[neon/3rdparty/sddm/Neon/release-lts] debian: Don't do recursive change of ownership of /var/lib/sddm in d/sddm.postinst
Norbert Preining
null at kde.org
Tue Mar 9 12:45:42 GMT 2021
Git commit 1a1abb4633f9679a7bfb7ad1cee80e305e247d49 by Norbert Preining.
Committed on 07/11/2020 at 00:28.
Pushed by sitter into branch 'Neon/release-lts'.
Don't do recursive change of ownership of /var/lib/sddm in d/sddm.postinst
M +1 -0 debian/changelog
M +3 -1 debian/sddm.postinst
https://invent.kde.org/neon/3rdparty/sddm/commit/1a1abb4633f9679a7bfb7ad1cee80e305e247d49
diff --git a/debian/changelog b/debian/changelog
index 39f8710..e3df7fd 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -24,6 +24,7 @@ sddm (0.19.0-1) UNRELEASED; urgency=medium
* Bump build-depends according to CMakeLists.
* Add Aurélien and myself to uploaders.
* Change maintainer to Debian Qt/KDE ...
+ * Don't do recursive change of ownership of /var/lib/sddm in d/sddm.postinst
-- Aurélien COUDERC <coucouf at debian.org> Wed, 04 Nov 2020 17:34:00 +0100
diff --git a/debian/sddm.postinst b/debian/sddm.postinst
index 6d0dd22..694e669 100644
--- a/debian/sddm.postinst
+++ b/debian/sddm.postinst
@@ -28,7 +28,9 @@ if [ ! -e /var/lib/sddm ]; then
fi
if [ -d /var/lib/sddm ]; then
- chown -R sddm:sddm /var/lib/sddm
+ # There has been a -R in version prior to 0.19
+ # but this opens up symlink attacks. Remove it.
+ chown sddm:sddm /var/lib/sddm
chmod 0750 /var/lib/sddm
fi
More information about the Neon-commits
mailing list