CVE-2015-8025

EPSS 0.07%

xscreensaver - security update

Published: 11/10/2015Modified: 4/28/2026

Also known as:DEBIAN-CVE-2015-8025

Description

driver/subprocs.c in XScreenSaver before 5.34 does not properly perform an internal consistency check, which allows physically proximate attackers to bypass the lock screen by hot swapping monitors.

Affected packages (3)

Debian/xscreensaverfrom 0, < 5.34-1
Debian/xscreensaverfrom 0, < 5.11-1+deb6u11
Debian/xscreensaverfrom 0, < 5.15-3+deb7u1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-8025