Your message dated Mon, 05 Mar 2012 07:03:15 +0000
with message-id <[email protected]>
and subject line Bug#658678: fixed in lightdm 1.0.9-1
has caused the Debian Bug report #658678,
regarding lightdm: leaks FDs to child processes
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
658678: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=658678
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: lightdm
Version: 1.0.6-3
Severity: normal
Dear Maintainer,
lightdm appears to leak several file descriptors to the child process
it creates for the session, which propagate to nearly every process
running in an interactive session.
For example, running ls -l /proc/self/fd from a terminal in X yields
lrwx------ 1 amdragon amdragon 64 Feb 4 23:52 0 -> /dev/pts/15
lrwx------ 1 amdragon amdragon 64 Feb 4 23:52 1 -> /dev/pts/15
lr-x------ 1 amdragon amdragon 64 Feb 4 23:52 13 -> pipe:[10098]
l-wx------ 1 amdragon amdragon 64 Feb 4 23:52 14 -> pipe:[10098]
lr-x------ 1 amdragon amdragon 64 Feb 4 23:52 15 -> pipe:[10099]
l-wx------ 1 amdragon amdragon 64 Feb 4 23:52 16 -> pipe:[10099]
lrwx------ 1 amdragon amdragon 64 Feb 4 23:52 2 -> /dev/pts/15
lr-x------ 1 amdragon amdragon 64 Feb 4 23:52 3 -> /proc/27874/fd/
lr-x------ 1 amdragon amdragon 64 Feb 4 23:52 4 -> pipe:[9306]
l-wx------ 1 amdragon amdragon 64 Feb 4 23:52 5 -> pipe:[9306]
l-wx------ 1 amdragon amdragon 64 Feb 4 23:52 6 -> /var/log/lightdm/lightdm.log
FDs 4 through 16 were inherited from the lightdm process, as can be
seen from its open FDs,
$ sudo ls -l /proc/`pidof lightdm`/fd
total 0
lrwx------ 1 root root 64 Feb 4 23:54 0 -> /dev/null
lrwx------ 1 root root 64 Feb 4 23:54 1 -> /dev/null
lr-x------ 1 root root 64 Feb 4 23:54 10 -> pipe:[9315]
l-wx------ 1 root root 64 Feb 4 23:54 11 -> pipe:[9315]
lrwx------ 1 root root 64 Feb 4 23:54 12 -> socket:[10302]
lr-x------ 1 root root 64 Feb 4 23:54 13 -> pipe:[10098]
l-wx------ 1 root root 64 Feb 4 23:54 14 -> pipe:[10098]
lr-x------ 1 root root 64 Feb 4 23:54 15 -> pipe:[10099]
l-wx------ 1 root root 64 Feb 4 23:54 16 -> pipe:[10099]
lrwx------ 1 root root 64 Feb 4 23:54 17 -> socket:[10101]
lrwx------ 1 root root 64 Feb 4 23:54 2 -> /dev/null
lrwx------ 1 root root 64 Feb 4 23:54 3 -> anon_inode:[eventfd]
lr-x------ 1 root root 64 Feb 4 23:54 4 -> pipe:[9306]
l-wx------ 1 root root 64 Feb 4 23:54 5 -> pipe:[9306]
l-wx------ 1 root root 64 Feb 4 23:54 6 -> /var/log/lightdm/lightdm.log
lrwx------ 1 root root 64 Feb 4 23:54 7 -> anon_inode:[eventfd]
lrwx------ 1 root root 64 Feb 4 23:54 8 -> socket:[8076]
lrwx------ 1 root root 64 Feb 4 23:54 9 -> anon_inode:[eventfd]
FD 6 is particularly worrisome, as it allows any process to write to
the root-owned lightdm log.
It might be relevant that I use an .xsession script and Xmonad with no
desktop environment.
