Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <3089008.7Vjmlmn4H0@xps>
Date: Wed, 10 Feb 2016 01:00:49 +0100
From: Albert Astals Cid <aacid@....org>
To: cve-assign@...re.org
Cc: oss-security@...ts.openwall.com, security@....org
Subject: Re: KDE Plasma vulnerability: need CVE

El Tuesday 09 February 2016, a les 18:37:26, cve-assign@...re.org va escriure:
> > https://www.kde.org/info/security/advisory-20160209-1.txt
> > 
> > https://bugs.kde.org/show_bug.cgi?id=358125
> > https://bugzilla.opensuse.org/show_bug.cgi?id=964548
> > 
> > Qt allows to have no screens. If all XRandR screens are disconnected
> > there are also no QScreens. This is from an X11 perspective wrong, but
> > we have to deal with it. No QScreens means that all views are destroyed
> > and no new ones are created. Thus all windows close and the greeter
> > exited successfully which in turn unlocked the screen.
> 
> Use CVE-2016-2312.

Thanks for the quick answer :)

Cheers,
  Albert

> 
> --
> CVE assignment team, MITRE CVE Numbering Authority
> M/S M300
> 202 Burlington Road, Bedford, MA 01730 USA
> [ PGP key available through http://cve.mitre.org/cve/request_id.html ]

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.