Unrated severityNVD Advisory· Published Mar 19, 2010· Updated Apr 29, 2026
CVE-2010-0732
CVE-2010-0732
Description
gdk/gdkwindow.c in GTK+ before 2.18.5, as used in gnome-screensaver before 2.28.1, performs implicit paints on windows of type GDK_WINDOW_FOREIGN, which triggers an X error in certain circumstances and consequently allows physically proximate attackers to bypass screen locking and access an unattended workstation by pressing the Enter key many times.
Affected products
2Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
15- git.gnome.org/browse/gnome-screensaver/commit/nvdPatch
- git.gnome.org/browse/gtk+/commit/nvdPatch
- www.openwall.com/lists/oss-security/2010/03/05/2nvdMailing ListPatch
- bugzilla.gnome.org/show_bug.cginvdIssue TrackingPatch
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatch
- ftp.gnome.org/pub/gnome/sources/gtk+/2.18/gtk+-2.18.5.newsnvdVendor Advisory
- git.gnome.org/browse/gnome-screensaver/commit/nvdVendor Advisory
- lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.htmlnvdThird Party Advisory
- www.heise.de/newsticker/meldung/Gnome-Bildschirmsperre-in-OpenSuse-Linux-wirkungslos-2-Update-928580.htmlnvdThird Party Advisory
- www.securityfocus.com/bid/38211nvdThird Party AdvisoryVDB Entry
- bugs.edge.launchpad.net/ubuntu/+source/gnome-screensaver/+bug/446395nvdThird Party Advisory
- secunia.com/advisories/39317nvdBroken Link
- www.mandriva.com/security/advisoriesnvdBroken Link
- www.openwall.com/lists/oss-security/2010/02/12/1nvdMailing List
- www.openwall.com/lists/oss-security/2010/03/16/9nvdMailing List
News mentions
0No linked articles in our index yet.