Bug#689602: pu: package dbus/1.2.24-4+squeeze2
On 12/01/13 16:59, Adam D. Barratt wrote:
> On Thu, 2012-10-04 at 13:56 +0100, Simon McVittie wrote:
>> CVE-2012-3524 (#689070) is a local root privilege escalation vulnerability
...
> it looks like applying the patches to unstable /
> testing was happily uneventful in terms of any issues arising in
> applications?
Correct. This is basically dbus 1.2.30, which was a backport of the
changes from dbus 1.6.8, and nobody has complained about those versions
either in Debian or upstream.
1.6.6 did break applications, namely gnome-keyring, but 1.6.8 fixed that
regression.
OK to upload the proposed change?
Thanks,
S
Reply to: