Package: gdm3 / 3.30.2-3

Metadata

Package Version Patches format
gdm3 3.30.2-3 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
manager don t kill timed login session immediately after .patch | (download)

daemon/gdm-manager.c | 3 2 + 1 - 0 !
1 file changed, 2 insertions(+), 1 deletion(-)

 manager: don't kill timed login session immediately after it starts

At the moment GDM is misidentifying timed login sessions as if
they are automatic login sessions.  That leads to their displays
getting killed sometimes shortly after log in.

This commit corrects the check, so that timed login sessions aren't
treated as autologin sessions.

manager session Add some debugging around starting reauth.patch | (download)

daemon/gdm-manager.c | 46 40 + 6 - 0 !
daemon/gdm-session.c | 25 21 + 4 - 0 !
2 files changed, 61 insertions(+), 10 deletions(-)

 manager,session: add some debugging around starting reauthentication

There's a bug right now dealing with timed login and reauthentication,
but it's not clear what's going on by looking at the logs.

This commit sprinkles some more logging throughout the code, to make
the bug easier to track.

session Don t allow greeter operations on an running sess.patch | (download)

daemon/gdm-session.c | 75 75 + 0 - 0 !
1 file changed, 75 insertions(+)

 session: don't allow greeter operations on an running session

If a client has a reference to a session that starts running,
refuse to allow further operations on the session.

Bug-CVE: CVE-2019-3825
GdmManager Don t perform timed login if session gets star.patch | (download)

daemon/gdm-manager.c | 8 8 + 0 - 0 !
1 file changed, 8 insertions(+)

 gdmmanager: don't perform timed login if session gets started

At the moment it's possible for the login screen to initiate
a timed login operation shortly after a user successfully starts
their session.

GDM won't complete the timed login operation, since a session is
already running, but will erroneously overwrite the username
associated with the session, misattributing the users session
to the timed login user.

Later, attempts to log in as the timed user will instead unlock the
session for the other user, since that session is now associated
with the timed login user.

This commit refuses timed login requests on sessions that are
already running, so the username doesn't get corrupted.

Bug-CVE: CVE-2019-3825
Bug: https://gitlab.gnome.org/GNOME/gdm/issues/460
16_xserver_path.patch | (download)

configure.ac | 5 4 + 1 - 0 !
1 file changed, 4 insertions(+), 1 deletion(-)

 use x_path and related environment variables when they exist

Based on a patch by Julien Cristau.

90_config_comments.patch | (download)

data/gdm.conf-custom.in | 13 13 + 0 - 0 !
1 file changed, 13 insertions(+)

 add some comments in the daemon.conf file to explain the available
 options

Thanks to Joey Hess.

91_dconf_database_path.patch | (download)

data/dconf/gdm.in | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 point to a dconf path in /var/lib/gdm3 instead of the one in
 $DATADIR

92_systemd_unit.patch | (download)

data/gdm.service.in | 8 4 + 4 - 0 !
1 file changed, 4 insertions(+), 4 deletions(-)

 configure systemd service for debian

* Regenerate dconf defaults from source files before start or reload
* Use the right executable name for Debian
* Delay restarts a little
* Don't install the display-manager.service alias, which is managed
  jointly by all Debian display managers via a debconf question

Authors: Josselin Mouette, Laurent Bigonville, Iain Lane
93_translate default desktop.patch | (download)

po/POTFILES.skip | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 fix 'make check' in po/

94_retain_xorg_log.patch | (download)

daemon/gdm-server.c | 10 6 + 4 - 0 !
1 file changed, 6 insertions(+), 4 deletions(-)

 reinstate xorg.n.log at xorg maintainers' request

Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=765771
95_accept_all_layouts.patch | (download)

data/dconf/defaults/00-upstream-settings | 3 3 + 0 - 0 !
1 file changed, 3 insertions(+)

 accept all keyboard layouts by default to prevent confusing
 behaviour (cherry picked from commit
 3b9797d759b42b85be309a1b3cbbf52cb3e47de5)