cvs commit: ports/x11/gdm Makefile ports/x11/gdm/files
patch-daemon_slave.c
Joe Marcus Clarke
marcus at FreeBSD.org
Mon Jun 27 17:24:41 GMT 2005
marcus 2005-06-27 17:24:41 UTC
FreeBSD ports repository
Modified files:
x11/gdm Makefile
x11/gdm/files patch-daemon_slave.c
Log:
Correct a severe security issue if a user without a home directory logs in
via GDM. In such a case, the user would have had root:gdm privileges.
This is now fixed by correctly changing back to the user's uid:gid.
Submitted by: Pawel Worach <pawel.worach at gmail.com>
Obtained from: http://bugzilla.gnome.org/show_bug.cgi?id=308050
Security: This fixes a potential privilege escalation problem
Revision Changes Path
1.52 +1 -1 ports/x11/gdm/Makefile
1.2 +41 -8 ports/x11/gdm/files/patch-daemon_slave.c
More information about the cvs-all
mailing list