CVE - CVE-2016-6866

CVE-ID
CVE-2016-6866	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
slock allows attackers to bypass the screen lock via vectors involving an invalid password hash, which triggers a NULL pointer dereference and crash.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:92546 URL:http://www.securityfocus.com/bid/92546 CONFIRM:http://git.suckless.org/slock/commit/?id=d8bec0f6fdc8a246d78cb488a0068954b46fcb29 FEDORA:FEDORA-2016-1b7e66c08b URL:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2FYPV6QQPPYBL3Z2BYNYEJB67FSC55OR/ FEDORA:FEDORA-2016-985b68721b URL:https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RZPEJQNVODYSI4WQXM5GQKXRO7TPK2VG/ MISC:http://s1m0n.dft-labs.eu/files/slock/slock.txt MLIST:[oss-security] 20160818 CVE request - slock, all versions NULL pointer dereference URL:http://www.openwall.com/lists/oss-security/2016/08/18/22 MLIST:[oss-security] 20160818 Re: CVE request - slock, all versions NULL pointer dereference URL:http://www.openwall.com/lists/oss-security/2016/08/18/24
Assigning CNA
MITRE Corporation
Date Record Created
20160818	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20160818)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)