Nixpkgs security tracker

Untriaged

Permalink CVE-2011-3349

created 2 months ago Activity log

Created suggestion 2 months ago

lightdm before 0.9.6 writes in .dmrc and Xauthority files using …

lightdm before 0.9.6 writes in .dmrc and Xauthority files using root permissions while the files are in user controlled folders. A local user can overwrite root-owned files via a symlink, which can allow possible privilege escalation.

References

https://security-tracker.debian.org/tracker/CVE-2011-3349 x_transferredx_refsource_MISC
https://access.redhat.com/security/cve/cve-2011-3349 x_transferredx_refsource_MISC
https://www.securityfocus.com/bid/50506 x_transferredx_refsource_MISC
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=639151 x_transferredx_refsource_MISC
https://bugs.launchpad.net/debian/+source/lightdm/+bug/834079 x_transferredx_refsource_MISC
https://seclists.org/oss-sec/2011/q3/393 x_transferredx_refsource_MISC

Affected products

lightdm

==before 0.9.6

Matching in nixpkgs

pkgs.lightdm

Cross-desktop display manager

nixos-unstable 1.32.0
- nixpkgs-unstable 1.32.0
- nixos-unstable-small 1.32.0
nixos-25.11 1.32.0
- nixos-25.11-small 1.32.0
- nixpkgs-25.11-darwin 1.32.0

pkgs.lightdm_qt

Cross-desktop display manager

nixos-unstable 1.32.0
- nixpkgs-unstable 1.32.0
- nixos-unstable-small 1.32.0
nixos-25.11 1.32.0
- nixos-25.11-small 1.32.0
- nixpkgs-25.11-darwin 1.32.0

pkgs.lightdm-gtk-greeter

GTK greeter for LightDM

nixos-unstable 2.0.9
- nixpkgs-unstable 2.0.9
- nixos-unstable-small 2.0.9
nixos-25.11 2.0.9
- nixos-25.11-small 2.0.9
- nixpkgs-25.11-darwin 2.0.9

pkgs.lightdm-mini-greeter

Minimal, configurable, single-user GTK3 LightDM greeter

nixos-unstable 0.5.1
- nixpkgs-unstable 0.5.1
- nixos-unstable-small 0.5.1
nixos-25.11 0.5.1
- nixos-25.11-small 0.5.1
- nixpkgs-25.11-darwin 0.5.1

pkgs.lightdm-tiny-greeter

Tiny multi user lightdm greeter

nixos-unstable 1.2
- nixpkgs-unstable 1.2
- nixos-unstable-small 1.2
nixos-25.11 1.2
- nixos-25.11-small 1.2
- nixpkgs-25.11-darwin 1.2

pkgs.lightdm-slick-greeter

Slick-looking LightDM greeter

nixos-unstable 2.2.6
- nixpkgs-unstable 2.2.6
- nixos-unstable-small 2.2.6
nixos-25.11 2.2.3
- nixos-25.11-small 2.2.3
- nixpkgs-25.11-darwin 2.2.3

pkgs.lightdm-mobile-greeter

Simple log in screen for use on touch screens

nixos-unstable 2022-10-30
- nixpkgs-unstable 2022-10-30
- nixos-unstable-small 2022-10-30
nixos-25.11 2022-10-30
- nixos-25.11-small 2022-10-30
- nixpkgs-25.11-darwin 2022-10-30

pkgs.lightdm-enso-os-greeter

A fork of pantheon greeter that positions elements in a central and vertigal manner and adds a blur effect to the background

nixos-unstable 0.2.1
- nixpkgs-unstable 0.2.1
- nixos-unstable-small 0.2.1
nixos-25.11 0.2.1
- nixos-25.11-small 0.2.1
- nixpkgs-25.11-darwin 0.2.1

Package maintainers

@davidak David Kleuker <post@davidak.de>
@bobby285271 Bobby Rong <rjl931189261@126.com>
@eadwu Edmund Wu <edmund.wu@protonmail.com>
@prikhi Pavan Rikhi <pavan.rikhi@gmail.com>
@mnacamura Mitsuhiro Nakamura <m.nacamura@gmail.com>
@water-sucks Varun Narravula <varun@snare.dev>
@edwtjo Edward Tjörnhammar <ed@cflags.cc>

Suggestions search