[ubuntu/focal-proposed] ibus 1.5.21-1~exp2ubuntu3 (Accepted)
Alex Murray
alex.murray at canonical.com
Fri Nov 22 12:23:16 UTC 2019
ibus (1.5.21-1~exp2ubuntu3) focal; urgency=medium
* SECURITY UPDATE: Lack of access control on DBus socket allows other
local users to make arbitrary method calls
- debian/patches/git-Implement-GDBusAuthObserver-callback.patch:
Re-enable to implement GDBusAuthObserver callback in bus/server.c to
add access control to the DBus server socket
- CVE-2019-14822
* Add breaks for older libglib2.0-0 releases which do not contain the
GDBusServer fix for Qt applications
Date: Mon, 04 Nov 2019 11:49:24 +1030
Changed-By: Alex Murray <alex.murray at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/ibus/1.5.21-1~exp2ubuntu3
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 04 Nov 2019 11:49:24 +1030
Source: ibus
Architecture: source
Version: 1.5.21-1~exp2ubuntu3
Distribution: focal
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Alex Murray <alex.murray at canonical.com>
Changes:
ibus (1.5.21-1~exp2ubuntu3) focal; urgency=medium
.
* SECURITY UPDATE: Lack of access control on DBus socket allows other
local users to make arbitrary method calls
- debian/patches/git-Implement-GDBusAuthObserver-callback.patch:
Re-enable to implement GDBusAuthObserver callback in bus/server.c to
add access control to the DBus server socket
- CVE-2019-14822
* Add breaks for older libglib2.0-0 releases which do not contain the
GDBusServer fix for Qt applications
Checksums-Sha1:
086abfb42d5fa42f02b73ac5b12e876d47bec353 3077 ibus_1.5.21-1~exp2ubuntu3.dsc
ab2da0ffdb7e7df160c254fd04002103ea621fa1 30760 ibus_1.5.21-1~exp2ubuntu3.debian.tar.xz
f02ba2e07a52b973344ef85dc3a0384438857613 18867 ibus_1.5.21-1~exp2ubuntu3_source.buildinfo
Checksums-Sha256:
ca8c3dde70ec572695e4d4f78130e97f997e12755a796f0f652be6e279ddee50 3077 ibus_1.5.21-1~exp2ubuntu3.dsc
8b7c4283a77087f0611877630697a20e736ca174246ccbfd8536791511d450ca 30760 ibus_1.5.21-1~exp2ubuntu3.debian.tar.xz
fc2a126e11341d54971c9c4e241b07c4f110bb219f5d0f923fb6e7013d6ba2cc 18867 ibus_1.5.21-1~exp2ubuntu3_source.buildinfo
Files:
2951901995c949b795f7e02b2496a9ee 3077 utils optional ibus_1.5.21-1~exp2ubuntu3.dsc
6af7914a94a4bd2d15fe3a9c20c738dd 30760 utils optional ibus_1.5.21-1~exp2ubuntu3.debian.tar.xz
0e2f77c08c6d0c0c73e904bfbe4f0921 18867 utils optional ibus_1.5.21-1~exp2ubuntu3_source.buildinfo
Original-Maintainer: Debian Input Method Team <debian-input-method at lists.debian.org>
-----BEGIN PGP SIGNATURE-----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=Kyao
-----END PGP SIGNATURE-----
More information about the Focal-changes
mailing list