CVE-2014-5195
N/A
N/A
Summary
Unity before 7.2.3 and 7.3.x before 7.3.1, as used in Ubuntu, does not properly take focus of the keyboard when switching to the lock screen, which allows physically proximate attackers to bypass the lock screen by (1) leveraging a machine that had text selected when locking or (2) resuming from a suspension.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95199
- http://www.ubuntu.com/usn/USN-2303-1
- http://www.securityfocus.com/bid/68987
- http://www.osvdb.org/109788
- https://bugs.launchpad.net/unity/7.2/+bug/1349128
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95199
- http://www.ubuntu.com/usn/USN-2303-1
- http://www.securityfocus.com/bid/68987
- http://www.osvdb.org/109788
- https://bugs.launchpad.net/unity/7.2/+bug/1349128
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.