dbus (1.10.6-1ubuntu3.1) xenial-security; urgency=medium * SECURITY UPDATE: arbitrary code execution or denial of service via format string vulnerability (likely limited to uid 0 only) - debian/patches/format_string.patch: do not use non-literal format string in bus/activation.c. - No CVE number -- Marc Deslauriers <email address hidden> Wed, 12 Oct 2016 08:33:00 -0400