Package: odccm Version: 0.11.1-2 Severity: normal User: [email protected] Usertags: fdo-18961
odccm's D-Bus system.d config should be updated to fix non-deterministic allow/deny for messages with no interface; the D-Bus upstream recommendation seems to be that every allow or deny rule with send_interface="..." should have a suitable send_destination attribute too. http://bugs.freedesktop.org/show_bug.cgi?id=18961 is the D-Bus bug tracking this; there have also been discussions on the D-Bus mailing list. Please test the resulting package against the dbus package from http://people.debian.org/~smcv/dbus-cve-2008-4311/ (you might be better off waiting until hal's current RC bug has been fixed before you upgrade); as far as I can tell, it *should* be OK with deny-by-default, but it might not be. Regards from the Cambridge BSP, Simon
signature.asc
Description: Digital signature
