[ubuntu/oneiric-security] accountsservice_0.6.14-1git1ubuntu1.1_amd64_translations.tar.gz, accountsservice_0.6.14-1git1ubuntu1.1_powerpc_translations.tar.gz, accountsservice, accountsservice_0.6.14-1git1ubuntu1.1_i386_translations.tar.gz, accountsservice_0.6.14-1git1ubuntu1.1_armel_translations.tar.gz 0.6.14-1git1ubuntu1.1 (Accepted)
Gunnar Hjalmarsson
ubuntu at gunnar.cc
Tue Jan 31 13:33:47 UTC 2012
accountsservice (0.6.14-1git1ubuntu1.1) oneiric-security; urgency=low
* SECURITY UPDATE: file permissions bypass (LP: #904395)
- debian/patches/0010-set-language.patch:
Drop privileges before letting help scripts in
/usr/share/language-tools write to $HOME.
- debian/patches/0009-language-tools.patch:
Drop chown() call in /usr/share/language-tools/save-to-profile.
- CVE-2011-4406
Date: Thu, 26 Jan 2012 18:10:00 +0100
Changed-By: Gunnar Hjalmarsson <ubuntu at gunnar.cc>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/oneiric/+source/accountsservice/0.6.14-1git1ubuntu1.1
-------------- next part --------------
Format: 1.8
Date: Thu, 26 Jan 2012 18:10:00 +0100
Source: accountsservice
Binary: accountsservice libaccountsservice0 libaccountsservice-dev gir1.2-accountsservice-1.0
Architecture: source
Version: 0.6.14-1git1ubuntu1.1
Distribution: oneiric-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Gunnar Hjalmarsson <ubuntu at gunnar.cc>
Description:
accountsservice - query and manipulate user account information
gir1.2-accountsservice-1.0 - GObject introspection data for AccountService
libaccountsservice-dev - query and manipulate user account information - header files
libaccountsservice0 - query and manipulate user account information - shared libraries
Launchpad-Bugs-Fixed: 904395
Changes:
accountsservice (0.6.14-1git1ubuntu1.1) oneiric-security; urgency=low
.
* SECURITY UPDATE: file permissions bypass (LP: #904395)
- debian/patches/0010-set-language.patch:
Drop privileges before letting help scripts in
/usr/share/language-tools write to $HOME.
- debian/patches/0009-language-tools.patch:
Drop chown() call in /usr/share/language-tools/save-to-profile.
- CVE-2011-4406
Checksums-Sha1:
9b9b00a285c8ae7d39de1765047f34f24a063f0f 2318 accountsservice_0.6.14-1git1ubuntu1.1.dsc
5ce01eef97bf8a24a5f171583bc66ff0a42e0947 18324 accountsservice_0.6.14-1git1ubuntu1.1.debian.tar.gz
Checksums-Sha256:
5a6e9e17e88bdea4fb6641a65c1dac3544d802060a4c6cafec7a5a85e8107a8c 2318 accountsservice_0.6.14-1git1ubuntu1.1.dsc
59d7df867f99aaa34f67b9a0c4b6798aac410993a2aa7ee6b2d2784f2dec9324 18324 accountsservice_0.6.14-1git1ubuntu1.1.debian.tar.gz
Files:
b229f060a69ffb76d13f18ceba542eae 2318 admin optional accountsservice_0.6.14-1git1ubuntu1.1.dsc
03cbbeb76253d0cd0485b753655912ae 18324 admin optional accountsservice_0.6.14-1git1ubuntu1.1.debian.tar.gz
Original-Maintainer: Alessio Treglia <alessio at debian.org>
More information about the Oneiric-changes
mailing list