Screen locked partially with "Lock-screen"

[x0red]

Expected behaviour

Locked desktop, whole

Actual behaviour

Locked desktop, partial

Steps to reproduce the behaviour

On Laptop:

0) Plug-in external monitor through VGA (Laptop must have both HDMI and VGA inputs) and save its config through regular "Displays" application. Then, plug out VGA display. 1) Plug-in external monitor through HDMI (Laptop must have both HDMI and VGA inputs) 2) make it work, open some windows, browser, and leave it open 3) Use Lock-screen option (not logging off, just lock screen to be password protected) 4) Close laptop's lid (default behavior for this action on my laptop is to put computer into sleep) 5) Wait for laptop to complete step (4) 6) Plug out HDMI display 7) Plug in VGA display 8) Open laptop's lid and/or press some button on Laptop to back to work 9) Result (I only brushed folders' names):

MATE general version

MATE 1.20.1

Package version

Linux Distribution

Ubuntu Mate 18.04 LTS

Link to downstream report of your Distribution

[goodwid]

I experience this same issue on Linux Mint 19.1 MATE, also 1.20.1.

[lukefromdc]

Does anyone on the team have a laptop that can test this(both VGA and HDMI external outputs)? I do not. @monsta? @raveit65? Anyone else?

[raveit65]

I have, but i do not work on reports where users ignore our template.

Link to downstream report of your Distribution

[lukefromdc]

@x0red , what is the package version you tested? Did you use Ubuntu's package (and if so what is its exact version number?) or did you compile it locally? If you found this bug in a package shipped by Ubuntu you should file a bug report there, as some issues are distro-specific and in some cases (e.g distro does not rebuild after underlying library change breaks a package) there are issues that can only be fixed at the distro level.

The only reason for no downstream (distro) issue report is if you didn't use the distro's package and instead built it yourself and installed it (e.g when using git master versions).

[x0red]

@lukefromdc sorry about package version, I didn't know how to check it in time of a bug (and most important, package version of what? (didn't know what package exactly causing a bug)), but it was a regular updated on a day of a bug Ubuntu MATE 18.04 system as it shipped in official site, no custom compilations or installations was involved. If it is wrong place to file this bug, I would be thankful if you will point to the right place to file it. Thank you!

@raveit65 "Link to downstream report of your Distribution" - actually, as for newbie it is completely unclear what exactly it is and how I find this link. It might be a serious security flaw.

[lukefromdc]

The package version you need is the mate-screensaver package you got from Ubuntu. If you updated fairly recently you should have mate-screensaver_1.20.0-1 installed in Ubuntu 18.04

[hartwork]

Is this a variant of vulnerability CVE-2018-20681?

@x0red thanks for reporting this issue to the public! :+1:

On the side of the screen showing the desktop, can you move the mouse, can you start programs by clicking, can you interact with the keyboard?

@lukefromdc sorry about package version, I didn't know how to check it in time of a bug (and most important, package version of what? (didn't know what package exactly causing a bug)) [..]

You could try apt-cache policy mate-screensaver to find out about the installed version of package mate-screensaver. I get this output:

# apt-cache policy mate-screensaver
mate-screensaver:
  Installed: (none)
  Candidate: 1.20.0-1
  Version table:
     1.20.0-1 500
        500 http://archive.ubuntu.com/ubuntu bionic/universe amd64 Packages

# sed -e 2p -e d < /etc/os-release 
VERSION="18.04.4 LTS (Bionic Beaver)"

@raveit65 "Link to downstream report of your Distribution" - actually, as for newbie it is completely unclear what exactly it is and how I find this link. It might be a serious security flaw.

"Upstream" is the people working on MATE directly while "downstream" is the people packaging MATE for e.g. Ubuntu. Because packaging can introduce new bugs, especially when additional patches are applied, it can be good to file a bug downstream with the Linux distribution first in some cases, to check back with the packager if it's likely to affect upstream. To my understanding, looking at https://launchpad.net/ubuntu/+source/mate-screensaver/+bugs there is no downstream bug report for this issue.