expert in these matter, but is hard coding "gnome-screensaver"
into compiz the "right" solution for this problem? Would KDE's
screensaver or xscreensaver suffer from similar problems that this fix
doesn't address?
Perhaps the first hunk of the patch catches these cases? Can you shed a
little light on it for the benefit of the cranially challenged? ;)
Col
More information about the compiz
mailing list