aru Posted April 18, 2006 Report Share Posted April 18, 2006 Mandriva Advisories MDKSA-2006:071 : xscreensaver Updated xscreensaver packages fix clear-text password vulnerability April 11th, 2006 Rdesktop, with xscreensaver < 4.18, does not release the keyboard focus when xscreensaver starts, which causes the password to be entered into the active window when the user unlocks the screen. Updated xscreensaver packages have been patched to correct this issue. The released versions of Mandriva GNU/Linux affected are: CS3.0Full information about this advisory, including the updated packages, is available at: wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:071 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2655 Posted automatically by aru (mdksec2mub v: mdksec2mub,v 0.15 2005/11/24 16:53:12 aru Exp aru $) Link to comment Share on other sites More sharing options...
Recommended Posts