[Pkg-utopia-maintainers] Bug#503532: Security vulnerability in dbus
Patrick Schoenfeld
schoenfeld at in-medias-res.com
Mon Dec 22 11:33:00 UTC 2008
On Sat, Dec 20, 2008 at 12:48:50PM +0000, Sjoerd Simons wrote:
> > I saw that you made an upload for bug #503532 and #508032 to
> > experimental. Now I wonder if you plan to make an upload to unstable
> > suitable for lenny?
>
> Unfortunately the situation is a little bit more complicated then that.
More complicated then what? I did not say "do you intend to upload
the experimental version to unstable", I've asked weither you plan to
make a suitable leny upload.
> Tightening up the security of the dbus config is known to break various other
> programs. D-Bus upstream just released a permissive version which will allow
> the same things as the older dbus versions did, but logs about things that
> would break with the new rules. We intend to upload that to unstable rsn, so we
> can find and fix most if not all issues before uploading the final, secure verison.
OK. I just wanted to know if there is any progress going, when I went
through the list of RC bugs, before looking deeper into the issue.
Regards,
Patrick
More information about the Pkg-utopia-maintainers
mailing list