The notify feature in GNOME screensaver (gnome-screensaver) 2.20.0 might allow local users to read the clipboard contents and X selection data for a locked session by using ctrl-V.

Comment 2 Robert Buchholz (RETIRED) 2007-12-18 20:26:29 UTC

There are patches available here, but I have to agree with the last comments on the GNOME bug that clearing without restoring might not be expected behavior.

dito, applying this patches would be a fault imo.
This would cause many bugreports about problems with the clipboard

Comment 4 Sune Kloppenborg Jeppesen (RETIRED) 2008-01-06 18:28:57 UTC

Setting to upstream status until we have a proper patch.

Comment 5 Mart Raudsepp 2008-02-19 12:41:21 UTC

CCing maintainers...
Do we need to do anything? It seems upstream went with data loss and is seeing if someone cares about the clipboard data loss

Comment 6 Robert Buchholz (RETIRED) 2008-02-19 16:30:41 UTC

Mart, thanks for getting back on this bug.

This thing is stable, so we're here for GLSA decision. I tend to vote yes.

Comment 7 Sune Kloppenborg Jeppesen (RETIRED) 2008-02-20 08:28:58 UTC

I tend to vote NO.

Comment 8 Pierre-Yves Rofes (RETIRED) 2008-03-04 14:25:23 UTC

I vote NO.

Comment 9 Robert Buchholz (RETIRED) 2008-03-04 14:26:34 UTC

reverting to NO then, closing.