CVE-2016-2312

Published: Dec 23, 2016Modified: May 6, 2026

6.8

Vector

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 0.9 / Impact: 5.9

Source: NVD

Description

Turning all screens off in Plasma-workspace and kscreenlocker while the lock screen is shown can result in the screen being unlocked when turning a screen on again.

Affected (5)

Products: Kde: Kscreenlocker, Plasma Workspace · Fedoraproject: Fedora · Opensuse: Leap

2 products

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Kde Kscreenlocker	Up to 5.5.4
Kde Plasma Workspace	Up to 5.4.3

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 22
Fedoraproject Fedora	Version 23
Opensuse Leap	Version 42.1

Related CWEs

CWE-254

References (10)

http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177454.html

Source: cve@mitre.org

Third Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177557.html

Source: cve@mitre.org

Third Party Advisory

https://bugs.kde.org/show_bug.cgi?id=358125

Source: cve@mitre.org

Vendor Advisory

https://bugzilla.opensuse.org/show_bug.cgi?id=964548

Source: cve@mitre.org

Issue TrackingThird Party Advisory

https://www.kde.org/info/security/advisory-20160209-1.txt

Source: cve@mitre.org

Vendor Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177454.html