Opened 6 years ago

Closed 6 years ago

#56797 closed update (fixed)

policykit @0.113_2: update to 0.115

Reported by: l2dy (Zero King) Owned by: dbevans (David B. Evans)
Priority: Normal Milestone:
Component: ports Version:
Keywords: security Cc:
Port: policykit

Description

https://cgit.freedesktop.org/polkit/tree/NEWS?h=0.115

This is polkit 0.115.

Highlights:

Fixes CVE-2018-1116, a local information disclosure and denial of service caused by trusting client-submitted UIDs when referencing processes. Thanks to Matthias Gerstner of the SUSE security team for reporting this issue.

Also note:

This is polkit 0.114.

Highlights:

Port to mozjs 52, the latest version of the firefox JavaScript engine.

[...]

Change History (2)

comment:1 Changed 6 years ago by dbevans (David B. Evans)

Status: assignedaccepted

I'm aware of these releases but there are build issues with mozjs52. In progress.

comment:2 Changed 6 years ago by dbevans (David B. Evans)

Resolution: fixed
Status: acceptedclosed
Note: See TracTickets for help on using tickets.