CVE-2012-0064

Name of the Vulnerable Software and Affected Versions xkeyboard-config versions prior to 2.5 X.Org versions prior to 7.6

Description The issue allows physically proximate attackers to bypass an X screen lock via certain keyboard combinations that break the input grab, due to the enabling of certain XKB debugging functions by default. Exploitation of this issue can lead to a violation of confidentiality, integrity, and availability of protected information, and can be performed locally.

Recommendations For xkeyboard-config versions prior to 2.5, consider disabling the XKB debugging functions to prevent exploitation. For X.Org versions prior to 7.6, update to a version that has the XKB debugging functions disabled by default or apply a configuration change to disable these functions.