-- System Information:
Debian Release: wheezy/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 3.1.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages lightdm depends on:
ii adduser 3.113
ii consolekit 0.4.5-1
ii dbus 1.4.16-1
ii debconf [debconf-2.0] 1.5.41
ii libc6 2.13-23
ii libglib2.0-0 2.30.2-4
ii libpam0g 1.1.3-6
ii libxcb1 1.7-4
ii libxdmcp6 1:1.1.0-4
ii lightdm-gtk-greeter 1.0.6-3
Versions of packages lightdm recommends:
ii xserver-xorg 1:7.6+10
Versions of packages lightdm suggests:
ii accountsservice 0.6.15-2
-- debconf information:
lightdm/daemon_name: /usr/sbin/lightdm
* shared/default-x-display-manager: lightdm
--- End Message ---
--- Begin Message ---
Source: lightdm
Source-Version: 1.0.9-1
We believe that the bug you reported is fixed in the latest version of
lightdm, which is due to be installed in the Debian FTP archive:
liblightdm-gobject-1-0_1.0.9-1_amd64.deb
to main/l/lightdm/liblightdm-gobject-1-0_1.0.9-1_amd64.deb
liblightdm-gobject-dev_1.0.9-1_amd64.deb
to main/l/lightdm/liblightdm-gobject-dev_1.0.9-1_amd64.deb
liblightdm-qt-1-0_1.0.9-1_amd64.deb
to main/l/lightdm/liblightdm-qt-1-0_1.0.9-1_amd64.deb
liblightdm-qt-dev_1.0.9-1_amd64.deb
to main/l/lightdm/liblightdm-qt-dev_1.0.9-1_amd64.deb
lightdm-gtk-greeter_1.0.9-1_amd64.deb
to main/l/lightdm/lightdm-gtk-greeter_1.0.9-1_amd64.deb
lightdm-qt-greeter_1.0.9-1_amd64.deb
to main/l/lightdm/lightdm-qt-greeter_1.0.9-1_amd64.deb
lightdm-vala_1.0.9-1_amd64.deb
to main/l/lightdm/lightdm-vala_1.0.9-1_amd64.deb
lightdm_1.0.9-1.debian.tar.gz
to main/l/lightdm/lightdm_1.0.9-1.debian.tar.gz
lightdm_1.0.9-1.dsc
to main/l/lightdm/lightdm_1.0.9-1.dsc
lightdm_1.0.9-1_amd64.deb
to main/l/lightdm/lightdm_1.0.9-1_amd64.deb
lightdm_1.0.9.orig.tar.gz
to main/l/lightdm/lightdm_1.0.9.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Yves-Alexis Perez <[email protected]> (supplier of updated lightdm package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 05 Mar 2012 07:48:53 +0100
Source: lightdm
Binary: lightdm lightdm-gtk-greeter lightdm-qt-greeter lightdm-vala
liblightdm-gobject-1-0 liblightdm-qt-1-0 liblightdm-gobject-dev
liblightdm-qt-dev
Architecture: source amd64
Version: 1.0.9-1
Distribution: unstable
Urgency: low
Maintainer: Debian Xfce Maintainers <[email protected]>
Changed-By: Yves-Alexis Perez <[email protected]>
Description:
liblightdm-gobject-1-0 - simple display manager (gobject library)
liblightdm-gobject-dev - simple display manager (gobject development files)
liblightdm-qt-1-0 - simple display manager (Qt library)
liblightdm-qt-dev - simple display manager (Qt development files)
lightdm - simple display manager
lightdm-gtk-greeter - simple display manager (GTK+ greeter)
lightdm-qt-greeter - simple display manager (Qt greeter)
lightdm-vala - simple display manager (Vala files)
Closes: 658678
Changes:
lightdm (1.0.9-1) unstable; urgency=low
.
* New upstream release.
- don't leak fds to child processes. closes: #658678
* debian/watch updated to track 1.0 branch.
* debian/patches:
- 07_CVE-2011-4105 removed, code not present anymore.
- 08_CVE-2011-3153 dropped, included upstream.
