caribou-0.4.21-7.2 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10674 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z caribou-0.4.21-7.2 on GA media These are all security issues fixed in the caribou-0.4.21-7.2 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10674 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:10674 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2021-3567/ SUSE CVE CVE-2021-3567 page openSUSE Tumbleweed caribou-0.4.21-7.2 caribou-common-0.4.21-7.2 caribou-devel-0.4.21-7.2 caribou-gtk-module-common-0.4.21-7.2 caribou-gtk2-module-0.4.21-7.2 caribou-gtk3-module-0.4.21-7.2 caribou-lang-0.4.21-7.2 libcaribou0-0.4.21-7.2 typelib-1_0-Caribou-1_0-0.4.21-7.2 caribou-0.4.21-7.2 as a component of openSUSE Tumbleweed caribou-common-0.4.21-7.2 as a component of openSUSE Tumbleweed caribou-devel-0.4.21-7.2 as a component of openSUSE Tumbleweed caribou-gtk-module-common-0.4.21-7.2 as a component of openSUSE Tumbleweed caribou-gtk2-module-0.4.21-7.2 as a component of openSUSE Tumbleweed caribou-gtk3-module-0.4.21-7.2 as a component of openSUSE Tumbleweed caribou-lang-0.4.21-7.2 as a component of openSUSE Tumbleweed libcaribou0-0.4.21-7.2 as a component of openSUSE Tumbleweed typelib-1_0-Caribou-1_0-0.4.21-7.2 as a component of openSUSE Tumbleweed A flaw was found in Caribou due to a regression of CVE-2020-25712 fix. An attacker could use this flaw to bypass screen-locking applications that leverage Caribou as an input mechanism. The highest threat from this vulnerability is to system availability. CVE-2021-3567 openSUSE Tumbleweed:caribou-0.4.21-7.2 openSUSE Tumbleweed:caribou-common-0.4.21-7.2 openSUSE Tumbleweed:caribou-devel-0.4.21-7.2 openSUSE Tumbleweed:caribou-gtk-module-common-0.4.21-7.2 openSUSE Tumbleweed:caribou-gtk2-module-0.4.21-7.2 openSUSE Tumbleweed:caribou-gtk3-module-0.4.21-7.2 openSUSE Tumbleweed:caribou-lang-0.4.21-7.2 openSUSE Tumbleweed:libcaribou0-0.4.21-7.2 openSUSE Tumbleweed:typelib-1_0-Caribou-1_0-0.4.21-7.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-3567.html CVE-2021-3567 https://bugzilla.suse.com/1186617 SUSE Bug 1186617