diff options
| author | Simon McVittie <smcv@collabora.com> | 2023-06-06 12:04:03 +0100 |
|---|---|---|
| committer | Simon McVittie <smcv@collabora.com> | 2023-06-06 12:04:03 +0100 |
| commit | 0531ae1dcc79f7866d158cb0a978432f3c1429d3 (patch) | |
| tree | 9923928121d0d5e38ee1bab34b63aadc0bf9eb8f | |
| parent | 2c699f6ba9c162878c69d0728298c1ab7308db72 (diff) | |
Update NEWS
Signed-off-by: Simon McVittie <smcv@collabora.com>
(cherry picked from commit 05367daa101247b1b5f7648b635cbe47eb220b39)
| -rw-r--r-- | NEWS | 11 |
1 files changed, 10 insertions, 1 deletions
@@ -1,7 +1,16 @@ dbus 1.12.27 (UNRELEASED) ========================= -Fixes: +Denial-of-service fixes: + +• Fix an assertion failure in dbus-daemon when a privileged Monitoring + connection (dbus-monitor, busctl monitor, gdbus monitor or similar) + is active, and a message from the bus driver cannot be delivered to a + client connection due to <deny> rules or outgoing message quota. This + is a denial of service if triggered maliciously by a local attacker. + (dbus#457; hongjinghao, Simon McVittie) + +Other fixes: • Documentation: · Fix syntax of a code sample in dbus-api-design |