None · Xtrlock · CVE-2016-10894
**Name of the Vulnerable Software and Affected Versions**
xtrlock versions prior to 2.11
**Description**
The issue allows an attacker to control various programs at a locked screen by sending input via multitouch events, such as pan scrolling, pinch and zoom gestures, or regular mouse clicks. This can be achieved by depressing the touchpad once and then clicking with a different finger.
**Recommendations**
For xtrlock versions prior to 2.11, update to version 2.11 or later to resolve the issue.