USN-2184-2

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/notices/USN-2184-2

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2184-2.json

JSON Data

https://api.osv.dev/v1/vulns/USN-2184-2

Published

2014-04-30T18:31:49Z

Modified

2026-04-22T08:50:20.639630Z

Summary

unity vulnerabilities

Details

USN-2184-1 fixed lock screen vulnerabilities in Unity. Further testing has uncovered more issues which have been fixed in this update. This update also fixes a regression with the shutdown dialogue.

We apologize for the inconvenience.

Original advisory details:

Frédéric Bardy discovered that Unity incorrectly filtered keyboard shortcuts when the screen was locked. A local attacker could possibly use this issue to run commands, and unlock the current session.

Giovanni Mellini discovered that Unity could display the Dash in certain conditions when the screen was locked. A local attacker could possibly use this issue to run commands, and unlock the current session.

References

Affected packages

Ubuntu:14.04:LTS / unity

Package

Name: unity
Purl: pkg:deb/ubuntu/unity@7.2.0+14.04.20140423-0ubuntu1.2?arch=source&distro=trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.2.0+14.04.20140423-0ubuntu1.2

Affected versions

7.*

7.1.2+13.10.20131014.1-0ubuntu1

7.1.2+14.04.20131106.1-0ubuntu1

7.1.2+14.04.20131106.1-0ubuntu2

7.1.2+14.04.20131106.1-0ubuntu4

7.1.2+14.04.20131106.1-0ubuntu5

7.1.2+14.04.20140214.1-0ubuntu1

7.1.2+14.04.20140217-0ubuntu1

7.1.2+14.04.20140218.1-0ubuntu1

7.1.2+14.04.20140218.1-0ubuntu2

7.1.2+14.04.20140220-0ubuntu1

7.1.2+14.04.20140228-0ubuntu1

7.1.2+14.04.20140303-0ubuntu1

7.1.2+14.04.20140305-0ubuntu1

7.1.2+14.04.20140311-0ubuntu1

7.1.2+14.04.20140312-0ubuntu1

7.1.2+14.04.20140313-0ubuntu1

7.1.2+14.04.20140318-0ubuntu1

7.1.2+14.04.20140320.1-0ubuntu1

7.1.2+14.04.20140321-0ubuntu1

7.1.2+14.04.20140328.1-0ubuntu1

7.2.0+14.04.20140402-0ubuntu1

7.2.0+14.04.20140403-0ubuntu1

7.2.0+14.04.20140404-0ubuntu1

7.2.0+14.04.20140410-0ubuntu1

7.2.0+14.04.20140410.1-0ubuntu1

7.2.0+14.04.20140411-0ubuntu1

7.2.0+14.04.20140414.1-0ubuntu1

7.2.0+14.04.20140416-0ubuntu1

7.2.0+14.04.20140423-0ubuntu1.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "7.2.0+14.04.20140423-0ubuntu1.2",
            "binary_name": "libunity-2d-private0"
        },
        {
            "binary_version": "7.2.0+14.04.20140423-0ubuntu1.2",
            "binary_name": "libunity-core-6.0-9"
        },
        {
            "binary_version": "7.2.0+14.04.20140423-0ubuntu1.2",
            "binary_name": "unity"
        },
        {
            "binary_version": "7.2.0+14.04.20140423-0ubuntu1.2",
            "binary_name": "unity-2d"
        },
        {
            "binary_version": "7.2.0+14.04.20140423-0ubuntu1.2",
            "binary_name": "unity-2d-common"
        },
        {
            "binary_version": "7.2.0+14.04.20140423-0ubuntu1.2",
            "binary_name": "unity-2d-panel"
        },
        {
            "binary_version": "7.2.0+14.04.20140423-0ubuntu1.2",
            "binary_name": "unity-2d-shell"
        },
        {
            "binary_version": "7.2.0+14.04.20140423-0ubuntu1.2",
            "binary_name": "unity-2d-spread"
        },
        {
            "binary_version": "7.2.0+14.04.20140423-0ubuntu1.2",
            "binary_name": "unity-autopilot"
        },
        {
            "binary_version": "7.2.0+14.04.20140423-0ubuntu1.2",
            "binary_name": "unity-services"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2184-2.json"

cves_map

{
    "ecosystem": "Ubuntu:14.04:LTS",
    "cves": []
}