Change log for policykit-1 package in Ubuntu
| 76 → 110 of 110 results | First • Previous • Next • Last |
policykit-1 (0.96-2ubuntu0.2) lucid-security; urgency=low
* SECURITY UPDATE: use of pkcheck without specifying uid is racy,
possibly leading to privilege escalation
- debian/patches/CVE-2013-4288.patch: implement pid,start-time,uid
syntax so callers have a non-racy way of using pkcheck.
- CVE-2013-4288
-- Marc Deslauriers <email address hidden> Wed, 11 Sep 2013 09:50:59 -0400
Available diffs
policykit-1 (0.105-1ubuntu1.1) raring-security; urgency=low
* SECURITY UPDATE: use of pkcheck without specifying uid is racy,
possibly leading to privilege escalation
- debian/patches/CVE-2013-4288.patch: implement pid,start-time,uid
syntax so callers have a non-racy way of using pkcheck.
- CVE-2013-4288
-- Marc Deslauriers <email address hidden> Wed, 11 Sep 2013 09:43:35 -0400
Available diffs
policykit-1 (0.104-1ubuntu1.1) precise-security; urgency=low
* SECURITY UPDATE: use of pkcheck without specifying uid is racy,
possibly leading to privilege escalation
- debian/patches/CVE-2013-4288.patch: implement pid,start-time,uid
syntax so callers have a non-racy way of using pkcheck.
- CVE-2013-4288
-- Marc Deslauriers <email address hidden> Wed, 11 Sep 2013 09:48:41 -0400
Available diffs
policykit-1 (0.105-3ubuntu2) saucy; urgency=low
* Build using autoreconf to update config.{guess,sub} files.
* Configure with --disable-silent-rules.
-- Matthias Klose <email address hidden> Fri, 26 Jul 2013 14:07:45 +0200
Available diffs
- diff from 0.105-3ubuntu1 to 0.105-3ubuntu2 (764 bytes)
policykit-1 (0.105-3ubuntu1) saucy; urgency=low
* Merge with Debian unstable. Remaining Ubuntu changes:
- debian/patches/07_pam_environment.patch: set process environment
from pam_getenvlist().
- debian/patches/01_pam_polkit.patch: adjust patch to invoke pam_env, so
our global settings from /etc/environment are applied correctly.
- Switch to using logind for session tracking. Depend on libpam-systemd
instead of consolekit, and add libsystemd-login-dev build dependency.
- debian/policykit-1.postinst: Don't restart polkitd if we are upgrading
from a version that uses ConsoleKit. We need to keep the old daemon
running until the next reboot, as all the current user sessions still
have a CK session and no logind cgroup yet.
Available diffs
policykit-1 (0.105-1ubuntu3) saucy; urgency=low
* debian/policykit-1.postinst: Don't restart polkitd if we are upgrading
from a version that uses ConsoleKit. We need to keep the old daemon
running until the next reboot, as all the current user sessions still have
a CK session and no logind cgroup yet.
-- Martin Pitt <email address hidden> Mon, 29 Apr 2013 15:21:39 -0700
Available diffs
- diff from 0.105-1ubuntu2 to 0.105-1ubuntu3 (799 bytes)
policykit-1 (0.105-1ubuntu2) saucy; urgency=low
* Switch to using logind for session tracking. Depend on libpam-systemd
instead of consolekit, and add libsystemd-login-dev build dependency.
-- Martin Pitt <email address hidden> Sun, 28 Apr 2013 06:57:06 -0700
Available diffs
- diff from 0.105-1ubuntu1 to 0.105-1ubuntu2 (823 bytes)
| Superseded in saucy-release |
| Obsolete in raring-release |
| Deleted in raring-proposed (Reason: moved to release) |
policykit-1 (0.105-1ubuntu1) raring; urgency=low
* Merge from Debian unstable, remaining changes:
- debian/patches/07_pam_environment.patch: set process environment
from pam_getenvlist().
