*** This bug is a security vulnerability ***
You have been subscribed to a public security bug by Marc Deslauriers
(mdeslaur):
Binary package hint: unity
On resume from standby mode and upon reconnection to a wireless network,
the Unity global bar becomes visible behind GDM's password dialogue,
thereby revealing certain user-specific confidential details. This
includes the name of the wireless network, the current focused
application name (including window title, which could be a sensitive web
page). In addition, the currently focused application was visible for a
good second on my last resume, which could certainly include
confidential information.
Expected behavior: all user-specifics should remain hidden behind the
GDM prompt.
ProblemType: Bug
DistroRelease: Ubuntu 11.04
Package: unity 3.8.2-0ubuntu1
ProcVersionSignature: Ubuntu 2.6.38-7.39-generic 2.6.38
Uname: Linux 2.6.38-7-generic i686
NonfreeKernelModules: fglrx
Architecture: i386
CompizPlugins:
[core,bailer,detection,composite,opengl,decor,mousepoll,vpswitch,regex,animation,snap,expo,move,compiztoolbox,place,grid,imgpng,gnomecompat,wall,ezoom,workarounds,staticswitcher,resize,fade,unitymtgrabhandles,scale,session,unityshell]
Date: Thu Apr 7 11:31:20 2011
InstallationMedia: Ubuntu 10.10 "Maverick Meerkat" - Alpha i386 (20100831.2)
ProcEnviron:
LANGUAGE=en_GB:en
PATH=(custom, user)
LANG=en_GB.UTF-8
SHELL=/bin/bash
SourcePackage: unity
UpgradeStatus: Upgraded to natty on 2011-04-05 (2 days ago)
** Affects: unity (Ubuntu)
Importance: Undecided
Status: New
** Tags: apport-bug i386 natty running-unity
--
Privacy problem: on resume Unity bar visible through GDM
https://bugs.launchpad.net/bugs/753377
You received this bug notification because you are a member of Ubuntu Bugs,
which is a direct subscriber.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
