{"id":"USN-2184-2","summary":"unity vulnerabilities","details":"USN-2184-1 fixed lock screen vulnerabilities in Unity. Further testing has\nuncovered more issues which have been fixed in this update. This update\nalso fixes a regression with the shutdown dialogue.\n\nWe apologize for the inconvenience.\n\nOriginal advisory details:\n\n Frédéric Bardy discovered that Unity incorrectly filtered keyboard\n shortcuts when the screen was locked. A local attacker could possibly use\n this issue to run commands, and unlock the current session.\n \n Giovanni Mellini discovered that Unity could display the Dash in certain\n conditions when the screen was locked. A local attacker could possibly use\n this issue to run commands, and unlock the current session.\n","modified":"2026-04-22T08:50:20.639630Z","published":"2014-04-30T18:31:49Z","references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-2184-2"},{"type":"REPORT","url":"https://launchpad.net/bugs/1314247"}],"affected":[{"package":{"name":"unity","ecosystem":"Ubuntu:14.04:LTS","purl":"pkg:deb/ubuntu/unity@7.2.0+14.04.20140423-0ubuntu1.2?arch=source&distro=trusty"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.2.0+14.04.20140423-0ubuntu1.2"}]}],"versions":["7.1.2+13.10.20131014.1-0ubuntu1","7.1.2+14.04.20131106.1-0ubuntu1","7.1.2+14.04.20131106.1-0ubuntu2","7.1.2+14.04.20131106.1-0ubuntu4","7.1.2+14.04.20131106.1-0ubuntu5","7.1.2+14.04.20140214.1-0ubuntu1","7.1.2+14.04.20140217-0ubuntu1","7.1.2+14.04.20140218.1-0ubuntu1","7.1.2+14.04.20140218.1-0ubuntu2","7.1.2+14.04.20140220-0ubuntu1","7.1.2+14.04.20140228-0ubuntu1","7.1.2+14.04.20140303-0ubuntu1","7.1.2+14.04.20140305-0ubuntu1","7.1.2+14.04.20140311-0ubuntu1","7.1.2+14.04.20140312-0ubuntu1","7.1.2+14.04.20140313-0ubuntu1","7.1.2+14.04.20140318-0ubuntu1","7.1.2+14.04.20140320.1-0ubuntu1","7.1.2+14.04.20140321-0ubuntu1","7.1.2+14.04.20140328.1-0ubuntu1","7.2.0+14.04.20140402-0ubuntu1","7.2.0+14.04.20140403-0ubuntu1","7.2.0+14.04.20140404-0ubuntu1","7.2.0+14.04.20140410-0ubuntu1","7.2.0+14.04.20140410.1-0ubuntu1","7.2.0+14.04.20140411-0ubuntu1","7.2.0+14.04.20140414.1-0ubuntu1","7.2.0+14.04.20140416-0ubuntu1","7.2.0+14.04.20140423-0ubuntu1.1"],"ecosystem_specific":{"binaries":[{"binary_version":"7.2.0+14.04.20140423-0ubuntu1.2","binary_name":"libunity-2d-private0"},{"binary_version":"7.2.0+14.04.20140423-0ubuntu1.2","binary_name":"libunity-core-6.0-9"},{"binary_version":"7.2.0+14.04.20140423-0ubuntu1.2","binary_name":"unity"},{"binary_version":"7.2.0+14.04.20140423-0ubuntu1.2","binary_name":"unity-2d"},{"binary_version":"7.2.0+14.04.20140423-0ubuntu1.2","binary_name":"unity-2d-common"},{"binary_version":"7.2.0+14.04.20140423-0ubuntu1.2","binary_name":"unity-2d-panel"},{"binary_version":"7.2.0+14.04.20140423-0ubuntu1.2","binary_name":"unity-2d-shell"},{"binary_version":"7.2.0+14.04.20140423-0ubuntu1.2","binary_name":"unity-2d-spread"},{"binary_version":"7.2.0+14.04.20140423-0ubuntu1.2","binary_name":"unity-autopilot"},{"binary_version":"7.2.0+14.04.20140423-0ubuntu1.2","binary_name":"unity-services"}],"availability":"No subscription required"},"database_specific":{"cves_map":{"cves":[],"ecosystem":"Ubuntu:14.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2184-2.json"}}],"schema_version":"1.7.5"}