Sam Morris

**Name of the Vulnerable Software and Affected Versions** Epiphany versions 2.28 through 2.29 **Description** The issue allows man-in-the-middle attackers to spoof arbitrary https web sites via a crafted X.509 server certificate, as Epiphany unconditionally displays a closed-lock icon for any URL beginning with the https: substring without warning the user. **Recommendations** For Epiphany versions 2.28 through 2.29, consider disabling the use of WebKit and LibSoup until a patch is available to prevent the unconditional display of the closed-lock icon for https URLs.

Name of the Vulnerable Software and Affected Versions: file version 5.00 Description: The issue is related to a heap-based buffer overflow in the cdf read sat function, located in src/cdf.c. This allows user-assisted remote attackers to execute arbitrary code via a crafted compound document file. Examples of such files include .msi, .doc, or .mpp files. Recommendations: For file version 5.00, update to a newer version that contains a fix for this issue. As a temporary workaround, consider avoiding the use of the cdf read sat function until a patch is available. Restrict access to compound document files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** gnome screensaver versions prior to 2.14 **Description** The issue allows attackers with physical access to cause the screensaver to crash and access the session via the Ctrl+Alt+Keypad-Multiply keyboard sequence, which removes the grab from gnome, when running on an X server with AllowDeactivateGrabs and AllowClosedownGrabs enabled. **Recommendations** For versions prior to 2.14, consider disabling the screensaver or restricting physical access to the system until a patch is available. As a temporary workaround, disabling the AllowDeactivateGrabs and AllowClosedownGrabs options on the X server may minimize the risk of exploitation.