Bug#931529: gnome: Session locking does not possible
Charles BLANC ROLIN
charles at woundride.com
Sun Jul 7 09:35:56 BST 2019
Package: gdm3
Version: 3.30.2-3
Severity: grave
File: gnome
Tags: security
Justification: user security hole
Dear Maintainer,
When I try to lock my session with Windows+L touches combination, my
session is
totally closed. When I try to unlock it, I need to enter my password 2
times to
open a new session, I can't recover my locked session.
Best regards,
Charles
-- System Information:
Debian Release: 10.0
APT prefers stable
APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.19.0-5-amd64 (SMP w/4 CPU cores)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8),
LANGUAGE=fr_FR.U
TF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages gdm3 depends on:
ii accountsservice 0.6.45-2
ii adduser 3.118
ii dconf-cli 0.30.1-2
ii dconf-gsettings-backend 0.30.1-2
ii debconf [debconf-2.0] 1.5.71
ii gir1.2-gdm-1.0 3.30.2-3
ii gnome-session [x-session-manager] 3.30.1-2
ii gnome-session-bin 3.30.1-2
ii gnome-settings-daemon 3.30.2-3
ii gnome-shell 3.30.2-9
ii gnome-terminal [x-terminal-emulator] 3.30.2-2
ii gsettings-desktop-schemas 3.28.1-1
ii libaccountsservice0 0.6.45-2
ii libaudit1 1:2.8.4-3
ii libc6 2.28-10
ii libcanberra-gtk3-0 0.30-7
ii libcanberra0 0.30-7
ii libgdk-pixbuf2.0-0 2.38.1+dfsg-1
ii libgdm1 3.30.2-3
ii libglib2.0-0 2.58.3-2
ii libglib2.0-bin 2.58.3-2
ii libgtk-3-0 3.24.5-1
ii libkeyutils1 1.6-6
ii libpam-modules 1.3.1-5
ii libpam-runtime 1.3.1-5
ii libpam-systemd 241-5
ii libpam0g 1.3.1-5
ii librsvg2-common 2.44.10-2.1
ii libselinux1 2.8-1+b1
ii libsystemd0 241-5
ii libwrap0 7.6.q-28
ii libx11-6 2:1.6.7-1
ii libxau6 1:1.0.8-1+b2
ii libxcb1 1.13.1-2
ii libxdmcp6 1:1.1.2-3
ii lsb-base 10.2019051400
ii mutter [x-window-manager] 3.30.2-7
ii policykit-1 0.105-25
ii procps 2:3.3.15-2
ii ucf 3.0038+nmu1
ii x11-common 1:7.7+19
ii x11-xserver-utils 7.7+8
ii xterm [x-terminal-emulator] 344-1
Versions of packages gdm3 recommends:
ii at-spi2-core 2.30.0-7
ii desktop-base 10.0.2
ii x11-xkb-utils 7.7+4
ii xserver-xephyr 2:1.20.4-1
ii xserver-xorg 1:7.7+19
ii zenity 3.30.0-2
Versions of packages gdm3 suggests:
ii gnome-orca 3.30.1-1
pn libpam-fprintd <none>
ii libpam-gnome-keyring 3.28.2-5
-- Configuration Files:
/etc/gdm3/daemon.conf changed:
[daemon]
[security]
[xdmcp]
[chooser]
[debug]
-- debconf information:
gdm3/daemon_name: /usr/sbin/gdm3
* shared/default-x-display-manager: gdm3
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-gnome-maintainers/attachments/20190707/51dfb121/attachment.sig>
More information about the pkg-gnome-maintainers
mailing list