CyberSec.Space Logo
CVEブラウザに戻る

CVE-2014-1949

HIGH
7.2
CVSS Severity Score
EPSS Score0.0150%
EPSS Percentile38.03th
Published2015年1月16日
Last Modified2026年5月6日

Vulnerability Description

GTK+ 3.10.9 and earlier, as used in cinnamon-screensaver, gnome-screensaver, and other applications, allows physically proximate attackers to bypass the lock screen by pressing the menu button.

Affected Platforms (CPE)

💻
Linuxmint

Linux Mint

= 17.0
📦
Gnome

Gtk

<= 3.10.9
💻
Canonical

Ubuntu

= 14.04

References & Advisories

🔗 http://advisories.mageia.org/MGASA-2014-0374.html
🔗 http://seclists.org/oss-sec/2014/q1/327
🔗 http://seclists.org/oss-sec/2014/q1/331
🔗 http://www.mandriva.com/security/advisories?name=MDVSA-2015:162
🔗 http://www.ubuntu.com/usn/USN-2475-1
🔗 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=759145
🔗 https://bugzilla.redhat.com/show_bug.cgi?id=1064695
🔗 https://github.com/linuxmint/cinnamon-screensaver/issues/44

関連する脆弱性情報

CVE-2019-170807.8

mintinstall (aka Software Manager) 7.9.9 for Linux Mint allows code execution if a REVIEWS_CACHE file is controlled by an attacker...

CVE-2019-186347.8

In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged...

CVE-2019-203267.8

A heap-based buffer overflow in _cairo_image_surface_create_from_jpeg() in extensions/cairo_io/cairo-image-surface-jpeg.c in GNOME...

CVE-2020-370417.5

OpenCTI 3.3.1 is vulnerable to a directory traversal attack via the static/css endpoint. An unauthenticated attacker can read arbi...