Unrated severityNVD Advisory· Published Dec 25, 2014· Updated Jun 17, 2026
CVE-2014-7300
CVE-2014-7300
Description
GNOME Shell 3.14.x before 3.14.1, when the Screen Lock feature is used, does not limit the aggregate memory consumption of all active PrtSc requests, which allows physically proximate attackers to execute arbitrary commands on an unattended workstation by making many PrtSc requests and leveraging a temporary lock outage, and the resulting temporary shell availability, caused by the Linux kernel OOM killer.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:a:gnome:gnome-shell:3.14.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:gnome:gnome-shell:3.14.0:*:*:*:*:*:*:*
- (no CPE)range: <3.14.1
- cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
- osv-coords4 versionspkg:rpm/suse/gnome-settings-daemon&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/gnome-settings-daemon&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/gnome-settings-daemon&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/gnome-settings-daemon&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012
< 3.10.2-20.1+ 3 more
- (no CPE)range: < 3.10.2-20.1
- (no CPE)range: < 3.10.2-20.1
- (no CPE)range: < 3.10.2-20.1
- (no CPE)range: < 3.10.2-20.1
Patches
Vulnerability mechanics
References
5- git.gnome.org/browse/gnome-shell/commit/nvdIssue TrackingPatch
- git.gnome.org/browse/gnome-shell/commit/nvdIssue TrackingPatch
- openwall.com/lists/oss-security/2014/09/29/17nvdMailing ListThird Party Advisory
- rhn.redhat.com/errata/RHSA-2015-0535.htmlnvdThird Party Advisory
- bugzilla.gnome.org/show_bug.cginvdIssue TrackingVendor Advisory
News mentions
0No linked articles in our index yet.