[ubuntu/saucy-proposed] apt-xapian-index 0.45ubuntu3 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Wed Sep 18 17:51:17 UTC 2013
apt-xapian-index (0.45ubuntu3) saucy; urgency=low
* SECURITY UPDATE: possible privilege escalation via policykit UID lookup
race.
- debian/patches/CVE-2013-1064.patch: pass system-bus-name as a subject
instead of pid so policykit can get the information from the system
bus in update-apt-xapian-index-dbus.
- CVE-2013-1064
Date: Wed, 18 Sep 2013 12:40:20 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/saucy/+source/apt-xapian-index/0.45ubuntu3
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 18 Sep 2013 12:40:20 -0400
Source: apt-xapian-index
Binary: apt-xapian-index
Architecture: source
Version: 0.45ubuntu3
Distribution: saucy
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
apt-xapian-index - maintenance and search tools for a Xapian index of Debian package
Changes:
apt-xapian-index (0.45ubuntu3) saucy; urgency=low
.
* SECURITY UPDATE: possible privilege escalation via policykit UID lookup
race.
- debian/patches/CVE-2013-1064.patch: pass system-bus-name as a subject
instead of pid so policykit can get the information from the system
bus in update-apt-xapian-index-dbus.
- CVE-2013-1064
Checksums-Sha1:
7dd99b169385b538a01298ad332b6b1eeac3143c 1962 apt-xapian-index_0.45ubuntu3.dsc
ff66546d20b6c91dbbafcb1e3bef2e22118d1e6d 62167 apt-xapian-index_0.45ubuntu3.tar.gz
Checksums-Sha256:
d735e0e20d8aeb6fb88ae3f7282ae42a4e3cb78b6e6134c7c596f9b4884ea48f 1962 apt-xapian-index_0.45ubuntu3.dsc
f9e695150545dc9dabca3b8cb90dbbfa3803dc037fdb530ed4ad6964afbbbd3f 62167 apt-xapian-index_0.45ubuntu3.tar.gz
Files:
495cd4dc24df1c06629ac4cc3f280823 1962 admin optional apt-xapian-index_0.45ubuntu3.dsc
b0151d479a7e2b00ad7c6488d3f49845 62167 admin optional apt-xapian-index_0.45ubuntu3.tar.gz
Original-Maintainer: Enrico Zini <enrico at debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)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=jmlN
-----END PGP SIGNATURE-----
More information about the Saucy-changes
mailing list