Checksums-Sha1:
ee180f15dc0524d049418855716994462f5548c0 2685 lightdm_1.0.9-1.dsc
bde8f846aa4b8013797d7a7b04f04d5130242f27 651067 lightdm_1.0.9.orig.tar.gz
02f5a23893316de6fecc335667476ca9eb232680 33800 lightdm_1.0.9-1.debian.tar.gz
9e25d3b7ee05e08ae409f6c138e3d482bd2e7980 125766 lightdm_1.0.9-1_amd64.deb
6ed5fde11ce5a35fd4735a610c5159fe36b95f8a 30830
lightdm-gtk-greeter_1.0.9-1_amd64.deb
69eb8cb638f3a94b6befe6a4cbb7a5e859d9ed7d 23518
lightdm-qt-greeter_1.0.9-1_amd64.deb
2f222385a066f303e1a8855e396c3d142d375151 5762 lightdm-vala_1.0.9-1_amd64.deb
11f0252845c9991332feea875c65abc8e2c790ad 30326
liblightdm-gobject-1-0_1.0.9-1_amd64.deb
f23ea4afdcdfa9bb520362966fa3657abb425e8a 52254
liblightdm-qt-1-0_1.0.9-1_amd64.deb
49972cd03331d31b988a412bf6047ea9bd5379b8 53248
liblightdm-gobject-dev_1.0.9-1_amd64.deb
9d57c6eeea10937267176cc14bb46b509cb94fb2 64074
liblightdm-qt-dev_1.0.9-1_amd64.deb
Checksums-Sha256:
3894c63f1bd20f7d3871f0e461548fb6a344a3c32069b6874e75a58786516889 2685
lightdm_1.0.9-1.dsc
d1ef9067be01672ea56083463415284bfc2ae2878442f95e71e3cfc1148dee5c 651067
lightdm_1.0.9.orig.tar.gz
8ba187c8f0afbe7dcf39ac55f78a85dfd3082d946b44e18c09f5b08bf56593aa 33800
lightdm_1.0.9-1.debian.tar.gz
44e5aabe71070ae04ff32606c25f1f3b50666a1abbc6b71d92bfe08e7f726424 125766
lightdm_1.0.9-1_amd64.deb
b528225c1de25f63b482d9c39d4c0d80e0e42e955b5dca0869dc7ad1cc6d0970 30830
lightdm-gtk-greeter_1.0.9-1_amd64.deb
8384d80ffd69a42716788a1021ae1b5f146fa74fa5e5df606992c23925d18cda 23518
lightdm-qt-greeter_1.0.9-1_amd64.deb
afb199a63cc372bf517b57de7ce4efc56cbadc900413c4543d8023bef31f39ed 5762
lightdm-vala_1.0.9-1_amd64.deb
01911d3341e22d62a116fd36d7f9f5fc0474fb91a386f5615a3924ee50295799 30326
liblightdm-gobject-1-0_1.0.9-1_amd64.deb
f2a1b36d5a43c68ffdf755474c10ad5b52773ceb299007d45b0c6694e3dac9b3 52254
liblightdm-qt-1-0_1.0.9-1_amd64.deb
7087db7f0ea98a9c7631820d2a4a92cb1a5a4a44bf07507d1481297c6be6d65a 53248
liblightdm-gobject-dev_1.0.9-1_amd64.deb
fc06a139f3b557ffc7154153b7754f88395305aaae60c9a17b8a013891a0de12 64074
liblightdm-qt-dev_1.0.9-1_amd64.deb
Files:
d962f6da47438f9b59607683368289d5 2685 x11 optional lightdm_1.0.9-1.dsc
e18bf008cdcdf9badc8f2d957ea71c47 651067 x11 optional lightdm_1.0.9.orig.tar.gz
3dc2ef4fd0e6c5b7d07f9a24483ba014 33800 x11 optional
lightdm_1.0.9-1.debian.tar.gz
b723941a97e0d9cdd005a72cfe908b14 125766 x11 optional lightdm_1.0.9-1_amd64.deb
c675179cb69479bcc8badf9678418bde 30830 x11 optional
lightdm-gtk-greeter_1.0.9-1_amd64.deb
c08b6f644e5db2c1187fa301a741d323 23518 x11 optional
lightdm-qt-greeter_1.0.9-1_amd64.deb
29b42cb411c071388f458ce3e8ace66d 5762 x11 optional
lightdm-vala_1.0.9-1_amd64.deb
c70b371d865899b3d193bb1e82dd133a 30326 libdevel optional
liblightdm-gobject-1-0_1.0.9-1_amd64.deb
1776047164b9b3d4ec36bca1cd4154c0 52254 libdevel optional
liblightdm-qt-1-0_1.0.9-1_amd64.deb
8885c135aff18a6fc701cf33bd6aafb5 53248 libdevel optional
liblightdm-gobject-dev_1.0.9-1_amd64.deb
8a0ee91e27a9c9577a39b5a11562e00c 64074 libdevel optional
liblightdm-qt-dev_1.0.9-1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)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=c1Eh
-----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________
Pkg-xfce-devel mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-xfce-devel
