[Pkg-utopia-maintainers] dbus_1.6.8-1+deb7u4_amd64.changes ACCEPTED into proposed-updates->stable-new, proposed-updates

Debian FTP Masters ftpmaster at ftp-master.debian.org
Sat Sep 20 13:53:07 UTC 2014



Accepted:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 15 Sep 2014 19:48:51 +0100
Source: dbus
Binary: dbus dbus-x11 libdbus-1-3 dbus-1-doc libdbus-1-dev dbus-1-dbg
Architecture: source amd64 all
Version: 1.6.8-1+deb7u4
Distribution: wheezy-security
Urgency: high
Maintainer: Utopia Maintenance Team <pkg-utopia-maintainers at lists.alioth.debian.org>
Changed-By: Simon McVittie <smcv at debian.org>
Description: 
 dbus       - simple interprocess messaging system (daemon and utilities)
 dbus-1-dbg - simple interprocess messaging system (debug symbols)
 dbus-1-doc - simple interprocess messaging system (documentation)
 dbus-x11   - simple interprocess messaging system (X11 deps)
 libdbus-1-3 - simple interprocess messaging system (library)
 libdbus-1-dev - simple interprocess messaging system (development headers)
Changes: 
 dbus (1.6.8-1+deb7u4) wheezy-security; urgency=high
 .
   * Fix several security issues
     - CVE-2014-3635: do not accept an extra fd in cmsg padding,
       avoiding a buffer overrun in dbus-daemon or system services
     - CVE-2014-3636: reduce maximum number of file descriptors
        per message from 1024 to 16, to avoid two separate denial-of-service
        attacks that could cause system services to be dropped from the bus
     - CVE-2014-3637: time out connections that have a
        partially-sent message containing a file descriptor, so that
        malicious processes cannot use self-referential file descriptors
        to make a connection that will never close
     - CVE-2014-3638: reduce maximum number of pending replies
       per connection to avoid algorithmic complexity DoS
     - CVE-2014-3639: reduce timeout for authentication and
       do not accept() new connections when all unauthenticated connection
       slots are in use, so that malicious processes cannot prevent new
       connections to the system bus
Checksums-Sha1: 
 edfb1e042e124db574c0aae5fb2963fdea2936e6 2535 dbus_1.6.8-1+deb7u4.dsc
 608b0fcc08fc99f3274636e093d702dfd838c8a4 52078 dbus_1.6.8-1+deb7u4.debian.tar.gz
 aff5819cd99c0bb0ae4277c3ea9df28e6e7108e2 400028 dbus_1.6.8-1+deb7u4_amd64.deb
 bd7321d3436b95eaf1d97d92b6a3669434ed7ab3 59350 dbus-x11_1.6.8-1+deb7u4_amd64.deb
 f26f2d24ef3ff101cae23920411c4981fc0e2ee6 172600 libdbus-1-3_1.6.8-1+deb7u4_amd64.deb
 299b93d6614895f83988991e8528b15bbef0b91e 2292644 dbus-1-doc_1.6.8-1+deb7u4_all.deb
 17a8b931c3e18049788c4363494c755ac46d4d00 247302 libdbus-1-dev_1.6.8-1+deb7u4_amd64.deb
 cadc372b79426958347917ab73ac5b37f4116112 8301164 dbus-1-dbg_1.6.8-1+deb7u4_amd64.deb
Checksums-Sha256: 
 d6530499a91c420ffcd371c311baba464ffbcf15a589a20869b27308a0f8a456 2535 dbus_1.6.8-1+deb7u4.dsc
 d5af1015a5876b863276829f1cfd0a0b419a49011748e265ad2dab0b3b02be89 52078 dbus_1.6.8-1+deb7u4.debian.tar.gz
 894bf3308448e7ae8b713f23ca973710f70b7cea6e046b666739acfd6d29181f 400028 dbus_1.6.8-1+deb7u4_amd64.deb
 196bb9d2e3b47da043c81c13f7ace8732493873b919e921e625efa358aec9f4f 59350 dbus-x11_1.6.8-1+deb7u4_amd64.deb
 5d956bf89dec4c11be4f7dc844fa82fa9456f35b510a0ac6fd8b16af51c2aea7 172600 libdbus-1-3_1.6.8-1+deb7u4_amd64.deb
 af721f08a55300db64af57a1a7dea4b22fef8c3839a5352fd64b4f14484c6e32 2292644 dbus-1-doc_1.6.8-1+deb7u4_all.deb
 05cbefca3f2085d96355aff1517d6bc9a794b82ef64f4348b73976d8f8c68aad 247302 libdbus-1-dev_1.6.8-1+deb7u4_amd64.deb
 0f2f7d12da1677c2e96c187bc45346b19d8cacac0f5c938d0c878b4aa635d56e 8301164 dbus-1-dbg_1.6.8-1+deb7u4_amd64.deb
Files: 
 55c66ea492381d8038515dff9e51c2f1 2535 admin optional dbus_1.6.8-1+deb7u4.dsc
 37f4d8804b7f7298d1a83ac68ad06e53 52078 admin optional dbus_1.6.8-1+deb7u4.debian.tar.gz
 aa78f6477b8a8e7ebc03e70eedc32c42 400028 admin optional dbus_1.6.8-1+deb7u4_amd64.deb
 620e596398e9bdae931137c820e14f5e 59350 x11 optional dbus-x11_1.6.8-1+deb7u4_amd64.deb
 7f0631acca3501f64b7ad3ea22b8e1e7 172600 libs optional libdbus-1-3_1.6.8-1+deb7u4_amd64.deb
 16646197a3c1873bae9b7bdb8ccccb8f 2292644 doc optional dbus-1-doc_1.6.8-1+deb7u4_all.deb
 a9700db097147bec46bf1170304cc22b 247302 libdevel optional libdbus-1-dev_1.6.8-1+deb7u4_amd64.deb
 b017f1bb94e6743f26515a56200b7d7d 8301164 debug extra dbus-1-dbg_1.6.8-1+deb7u4_amd64.deb

