[BACK]Return to distinfo CVS log [TXT][DIR] Up to [cvs.NetBSD.org] / pkgsrc / sysutils / dbus

File: [cvs.NetBSD.org] / pkgsrc / sysutils / dbus / distinfo (download)

Revision 1.92, Tue Jun 11 20:04:23 2019 UTC (9 months, 3 weeks ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2020Q1-base, pkgsrc-2020Q1, pkgsrc-2019Q4-base, pkgsrc-2019Q4, pkgsrc-2019Q3-base, pkgsrc-2019Q3, pkgsrc-2019Q2-base, pkgsrc-2019Q2, HEAD
Changes since 1.91: +5 -5 lines

dbus: update to 1.12.16.

dbus 1.12.16 (2019-06-11)
=========================

The „ŗ◊’ree cat„ŗrelease.

Security fixes:

„ŗCVE-2019-12749: Do not attempt to carry out DBUS_COOKIE_SHA1
  authentication for identities that differ from the user running the
  DBusServer. Previously, a local attacker could manipulate symbolic
  links in their own home directory to bypass authentication and connect
  to a DBusServer with elevated privileges. The standard system and
  session dbus-daemons in their default configuration were immune to this
  attack because they did not allow DBUS_COOKIE_SHA1, but third-party
  users of DBusServer such as Upstart could be vulnerable.
  Thanks to Joe Vennix of Apple Information Security.
  (dbus#269, Simon McVittie)

$NetBSD: distinfo,v 1.92 2019/06/11 20:04:23 wiz Exp $

SHA1 (dbus-1.12.16.tar.gz) = 06e3412a7d9c7e345bfcfb027016c634e20f7ece
RMD160 (dbus-1.12.16.tar.gz) = fb9c2f01d3068600cb43eae05ccd687878a31e4f
SHA512 (dbus-1.12.16.tar.gz) = 27ae805170e9515a8bb0fba5f29d414edc70e3b6b28b7b65bbea47035b8eafa9ac4820cdc92645be6035f6748f8aa45679e1ffc84ba74a64859a3056d318b9bb
Size (dbus-1.12.16.tar.gz) = 2093296 bytes
SHA1 (patch-ak) = 4535584537a22a2e42824fe45e2d75253b484147
SHA1 (patch-al) = ffaa8f224c3dd6a97ffa42fe2e9ca924160fa68c
SHA1 (patch-am) = ed334bc76911c9db9f5472c58fb762c56255c5b4
SHA1 (patch-configure) = 9dee6306aa07b60449a0f9f0f1ea3dccbc70dcb4
SHA1 (patch-dbus_dbus-sysdeps-unix.c) = 3dfc60eba7ab9d5a29d2a842ce0baa1b109df716
SHA1 (patch-dbus_dbus-sysdeps-util-unix.c) = 1a25e53514064e452a207ad8b2a0057c11d5c190
SHA1 (patch-tools_dbus-print-message.c) = 96267d3cff2c5207911615735748ef81604a69ec