CVE-2015-1308 Information

Description

kde-workspace 4.2.0 and plasma-workspace before 5.1.95 allows remote attackers to obtain input events and consequently obtain passwords by leveraging access to the X server when the screen is locked.

Reference

http://secunia.com/advisories/62051 http://www.openwall.com/lists/oss-security/2015/01/22/6 http://www.securityfocus.com/bid/72284 https://www.kde.org/info/security/advisory-20150122-2.txt