1 Jul
2013
1 Jul
'13
2:38 a.m.
Package: x2goclient Severity: grave Tags: security
Hi.
From: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=714588
It seems that per default (and I even found no way to disable it) x2goclient (and perhaps other related tools?) transmit the content of the clipboard to the remote host.
As this may easily contain passwords or other sensitive information, this is a extremely critical hole.
Cheers, Chris.