Synopsis: Important: xscreensaver security update
Issue date: 2007-05-02
CVE Names: CVE-2007-1859
Alex Yamauchi discovered a flaw in the way XScreenSaver verifies user
passwords. When a system is using a remote directory service for login
credentials, a local attacker may be able to cause a network outage causing
XScreenSaver to crash, unlocking the screen. (CVE-2007-1859)
SRPMS:
xscreensaver-4.10-21.el3.src.rpm
i386:
xscreensaver-4.10-21.el3.i386.rpm
x86_64:
xscreensaver-4.10-21.el3.x86_64.rpm
-Connie Sieh
-Troy Dawson