Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 488
Alerts This Week
Warning Icon 1 488

Fedora 23: 2016-7e817cbf55 Moderate: slock Crash Due To Invalid Hash

fedora
Calendar Grey September 9, 2016
Dist Fedora Esm H88
Fedora 23 slock patch resolves bug causing crashes during password verification if no shadow hash entry is present.
This release fixes CVE-2016-6866, a crash when verifying a password for a user without a valid shadow hash entry.

Summary

This is the simplest X screen locker we are aware of. It is stable and

quite a lot people in this community are using it every day when they

are out with friends or fetching some food from the local pub.

Update Information:

This release fixes CVE-2016-6866, a crash when verifying a password for a user without a valid shadow hash entry.

Change Log

References


[ 1 ] Bug #1368369 - CVE-2016-6866 slock: Null pointer dereference results in segmentation fault https://bugzilla.redhat.com/show_bug.cgi?id=1368369

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update slock' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
important
Lowest
Low
Medium
High
Critical

Name: slock
Product: Fedora 23
Version: 1.3
Release: 2.fc23
Summary: Simple X display locker

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.