Lucene search
GoogleOSV:CVE-2017-8288HistoryApr 27, 2017 - 12:59 a.m.
CVE-2017-8288
2017-04-2700:59:00
Google
osv.dev
6
gnome-shell 3.22 through 3.24.1 mishandles extensions that fail to reload, which can lead to leaving extensions enabled in the lock screen. With these extensions, a bystander could launch applications (but not interact with them), see information from the extensions (e.g., what applications you have opened or what music you were playing), or even execute arbitrary commands. It all depends on what extensions a user has enabled. The problem is caused by lack of exception handling in js/ui/extensionSystem.js.
Related
cvelist
cvelist
CVE-2017-8288
2017-04-27 00:00:00
nvd
nvd
CVE-2017-8288
2017-04-27 00:59:00
openvas
openvas
Mageia: Security Advisory (MGASA-2018-0057)
2022-01-28 00:00:00
Mageia: Security Advisory (MGASA-2018-0055)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:2217-1)
2021-04-19 00:00:00
nessus
nessus
SUSE SLED12 / SLES12 Security Update : gnome-shell (SUSE-SU-2017:2217-1)
2017-08-21 00:00:00
openSUSE Security Update : gnome-shell (openSUSE-2017-974)
2017-08-29 00:00:00
prion
prion
Command injection
2017-04-27 00:59:00
redhatcve
redhatcve
CVE-2017-8288
2017-04-27 09:19:10
mageia
mageia
Updated gnome-shell packages fix security vulnerability
2018-01-03 21:52:52
Updated gnome-shell packages fix security vulnerability
2018-01-03 21:52:52
debiancve
debiancve
CVE-2017-8288
2017-04-27 00:59:00
ubuntucve
ubuntucve
CVE-2017-8288
2017-04-27 00:00:00
cve
cve
CVE-2017-8288
2017-04-27 00:59:00
osv
osv
gnome-extensions-40.5-1.1 on GA media
2024-06-15 00:00:00