Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
GNOME Shell 3.14.x before 3.14.1, when the Screen Lock feature is used, does not limit the aggregate memory consumption of all active PrtSc requests, which allows physically proximate attackers to execute arbitrary commands on an unattended workstation by making many PrtSc requests and leveraging a temporary lock outage, and the resulting temporary shell availability, caused by the Linux kernel OOM killer.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GNOME Shell 资源管理错误漏洞
Vulnerability Description
GNOME Shell(也称gnome-shell)是GNOME项目的一个GNOME桌面环境3.0及其后续版本中所使用的核心用户界面,它提供窗口切换、载入应用程序等基本功能。 GNOME Shell 3.14.0版本中存在安全漏洞,该漏洞源于程序使用Screen Lock功能时,没有限制有效的PrtSc请求的总内存消耗。攻击者可借助大量的PrtSc请求和临时锁中断利用该漏洞执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A