Commit Graph

22 Commits

Author SHA1 Message Date
Baruch Siach
4d25bdbeec dbus: bump to version 1.12.8
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
2018-05-11 22:29:35 +02:00
Baruch Siach
83867e47f2 dbus: bump to version 1.12.6
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2018-03-23 16:23:20 +01:00
Baruch Siach
84e3bbcac8 dbus: bump to version 1.12.2
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-11-27 09:33:31 +01:00
Baruch Siach
0123e33a11 dbus: bump to version 1.12.0
Remove --enable-abstract-sockets; dropped upstream. Remove
ac_cv_have_abstract_sockets that is dropped as well.

Remove --disable-selinux; we handle selinux as an optional dependency
below.

Remove --{enable,disable}-dnotify; this options has been removed in
version 1.7.6, broken since 2010.

Remove --with-init-scripts; dropped upstream.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-11-05 20:36:56 +01:00
Baruch Siach
aab816d0d2 dbus: bump to version 1.10.24
Drop upstream patch.

Add license hash.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-10-10 17:56:22 +02:00
Adam Duskett
29f0bd345b dbus: bump version to 1.10.22
Signed-off-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
2017-07-29 00:38:44 +02:00
Baruch Siach
dcec447e89 dbus: bump to version 1.10.20
Change site to https to avoid a redirection.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-07-06 21:04:52 +02:00
Baruch Siach
0719b3e8db dbus: bump to version 1.10.18
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-04-20 22:25:50 +02:00
Peter Korsgaard
c9556ed90f dbus: security bump to version 1.10.16
>From http://www.openwall.com/lists/oss-security/2017/02/16/4

The latest dbus release 1.10.16 fixes two symlink attacks in
non-production-suitable configurations. I am treating these as bugs
rather than practical vulnerabilities, and very much hope neither of
these is going to affect any real users, but I'm reporting them to
oss-security in case there's an attack vector that I've missed.

No CVEs assigned so far.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-02-16 21:20:55 +01:00
Gustavo Zacarias
3229c7c12d dbus: bump to version 1.10.14
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2016-12-02 17:17:09 +01:00
Gustavo Zacarias
420bfabf47 dbus: security bump to version 1.10.12
Fixes:
Format string vulnerability processing ActivationFailure messages

See:
https://bugs.freedesktop.org/show_bug.cgi?id=98157

CVE not assigned yet.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2016-10-13 08:04:45 +02:00
Gustavo Zacarias
d3a1d96f89 dbus: bump to version 1.10.10
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2016-08-16 23:56:46 +02:00
Gustavo Zacarias
68e34ea9f3 dbus: bump to version 1.10.8
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2016-03-08 21:00:46 +01:00
Gustavo Zacarias
cc2a418cfb dbus: bump to version 1.10.6
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Reviewed-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Tested-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2015-12-02 21:28:07 +01:00
Gustavo Zacarias
c20fccf351 dbus: bump to version 1.10.4
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-11-18 21:53:36 +01:00
Gustavo Zacarias
4ca1cba115 dbus: bump to version 1.10.2
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2015-10-27 12:33:13 +01:00
Gustavo Zacarias
601a52a46f dbus: bump to version 1.10.0
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Tested-by: Nicolas Cavallari <nicolas.cavallari@green-communications.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-10-09 15:27:45 +02:00
Gustavo Zacarias
aa1d975718 dbus: bump to version 1.8.20
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-07-22 17:23:29 +02:00
Peter Korsgaard
0b173fd795 dbus: security bump
Fixes CVE-2015-0245. See announcement for details:

http://lists.freedesktop.org/archives/dbus/2015-February/016554.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2015-02-12 11:24:54 +01:00
Gustavo Zacarias
aee8c2c22b dbus: security bump to version 1.8.14
Fixes CVE-2014-8148 - If a system service installs unsafe security
policy rules that allow arbitrary method calls then this prevents memory
consumption and possible privilege escalation via
UpdateActivationEnvironment.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2015-01-06 21:14:30 +01:00
Peter Korsgaard
f66ea18d98 dbus: bump version
Regression fix for CVE-2014-3636, see release announcement:
http://lists.freedesktop.org/archives/dbus/2014-November/016430.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2014-12-16 21:28:30 +01:00
Gustavo Zacarias
eda2792204 dbus: security bump to version 1.8.10
Fixes:
CVE-2014-7824 - Denial of service via incomplete fix for CVE-2014-3636

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2014-11-14 13:17:55 +01:00