-
policykit-1 (0.104-1ubuntu1.5) precise-security; urgency=medium
[ Marc Deslauriers ]
* SECURITY UPDATE: start time protection mechanism bypass
- debian/patches/CVE-2019-6133.patch: Compare PolkitUnixProcess uids
for temporary authorizations in src/polkit/polkitsubject.c,
src/polkit/polkitunixprocess.c,
src/polkitbackend/polkitbackendinteractiveauthority.c.
- CVE-2019-6133
-- <email address hidden> (Leonidas S. Barbosa) Thu, 29 Aug 2019 15:18:39 -0300
-
policykit-1 (0.104-1ubuntu1.1) precise-security; urgency=low
* SECURITY UPDATE: use of pkcheck without specifying uid is racy,
possibly leading to privilege escalation
- debian/patches/CVE-2013-4288.patch: implement pid,start-time,uid
syntax so callers have a non-racy way of using pkcheck.
- CVE-2013-4288
-- Marc Deslauriers <email address hidden> Wed, 11 Sep 2013 09:48:41 -0400
-
policykit-1 (0.104-1ubuntu1) precise-proposed; urgency=low
* debian/patches/07_pam_environment.patch: set process environment
from pam_getenvlist(). Closes LP: #982684.
* debian/patches/01_pam_polkit.patch: adjust patch to invoke pam_env, so
our global settings from /etc/environment are applied correctly.
-- Steve Langasek <email address hidden> Tue, 15 May 2012 15:15:52 -0700
-
policykit-1 (0.104-1) unstable; urgency=low
* New upstream release.
- Add support for netgroups. (LP: #724052)
* debian/rules: Disable systemd support, continue to work with ConsokeKit.
* 05_revert-admin-identities-unix-group-wheel.patch: Refresh to apply
cleanly.
* debian/libpolkit-gobject-1-0.symbols: Add new symbols from this new
release.
* debian/rules: Do not let test failures fail the build. The new test suite
also runs a test against the system D-BUS/ConsoleKit, which can't work on
buildds.
-- Martin Pitt <email address hidden> Fri, 06 Jan 2012 12:28:54 +0100
-
policykit-1 (0.103-1) unstable; urgency=low
* New upstream release.
* debian/control: Change section of gir1.2-polkit-1.0 to introspection.
* 05_revert-admin-identities-unix-group-wheel.patch: Revert upstream change
to make group wheel the default admin identity since we already use group
sudo resp. group admin for that.
-- Michael Biebl <email address hidden> Fri, 09 Dec 2011 00:48:17 +0100
-
policykit-1 (0.102-2) unstable; urgency=low
* 02_gettext.patch: Explicitly #include <locale.h> to fix non-optimized
build. Thanks Ivan Krasilnikov for pointing this out.
* debian/rules: When building on Ubuntu, also consider the "sudo" group as
administrator, for compatibility with Debian and sudo itself. Keep "admin"
for existing systems. (LP: #893842)
* Convert to Multi-Arch and dh compat 9. Thanks Daniel Schaal for the
patch! (Closes: #636196)
-- Martin Pitt <email address hidden> Fri, 25 Nov 2011 07:44:09 +0100
-
policykit-1 (0.102-1) unstable; urgency=low
* New upstream release.
* debian/patches/00git_fix_proc_race.patch: Removed, merged upstream.
* debian/patches/04_ignore_quilt_po.patch: Removed, merged upstream.
* debian/patches/03_complete_session.patch: Refreshed.
* debian/patches/04_get_cwd.patch: Use g_get_current_dir() to determine the
current working directory. This fixes another PATH_MAX related FTBFS on
hurd. Thanks Emilio Pozuelo Monfort for the patch. (Closes: #623017)
-- Martin Pitt <email address hidden> Fri, 05 Aug 2011 09:22:40 +0000