Ubuntu
gnome-shell package

CVE-2023-43090: avoid exposing window previews on lock screen via keyboard

Bug #2036746 reported by Jeremy Bícha
260
This bug affects 1 person
Affects Status Importance Assigned to Milestone
GNOME Shell
Fix Released
Unknown
gnome-shell (Ubuntu)
Fix Released
High
Unassigned
Jammy
Invalid
Undecided
Unassigned
Lunar
Fix Released
High
Marc Deslauriers
Mantic
Fix Released
High
Unassigned

Bug Description

Security Impact
---------------
Open windows can be viewed from the lock screen without unlocking the screen.

Test Case
---------
From upstream

This is the broken case and should not happen:

- Lock screen (e.g. Super+L)
- Press PrtScn to open screenshot tool
- Press V twice to toggle the screenshot tool from picture mode to video mode and then back to picture mode. (First bug: it should not be possible to enter video mode when the UI element is insensitive.)
- Enter the window selection mode by clicking or pressing W
- Now all of the user's windows may be viewed despite the session being locked.

Initial Testing Done
--------------------
I built the package locally. I installed the updated packages on Ubuntu 23.04 and was no longer able to reproduce the failure case.

Other Info
----------
I was unable to duplicate the failure with Ubuntu 22.04 LTS.

GNOME Shell 42 (included in 22.04 LTS) was the first GNOME release with an embedded screenshot tool; previously it used gnome-screenshot. So older versions are definitely not affected. GNOME Shell 42 reached End of Life earlier this year, but it does not appear to be affected by this issue.

This issue has been fixed for Ubuntu 23.10 with GNOME Shell 45.0

CVE References

Revision history for this message
Jeremy Bícha (jbicha) wrote :
Changed in gnome-shell (Ubuntu):
status: Confirmed → Fix Released
Changed in gnome-shell (Ubuntu Lunar):
status: New → Confirmed
Jeremy Bícha (jbicha)
information type: Public → Public Security
Marc Deslauriers (mdeslaur)
Changed in gnome-shell (Ubuntu Lunar):
assignee: nobody → Marc Deslauriers (mdeslaur)
Revision history for this message
Daniel van Vugt (vanvugt) wrote :

gnome-shell (44.3-0ubuntu2) lunar-security; urgency=medium

  * SECURITY UPDATE: Avoid exposing window previews on lock screen
    via keyboard shortcuts (CVE-2023-43090, LP: #2036746, gnome-shell#6990)

 -- Jeremy Bícha <email address hidden> Wed, 20 Sep 2023 08:32:31 -0400

tags: added: fixed-in-gnome-shell-43.9 fixed-in-gnome-shell-44.5 fixed-upstream
Changed in gnome-shell (Ubuntu Mantic):
importance: Undecided → High
Changed in gnome-shell (Ubuntu Lunar):
importance: Undecided → High
status: Confirmed → Fix Committed
assignee: Marc Deslauriers (mdeslaur) → Jeremy Bícha (jbicha)
Daniel van Vugt (vanvugt)
Changed in gnome-shell (Ubuntu Jammy):
status: New → Invalid
Bug Watch Updater (bug-watch-updater)
Changed in gnome-shell:
status: Unknown → Fix Released
Revision history for this message
Jeremy Bícha (jbicha) wrote :

Resetting status to Confirmed per https://wiki.ubuntu.com/SecurityTeam/SponsorsQueue

Changed in gnome-shell (Ubuntu Lunar):
status: Fix Committed → Confirmed
assignee: Jeremy Bícha (jbicha) → Marc Deslauriers (mdeslaur)
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package gnome-shell - 44.3-0ubuntu1.1

---------------
gnome-shell (44.3-0ubuntu1.1) lunar-security; urgency=medium

  * SECURITY UPDATE: Avoid exposing window previews on lock screen
    via keyboard shortcuts (CVE-2023-43090, LP: #2036746, gnome-shell#6990)

 -- Jeremy Bícha <email address hidden> Wed, 20 Sep 2023 08:32:31 -0400

Changed in gnome-shell (Ubuntu Lunar):
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.