Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 06 Jul 2020 06:50:32 +0000
From:      bugzilla-noreply@freebsd.org
To:        desktop@FreeBSD.org
Subject:   [Bug 247730] [exp-run] update devel/dbus to 1.12.20
Message-ID:  <bug-247730-39348-Ymo3nawN1P@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-247730-39348@https.bugs.freebsd.org/bugzilla/>
References:  <bug-247730-39348@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help 
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D247730

--- Comment #4 from commit-hook@freebsd.org ---
A commit references this bug:

Author: tcberner
Date: Mon Jul  6 06:50:05 UTC 2020
New revision: 541319
URL: https://svnweb.freebsd.org/changeset/ports/541319

Log:
  MFH: r541312

  devel/dbus: update to 1.12.20

  From upstreams changelog [1]:

  dbus 1.12.20 (2020-07-02)
  =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D

  The ?temporary nemesis? release.

  Maybe security fixes:

  ? On Unix, avoid a use-after-free if two usernames have the same
    numeric uid. In older versions this could lead to a crash (denial of
    service) or other undefined behaviour, possibly including incorrect
    authorization decisions if <policy group=3D...> is used.
    Like Unix filesystems, D-Bus' model of identity cannot distinguish
    between users of different names with the same numeric uid, so this
    configuration is not advisable on systems where D-Bus will be used.
    Thanks to Daniel Onaca.
    (dbus#305, dbus!166; Simon McVittie)

  Other fixes:

  ? On Solaris and its derivatives, if a cmsg header is truncated, ensure
    that we do not overrun the buffer used for fd-passing, even if the
    kernel tells us to.
    (dbus#304, dbus!165; Andy Fiddaman)

  [1] https://gitlab.freedesktop.org/dbus/dbus/blob/dbus-1.12/NEWS

  PR:           247730
  Exp-run by:   antoine

  Approved by:  ports-secteam (joneum)

Changes:
_U  branches/2020Q3/
  branches/2020Q3/devel/dbus/Makefile
  branches/2020Q3/devel/dbus/distinfo
  branches/2020Q3/devel/dbus/pkg-plist

--=20
You are receiving this mail because:
You are on the CC list for the bug.=

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-247730-39348-Ymo3nawN1P>