Add more comments about last change.

author: Brian Cameron <bcameron@src.gnome.org> 2006-04-07 20:49:30 +0000
committer: Brian Cameron <bcameron@src.gnome.org> 2006-04-07 20:49:30 +0000
commit: 71ce348b55249e8a1eccc0979354a28ddbccfa9f (patch)
tree: a7a32d9b4c6e3bbbc9239a643407ed24809ea5e3
parent: d23acdbaf2175c540cf21a0a4f4a44814e2ebf36 (diff)
download: gdm-71ce348b55249e8a1eccc0979354a28ddbccfa9f.tar.gz
2 files changed, 4 insertions, 2 deletions
diff --git a/ChangeLog b/ChangeLog
index 60288ef2..a38e0112 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,7 +1,8 @@
 2006-04-07  Brian Cameron  <brian.cameron@sun.com>
 
 	* daemon/slave.c: Now logic unlinks .ICEauthority file if it
-	  looks fishy rather than trying to chown/chmod it.
+	  looks fishy rather than trying to chown/chmod it.  This
+	  is to resolve CVE-2006-1057.
 
 2006-04-07  Brian Cameron  <brian.cameron@sun.com>
 
diff --git a/daemon/slave.c b/daemon/slave.c
index 31b0584e..dfad1700 100644
--- a/daemon/slave.c
+++ b/daemon/slave.c
@@ -3471,7 +3471,8 @@ session_child_run (struct passwd *pwent,
 				/*
                                  * If the .ICEauthority file is fishy, unlink
                                  * it and let the next program that needs it
-                                 * set it up again.  
+                                 * set it up again.  This is to resolve
+                                 * CVE-2006-1057.
                                  */
 				g_unlink (".ICEauthority");
 			}
author	Brian Cameron <bcameron@src.gnome.org>	2006-04-07 20:49:30 +0000
committer	Brian Cameron <bcameron@src.gnome.org>	2006-04-07 20:49:30 +0000
commit	71ce348b55249e8a1eccc0979354a28ddbccfa9f (patch)
tree	a7a32d9b4c6e3bbbc9239a643407ed24809ea5e3
parent	d23acdbaf2175c540cf21a0a4f4a44814e2ebf36 (diff)
download	gdm-71ce348b55249e8a1eccc0979354a28ddbccfa9f.tar.gz