e4464fabb6
In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message destination, allowing any user to inspect and manipulate any property. This leads to access-control bypass in some situations in which an unrelated D-Bus system service has a settable (writable) property Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> |
||
|---|---|---|
| .. | ||
| 0001-core-Fix-compiling-on-RHEL-9.patch | ||
| 0002-dbus-fix-policy-to-not-be-overly-broad.patch | ||
| Config.in | ||
| keepalived.hash | ||
| keepalived.mk | ||