registry team mailing list archive

[Launchpad Bug Tracker <616517@xxxxxxxxxxxxxxxxxx>]

This bug was fixed in the package dbus-glib - 0.88-2

---------------
dbus-glib (0.88-2) unstable; urgency=medium

  * Re-upload to unstable, with release team acknowledgement for squeeze

dbus-glib (0.88-1) experimental; urgency=low

  [ Sjoerd Simons ]
  * debian/control: Move packaging from svn to git
  * debian/rules, debian/libdbus-glib-1-2-dbg.links:
    - Don't symlink the dbg doc directory to the main packages one, it's too
      brittle and doesn't win much
  * debian/control, debian/update-patches.mk
    - Copy patch updating script from pkg-telepathy
  * debian/patches/0001-Fix-lookup-of-regular-properties-when-shadow-propert.patch
    - Fix crash when using shadow properties (from upstream git)

  [ Simon McVittie ]
  * New upstream version
    - fixes CVE-2010-1172, unvalidated property access (Closes: #592753,
      LP: #616517)
    - drop the patch Sjoerd added, which is included in the upstream release
    - update symbols file for new ABI (some of which is part of the security
      bugfix)
    - mark dbus_g_object_type_install_info as requiring a dependency on this
      version, because it will be "version 1" instead of "version 0" object
      info for anything compiled against this version
 -- Sebastien Bacher <seb128@xxxxxxxxxx>   Tue,  17 Aug 2010 11:22:07 +0100

** Changed in: dbus-glib (Ubuntu)
       Status: Fix Committed => Fix Released

-- 
CVE-2010-1172 dbus-glib: property access not validated
https://bugs.launchpad.net/bugs/616517
You received this bug notification because you are a member of Registry
Administrators, which is the registrant for Debian.