PublicDate: 2008-04-06 23:44:00 UTC
Candidate: CVE-2008-0887
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0887
 http://bugzilla.gnome.org/show_bug.cgi?id=525785
 https://ubuntu.com/security/notices/USN-669-1
Description:
 gnome-screensaver before 2.22.1, when a remote authentication server is
 enabled, crashes upon an unlock attempt during a network outage, which
 allows physically proximate attackers to gain access to the locked session,
 a related issue to CVE-2007-1859.
Ubuntu-Description:
Notes:
Bugs:
 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-0887
Priority: medium
Discovered-by: Alan Matsuoka 
Assigned-to: mdeslaur
CVSS: 

Patches_gnome-screensaver:
 upstream: http://svn.gnome.org/viewvc/gnome-screensaver/trunk/src/gnome-screensaver-dialog.c?r1=1319&r2=1418
 upstream: http://svn.gnome.org/viewvc/gnome-screensaver/trunk/src/setuid.c?r1=2&r2=1418
upstream_gnome-screensaver: needs-triage
dapper_gnome-screensaver: released (2.14.3-0ubuntu1.1)
edgy_gnome-screensaver: needs-triage (reached end-of-life)
feisty_gnome-screensaver: needs-triage (reached end-of-life)
gutsy_gnome-screensaver: released (2.20.0-0ubuntu4.3)
hardy_gnome-screensaver: released (2.22.1-0ubuntu1)
intrepid_gnome-screensaver: released (2.22.1-0ubuntu1)
devel_gnome-screensaver: released (2.22.1-0ubuntu1)