Package: xscreensaver Version: 5.03-3 Severity: serious Tags: security Justification: Security Hole - Unintended information disclosure
When xcompmgr is running, the fireworxx hack will display over the live screen (including any changes post screen-lock). This does not occur when xcompmgr is not running. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.22-3-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages xscreensaver depends on: ii libatk1.0-0 1.20.0-1 The ATK accessibility toolkit ii libc6 2.6.1-6 GNU C Library: Shared libraries ii libcairo2 1.4.10-1+b2 The Cairo 2D vector graphics libra ii libfontconfig1 2.4.91-1 generic font configuration library ii libglade2-0 1:2.6.2-1 library to load .glade files at ru ii libglib2.0-0 2.14.2-1 The GLib library of C routines ii libgtk2.0-0 2.12.1-1 The GTK+ graphical user interface ii libice6 2:1.0.4-1 X11 Inter-Client Exchange library ii libjpeg62 6b-14 The Independent JPEG Group's JPEG ii libpam0g 0.99.7.1-5 Pluggable Authentication Modules l ii libpango1.0-0 1.18.3-1 Layout and rendering of internatio ii libsm6 2:1.0.3-1+b1 X11 Session Management library ii libx11-6 2:1.0.3-7 X11 client-side library ii libxcomposite1 1:0.3.2-1+b1 X11 Composite extension library ii libxcursor1 1:1.1.9-1 X cursor management library ii libxdamage1 1:1.1.1-3 X11 damaged region extension libra ii libxext6 1:1.0.3-2 X11 miscellaneous extension librar ii libxfixes3 1:4.0.3-2 X11 miscellaneous 'fixes' extensio ii libxi6 2:1.1.3-1 X11 Input extension library ii libxinerama1 1:1.0.2-1 X11 Xinerama extension library ii libxml2 2.6.30.dfsg-2 GNOME XML library ii libxmu6 1:1.0.3-1 X11 miscellaneous utility library ii libxpm4 1:3.5.7-1 X11 pixmap library ii libxrandr2 2:1.2.2-1 X11 RandR extension library ii libxrender1 1:0.9.4-1 X Rendering Extension client libra ii libxt6 1:1.0.5-3 X11 toolkit intrinsics library ii libxxf86misc1 1:1.0.1-2 X11 XFree86 miscellaneous extensio ii libxxf86vm1 1:1.0.1-2 X11 XFree86 video mode extension l ii netpbm 2:10.0-11 Graphics conversion tools Versions of packages xscreensaver recommends: ii libjpeg-progs 6b-14 Programs for manipulating JPEG fil ii perl [perl5] 5.8.8-11.1 Larry Wall's Practical Extraction ii wamerican [wordlist] 6-2.1 American English dictionary words pn xli | xloadimage <none> (no description available) -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
