Ubuntu
vino package

vino-preferences does not report public IPv6 addresses

Bug #344489 reported by Sander Jonkers
28
This bug affects 4 people
Affects Status Importance Assigned to Milestone
vino
Confirmed
Critical
vino (Ubuntu)
Triaged
Low
Unassigned

Bug Description

Binary package hint: vino

Bug: vino-preferences does not report public IPv6 addresses, only IPv4 addresses.

On: Ubuntu 9.04 Jaunty Alpha 6

vino-preferences is now reporting: "Your desktop is only reachable over the local network. Others can access your computer using the address 192.168.2.150."

As vinage / vnc does now, as of Jaunty Alpha 6, correctly handle connections over Ipv6 (see https://bugs.launchpad.net/ubuntu/+source/vinagre/+bug/290394), vino-preferences should now also report (public) IPv6 addresses. Example of correct and expected behaviour:

"Your desktop is only reachable over the local network. Others can access your computer using the address 192.168.2.150.
Your desktop is reachable from Internet using Ipv6. Others can access your computer using the address 2001:838:1111::2222"

I think in vino-preferences.c the call dbus_g_proxy_call is taking care of finding out the IP addresses. I couldn't find out how to make that call dbus_g_proxy_call report back IPv6 addresses.

ubuntu@ubuntu:~$ apt-cache policy vino
vino:
  Installed: 2.25.91-0ubuntu1
  Candidate: 2.26.0-0ubuntu1
  Version table:
     2.26.0-0ubuntu1 0
        500 http://archive.ubuntu.com jaunty/main Packages
 *** 2.25.91-0ubuntu1 0
        100 /var/lib/dpkg/status
ubuntu@ubuntu:~$

Tags: ipv6
Emilio Pozuelo Monfort (pochu)
Changed in vino (Ubuntu):
importance: Undecided → Wishlist
dn (nobled)
Changed in vino (Ubuntu):
status: New → Confirmed
Revision history for this message
Andreas Gustafsson (gson) wrote :

This bug is a serious security hole. Seeing the message "Your desktop is only reachable over the local network", people may think it is safe to allow access without a password or confirmation, but if their machine has global IPv6 connectivity, anyone on the Internet can take over their desktop. This is Not Good.

Marc Deslauriers (mdeslaur)
security vulnerability: no → yes
Changed in vino (Ubuntu):
importance: Wishlist → Low
Sebastien Bacher (seb128)
Changed in vino (Ubuntu):
status: Confirmed → Triaged
Emmet Hikory (persia)
tags: added: ipv6
Bug Watch Updater (bug-watch-updater)
Changed in vino:
importance: Unknown → Medium
status: Unknown → New
Bug Watch Updater (bug-watch-updater)
Changed in vino:
importance: Medium → Critical
Revision history for this message
Sander Jonkers (jonkers) wrote :

Still no mention of IPv6 by vino-preferences in 11.04 Alpha 2 daily updated. The text is still IPv4 only:

"Your desktop is only reachable over the local network. Others can access your computer using the address 192.168.178.24 or ubuntu.local."

... my public (and private) IPv6 address is still ignored by vino-preferences, while I can connect to the IPv6 address using vinagre.

So bug is still there.

ubuntu@ubuntu:~$ apt-cache policy vino
vino:
  Installed: 2.32.1-0ubuntu1
  Candidate: 2.32.1-0ubuntu1
  Version table:
 *** 2.32.1-0ubuntu1 0
        500 http://archive.ubuntu.com/ubuntu/ natty/main i386 Packages
        100 /var/lib/dpkg/status

ubuntu@ubuntu:~$ cat /etc/lsb-release
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=11.04
DISTRIB_CODENAME=natty
DISTRIB_DESCRIPTION="Ubuntu Natty (development branch)"
ubuntu@ubuntu:~$

Bug Watch Updater (bug-watch-updater)
Changed in vino:
status: New → Confirmed
Jamie Strandboge (jdstrand)
security vulnerability: yes → no
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.