diff options
Diffstat (limited to 'x11-misc/sddm/files/sddm-0.12.0-CVE-2015-0856.patch')
| -rw-r--r-- | x11-misc/sddm/files/sddm-0.12.0-CVE-2015-0856.patch | 34 |
1 files changed, 0 insertions, 34 deletions
diff --git a/x11-misc/sddm/files/sddm-0.12.0-CVE-2015-0856.patch b/x11-misc/sddm/files/sddm-0.12.0-CVE-2015-0856.patch deleted file mode 100644 index 7ae67735dd21..000000000000 --- a/x11-misc/sddm/files/sddm-0.12.0-CVE-2015-0856.patch +++ /dev/null @@ -1,34 +0,0 @@ -commit 4cfed6b0a625593fb43876f04badc4dd99799d86 -Author: David Edmundson <kde@davidedmundson.co.uk> -Date: Wed Oct 14 00:08:59 2015 +0100 - - Disable greeters from loading KDE's debug hander - - Some themes may use KDE components which will automatically load KDE's - crash handler. - - If the greeter were to then somehow crash, that would leave a crash - handler allowing other actions, albeit as the locked down SDDM user. - - Only SDDM users using the breeze theme from plasma-workspace are - affected. Safest and simplest fix is to handle this inside SDDM - disabling kcrash via an environment variable for all future themes that - may use these libraries. - - CVE-2015-0856 - -diff --git a/src/daemon/Greeter.cpp b/src/daemon/Greeter.cpp -index 68c4dc3..8c936b7 100644 ---- a/src/daemon/Greeter.cpp -+++ b/src/daemon/Greeter.cpp -@@ -145,6 +145,10 @@ namespace SDDM { - env.insert(QStringLiteral("XDG_VTNR"), QString::number(m_display->terminalId())); - env.insert(QStringLiteral("XDG_SESSION_CLASS"), QStringLiteral("greeter")); - env.insert(QStringLiteral("XDG_SESSION_TYPE"), m_display->sessionType()); -+ -+ //some themes may use KDE components and that will automatically load KDE's crash handler which we don't want -+ //counterintuitively setting this env disables that handler -+ env.insert(QStringLiteral("KDE_DEBUG"), QStringLiteral("1")); - m_auth->insertEnvironment(env); - - // log message |