CVE-2008-0887

Name of the Vulnerable Software and Affected Versions gnome-screensaver versions prior to 2.22.1 gnome-screensaver version 2.16.1 gnome-screensaver versions prior to 2.20.0-r3

Description The issue allows physically proximate attackers to gain access to a locked session when a remote authentication server is enabled and the system experiences a network outage, causing the screensaver to crash upon an unlock attempt. This can lead to a violation of protected information. The exploitation of this issue can be performed locally.

Recommendations For gnome-screensaver versions prior to 2.22.1, update to version 2.22.1 or later to resolve the issue. For gnome-screensaver version 2.16.1, update to a version later than 2.16.1 to mitigate the risk. For gnome-screensaver versions prior to 2.20.0-r3, update to version 2.20.0-r3 or later to fix the issue. As a temporary workaround, consider disabling remote authentication server functionality until a patch is available.