Document gdm lock screen bypass

Security: CVE-2015-7496
author: Koop Mast <kwm@FreeBSD.org> 2015-11-18 10:18:23 +0000
committer: Koop Mast <kwm@FreeBSD.org> 2015-11-18 10:18:23 +0000
commit: 656fe96fd7130383ac1850bf2cc547dca59e84fd (patch)
tree: e42fc400a3dd0d10cd7a609af89be24eee7b27e9
parent: - Add LICENSE_FILE (diff)
1 files changed, 27 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index 6415c30ed852..69ae774f43b9 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -58,6 +58,33 @@ Notes:
 
 -->
 <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+  <vuln vid="68847b20-8ddc-11e5-b69c-c86000169601">
+    <topic>gdm -- lock screen bypass when holding escape key</topic>
+    <affects>
+      <package>
+	<name>gdm</name>
+	<range><lt>3.16.2_1</lt></range>
+      </package>
+    </affects>
+    <description>
+      <body xmlns="http://www.w3.org/1999/xhtml">
+	<p>Ray Strode reports:</p>
+	<blockquote cite="https://mail.gnome.org/archives/ftp-release-list/2015-November/msg00074.html">
+	  <p>CVE-2015-7496 - lock screen bypass when holding escape key.</p>
+	</blockquote>
+      </body>
+    </description>
+    <references>
+      <cvename>CVE-2015-7496</cvename>
+      <url>https://mail.gnome.org/archives/ftp-release-list/2015-November/msg00074.html</url>
+      <url>https://bugzilla.gnome.org/show_bug.cgi?id=758032</url>
+    </references>
+    <dates>
+      <discovery>2015-11-12</discovery>
+      <entry>2015-11-18</entry>
+    </dates>
+  </vuln>
+
   <vuln vid="3eb0ccc2-8c6a-11e5-8519-005056ac623e">
     <topic>strongswan -- authentication bypass vulnerability in the eap-mschapv2 plugin</topic>
     <affects>
author	Koop Mast <kwm@FreeBSD.org>	2015-11-18 10:18:23 +0000
committer	Koop Mast <kwm@FreeBSD.org>	2015-11-18 10:18:23 +0000
commit	656fe96fd7130383ac1850bf2cc547dca59e84fd (patch)
tree	e42fc400a3dd0d10cd7a609af89be24eee7b27e9
parent	- Add LICENSE_FILE (diff)