-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 05 Oct 2022 12:04:31 +0100 Source: dbus Architecture: source Version: 1.12.24-0+deb11u1 Distribution: bullseye-security Urgency: medium Maintainer: Utopia Maintenance Team <pkg-utopia-maintain...@lists.alioth.debian.org> Changed-By: Simon McVittie <s...@debian.org> Closes: 1004543 1005889 Changes: dbus (1.12.24-0+deb11u1) bullseye-security; urgency=medium . * New upstream stable release 1.12.22 - No longer logs warnings about /proc/self/oom_score_adj with systemd >= 250 (Closes: #1004543) - Improve reproducibility of documentation - Fix a race condition in test/integration/transient-services.sh which affects the autopkgtest (Closes: #1005889) - Fixes for some non-Debian platforms * New upstream stable release 1.12.24 - Fix several denial of service issues where an authenticated attacker can crash the system bus by sending crafted messages (CVE-2022-42010, CVE-2022-42011, CVE-2022-42012) - Use a path-based Unix socket for the session bus, avoiding sandbox escape for Flatpak apps with network access (dbus#416) - Don't crash if asked to watch more than 128 directories for changes - Fix error reporting for a rare out-of-memory condition - Fixes for non-Debian mingw-w64 builds * d/gbp.conf, d/control: Switch branch for bullseye Checksums-Sha1: 7ef184eb33dacb6581efe238b108977214af33af 3578 dbus_1.12.24-0+deb11u1.dsc 455d2090d300f0f3be0ba2e3c82d0c4cf0fd8968 2120623 dbus_1.12.24.orig.tar.gz e592c47782be97a24b89917ecd48722acaae37c2 833 dbus_1.12.24.orig.tar.gz.asc 3f5f169a77bf33012a6432d021a23913a98a2e1c 58472 dbus_1.12.24-0+deb11u1.debian.tar.xz 251ee4cc0937f3e9fccabc21e7f53fa8888fe725 8044 dbus_1.12.24-0+deb11u1_source.buildinfo Checksums-Sha256: 9a75dcffa9112579a74072fc56523f450fed635793ee1eea298b7229cbb9485a 3578 dbus_1.12.24-0+deb11u1.dsc bc42d196c1756ac520d61bf3ccd6f42013617def45dd1e591a6091abf51dca38 2120623 dbus_1.12.24.orig.tar.gz a81b175c65d1daa36d7043d113d6f11d5b4a43c3125f5613bfe734ad1c79a41b 833 dbus_1.12.24.orig.tar.gz.asc b4e21844823b01eeac821f276b0f3a871b798c48381edc5626c4bfe8950575ae 58472 dbus_1.12.24-0+deb11u1.debian.tar.xz 8918a212edf58806e2082c80b1968a63a5606fa17d5a05a9260e6058768e46b2 8044 dbus_1.12.24-0+deb11u1_source.buildinfo Files: f56324f2deb1c6f929f1f4ecf4c47954 3578 admin optional dbus_1.12.24-0+deb11u1.dsc 2d118d2d29e895eb3b47ccd68670403e 2120623 admin optional dbus_1.12.24.orig.tar.gz 965c83cb8993e9a7f1d45717a6846194 833 admin optional dbus_1.12.24.orig.tar.gz.asc ebd54c0ee9f31e8c7ed853cdd339079b 58472 admin optional dbus_1.12.24-0+deb11u1.debian.tar.xz 793d251b8c1f43daebf19faa40e6884e 8044 admin optional dbus_1.12.24-0+deb11u1_source.buildinfo
-----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEENuxaZEik9e95vv6Y4FrhR4+BTE8FAmM9jR4ACgkQ4FrhR4+B TE/2yg//YG6wjKMWX2g3Bl6hC/gOsTHMfbDhszvuSlCsHr7R1YrqKeYfbCkPxaX3 h/yBHx6hjjk3bUQ9MQibhhtMLM+fSYdRb/6UPlpyocBobbyLVES8CqVGuWeoRBNu 0LtHcE1CCsCOsPC0jxSkH3K++PQkWfyk9NgIjrCSiT5baehAa85tQFEl+bzZQSko lGVzpTxpzlJijpbtAhK68fxSm5yt4GDKws7I+etSU8g/gaeH1O16mNCbFQ3wfHdL Y3+4ZzP2kHbPypecHvUrTsGBR5Sz2dVLRQS0hRBI32+bQyAuEOUrtm4qlYHYF9GV i/rLAKYOUFt1jnBvgBz2+D40jpKxfvsgX3jOoIIZV46TMBLvvqHcXL6OTaCA+r9I nst3nqNfAebSEBLyA+oJQDy7JHevI+yZ/sR/snXScCiSxOZJmXFVXQhbld8tMET3 /tIjF9Ym4wbIPmDcJdYSbLSXish/f0EtdRBGlexO25koKxR8IbeVyB6OsDdtrXgR NiChil4GGYi5ZzYS0oh6DlNF750NskFX3wlqCkHc2sQCdUChGjZiSMTWSpKdHPW8 +mO40G9+i+SPfvd1pWoJsQvG1uol1R0eeySAsZSqqVHp76e22flmiqjl+aKNLEyq 60jnuPMm5LJMOZEuG7W6XNtEWG3r7kSrdp106zaMQQrc0RzOX4k= =o/o0 -----END PGP SIGNATURE-----