Created by Reinhard Tartler on 2012-02-28 and last modified on 2012-03-05
Get this branch:
bzr branch lp:~siretart/lightdm/fix.877766
Only Reinhard Tartler can upload to this branch. If you are Reinhard Tartler please log in for upload directions.

Branch merges

Related bugs

Related blueprints

Branch information

Reinhard Tartler
Light Display Manager

Recent revisions

52. By Reinhard Tartler on 2012-03-05

add bzrignore file to ignore .pc/

51. By Reinhard Tartler on 2012-03-05

refresh patches

50. By Reinhard Tartler on 2012-03-05

actually add debian/patches/07_fix_877766.patch

49. By Reinhard Tartler on 2012-03-05

update debian/changelog

48. By Reinhard Tartler on 2012-03-05

* SECURITY UPDATE: file descriptor leak to child processes (LP: #927060)
  - debian/patches/12_dont-leak-fds.patch: clean up file descriptors in
    src/*.c, add tests to tests/*.
  - CVE number pending
* debian/patches/06_translate_prompt_label.patch:
  Enable translation of prompt_label (LP: #897166).
[ Gunnar Hjalmarsson ]
* debian/lightdm-gtk-greeter-ubuntu.conf and
  - Disclose the option to enable the language chooser.
* debian/patches/10_available_languages.patch:
  - If available, show a list of installed translations in the
    language chooser instead of a 'locale -a' list (LP: #868346).
  - Use nl_langinfo() to get language and country names for the
    language chooser labels.
  - Translate language and country names.
  - Handle @variants properly.
* debian/patches/11_set_language_in_accountsservice.patch:
  - Save item that is selected from the language chooser also when
    AccountsService is in use (LP: #868346).
* SECURITY UPDATE: file contents disclosure via hard link
  - debian/patches/04_CVE-2011-4105.patch: make sure file isn't a symlink
    or a hard link before doing the chown on it.
  - CVE-2011-4105
* SECURITY UPDATE: file contents disclosure via links (LP: #883865)
  - debian/patches/05_CVE-2011-3153.patch: drop privileges before
    accessing file.
  - CVE-2011-3153
[ Martin Pitt ]
* debian/lightdm.upstart: Put back check for "text" in kernel command line,
  for inhibiting automatic lightdm start. Check $JOB to still allow a manual
  "start lightdm" command to work. (LP: #873334)
[ Robert Ancell ]
* New upstream release:
  - Use lchown for correcting ownership of ~/.Xauthority instead of chown
* New upstream release.
  - Relax AppArmor guest profile to allow compiz to start
  - Connect up VNC settings for width, height, depth
  - Fix --enable-gtk-greeter=yes not working
  - Fix X sessions with arguments in Exec not working
  - Use previous session for automatic login or if greeter does not request
    one. (LP: #834515)
  - Correct ownership of ~/.Xauthority if upgrading from buggy version of
    LightDM that had it root owned. (LP: #871667)
  - Set default resolution of VNC to 1024x768, add settings for width, height,
    depth into lightdm.conf.
  - AppArmor profile: Fix broken gnome-keyring and dbus/gwibber, and quiesce
    annoying kernel audit messages for privileges that we definitively do not
    want to grant. (LP: #877736) (LP: #874635)
  - Set LOGNAME environment variable (LP: #875705)
  - Mark strings as translatable in GTK greeter (LP: #868613)
  [ 1.0.3]
  - Fix reference counting issue in ConsoleKit code
  - Really add the lightdm-guest-session-wrapper
  [ 1.0.2 ]
  - Fix daemon from blocking if Accounts Service does not exist
  - Fix greeter log file not being written
  - Don't set LANG environment variable if using Accounts Service.
  - Fix gdmflexiserver not working due to it not being in PATH
  - Don't authenticate the greeter user
  - Allow greeters to be disabled in configure flags
  - Fix over allocation of read buffer in greeter protocol
  - Make sure objects are cleaned up on exit
  - Fix minor memory leaks
  - Fix hugely oversized allocation in greeter buffer. Can trigger
    crashes when entering very long passwords.
* debian/patches/00bzr_guest_session_wrapper.diff:
* debian/patches/07_long_password_crash.patch:
* debian/patches/08_correct_ck_ref.patch:
  - Applied upstream
* New upstream release.
* don't start on graphics-device-added; reintroducing this reverted the fix
  for bug #615549 from maverick without explanation.
* clean up the completely illegible start rule for debian/lightdm.upstart,
  killing off the unnecessary parentheses
* debian/lightdm.upstart: when lightdm is shut down by a runlevel call,
  emit an upstart event that can be caught by plymouth so it can
  distinguish between the DM shutting down for a runlevel change vs.
  other causes. LP: #854329.

47. By Reinhard Tartler on 2012-03-02

refresh patches

46. By Reinhard Tartler on 2012-03-02

During the login process, make sure to first drop priviledges before
changing to the users home directory. On machines that have user homes
mounted with the option 'root_squash', the root user may not have
permissions and the chdir(1) syscall fails. LP: #877766.

45. By Sebastien Bacher on 2011-10-07

* debian/patches/08_correct_ck_ref.patch:
  - backported fix from Mikkel Kamstrup Erlandsen for a refcounting issue
    which leads to sessions where unity can't start (lp: #851345)

44. By Martin Pitt on 2011-10-07

Add debian/patches/00bzr_guest_session_wrapper.diff: Add back the guest
session wrapper part that was uploaded in 1.0.0-0ubuntu4. The patch was
correctly merged into trunk, but the 1.0 branch backport missed this
wrapper part and thus broke AppArmor protection entirely. (LP: #849027)

43. By Robert Ancell on 2011-10-06

* debian/patches/04_language_not_to_LANG.patch:
* debian/patches/04_dmrc_set_LANG_only.patch:
  - Replace LANG disabling code with proper fix (LP: #868149)
* debian/patches/03_launch_dbus.patch:
* debian/patches/05_gdmflexiserver_not_in_PATH.patch:
  - Refreshed
* debian/patches/06_accounts_service_timeout.patch:
  - Fix D-Bus timeout when accounts service not installed (LP: #866035)
* debian/patches/07_long_password_crash.patch:
  - Fix crash with long passwords (LP: #817186)

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
This branch contains Public information 
Everyone can see this information.