Opened 6 years ago
Closed 6 years ago
#56797 closed update (fixed)
policykit @0.113_2: update to 0.115
| Reported by: | l2dy (Zero King) | Owned by: | dbevans (David B. Evans) |
|---|---|---|---|
| Priority: | Normal | Milestone: | |
| Component: | ports | Version: | |
| Keywords: | security | Cc: | |
| Port: | policykit |
Description
https://cgit.freedesktop.org/polkit/tree/NEWS?h=0.115
This is polkit 0.115.
Highlights:
Fixes CVE-2018-1116, a local information disclosure and denial of service caused by trusting client-submitted UIDs when referencing processes. Thanks to Matthias Gerstner of the SUSE security team for reporting this issue.
Also note:
This is polkit 0.114.
Highlights:
Port to mozjs 52, the latest version of the firefox JavaScript engine.
[...]
Change History (2)
comment:1 Changed 6 years ago by dbevans (David B. Evans)
| Status: | assigned → accepted |
|---|
comment:2 Changed 6 years ago by dbevans (David B. Evans)
| Resolution: | → fixed |
|---|---|
| Status: | accepted → closed |
Note: See
TracTickets for help on using
tickets.
I'm aware of these releases but there are build issues with mozjs52. In progress.