Navigation:
Browse pkgsrc
(this page)
New packages:Log Message:
Pullup ticket #5814 - requested by wiz
security/polkit: security fix
Revisions pulled up:
- security/polkit/Makefile 1.12
- security/polkit/distinfo 1.8
- security/polkit/patches/patch-src_polkit_polkitunixprocess.c 1.6
---
Module Name: pkgsrc
Committed By: wiz
Date: Thu Aug 16 12:30:43 UTC 2018
Modified Files:
pkgsrc/security/polkit: Makefile distinfo
pkgsrc/security/polkit/patches: patch-src_polkit_polkitunixprocess.c
Log Message:
polkit: update to 0.115.
This is polkit 0.115.
Highlights:
Fixes CVE-2018-1116, a local information disclosure and denial of service
caused by trusting client-submitted UIDs when referencing processes.
Thanks to Matthias Gerstner of the SUSE security team for reporting
this issue.
Changes since polkit 0.114:
Miloslav Trmač (1):
Fix CVE-2018-1116: Trusting client-supplied UID
Ray Strode (3):
Post-release version bump to 0.115
jsauthority: pass "%s" format string to remaining report function
NEWS: fix date from 2017 to 2018 for 0.114 entry
| Revision | Action | file |
| 1.11.2.1 | modify | pkgsrc/security/polkit/Makefile |
| 1.7.2.1 | modify | pkgsrc/security/polkit/distinfo |
| 1.5.2.1 | modify | pkgsrc/security/polkit/patches/patch-src_polkit_polkitunixprocess.c |