Bug#689602: pu: package dbus/1.2.24-4+squeeze2

To: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Cc: 689602@bugs.debian.org
Subject: Bug#689602: pu: package dbus/1.2.24-4+squeeze2
From: Simon McVittie <smcv@debian.org>
Date: Sat, 12 Jan 2013 17:23:48 +0000
Message-id: <50F19C24.4030300@debian.org>
Reply-to: Simon McVittie <smcv@debian.org>, 689602@bugs.debian.org
In-reply-to: <1358009953.32456.40.camel@jacala.jungle.funky-badger.org>
References: <20121004125649.GA1881@reptile.pseudorandom.co.uk> <1358009953.32456.40.camel@jacala.jungle.funky-badger.org>

On 12/01/13 16:59, Adam D. Barratt wrote:
> On Thu, 2012-10-04 at 13:56 +0100, Simon McVittie wrote:
>> CVE-2012-3524 (#689070) is a local root privilege escalation vulnerability
...
> it looks like applying the patches to unstable /
> testing was happily uneventful in terms of any issues arising in
> applications?

Correct. This is basically dbus 1.2.30, which was a backport of the
changes from dbus 1.6.8, and nobody has complained about those versions
either in Debian or upstream.

1.6.6 did break applications, namely gnome-keyring, but 1.6.8 fixed that
regression.

OK to upload the proposed change?

Thanks,
    S

Reply to:

Follow-Ups:
- Bug#689602: pu: package dbus/1.2.24-4+squeeze2
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

References:
- Bug#689602: pu: package dbus/1.2.24-4+squeeze2
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

Prev by Date: Bug#689602: pu: package dbus/1.2.24-4+squeeze2
Next by Date: Bug#689602: pu: package dbus/1.2.24-4+squeeze2
Previous by thread: Bug#689602: pu: package dbus/1.2.24-4+squeeze2
Next by thread: Bug#689602: pu: package dbus/1.2.24-4+squeeze2
Index(es):
- Date
- Thread