-----BEGIN PGP SIGNATURE-----

iQIVAwUBVBc4VE3o/ypjx8yQAQiQDw//bPClbDtRsMy30JZSGVPyjjHyjVf5ZzKw
iCM+/zeYBDwDNuIsKBoBdZzM/VDqbx5glUo8d0GkFm/C8ag3iyyi0FacxBYiYHo1
oOjjIfOifIB38G07JVNiyS9Ez9yuvqviEyr2briWA2BE3EvNZknR4OYdGowitKDQ
ZoZcwjy0OZt3ot2B5YZW5dCVeDIUIi5aT2NVlrRim4Cop9tmCh++hRukyn/AMcbp
uBvwtpmacSggMoOYqT/9n7HvRe4fLJsZC/Zk1fi7P+btylvZP7riIpC0EUub4obL
R+c4EBVcE3XjeB8Lx/NMXpKug/g9bhhvND5/WKCUCH9MWENXIUM8STFCAnlKBkhV
yDoo+IDWfi8FFobVDs+FY1JHZ3IyN9vVnxtLOU+UWVnA/GiQKDNmcg/lDeRuFWxj
PQG290qf3OwyUnsjtPTDOQtfhZNDYSeBG8hIlHM0XEJ4XYNIhd/vsGS9m8d3BOWh
lfzRBbkXnE5gFY3n8lr9pGSWAlPLGS5JDhfSeqtF74eczd47cUFJm/tCfcutNtbb
dd7QcnYE0za+RU53Dn7K2zLPI0qgyQrr+saP61ukUi9JqoQ1PebBu7Da0XhGsfa6
wkwsyUEeDYZqkkYax6W2QkCP10U2TfC9LDw2n7R50ALv9cUU+/eNWOHTTPeZnViB
cwtCqoghYrY=
=Hcud
-----END PGP SIGNATURE-----


Thank you for your contribution to Debian.



More information about the Pkg-utopia-maintainers mailing list