Hello community, here is the log from the commit of package gdm for openSUSE:Factory checked in at 2015-11-28 15:18:49 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/gdm (Old) and /work/SRC/openSUSE:Factory/.gdm.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "gdm" Changes: -------- --- /work/SRC/openSUSE:Factory/gdm/gdm.changes 2015-10-28 17:29:11.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.gdm.new/gdm.changes 2015-11-28 15:18:50.000000000 +0100 @@ -1,0 +2,14 @@ +Tue Nov 17 18:50:18 UTC 2015 - zai...@opensuse.org + +- Update to version 3.18.2 (boo#955552): + + Fix lock screen bypass when holding escape key (CVE-2015-7496, + bgo#758032). + + Updated translations. + +------------------------------------------------------------------- +Tue Nov 10 09:43:52 UTC 2015 - zai...@opensuse.org + +- Drop gdm-session-emit-verification-complete-for-logins.patch: Bug + fixed in gnome-shell. + +------------------------------------------------------------------- Old: ---- gdm-3.18.0.tar.xz gdm-session-emit-verification-complete-for-logins.patch New: ---- gdm-3.18.2.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ gdm.spec ++++++ --- /var/tmp/diff_new_pack.70JFEZ/_old 2015-11-28 15:18:52.000000000 +0100 +++ /var/tmp/diff_new_pack.70JFEZ/_new 2015-11-28 15:18:52.000000000 +0100 @@ -27,7 +27,7 @@ %define enable_split_authentication 0 Name: gdm -Version: 3.18.0 +Version: 3.18.2 Release: 0 Summary: The GNOME Display Manager License: GPL-2.0+ @@ -60,8 +60,6 @@ Patch35: gdm-xauthlocalhostname.patch # PATCH-FIX-UPSTREAM gdm-plymouth-vt1.patch bnc#881676 fcro...@suse.com -- switch to VT1 when quitting if gdm was starting with plymouth running Patch41: gdm-plymouth-vt1.patch -# PATCH-FIX-UPSTREAM gdm-session-emit-verification-complete-for-logins.patch bgo#754814 zai...@opensuse.org -- Fix hang on login when using Nvidia driver. -Patch42: gdm-session-emit-verification-complete-for-logins.patch BuildRequires: check-devel # needed for directory ownership BuildRequires: dconf @@ -193,7 +191,6 @@ %patch34 -p1 #patch35 -p1 %patch41 -p1 -%patch42 -p1 %build NOCONFIGURE=1 sh autogen.sh ++++++ gdm-3.18.0.tar.xz -> gdm-3.18.2.tar.xz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/gdm-3.18.0/NEWS new/gdm-3.18.2/NEWS --- old/gdm-3.18.0/NEWS 2015-09-21 16:13:09.000000000 +0200 +++ new/gdm-3.18.2/NEWS 2015-11-17 18:16:02.000000000 +0100 @@ -1,4 +1,10 @@ ============== +Version 3.18.2 +============== +- CVE-2015-7496 - lock screen bypass when holding escape key +- Translation updates + +============== Version 3.18.0 ============== - Translation updates diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/gdm-3.18.0/configure new/gdm-3.18.2/configure --- old/gdm-3.18.0/configure 2015-09-21 16:14:07.000000000 +0200 +++ new/gdm-3.18.2/configure 2015-11-17 18:16:25.000000000 +0100 @@ -1,6 +1,6 @@ #! /bin/sh # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.69 for gdm 3.18.0. +# Generated by GNU Autoconf 2.69 for gdm 3.18.2. # # Report bugs to <http://bugzilla.gnome.org/enter_bug.cgi?product=gdm>. # @@ -591,8 +591,8 @@ # Identity of this package. PACKAGE_NAME='gdm' PACKAGE_TARNAME='gdm' -PACKAGE_VERSION='3.18.0' -PACKAGE_STRING='gdm 3.18.0' +PACKAGE_VERSION='3.18.2' +PACKAGE_STRING='gdm 3.18.2' PACKAGE_BUGREPORT='http://bugzilla.gnome.org/enter_bug.cgi?product=gdm' PACKAGE_URL='' @@ -1598,7 +1598,7 @@ # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF -\`configure' configures gdm 3.18.0 to adapt to many kinds of systems. +\`configure' configures gdm 3.18.2 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... @@ -1672,7 +1672,7 @@ if test -n "$ac_init_help"; then case $ac_init_help in - short | recursive ) echo "Configuration of gdm 3.18.0:";; + short | recursive ) echo "Configuration of gdm 3.18.2:";; esac cat <<\_ACEOF @@ -1923,7 +1923,7 @@ test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF -gdm configure 3.18.0 +gdm configure 3.18.2 generated by GNU Autoconf 2.69 Copyright (C) 2012 Free Software Foundation, Inc. @@ -2513,7 +2513,7 @@ This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. -It was created by gdm $as_me 3.18.0, which was +It was created by gdm $as_me 3.18.2, which was generated by GNU Autoconf 2.69. Invocation command line was $ $0 $@ @@ -3379,7 +3379,7 @@ # Define the identity of the package. PACKAGE='gdm' - VERSION='3.18.0' + VERSION='3.18.2' cat >>confdefs.h <<_ACEOF @@ -25357,7 +25357,7 @@ # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" -This file was extended by gdm $as_me 3.18.0, which was +This file was extended by gdm $as_me 3.18.2, which was generated by GNU Autoconf 2.69. Invocation command line was CONFIG_FILES = $CONFIG_FILES @@ -25423,7 +25423,7 @@ cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`" ac_cs_version="\\ -gdm config.status 3.18.0 +gdm config.status 3.18.2 configured by $0, generated by GNU Autoconf 2.69, with options \\"\$ac_cs_config\\" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/gdm-3.18.0/configure.ac new/gdm-3.18.2/configure.ac --- old/gdm-3.18.0/configure.ac 2015-09-21 16:13:15.000000000 +0200 +++ new/gdm-3.18.2/configure.ac 2015-11-17 18:16:04.000000000 +0100 @@ -1,7 +1,7 @@ AC_PREREQ([2.60]) AC_INIT([gdm], - [3.18.0], + [3.18.2], [http://bugzilla.gnome.org/enter_bug.cgi?product=gdm]) AC_CONFIG_SRCDIR([daemon/gdm-manager.c]) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/gdm-3.18.0/daemon/gdm-manager-glue.c new/gdm-3.18.2/daemon/gdm-manager-glue.c --- old/gdm-3.18.0/daemon/gdm-manager-glue.c 2015-09-21 16:14:31.000000000 +0200 +++ new/gdm-3.18.2/daemon/gdm-manager-glue.c 2015-06-17 15:41:55.000000000 +0200 @@ -1,5 +1,5 @@ /* - * Generated by gdbus-codegen 2.45.7. DO NOT EDIT. + * Generated by gdbus-codegen 2.45.0. DO NOT EDIT. * * The license of this code is the same as for the source it was derived from. */ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/gdm-3.18.0/daemon/gdm-manager-glue.h new/gdm-3.18.2/daemon/gdm-manager-glue.h --- old/gdm-3.18.0/daemon/gdm-manager-glue.h 2015-09-21 16:14:31.000000000 +0200 +++ new/gdm-3.18.2/daemon/gdm-manager-glue.h 2015-06-17 15:41:55.000000000 +0200 @@ -1,5 +1,5 @@ /* - * Generated by gdbus-codegen 2.45.7. DO NOT EDIT. + * Generated by gdbus-codegen 2.45.0. DO NOT EDIT. * * The license of this code is the same as for the source it was derived from. */ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/gdm-3.18.0/daemon/gdm-session.c new/gdm-3.18.2/daemon/gdm-session.c --- old/gdm-3.18.0/daemon/gdm-session.c 2015-09-21 16:12:33.000000000 +0200 +++ new/gdm-3.18.2/daemon/gdm-session.c 2015-11-17 18:14:16.000000000 +0100 @@ -73,6 +73,7 @@ GDBusMethodInvocation *pending_invocation; GdmDBusWorkerManager *worker_manager_interface; GdmDBusWorker *worker_proxy; + GCancellable *worker_cancellable; char *session_id; guint32 is_stopping : 1; @@ -1040,6 +1041,8 @@ g_dbus_proxy_set_default_timeout (G_DBUS_PROXY (conversation->worker_proxy), G_MAXINT); + conversation->worker_cancellable = g_cancellable_new (); + g_signal_connect (conversation->worker_proxy, "username-changed", G_CALLBACK (worker_on_username_changed), conversation); @@ -1675,7 +1678,31 @@ g_free (conversation->starting_username); g_free (conversation->session_id); g_clear_object (&conversation->worker_manager_interface); - g_clear_object (&conversation->worker_proxy); + + g_cancellable_cancel (conversation->worker_cancellable); + g_clear_object (&conversation->worker_cancellable); + + if (conversation->worker_proxy != NULL) { + g_signal_handlers_disconnect_by_func (conversation->worker_proxy, + G_CALLBACK (worker_on_username_changed), + conversation); + g_signal_handlers_disconnect_by_func (conversation->worker_proxy, + G_CALLBACK (worker_on_session_exited), + conversation); + g_signal_handlers_disconnect_by_func (conversation->worker_proxy, + G_CALLBACK (worker_on_reauthenticated), + conversation); + g_signal_handlers_disconnect_by_func (conversation->worker_proxy, + G_CALLBACK (worker_on_saved_language_name_read), + conversation); + g_signal_handlers_disconnect_by_func (conversation->worker_proxy, + G_CALLBACK (worker_on_saved_session_name_read), + conversation); + g_signal_handlers_disconnect_by_func (conversation->worker_proxy, + G_CALLBACK (worker_on_cancel_pending_query), + conversation); + g_clear_object (&conversation->worker_proxy); + } g_clear_object (&conversation->session); g_free (conversation); } @@ -2090,7 +2117,7 @@ display_hostname, self->priv->display_is_local, self->priv->display_is_initial, - NULL, + conversation->worker_cancellable, (GAsyncReadyCallback) on_setup_complete_cb, conversation); } @@ -2156,7 +2183,7 @@ display_hostname, self->priv->display_is_local, self->priv->display_is_initial, - NULL, + conversation->worker_cancellable, (GAsyncReadyCallback) on_setup_complete_cb, conversation); } @@ -2218,7 +2245,7 @@ self->priv->display_is_local, self->priv->display_is_initial, log_file, - NULL, + conversation->worker_cancellable, (GAsyncReadyCallback) on_setup_complete_cb, conversation); } @@ -2276,7 +2303,7 @@ conversation = find_conversation_by_name (self, service_name); if (conversation != NULL) { gdm_dbus_worker_call_authenticate (conversation->worker_proxy, - NULL, + conversation->worker_cancellable, (GAsyncReadyCallback) on_authenticate_cb, conversation); } @@ -2293,7 +2320,7 @@ conversation = find_conversation_by_name (self, service_name); if (conversation != NULL) { gdm_dbus_worker_call_authorize (conversation->worker_proxy, - NULL, + conversation->worker_cancellable, (GAsyncReadyCallback) on_authorize_cb, conversation); } @@ -2310,7 +2337,7 @@ conversation = find_conversation_by_name (self, service_name); if (conversation != NULL) { gdm_dbus_worker_call_establish_credentials (conversation->worker_proxy, - NULL, + conversation->worker_cancellable, (GAsyncReadyCallback) on_establish_credentials_cb, conversation); } @@ -2324,7 +2351,8 @@ { gdm_dbus_worker_call_set_environment_variable (conversation->worker_proxy, key, value, - NULL, NULL, NULL); + conversation->worker_cancellable, + NULL, NULL); } static void @@ -2514,7 +2542,8 @@ mode = gdm_session_get_display_mode (self); gdm_dbus_worker_call_set_session_display_mode (conversation->worker_proxy, gdm_session_display_mode_to_string (mode), - NULL, NULL, NULL); + conversation->worker_cancellable, + NULL, NULL); } static void @@ -2530,7 +2559,8 @@ gdm_dbus_worker_call_set_environment_variable (conversation->worker_proxy, "XDG_SESSION_TYPE", session_type, - NULL, NULL, NULL); + conversation->worker_cancellable, + NULL, NULL); } void @@ -2548,7 +2578,7 @@ send_session_type (self, conversation); gdm_dbus_worker_call_open (conversation->worker_proxy, - NULL, + conversation->worker_cancellable, (GAsyncReadyCallback) on_opened, conversation); } } @@ -2734,7 +2764,7 @@ gdm_dbus_worker_call_start_program (conversation->worker_proxy, program, - NULL, + conversation->worker_cancellable, (GAsyncReadyCallback) on_start_program_cb, conversation); g_free (program); @@ -2866,7 +2896,7 @@ gdm_dbus_worker_call_start_reauthentication (conversation->worker_proxy, (int) pid_of_caller, (int) uid_of_caller, - NULL, + conversation->worker_cancellable, (GAsyncReadyCallback) on_reauthentication_started_cb, conversation); } @@ -3103,7 +3133,8 @@ gdm_dbus_worker_call_set_session_name (conversation->worker_proxy, get_session_name (self), - NULL, NULL, NULL); + conversation->worker_cancellable, + NULL, NULL); } } diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/gdm-3.18.0/libgdm/gdm-client-glue.h new/gdm-3.18.2/libgdm/gdm-client-glue.h --- old/gdm-3.18.0/libgdm/gdm-client-glue.h 2015-08-24 18:51:06.000000000 +0200 +++ new/gdm-3.18.2/libgdm/gdm-client-glue.h 2015-11-17 18:18:41.000000000 +0100 @@ -1,5 +1,5 @@ /* - * Generated by gdbus-codegen 2.45.4. DO NOT EDIT. + * Generated by gdbus-codegen 2.47.1. DO NOT EDIT. * * The license of this code is the same as for the source it was derived from. */ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/gdm-3.18.0/libgdm/gdm.pc new/gdm-3.18.2/libgdm/gdm.pc --- old/gdm-3.18.0/libgdm/gdm.pc 2015-09-21 16:14:20.000000000 +0200 +++ new/gdm-3.18.2/libgdm/gdm.pc 2015-11-17 18:16:35.000000000 +0100 @@ -5,6 +5,6 @@ Name: GDM Client Library Description: Client Library for communicating with GDM daemon -Version: 3.18.0 +Version: 3.18.2 Libs: -L${libdir} -lgdm Cflags: -I${includedir}/gdm
