REDHAT-BUG-1391126
First published: Wed Nov 02 2016(Updated: )
Gnome GDM 3.14.2 and possibly later are vulnerable to an information disclosure vulnerability, specifically when a laptop screen is closed to trigger the screen lock, and the lid is then re-opened the previous contents of the screen are visible for approx. 1 second, which is long enough to take a picture or video record it before the lock screen kicks in.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SUSE GDM | =3.14.2>undefined |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of REDHAT-BUG-1391126?
The severity of REDHAT-BUG-1391126 is categorized as information disclosure due to the risk of exposing sensitive data on the screen for a brief period.
How do I fix REDHAT-BUG-1391126?
To fix REDHAT-BUG-1391126, update to a later version of Gnome GDM that addresses this vulnerability.
Which versions of Gnome GDM are affected by REDHAT-BUG-1391126?
Gnome GDM versions 3.14.2 and possibly later are affected by REDHAT-BUG-1391126.
What happens when REDHAT-BUG-1391126 is exploited?
Exploiting REDHAT-BUG-1391126 allows an attacker to view the previous screen contents for approximately one second after reopening a laptop lid.
Is there a workaround for REDHAT-BUG-1391126?
A possible workaround for REDHAT-BUG-1391126 is to ensure that sensitive content is closed or locked before closing the laptop lid.
- agent/references
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2016-1000002
- agent/severity
- agent/event
- agent/description
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/gnome
- canonical/suse gdm