Unauthenticated user can modify the background in a widget-lock-screen
Patrick Boutilier
boutilpj at ednet.ns.ca
Sat Mar 16 01:08:11 UTC 2013
On 03/15/2013 11:21 AM, Patrick Boutilier wrote:
> On 03/15/2013 09:40 AM, Gilboa Davara wrote:
>> Hello all,
>>
>> While testing 4.10/f17 I decided to try out the new lock screen.
>> The widget lock screen is indeed nice, but there's a major security
>> issue: An unauthenticated user can access the lock-screen setting and
>> change the background. (cashew->settings).
>>
>> Anyone else seeing this?
>> What are the chances that this is not an upstream bug? (Low, I would
>> imagine)
>
> When the screen is locked there is a cashew to press? I don't see that.
>
>
Oh, widget lock screen. Yup, I see that issue as well.
>
>
>
>
>>
>> - Gilboa
-------------- next part --------------
A non-text attachment was scrubbed...
Name: boutilpj.vcf
Type: text/x-vcard
Size: 297 bytes
Desc: not available
URL: <http://lists.fedoraproject.org/pipermail/kde/attachments/20130315/010b497a/attachment.vcf>
More information about the kde
mailing list