[ubuntu/precise] lightdm 1.0.6-0ubuntu3 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Tue Nov 15 20:01:56 UTC 2011 

lightdm (1.0.6-0ubuntu3) precise; urgency=low

  * SECURITY UPDATE: file contents disclosure via hard link
    - debian/patches/04_CVE-2011-4105.patch: make sure file isn't a symlink
      or a hard link before doing the chown on it.
    - CVE-2011-4105
  * SECURITY UPDATE: file contents disclosure via links (LP: #883865)
    - debian/patches/05_CVE-2011-3153.patch: drop privileges before
      accessing file.
    - CVE-2011-3153

Date: Tue, 15 Nov 2011 14:23:53 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Robert Ancell <robert.ancell at ubuntu.com>
https://launchpad.net/ubuntu/precise/+source/lightdm/1.0.6-0ubuntu3
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 15 Nov 2011 14:23:53 -0500
Source: lightdm
Binary: lightdm lightdm-gtk-greeter lightdm-qt-greeter liblightdm-gobject-1-0 gir1.2-lightdm-1 liblightdm-qt-1-0 liblightdm-gobject-1-dev liblightdm-qt-1-dev liblightdm-gobject-1-doc
Architecture: source
Version: 1.0.6-0ubuntu3
Distribution: precise
Urgency: low
Maintainer: Robert Ancell <robert.ancell at ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 gir1.2-lightdm-1 - Typelib file for liblightdm-1
 liblightdm-gobject-1-0 - LightDM GObject client library
 liblightdm-gobject-1-dev - LightDM client library (development files)
 liblightdm-gobject-1-doc - LightDM client library (documentation)
 liblightdm-qt-1-0 - LightDM Qt client library
 liblightdm-qt-1-dev - LightDM client library (development files)
 lightdm    - Display Manager
 lightdm-gtk-greeter - LightDM GTK+ Greeter
 lightdm-qt-greeter - LightDM Qt Greeter
Launchpad-Bugs-Fixed: 883865
Changes: 
 lightdm (1.0.6-0ubuntu3) precise; urgency=low
 .
   * SECURITY UPDATE: file contents disclosure via hard link
     - debian/patches/04_CVE-2011-4105.patch: make sure file isn't a symlink
       or a hard link before doing the chown on it.
     - CVE-2011-4105
   * SECURITY UPDATE: file contents disclosure via links (LP: #883865)
     - debian/patches/05_CVE-2011-3153.patch: drop privileges before
       accessing file.
     - CVE-2011-3153
Checksums-Sha1: 
 c71b11b87bd4f3318b567e7a25a05678a779e402 2546 lightdm_1.0.6-0ubuntu3.dsc
 e9d653fa25232ef448f6d97408e04b88875d59c8 43509 lightdm_1.0.6-0ubuntu3.diff.gz
Checksums-Sha256: 
 f6f6fb5bb09d59a1b65af71eb39d2992f1871ef5a8b3ab37d066e5b6115b9283 2546 lightdm_1.0.6-0ubuntu3.dsc
 edf2650681f55e3b87ba0107e7a27b096a3d9f6a4b9d73d82c9e42cd78617a2d 43509 lightdm_1.0.6-0ubuntu3.diff.gz
Files: 
 1197f89d71debd249bf7c8d462aa773d 2546 x11 optional lightdm_1.0.6-0ubuntu3.dsc
 16106d6f49e2ad14bf4489ea9ce319e4 43509 x11 optional lightdm_1.0.6-0ubuntu3.diff.gz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
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=Zug2
-----END PGP SIGNATURE-----

More information about the Precise-changes mailing list