pulseaudio (1:8.0-0ubuntu3.12) xenial-security; urgency=medium
* SECURITY UPDATE: stop snaps from loading and unloading modules, to
prevent bypass of audio recording restriction (LP: #1877102). Patch thanks
to James Henstridge
- d/p/0407-access-Add-access-control-hooks.patch: make sure access
hook IDs are non-zero.
- d/p/0450-modules-add-snappy-policy-module.patch: Prevent snaps from
controlling modules, terminating the daemon, or disconnecting clients.
- CVE-2020-11931
* debian/control: Build-Depends on libsnapd-glib-dev (>= 1.49)
Date: 2020-05-11 20:28:14.997143+00:00
Changed-By: Jamie Strandboge <ja...@ubuntu.com>
https://launchpad.net/ubuntu/+source/pulseaudio/1:8.0-0ubuntu3.12
Sorry, changesfile not available.
--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
