From ${URL} : In Fedora 19, the "Enter the Command" dialog box is visible even after you lock the screen, so anyone can write the commands in the box and execute them over a locked screen. Upstream bug: https://bugzilla.gnome.org/show_bug.cgi?id=708313 Upstream patch: https://git.gnome.org/browse/gnome-shell/commit/js/ui/main.js?id=efdf1ff755943fba1f8a9aaeff77daa3ed338088 This issue has been addressed in gnome-shell-3.10.0 Reference: https://bugzilla.redhat.com/show_bug.cgi?id=1046839 @maintainer(s): since the fixed package is already in the tree, please let us know if it is ready for the stabilization or not.
Better to stabilize this version instead: +*gnome-shell-3.8.4-r2 (27 Dec 2013) + + 27 Dec 2013; Pacho Ramos <pacho@gentoo.org> + +files/gnome-shell-3.8.4-close-rundialog.patch, +gnome-shell-3.8.4-r2.ebuild: + Fix security bug #496168 +
Arches please test and stabilize: =gnome-base/gnome-shell-3.8.4-r2 target keywords="amd64 x86"
amd64 stable
x86 stable. Maintainer(s), please cleanup. Security, please vote.
cleaned
GLSA vote: no.
Thanks for your work. GLSA vote: no Closing as noglsa