-
Michael Stapelberg authored
from Ubuntu’s patches/pam-check-runtime-dir-user.patch: From: Martin Pitt <martinpitt@gnome.org> Date: Wed, 13 Nov 2013 13:02:28 +0100 Subject: [PATCH] pam: Check $XDG_RUNTIME_DIR owner http://standards.freedesktop.org/basedir-spec/basedir-spec-latest.html requires that $XDG_RUNTIME_DIR "MUST be owned by the user, and he MUST be the only one having read and write access to it.". Don't set an existing $XDG_RUNTIME_DIR in the PAM module if it isn't owned by the session user. Otherwise su sessions get a runtime dir from a different user which leads to either permission errors or scribbling over the other user's files. Bug-Fedora: https://bugzilla.redhat.com/show_bug.cgi?id=753882 Bug-Ubuntu: https://launchpad.net/bugs/1197395
15199d3e