Bug#981420: libglib2.0-0: gnome-keyring unable to unlock login keyring
Guillem Jover
guillem at debian.org
Tue Feb 2 16:06:15 GMT 2021
Control: affects -1 msmtp
On Tue, 2021-02-02 at 09:20:44 +0000, Simon McVittie wrote:
> On Mon, 01 Feb 2021 at 19:19:41 -0500, Charles Malaheenee wrote:
> > But I'm asking myself - is it only gnome-keyring affected or this
> > "security hardening" could break other GNOME/MATE parts?
>
> The security hardening change affects programs that are linked to GLib,
> and are either setuid or have elevated filesystem capabilities
> (setcap(8)), which is rare. I suspect the only ones are likely to be
> gnome-keyring and pkexec.
This also affects msmtp when using its Secret Service support. Its
debugging output is not great by default (need to send a patch for
that), but once trapping the GError from the libsecret calls, it
mentions that it cannot spawn a message bus due to the binary being
set-UID root.
Regards,
Guillem
More information about the pkg-gnome-maintainers
mailing list