[ubuntu/eoan-security] ibus 1.5.21-1~exp2ubuntu2.1 (Accepted)

Alex Murray alex.murray at canonical.com
Tue Mar 24 10:09:57 UTC 2020

ibus (1.5.21-1~exp2ubuntu2.1) eoan-security; urgency=medium

  * SECURITY UPDATE: Lack of access control on DBus socket allows other
    local users to make arbitrary method calls
    - debian/patches/git-Implement-GDBusAuthObserver-callback.patch:
      Re-enable to implement GDBusAuthObserver callback in bus/server.c to
      add access control to the DBus server socket
    - CVE-2019-14822
  * Add breaks for older libglib2.0-0 releases which do not contain the
    GDBusServer fix for Qt applications

Date: 2020-03-24 02:48:13.813347+00:00
Changed-By: Alex Murray <alex.murray at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Eoan-changes mailing list