[ubuntu/jammy-updates] budgie-extras 1.4.0-1ubuntu3.1 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Thu Dec 14 16:58:31 UTC 2023
budgie-extras (1.4.0-1ubuntu3.1) jammy-security; urgency=medium
* SECURITY UPDATE: Predictable /tmp path could lead to
denial-of-service/manipulation of data for clockworks applet
(LP: #2044373)
- d/patches/clockwork-tmpxdg.patch: change /tmp path
usage to use XDG_RUNTIME_DIR/HOME user-space locations,
thanks to original author
d/patches/clockwork-tmpxdg-pep8.patch: resolve pep8
package test failure, thanks to original author
- CVE-2023-49342
* SECURITY UPDATE: Predictable /tmp path could lead to
denial-of-service/manipulation of data for dropby applet
(LP: #2044373)
- d/patches Don-t-hard-code-tmp-in-window-shuffler-422.patch cherry-pick
patch to allow the security patch to apply
- d/patches/dropby-tmpxdg.patch: change /tmp path
usage to use XDG_RUNTIME_DIR/HOME user-space locations
d/patches/dropby-tmpxdg-pep8.patch: resolve pep8
package test failure, thanks to original author
- CVE-2023-49343
* SECURITY UPDATE: Predictable /tmp path could lead to
denial-of-service/manipulation of data for shuffler app
(LP: #2044373)
- d/patches/shuffler-tmpxdg.patch: change /tmp path
usage to use XDG_RUNTIME_DIR/HOME user-space locations,
thanks to original author
- CVE-2023-49344
* SECURITY UPDATE: Predictable /tmp path could lead to
denial-of-service/manipulation of data for takeabreak
applet (LP: #2044373)
- d/patches/Don-t-hard-code-tmp-in-takeabreak-422.patch cherry-pick patch
to allow the security patch to apply
- d/patches/takeabreak-tmpxdg.patch: change /tmp path
usage to use XDG_RUNTIME_DIR/HOME user-space locations,
thanks to original author
d/patches/takeabreak-tmpxdg-pep8.patch: resolve pep8
package test failure, thanks to original author
d/patches/takeabreak-tmpxdg-pep8_part2.patch: resolve pep8
package test failure, thanks to original author
- CVE-2023-49345
* SECURITY UPDATE: Predictable /tmp path could lead to
denial-of-service/manipulation of data for weathershow
applet (LP: #2044373)
- d/patches/Don-t-hard-code-tmp-in-weathershow-422.patch cherry-pick patch
to allow the security patch to apply
- d/patches/weathershow-tmpxdg.patch: change /tmp path
usage to use XDG_RUNTIME_DIR/HOME user-space locations,
thanks to original author
- CVE-2023-49346
* SECURITY UPDATE: Predictable /tmp path could lead to
denial-of-service/manipulation of data for window
previews applet (LP: #2044373)
- d/patches Don-t-hard-code-tmp-in-previews-422.patch cherry-pick patch to
allow the security patch to apply
- d/patches/wpreviews-tmpxdg.patch: change /tmp path
usage to use XDG_RUNTIME_DIR/HOME user-space locations,
thanks to original author
- CVE-2023-49347
Date: 2023-12-07 18:46:10.572832+00:00
Changed-By: fossfreedom <davidmohammed at gmail.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/budgie-extras/1.4.0-1ubuntu3.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list