Information on source package xscreensaver

Available versions

ReleaseVersion
jessie5.30-1+deb8u2
stretch5.36-1
buster5.42+dfsg1-1
bullseye5.45+dfsg1-2
bookworm6.06+dfsg1-3+deb12u1
trixie6.08+dfsg1-1
sid6.08+dfsg1-1

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2021-34557vulnerablevulnerable (no DSA, postponed)vulnerable (no DSA)fixedfixedfixedfixedXScreenSaver 5.45 can be bypassed if the machine has more than ten dis ...
CVE-2021-31523vulnerablefixedfixedfixedfixedfixedfixedThe Debian xscreensaver 5.42+dfsg1-1 package for XScreenSaver has cap_ ...

Resolved issues

BugDescription
TEMP-0539699-BC7A2Bxscreensaver: local screen lock bypassable via low resolution video devices
TEMP-0482385-09F6D5resizing the monitor with xrandr can crash xscreensaver
TEMP-0334193-23D83Axscreensaver does not maintain screen locks during upgrade
TEMP-0000000-4E21BAxscreensaver: symlink attack enables local information disclosure
CVE-2015-8025driver/subprocs.c in XScreenSaver before 5.34 does not properly perfor ...
CVE-2011-2187xscreensaver before 5.14 crashes during activation and leaves the scre ...
CVE-2010-3586Unspecified vulnerability in Oracle Solaris 9 allows local users to af ...
CVE-2009-3101xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 10, and OpenSolar ...
CVE-2009-3100xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 9 and 10, OpenSol ...
CVE-2007-5585xscreensaver 5.03 and earlier, when running without xscreensaver-gl-ex ...
CVE-2007-3283GNOME XScreenSaver in Sun Solaris 8 and 9 before 20070417, when root i ...
CVE-2007-1859XScreenSaver 4.10, when using a remote directory service for credentia ...
CVE-2004-2655rdesktop 1.3.1 with xscreensaver 4.14, and possibly other versions, wh ...
CVE-2003-1295Unspecified vulnerability in xscreensaver 4.12, and possibly other ver ...
CVE-2003-1294Xscreensaver before 4.15 creates temporary files insecurely in (1) dri ...
CVE-2003-0885Xscreensaver 4.14 contains certain debugging code that should have bee ...

Security announcements

DSA / DLADescription
DSA-3438-1xscreensaver - security update
DLA-338-1xscreensaver - security update

Search for package or bug name: Reporting problems