-
policykit-1 (0.96-2ubuntu0.2) lucid-security; urgency=low
* SECURITY UPDATE: use of pkcheck without specifying uid is racy,
possibly leading to privilege escalation
- debian/patches/CVE-2013-4288.patch: implement pid,start-time,uid
syntax so callers have a non-racy way of using pkcheck.
- CVE-2013-4288
-- Marc Deslauriers <email address hidden> Wed, 11 Sep 2013 09:50:59 -0400
-
policykit-1 (0.96-2ubuntu0.1) lucid-security; urgency=low
* SECURITY UPDATE: avoid /proc race conditions when checking privileges
for pkexec.
- 10_fix_proc_race.patch
- CVE-2011-1485
-- Kees Cook <email address hidden> Tue, 19 Apr 2011 12:38:05 -0700
-
policykit-1 (0.96-2) unstable; urgency=medium
* Urgency medium, just two small, but important bug fixes.
* Add 00git-pkexec-information-disclosure.patch: Fix information disclosure
vulnerability that allows an attacker to verify whether or not arbitrary
files exist, violating directory permissions.
* 00git-fix-error-freeing.patch: Fix crash when calling CheckAuthorization()
with an invalid PID. (LP: #540464)
-- Martin Pitt <email address hidden> Fri, 09 Apr 2010 12:09:53 +0200
-
policykit-1 (0.96-1) unstable; urgency=low
* New upstream release.
* debian/libpolkit-backend-1-0.symbols
- Update for new API addition.
-- Ubuntu Archive Auto-Sync <email address hidden> Wed, 27 Jan 2010 01:32:10 +0000
-
policykit-1 (0.95-1) unstable; urgency=low
* New upstream release.
* Remove patches
- debian/patches/02_dont_export_private_symbols.patch (merged upstream)
- debian/patches/03_path_max.patch (merged upstream)
- debian/patches/04-ref-authority.patch (merged upstream)
- debian/patches/05-pkexec-env.patch (merged upstream)
- debian/patches/99_autoreconf.patch (obsolete)
* debian/control
- Bump Build-Depends on libeggbus-1-dev to (>= 0.6).
* debian/rules
- The example application is no longer built by default so we don't need
to manually remove it anymore.
* debian/libpolkit-{backend,gobject}-1-0.symbols
- Update for new API additions.
policykit-1 (0.94-6) unstable; urgency=low
* debian/policykit-1.postinst
- Use start-stop-daemon instead of kill+pidof to stop the running polkitd
daemon on upgrades.
* Remove our workaround for kfreebsd again now that eglibc 2.10 has entered
unstable. (Closes: #552605)
-- Ubuntu Archive Auto-Sync <email address hidden> Wed, 25 Nov 2009 12:40:31 +0000
-
policykit-1 (0.94-5) unstable; urgency=low
* Add debian/patches/04-ref-authority.patch: Ref the instance returned by
polkit_authority_get(), since the documentation says that it needs to be
unref'ed after usage. This fixes crashes in NetworkManager and probably
other programs, too. (LP: #438574, #432452, fd.o #24566)
* Add debian/patches/05-pkexec-env.patch: Add missing comma so that pkexec
saves both LANG and LANGUAGE, not LANGLANGUAGE. (Cherrypicked from trunk)
* Add myself to Uploaders: with Michael's consent.
policykit-1 (0.94-4) unstable; urgency=low
* debian/patches/03_path_max.patch
- Update patch to fix implicit pointer conversion for
get_current_dir_name. (Closes: #550901)
policykit-1 (0.94-3) unstable; urgency=low
* debian/patches/03_path_max.patch
- Fix FTBFS on hurd-i386 where PATH_MAX is not defined. (Closes:#550800)
Thanks to Samuel Thibault for the patch.
* debian/policykit-1.postinst:
- Kill the old polkitd daemon on upgrade, to ensure that the new version
will be used at the next occasion.
policykit-1 (0.94-2) unstable; urgency=low
* Fix build failures on kfreebsd. Add Build-Depends on libfreebsd-dev and
link against -lfreebsd for sysctlnametomib.
When glibc 2.10 enters unstable this workaround can be removed again.
-- Martin Pitt <email address hidden> Tue, 03 Nov 2009 12:28:09 +0100
-
policykit-1 (0.94-1ubuntu1) karmic; urgency=low
* fix network-manager crashes when opening connection editor
with system connections; crahes turned out to be caused by
freed policy kit authority - fix involves propery reffing
authority in singleton accessor (LP: #438574, #432452)
- See: https://bugs.freedesktop.org/show_bug.cgi?id=24566
- add 03_0001-authority-g_object_ref-authority-when-returning-sing.patch
-- Alexander Sack <email address hidden> Fri, 16 Oct 2009 12:18:17 +0200
