Security update for gdm

Announcement ID:	SUSE-SU-2019:0527-1
Rating:	moderate
References:	bsc#1112294 bsc#1112578 bsc#1113245 bsc#1113700 bsc#1120307 bsc#1124628
Cross-References:	CVE-2019-3825
CVSS scores:	CVE-2019-3825 ( SUSE ): 6.2 CVSS:3.0/AV:P/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H CVE-2019-3825 ( NVD ): 6.4 CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products:	Desktop Applications Module 15 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 15

An update that solves one vulnerability and has five security fixes can now be installed.

Description:

This update for gdm fixes the following issues:

Security issue fixed:

• CVE-2019-3825: Fixed a lock screen bypass when timed login was enabled (bsc#1124628).

Other issues fixed:

• GLX applications do not work well when the proprietary nvidia driver is used with a wayland session. Because of that this update disables wayland on that hardware (bsc#1112578).
• Fixed an issue where gdm restart fails to kill user processes (bsc#1112294 and bsc#1113245).
• Fixed a System halt in the screen with message "End of ORACLE section" (bsc#1120307).
• Fixed an issue which did not allow the returning to text console when gdm is stopped (bsc#1113700).
• Fixed an issue which was causing system hang during the load of gdm (bsc#1112578).

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• Desktop Applications Module 15
  zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-2019-527=1

Package List:

• Desktop Applications Module 15 (aarch64 ppc64le s390x x86_64)
  • gdm-debuginfo-3.26.2.1-13.19.2
  • libgdm1-3.26.2.1-13.19.2
  • gdm-devel-3.26.2.1-13.19.2
  • libgdm1-debuginfo-3.26.2.1-13.19.2
  • gdm-3.26.2.1-13.19.2
  • gdm-debugsource-3.26.2.1-13.19.2
  • typelib-1_0-Gdm-1_0-3.26.2.1-13.19.2
• Desktop Applications Module 15 (noarch)
  • gdm-lang-3.26.2.1-13.19.2
  • gdmflexiserver-3.26.2.1-13.19.2

References:

• https://www.suse.com/security/cve/CVE-2019-3825.html
• https://bugzilla.suse.com/show_bug.cgi?id=1112294
• https://bugzilla.suse.com/show_bug.cgi?id=1112578
• https://bugzilla.suse.com/show_bug.cgi?id=1113245
• https://bugzilla.suse.com/show_bug.cgi?id=1113700
• https://bugzilla.suse.com/show_bug.cgi?id=1120307
• https://bugzilla.suse.com/show_bug.cgi?id=1124628