*** This bug is a security vulnerability ***
You have been subscribed to a public security bug by Marc Deslauriers
(mdeslaur):
The Guest Account and its associated chroot (/tmp/guest-home-XXXXX) is
created/destroyed each time it is selected/deselected on the list
instead of being created on login.
A user can easily DOS a system from the login screen with up/down
arrows.
TEST CASE:
1. With Unity Greeter enabled, press Down to select 'Guest Account'
-> Switch to a console and verify that a directory named
/tmp/guest-home.XXXXX exists
2. Switch back to lightdm
3. Quickly press Up/Down for a few seconds to switch between the Guest Account
and another entry
-> Switch to a console and count the number of ck-history process
$ pgrep ck-history| wc -l
The number increase really quickly to the point the system becomes
unusable.
ProblemType: Bug
DistroRelease: Ubuntu 11.10
Package: unity-greeter 0.0.1-0ubuntu1
ProcVersionSignature: Ubuntu 3.0.0-5.6-generic 3.0.0-rc7
Uname: Linux 3.0.0-5-generic i686
Architecture: i386
Date: Mon Jul 25 23:58:00 2011
InstallationMedia: Ubuntu 11.04 "Natty Narwhal" - Alpha i386 (20110209)
ProcEnviron:
PATH=(custom, user)
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: unity-greeter
UpgradeStatus: No upgrade log present (probably fresh install)
** Affects: unity-greeter (Ubuntu)
Importance: High
Assignee: Canonical Desktop Team (canonical-desktop-team)
Status: New
** Affects: unity-greeter (Ubuntu Oneiric)
Importance: High
Assignee: Canonical Desktop Team (canonical-desktop-team)
Status: New
** Tags: apport-bug i386 oneiric running-unity unity-2d
--
Guest account is created/destroyed each time it is selected/deselected on the
list
https://bugs.launchpad.net/bugs/816152
You received this bug notification because you are a member of Ubuntu Bugs,
which is subscribed to the bug report.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
