Vulnerabilities (CVE)

Filtered by vendor Suckless Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-6866 2 Fedoraproject, Suckless 2 Fedora, Slock 2024-11-21 5.0 MEDIUM 7.5 HIGH
slock allows attackers to bypass the screen lock via vectors involving an invalid password hash, which triggers a NULL pointer dereference and crash.
CVE-2012-1620 1 Suckless 1 Slock 2024-11-21 3.6 LOW N/A
slock 0.9 does not properly handle the XRaiseWindow event when the screen is locked, which might allow physically proximate attackers to obtain sensitive information by pressing a button, which reveals the desktop and active windows.
CVE-2012-0842 2 Debian, Suckless 2 Debian Linux, Surf 2024-11-21 2.1 LOW 5.5 MEDIUM
surf: cookie jar has read access from other local user