Launchpad.net

CVE 2018-20681

mate-screensaver before 1.20.2 in MATE Desktop Environment allows physically proximate attackers to view screen content and possibly control applications. By unplugging and re-plugging or power-cycling external output devices (such as additionally attached graphical outputs via HDMI, VGA, DVI, etc.) the content of a screensaver-locked session can be revealed. In some scenarios, the attacker can execute applications, such as by clicking with a mouse.

Related bugs and status

CVE-2018-20681 (Candidate) is related to these bugs:

Bug #1768352: mate-screensaver screen lock can be bypassed by power cycling monitor

		In	Importance	Status
1768352	mate-screensaver screen lock can be bypassed by power cycling monitor	mate-screensaver (Ubuntu)	High	Fix Released
1768352	mate-screensaver screen lock can be bypassed by power cycling monitor	MATE Desktop	Unknown	Fix Released
1768352	mate-screensaver screen lock can be bypassed by power cycling monitor	mate-screensaver (Ubuntu Bionic)	High	Incomplete

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2018-20681

Related bugs and status

Related bugs

References