r19356 - in /desktop/unstable/gnome-panel/debian: changelog control control.in patches/05_clock_dbus.patch patches/06_clock_permissions.patch patches/series
joss at users.alioth.debian.org
joss at users.alioth.debian.org
Tue Apr 7 10:54:00 UTC 2009
Author: joss
Date: Tue Apr 7 10:54:00 2009
New Revision: 19356
URL: http://svn.debian.org/wsvn/pkg-gnome/?sc=1&rev=19356
Log:
* 05_clock_dbus.patch: new patch, stolen upstream. Fix the D-Bus
configuration so that the applet can actually talk to the helper.
* 06_clock_permissions.patch: new patch. Fix the security hole in the
PolicyKit configuration that otherwise allows everyone to modify the
system time.
* Recommend policykit-gnome.
Added:
desktop/unstable/gnome-panel/debian/patches/05_clock_dbus.patch
desktop/unstable/gnome-panel/debian/patches/06_clock_permissions.patch
Modified:
desktop/unstable/gnome-panel/debian/changelog
desktop/unstable/gnome-panel/debian/control
desktop/unstable/gnome-panel/debian/control.in
desktop/unstable/gnome-panel/debian/patches/series
Modified: desktop/unstable/gnome-panel/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-gnome/desktop/unstable/gnome-panel/debian/changelog?rev=19356&op=diff
==============================================================================
--- desktop/unstable/gnome-panel/debian/changelog (original)
+++ desktop/unstable/gnome-panel/debian/changelog Tue Apr 7 10:54:00 2009
@@ -10,6 +10,12 @@
* New upstream release.
* 70_relibtoolize.patch: updated for the new version.
* Don’t pass gksu to time-admin anymore.
+ * 05_clock_dbus.patch: new patch, stolen upstream. Fix the D-Bus
+ configuration so that the applet can actually talk to the helper.
+ * 06_clock_permissions.patch: new patch. Fix the security hole in the
+ PolicyKit configuration that otherwise allows everyone to modify the
+ system time.
+ * Recommend policykit-gnome.
-- Josselin Mouette <joss at debian.org> Tue, 07 Apr 2009 12:07:19 +0200
Modified: desktop/unstable/gnome-panel/debian/control
URL: http://svn.debian.org/wsvn/pkg-gnome/desktop/unstable/gnome-panel/debian/control?rev=19356&op=diff
==============================================================================
--- desktop/unstable/gnome-panel/debian/control (original)
+++ desktop/unstable/gnome-panel/debian/control Tue Apr 7 10:54:00 2009
@@ -2,7 +2,7 @@
Section: gnome
Priority: optional
Maintainer: Guilherme de S. Pastore <gpastore at debian.org>
-Uploaders: Debian GNOME Maintainers <pkg-gnome-maintainers at lists.alioth.debian.org>, Josselin Mouette <joss at debian.org>, Loic Minier <lool at dooz.org>, Sebastian Dröge <slomo at debian.org>, Sjoerd Simons <sjoerd at debian.org>
+Uploaders: Debian GNOME Maintainers <pkg-gnome-maintainers at lists.alioth.debian.org>, Josselin Mouette <joss at debian.org>, Sebastian Dröge <slomo at debian.org>, Sjoerd Simons <sjoerd at debian.org>
Standards-Version: 3.8.1
Build-Depends: cdbs (>= 0.4.41),
debhelper (>= 5),
@@ -57,7 +57,8 @@
evolution-data-server,
gnome-icon-theme (>= 2.24),
alacarte,
- gvfs
+ gvfs,
+ policykit-gnome
Suggests: yelp,
gnome2-user-guide,
gnome-terminal | x-terminal-emulator,
Modified: desktop/unstable/gnome-panel/debian/control.in
URL: http://svn.debian.org/wsvn/pkg-gnome/desktop/unstable/gnome-panel/debian/control.in?rev=19356&op=diff
==============================================================================
--- desktop/unstable/gnome-panel/debian/control.in (original)
+++ desktop/unstable/gnome-panel/debian/control.in Tue Apr 7 10:54:00 2009
@@ -57,7 +57,8 @@
evolution-data-server,
gnome-icon-theme (>= 2.24),
alacarte,
- gvfs
+ gvfs,
+ policykit-gnome
Suggests: yelp,
gnome2-user-guide,
gnome-terminal | x-terminal-emulator,
Added: desktop/unstable/gnome-panel/debian/patches/05_clock_dbus.patch
URL: http://svn.debian.org/wsvn/pkg-gnome/desktop/unstable/gnome-panel/debian/patches/05_clock_dbus.patch?rev=19356&op=file
==============================================================================
--- desktop/unstable/gnome-panel/debian/patches/05_clock_dbus.patch (added)
+++ desktop/unstable/gnome-panel/debian/patches/05_clock_dbus.patch Tue Apr 7 10:54:00 2009
@@ -1,0 +1,21 @@
+Upstream commit r11473
+
+Index: gnome-panel-2.24.3/applets/clock/org.gnome.ClockApplet.Mechanism.conf
+===================================================================
+--- gnome-panel-2.24.3.orig/applets/clock/org.gnome.ClockApplet.Mechanism.conf 2009-04-07 12:35:25.400565640 +0200
++++ gnome-panel-2.24.3/applets/clock/org.gnome.ClockApplet.Mechanism.conf 2009-04-07 12:35:32.168567300 +0200
+@@ -8,12 +8,12 @@
+ <!-- Only root can own the service -->
+ <policy user="root">
+ <allow own="org.gnome.ClockApplet.Mechanism"/>
+- <allow send_interface="org.gnome.ClockApplet.Mechanism.SetTimezoneInterface"/>
++ <allow send_destination="org.gnome.ClockApplet.Mechanism"/>
+ </policy>
+
+ <!-- Allow anyone to invoke methods on the interfaces -->
+ <policy context="default">
+- <allow send_interface="org.gnome.ClockApplet.Mechanism.SetTimezoneInterface"/>
++ <allow send_destination="org.gnome.ClockApplet.Mechanism"/>
+ </policy>
+
+ </busconfig>
Added: desktop/unstable/gnome-panel/debian/patches/06_clock_permissions.patch
URL: http://svn.debian.org/wsvn/pkg-gnome/desktop/unstable/gnome-panel/debian/patches/06_clock_permissions.patch?rev=19356&op=file
==============================================================================
--- desktop/unstable/gnome-panel/debian/patches/06_clock_permissions.patch (added)
+++ desktop/unstable/gnome-panel/debian/patches/06_clock_permissions.patch Tue Apr 7 10:54:00 2009
@@ -1,0 +1,31 @@
+Index: gnome-panel-2.24.3/applets/clock/org.gnome.clockapplet.mechanism.policy.in
+===================================================================
+--- gnome-panel-2.24.3.orig/applets/clock/org.gnome.clockapplet.mechanism.policy.in 2009-04-07 12:45:44.163450524 +0200
++++ gnome-panel-2.24.3/applets/clock/org.gnome.clockapplet.mechanism.policy.in 2009-04-07 12:46:03.259448549 +0200
+@@ -13,7 +13,7 @@
+ <_message>Privileges are required to change the system time zone.</_message>
+ <defaults>
+ <allow_inactive>no</allow_inactive>
+- <allow_active>auth_self_keep_always</allow_active>
++ <allow_active>auth_admin</allow_active>
+ </defaults>
+ </action>
+
+@@ -22,7 +22,7 @@
+ <_message>Privileges are required to change the system time.</_message>
+ <defaults>
+ <allow_inactive>no</allow_inactive>
+- <allow_active>auth_self_keep_always</allow_active>
++ <allow_active>auth_admin</allow_active>
+ </defaults>
+ </action>
+
+@@ -31,7 +31,7 @@
+ <_message>Privileges are required to configure the hardware clock.</_message>
+ <defaults>
+ <allow_inactive>no</allow_inactive>
+- <allow_active>auth_self_keep_always</allow_active>
++ <allow_active>auth_admin</allow_active>
+ </defaults>
+ </action>
+
Modified: desktop/unstable/gnome-panel/debian/patches/series
URL: http://svn.debian.org/wsvn/pkg-gnome/desktop/unstable/gnome-panel/debian/patches/series?rev=19356&op=diff
==============================================================================
--- desktop/unstable/gnome-panel/debian/patches/series (original)
+++ desktop/unstable/gnome-panel/debian/patches/series Tue Apr 7 10:54:00 2009
@@ -2,6 +2,8 @@
02_panel_logout.patch
03_switch-user_lock.patch
04_gnome-panel-logout.patch
+05_clock_dbus.patch
+06_clock_permissions.patch
08_clock_applet_event.patch
09_default_icons.patch
70_relibtoolize.patch
More information about the pkg-gnome-commits
mailing list