Description
gnome-screensaver 2.28.0 does not resume adherence to its activation settings after an inhibiting application becomes unavailable on the session bus, which allows physically proximate attackers to access an unattended workstation on which screen locking had been intended.
References (4)
Core 4
Core References
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2010:040
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-866-1
Patch x_refsource_confirm
https://bugzilla.gnome.org/show_bug.cgi?id=600488
Various Sources x_refsource_confirm
https://launchpad.net/bugs/411350
Scores
EPSS
0.0005
EPSS Percentile
16.7%
Details
Status
published
Products (1)
gnome/screensaver
2.28.0
Published
Feb 11, 2010
Tracked Since
Feb 18, 2026