 fox
II/IDEC networks :: obsd.info.14 :: / http://marc.info/?l=openbsd-ports-cvs&m=141105094202745&w=2
|
Login |
[#]
http://marc.info/?l=openbsd-ports-cvs&m=141105094202745&w=2
openbsd-ports-cvs(obsdave,2) — All
2014-09-18 18:55:10
Module name: ports
Changes by: zhuk@cvs.openbsd.org 2014/09/18 08:35:18
Modified files:
x11/kde4/libs : Tag: OPENBSD_5_6 Makefile
Added files:
x11/kde4/libs/patches: Tag: OPENBSD_5_6
patch-kdecore_auth_backends_polkit-1_Polkit1Backend_cpp
Log message:
Security fix for kdelibs 4.13 branch, CVE-2014-5033:
The KAuth framework uses polkit-1 API which tries to authenticate using the
requestors PID. This is prone to PID reuse race conditions.
More details here: <a href="http://www.kde.org/info/security/advisory-20140730-1.txt" rel="nofollow">http://www.kde.org/info/security/advisory-20140730-1.txt</a>
reminded by jasper@
openbsd-ports-cvs(obsdave,2) — All
2014-09-18 18:55:10
Module name: ports
Changes by: zhuk@cvs.openbsd.org 2014/09/18 08:35:18
Modified files:
x11/kde4/libs : Tag: OPENBSD_5_6 Makefile
Added files:
x11/kde4/libs/patches: Tag: OPENBSD_5_6
patch-kdecore_auth_backends_polkit-1_Polkit1Backend_cpp
Log message:
Security fix for kdelibs 4.13 branch, CVE-2014-5033:
The KAuth framework uses polkit-1 API which tries to authenticate using the
requestors PID. This is prone to PID reuse race conditions.
More details here: <a href="http://www.kde.org/info/security/advisory-20140730-1.txt" rel="nofollow">http://www.kde.org/info/security/advisory-20140730-1.txt</a>
reminded by jasper@