[Pkg-utopia-commits] r2099 - /packages/unstable/dbus/debian/changelog
slomo at users.alioth.debian.org
slomo at users.alioth.debian.org
Fri Feb 29 10:24:09 UTC 2008
Author: slomo
Date: Fri Feb 29 10:24:09 2008
New Revision: 2099
URL: http://svn.debian.org/wsvn/pkg-utopia/?sc=1&rev=2099
Log:
* mention CVE
Modified:
packages/unstable/dbus/debian/changelog
Modified: packages/unstable/dbus/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-utopia/packages/unstable/dbus/debian/changelog?rev=2099&op=diff
==============================================================================
--- packages/unstable/dbus/debian/changelog (original)
+++ packages/unstable/dbus/debian/changelog Fri Feb 29 10:24:09 2008
@@ -6,7 +6,13 @@
Petter Reinholdtsen; closes: #466503.
[ Michael Biebl ]
- * New upstream release.
+ * New upstream release:
+ + SECURITY - CVE-2008-0595:
+ security policy of the type <allow send_interface="some.interface.With
+ Methods"/> work as an implicit allow for messages sent without an
+ interface bypassing the default deny rules and potentially allowing
+ restricted methods exported on the bus to be executed by unauthorized
+ users.
-- Michael Biebl <biebl at debian.org> Thu, 28 Feb 2008 09:01:00 +0100
More information about the Pkg-utopia-commits
mailing list