Bug 847476 (CVE-2013-4459) - VUL-0: CVE-2013-4459: lightdm: lightdm no longer runs guest session through wrapper
Summary: VUL-0: CVE-2013-4459: lightdm: lightdm no longer runs guest session through ...
Status: VERIFIED INVALID
Alias: CVE-2013-4459
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other All
: P5 - None : Normal
Target Milestone: ---
Assignee: Forgotten User cAXlJ_FoSf
QA Contact: Security Team bot
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2013-10-24 13:28 UTC by Victor Pereira
Modified: 2013-10-25 06:49 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Victor Pereira 2013-10-24 13:28:53 UTC 
OSS:11353

lightdm is supposed to run the guest account through a special wrapper that
applies an AppArmor security policy so the guest is confined and has a limited
set of files which it can access. Kind of like a sandbox.

The lightdm code was refactored at some point during the 1.8 development cycle,
and the code no longer executes the wrapper, resulting in the guest account being unconfined and is now able to access user's files,

References:
https://bugs.launchpad.net/lightdm/+bug/1243339
http://comments.gmane.org/gmane.comp.security.oss.general/11353
Comment 1 Forgotten User cAXlJ_FoSf 2013-10-24 15:45:01 UTC 
I don't think this is applicable, guest sessions are not supported on openSUSE and in fact neither a guest-session-wrapper script nor the apparmor profile is shipped by our package.
Comment 2 Marcus Meissner 2013-10-25 06:49:26 UTC 
thanks for the research:)