From Bugzilla Helper:
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET
Description of problem:
If I use su to become root at the console, then copy some text into
the clipboard, then exit the su session, the clipboard is not
cleared. This may or may not be a security problem, for example in
a colo facility where many people have physical access to one console.
Any potential exploit requires a pretty stupid root user, which of
course is unlikely.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1.su to root from (say) joeuser
2.copy some password from a text file with the mouse
4.exit the su session
5.when you leave and joeuser sits back down, he can paste that
password into his console
the login/logout scripts need to be modified so that gpm is shut down
when no VCs are running an interactive session
gpm has been modified in release 67 so that the selection buffer will
be aged (invalidated/flushed/effectively cleared) when it receives a
The .bash_logout script still needs to be modified so that if a) tests
if running on a VT (and not a ptty or serial) using /sbin/consoletype,
b) gpm is running, then c) send a SIGUSR2 to the process via kill(1).
As .bash_logout is copied from the /etc/skel template when a new user
is created, existing users will need to manually modify their
.bash_logout to take advantage of this feature.