CVE-2010-2532 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2010-2532 Interim 1 8 2025-11-05T05:57:56Z current 2021-05-30T12:52:32Z 2025-11-05T05:57:56Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2010-2532 lxsession-logout in lxsession in LXDE, as used on SUSE openSUSE 11.3 and other platforms, does not lock the screen when the Suspend or Hibernate button is pressed, which might make it easier for physically proximate attackers to access an unattended laptop via a resume action. NOTE: there is no general agreement that this is a vulnerability, because separate control over locking can be an equally secure, or more secure, behavior in some threat environments. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4IE7I5U4VU7ZSJNN3DHYMM3JYGTV67J6/#4IE7I5U4VU7ZSJNN3DHYMM3JYGTV67J6 E-Mail link for SUSE-SR:2010:014 https://www.suse.com/support/security/rating/ SUSE Security Ratings lxsession-logout in lxsession in LXDE, as used on SUSE openSUSE 11.3 and other platforms, does not lock the screen when the Suspend or Hibernate button is pressed, which might make it easier for physically proximate attackers to access an unattended laptop via a resume action. NOTE: there is no general agreement that this is a vulnerability, because separate control over locking can be an equally secure, or more secure, behavior in some threat environments. CVE-2010-2532 important 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C