dbus 1.2.24-4+squeeze2 source package in Debian
Changelog
dbus (1.2.24-4+squeeze2) stable; urgency=low * CVE-2012-3524: apply patches from upstream 1.6.6 to avoid arbitrary code execution in setuid/setgid binaries that incorrectly use libdbus without first sanitizing the environment variables inherited from their less-privileged caller (Closes: #689070). - As per upstream 1.6.8, do not check filesystem capabilities for now, only setuid/setgid, fixing regressions in certain configurations of gnome-keyring -- Simon McVittie <email address hidden> Thu, 04 Oct 2012 08:47:10 +0100
Upload details
- Uploaded by:
- Utopia Maintenance Team
- Uploaded to:
- Squeeze
- Original maintainer:
- Utopia Maintenance Team
- Architectures:
- any
- Section:
- devel
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section | |
---|---|---|---|---|
Squeeze | release | main | devel |
Builds
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
dbus_1.2.24-4+squeeze2.dsc | 2.1 KiB | 6660bed259a4bbb5e15788bf305c8b2465acb2a33dbb1d01f23d6fca2ac5cfd0 |
dbus_1.2.24.orig.tar.gz | 1.6 MiB | f12c748f4a703655e3d4c3db94cdf5a752a0cd0b36958c715804373bd3595c48 |
dbus_1.2.24-4+squeeze2.debian.tar.gz | 37.1 KiB | a32dd583f3cc6a5aef6897e8b792510c21092d1b0d5655c2755b0af4be855964 |
No changes file available.