Commit Graph

8 Commits

Author SHA1 Message Date
naddy
eed7c62887 Fix build with png-1.5.
All fixes by yours truly.
2011-07-08 20:38:00 +00:00
landry
03675d01db Update to slim 1.3.2, fixes a security issue (removes . from
default_path, sometimes inherited by some window managers)
ref: http://secunia.com/advisories/41005
Removes patches merged upstream. Amend MESSAGE to teach users
who modified slim.conf how to fix it there.
Prompted by and ok jasper@
2010-08-24 11:37:50 +00:00
armani
23c1e9460e Add a fix from Freebsd :
x11/slim, does not setlogin(). Some software use getlogin()
 to decide the user name, so when user is using slim as the
 login manager, those software would get wrong results, and
 some programs refuse to start

(Seen with opencvs some times ago, reminded by a discution
with zinovik and theo and setlogin hint from guenter)

ok maintainer & dcoppa@
2010-07-10 10:46:52 +00:00
landry
e9ec1693c7 Fix a nasty race condition/crash reported by 'goebbels@wp.pl' : when an
X session finishes, slim goes to restart X, but if the machine is being
halted, slim gets a SIGTERM, and the signal handler tries to kill the X
server without checking if is has been restarted yet. Boom.
While here, fix xauth path.
2009-11-05 19:05:12 +00:00
landry
b6a02eab6a Add a bunch of patches to fix CVE-2009-1756, also reported in debian bz
#529306 & FreeBSD PR134801 :
The security issue is caused by slim generating the X authority file
by passing the X authority cookie via the command line to "xauth".
This can be exploited to disclose the X authority cookie by consulting
the process list and e.g. gain access the user's display.
While here, use slightly better random seeding for cookie generation.

Patches adapted from the ones provided to debian/FreeBSD by Eygene Ryabinkin <rea@codelabs.ru>
2009-09-04 20:24:25 +00:00
pea
dd3c1972ee Upgrade to 1.3.1
Initial diff by me with tweaks by landry@ and ajacoutot@

OK landry@ ajacoutot@
2008-11-05 13:36:41 +00:00
landry
977cad4e9d Provide saner defaults for slim.conf, use sh -l instead of sh - to make it
read $HOME/.profile. Reported by Rodolfo Gouveia, thanks !

ok jasper@
2007-12-30 10:46:49 +00:00
landry
34bd294035 Import slim, a lightweight graphical login manager.
Additional themes availables in -themes subpackage.

Testing and feedback from kili@ and ajacoutot@, ok ajacoutot@ and jasper@
2007-10-24 23:32:00 +00:00