Fedora 34: 2021-1650d8039e Moderate: gdm Session Lock Bug

GDM, the GNOME Display Manager, handles authentication-related backend

functionality for logging in a user and unlocking the user's session after

it's been locked. GDM also provides functionality for initiating user-switching,

so more than one user can be logged in at the same time. It handles

graphical session registration with the system for both local and remote

sessions (in the latter case, via the XDMCP protocol). In cases where the

session doesn't provide it's own display server, GDM can start the display

server on behalf of the session.

gdm 3.38.2.1 release: - Address autologin unlock bug issue (CVE-2020-27837) -Translation updates

* Sat Dec 19 2020 Kalev Lember - 1:3.38.2.1-1

- Update to 3.38.2.1

[ 1 ] Bug #1906812 - CVE-2020-27837 gdm: lock screen bypass when autologin is set

https://bugzilla.redhat.com/show_bug.cgi?id=1906812

su -c 'dnf upgrade --advisory FEDORA-2020-1650d8012f' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/