Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-43090: screenshot: Some fixes to shortcut handling (!2944) · Merge requests · GNOME / gnome-shell · GitLab

A vulnerability was found in GNOME Shell. GNOME Shell’s lock screen allows an unauthenticated local user to view windows of the locked desktop session by using keyboard shortcuts to unlock the restricted functionality of the screenshot tool.

CVE
#vulnerability#windows#git#auth
  • Review changes
  • Download

  • Patches

  • Plain diff

Related news

Ubuntu Security Notice USN-6395-1

Ubuntu Security Notice 6395-1 - Mickael Karatekin discovered that GNOME Shell incorrectly allowed the screenshot tool to view open windows when a session was locked. A local attacker could possibly use this issue to obtain sensitive information.

Debian Security Advisory 5501-1

Debian Linux Security Advisory 5501-1 - Mickael Karatekin discovered that the GNOME session locking didn't restrict a keyboard shortcut used for taking screenshots in GNOME Screenshot which could result in information disclosure.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907