Haha. Xorg fixes CVE-2020-25712.

This exposes a bug in libcaribou, used by the Cinnamon on-screen keyboard. It crashes the parent process when "ē" is pressed.

In current versions of Cinnamon, this kills cinnamon-screensaver, unlocking the screen. Also caribou is unmaintained (Gnome used to be the upstream, but doesn't make use of the library anymore).

(This was originally linked from a recent post that I now can't find anymore in my timeline...)

@galaxis there's a heritage JWZ rant about this somewhere

Sign in to participate in the conversation
INFRa Mastodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!