Created by Steve Beattie on 2011-03-31 and last modified on 2011-04-05
Get this branch:
bzr branch lp:~sbeattie/gdm/CVE-2011-0727-lp746053
Only Steve Beattie can upload to this branch. If you are Steve Beattie please log in for upload directions.

Branch merges

Related bugs

Related blueprints

Branch information

Steve Beattie

Recent revisions

321. By Steve Beattie on 2011-04-05

Merged in Robert Ancell's upload that I missed, adjust patch sequencing
to follow it.
* debian/patches/24_respect_system_minuid.patch:
  - Ignore entries from ck-history that are using system UIDs (LP: #696038)
* debian/patches/42_no_ecryptfs_autologin.patch:
  - Don't autologin ecryptfs users (LP: #284443)

320. By Steve Beattie on 2011-03-31

* SECURITY UPDATE: race condition allowing privilege escalation
  - debian/patches/42_CVE-2011-0727.patch: fix
    daemon/gdm-session-worker.c to copy files as session user rather
    than root followed by a subsequent chown. (LP: #746053)
  - CVE-2011-0727

319. By Martin Pitt on 2011-03-31

releasing version 2.32.0-0ubuntu13

318. By Martin Pitt on 2011-03-30

Add 41_pt_time_format.patch: Fix time format for Portugal. Thanks
jbatista! (LP: #696560)

317. By Martin Pitt on 2011-03-30

* debian/patches/36_language_environment_settings.patch:
  - Make the first item in the system LANGUAGE list serve as default
    language for new users (LP: #740754).
  - Do not apply code for faking $GDM_LANG if it is the $USER's
    first login ever (LP: #740754).
  - Check $DESKTOP_SESSION instead of $GDMSESSION to determine if
    it is a guest session.

316. By Colin Watson on 2011-03-18

releasing version 2.32.0-0ubuntu12

314. By Sebastien Bacher on 2011-03-16

releasing version 2.32.0-0ubuntu11

313. By Sebastien Bacher on 2011-03-15

releasing version 2.32.0-0ubuntu10

312. By Sebastien Bacher on 2011-03-15

* debian/patches/01git_xdmcp_ipv6.patch:
  - git commit to fix xdmcp issue when ipv6 is used

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
This branch contains Public information 
Everyone can see this information.