Next | Query returned 1 messages, browsing 1 to 10 | previous

History of commit frequency

CVS Commit History:


   2018-08-24 21:18:27 by Benny Siegert | Files touched by this commit (3) | Package updated
Log message:
Pullup ticket #5814 - requested by wiz
security/polkit: security fix

Revisions pulled up:
- security/polkit/Makefile                                      1.12
- security/polkit/distinfo                                      1.8
- security/polkit/patches/patch-src_polkit_polkitunixprocess.c  1.6

---
   Module Name:	pkgsrc
   Committed By:	wiz
   Date:		Thu Aug 16 12:30:43 UTC 2018

   Modified Files:
   	pkgsrc/security/polkit: Makefile distinfo
   	pkgsrc/security/polkit/patches: patch-src_polkit_polkitunixprocess.c

   Log message:
   polkit: update to 0.115.

   This is polkit 0.115.

   Highlights:
    Fixes CVE-2018-1116, a local information disclosure and denial of service
    caused by trusting client-submitted UIDs when referencing processes.
    Thanks to Matthias Gerstner of the SUSE security team for reporting
    this issue.

   Changes since polkit 0.114:

   Miloslav Trmač (1):
         Fix CVE-2018-1116: Trusting client-supplied UID

   Ray Strode (3):
         Post-release version bump to 0.115
         jsauthority: pass "%s" format string to remaining report function
         NEWS: fix date from 2017 to 2018 for 0.114 entry

Next | Query returned 1 messages, browsing 1 to 10 | previous