FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

xtrlock -- X display locking bypass

Affected packages
xtrlock < 2.0.10

Details

VuXML ID f7e8d2ca-410e-40b2-8748-3abd021e44a9
Discovery 2004-10-25
Entry 2005-06-01

The X display locking program xtrlock contains an integer overflow bug. It is possible for an attacker with physical access to the system to bypass the display lock.

References

CVE Name CVE-2005-0079
URL http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=278191
URL http://www.debian.org/security/2005/dsa-649
URL http://xforce.iss.net/xforce/xfdb/18991