lightdm (0.9.6-0ubuntu1) oneiric; urgency=low
* New upstream release:
- Only unlock displays if switched to from greeter
- Make log file not system readable
- Write ~/.Xauthority inside the session process so it cannot be hijacked
- Set PAM_TTY and PAM_XDISPLAY when opening PAM session
- Add VNC server support
- Do not write ~/.dmrc and ~/.Xauthority as root. [CVE-2011-3349]
* debian/patches/00upstream_unlock_fix.patch:
* debian/patches/04_dont_write_files_as_root.patch:
- Applied upstream
** CVE added: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2011-3349
** Changed in: lightdm (Ubuntu Oneiric)
Status: Fix Committed => Fix Released
** Changed in: lightdm
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/835996
Title:
lightdm.log should not be user readable
To manage notifications about this bug go to:
https://bugs.launchpad.net/lightdm/+bug/835996/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
