Description
GTK+ 3.10.9 and earlier, as used in cinnamon-screensaver, gnome-screensaver, and other applications, allows physically proximate attackers to bypass the lock screen by pressing the menu button.
References (8)
Core 8
Core References
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
http://seclists.org/oss-sec/2014/q1/327
Third Party Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2475-1
Third Party Advisory x_refsource_confirm
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=759145
Broken Link vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2015:162
Third Party Advisory x_refsource_confirm
https://github.com/linuxmint/cinnamon-screensaver/issues/44
Third Party Advisory x_refsource_confirm
http://advisories.mageia.org/MGASA-2014-0374.html
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1064695
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
http://seclists.org/oss-sec/2014/q1/331
Scores
EPSS
0.0004
EPSS Percentile
11.3%
Details
CWE
CWE-284
Status
published
Products (3)
canonical/ubuntu
14.04
gnome/gtk
< 3.10.9
linuxmint/linux_mint
17.0
Published
Jan 16, 2015
Tracked Since
Feb 18, 2026