Package: hal Version: 0.5.11-6 Severity: serious Justification: blocker for #503532 (CVE-2008-4311) Tags: upstream User: pkg-utopia-maintain...@lists.alioth.debian.org Usertags: CVE-2008-4311
hal installs a D-Bus system policy file which doesn't allow introspection, or the KillSwitch method used by NetworkManager. These used to be allowed accidentally by a dbus-daemon bug, but with the dbus-daemon currently in experimental (which is now targeted for lenny) they will be denied. https://bugs.freedesktop.org/show_bug.cgi?id=18985 provides a partial, unreviewed patch. Some quick notes I made while rummaging through the hal source tree: org.freedesktop.Hal.SingletonAddon - emits methods (!?) which libhal receives rfkill: org.freedesktop.Hal.Device.KillSwitch has SetPower/GetPower dockstation: org.freedesktop.Hal.Device.DockStation has Undock org.freedesktop.Hal.Device.Storage has CloseTray, Eject org.freedesktop.Hal.Device.SystemPowerManagement has Suspend etc. org.freedesktop.Hal.Device.WakeOnLan has GetEnabled, SetEnabled LaptopPanel already covered CPUFreq? KeyboarBacklight? LightSensor? Storage.Removable? AccessControl? I don't know which of these should allow privileged or unprivileged access. A conservative version would be to let root access them. Regards from the Cambridge BSP, Simon
signature.asc
Description: Digital signature
