Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 389369 (CVE-2011-4105) - <x11-misc/lightdm-1.0.6: symlink attack (CVE-2011-4105)
Summary: <x11-misc/lightdm-1.0.6: symlink attack (CVE-2011-4105)
Status: RESOLVED FIXED
Alias: CVE-2011-4105
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal trivial (vote)
Assignee: Gentoo Security
URL: http://lists.freedesktop.org/archives...
Whiteboard: ~3 [noglsa]
Keywords:
Depends on:
Blocks:
 
Reported: 2011-11-02 20:43 UTC by Sean Amoss (RETIRED)
Modified: 2012-02-25 04:06 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Sean Amoss (RETIRED) gentoo-dev Security 2011-11-02 20:43:25 UTC 
From the upstream email notification at $URL:

Fixes a security issue where using ~/.Xauthority as a symlink would
cause LightDM to set the destination of the link to user ownership.
All users of 1.0.4 or 1.0.5 should upgrade immediately.

Overview of changes in lightdm 1.0.6

    * Use lchown for correcting ownership of ~/.Xauthority instead of chown
Comment 1 Markos Chandras (RETIRED) gentoo-dev 2011-11-02 22:52:34 UTC 
That's a bit weird. There is no 1.0.6 version for lightdm. 

https://launchpad.net/lightdm
Comment 2 Alex Legler (RETIRED) archtester gentoo-dev Security 2011-11-03 09:41:12 UTC 
(In reply to comment #1)
> That's a bit weird. There is no 1.0.6 version for lightdm. 
> 
> https://launchpad.net/lightdm

http://people.ubuntu.com/~robert-ancell/lightdm/releases/ seems to have a tarball
Comment 3 Markos Chandras (RETIRED) gentoo-dev 2011-11-04 20:24:06 UTC 
ebuild now in portage
Comment 4 Tim Sammut (RETIRED) gentoo-dev 2011-11-04 22:17:17 UTC 
(In reply to comment #3)
> ebuild now in portage

thanks. Closing noglsa for ~arch only package.
Comment 5 GLSAMaker/CVETool Bot gentoo-dev 2012-02-25 04:06:24 UTC 
CVE-2011-4105 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-4105):
  LightDM before 1.0.6 allows local users to change ownership of arbitrary
  files via a symlink attack on ~/.Xauthority.