Bug#689602: pu: package dbus/1.2.24-4+squeeze2
Control: tags -1 + squeeze confirmed
On Sat, 2013-01-12 at 17:23 +0000, Simon McVittie wrote:
> On 12/01/13 16:59, Adam D. Barratt wrote:
> > On Thu, 2012-10-04 at 13:56 +0100, Simon McVittie wrote:
> >> CVE-2012-3524 (#689070) is a local root privilege escalation vulnerability
> ...
> > it looks like applying the patches to unstable /
> > testing was happily uneventful in terms of any issues arising in
> > applications?
>
> Correct. This is basically dbus 1.2.30, which was a backport of the
> changes from dbus 1.6.8, and nobody has complained about those versions
> either in Debian or upstream.
Great; thanks.
> 1.6.6 did break applications, namely gnome-keyring, but 1.6.8 fixed that
> regression.
Yep, I spotted that in the changelog. :)
> OK to upload the proposed change?
Please go ahead; thanks.
Regards,
Adam
Reply to: