Package: gnome-screensaver Version: 3.6.1-10 Followup-For: Bug #895477 Dear Maintainer,
I found out in the wrong way that gnome-screensaver is insecure and can lead to security breaches, in quite an easy way (as my children found out by accident). I was unaware that it was unmaintained, so I've been running it with false confidence for two years. Had I known that it was dead, I would have used xscreensaver instead, or any other screensaver program. Please remove gnome-screensaver from Debian, or replace it with a version that's being actively maintained. I have purged it from my system and installed xscreensaver to replace it. However, lack of actual security might still bite some people. -- System Information: Debian Release: 10.9 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-debug'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 5.10.0-0.bpo.3-amd64 (SMP w/16 CPU cores) Locale: LANG=es_CL.UTF-8, LC_CTYPE=es_CL.UTF-8 (charmap=UTF-8), LANGUAGE=es_CL.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages gnome-screensaver depends on: ii dbus-user-session [default-dbus-session-bus] 1.12.20-0+deb10u1 ii dbus-x11 [dbus-session-bus] 1.12.20-0+deb10u1 ii gsettings-desktop-schemas 3.28.1-1 ii libc6 2.28-10 ii libcairo2 1.16.0-4+deb10u1 ii libdbus-1-3 1.12.20-0+deb10u1 ii libdbus-glib-1-2 0.110-4 ii libgdk-pixbuf2.0-0 2.38.1+dfsg-1 ii libglib2.0-0 2.58.3-2+deb10u2 ii libgnome-desktop-3-17 3.30.2.1-2 ii libgnomekbd8 3.26.1-1 ii libgtk-3-0 3.24.5-1 ii libpam0g 1.3.1-5 ii libsystemd0 241-7~deb10u7 ii libx11-6 2:1.6.7-1+deb10u1 ii libxext6 2:1.3.3-1+b2 ii libxklavier16 5.4-4 ii libxxf86vm1 1:1.1.4-1+b2 Versions of packages gnome-screensaver recommends: ii gnome-power-manager 3.30.0-2 ii libpam-gnome-keyring 3.28.2-5 gnome-screensaver suggests no packages.