- debian/patches/01_pam_polkit.patch: adjust patch to invoke pam_env, so
our global settings from /etc/environment are applied correctly.
Available diffs
- diff from 0.104-2ubuntu1 to 0.105-1ubuntu1 (121.3 KiB)
policykit-1 (0.104-1ubuntu1) precise-proposed; urgency=low
* debian/patches/07_pam_environment.patch: set process environment
from pam_getenvlist(). Closes LP: #982684.
* debian/patches/01_pam_polkit.patch: adjust patch to invoke pam_env, so
our global settings from /etc/environment are applied correctly.
-- Steve Langasek <email address hidden> Tue, 15 May 2012 15:15:52 -0700
Available diffs
- diff from 0.104-1 to 0.104-1ubuntu1 (1.4 KiB)
policykit-1 (0.104-2ubuntu1) quantal; urgency=low
* debian/patches/07_pam_environment.patch: set process environment
from pam_getenvlist(). Closes LP: #982684.
* debian/patches/01_pam_polkit.patch: adjust patch to invoke pam_env, so
our global settings from /etc/environment are applied correctly.
-- Steve Langasek <email address hidden> Tue, 15 May 2012 15:15:52 -0700
Available diffs
policykit-1 (0.104-2) unstable; urgency=low
* debian/control: Add Build-Depends on libglib2.0-doc and libgtk-3-doc for
proper cross-references in the gtk-doc API documentation.
* Install systemd service file for polkitd.
-- Michael Biebl <email address hidden> Sat, 11 Feb 2012 23:48:29 +0100
Available diffs
- diff from 0.104-1 (in Ubuntu) to 0.104-2 (1.1 KiB)
policykit-1 (0.104-1) unstable; urgency=low
* New upstream release.
- Add support for netgroups. (LP: #724052)
* debian/rules: Disable systemd support, continue to work with ConsokeKit.
* 05_revert-admin-identities-unix-group-wheel.patch: Refresh to apply
cleanly.
* debian/libpolkit-gobject-1-0.symbols: Add new symbols from this new
release.
* debian/rules: Do not let test failures fail the build. The new test suite
also runs a test against the system D-BUS/ConsoleKit, which can't work on
buildds.
-- Martin Pitt <email address hidden> Fri, 06 Jan 2012 12:28:54 +0100
Available diffs
- diff from 0.103-1 (in Debian) to 0.104-1 (366.2 KiB)
policykit-1 (0.103-1) unstable; urgency=low
* New upstream release.
* debian/control: Change section of gir1.2-polkit-1.0 to introspection.
* 05_revert-admin-identities-unix-group-wheel.patch: Revert upstream change
to make group wheel the default admin identity since we already use group
sudo resp. group admin for that.
-- Michael Biebl <email address hidden> Fri, 09 Dec 2011 00:48:17 +0100
Available diffs
- diff from 0.102-2 (in Ubuntu) to 0.103-1 (18.4 KiB)
policykit-1 (0.102-2) unstable; urgency=low
* 02_gettext.patch: Explicitly #include <locale.h> to fix non-optimized
build. Thanks Ivan Krasilnikov for pointing this out.
* debian/rules: When building on Ubuntu, also consider the "sudo" group as
administrator, for compatibility with Debian and sudo itself. Keep "admin"
for existing systems. (LP: #893842)
* Convert to Multi-Arch and dh compat 9. Thanks Daniel Schaal for the
patch! (Closes: #636196)
-- Martin Pitt <email address hidden> Fri, 25 Nov 2011 07:44:09 +0100
Available diffs
- diff from 0.102-1 to 0.102-2 (3.2 KiB)
policykit-1 (0.102-1) unstable; urgency=low
* New upstream release.
* debian/patches/00git_fix_proc_race.patch: Removed, merged upstream.
* debian/patches/04_ignore_quilt_po.patch: Removed, merged upstream.
* debian/patches/03_complete_session.patch: Refreshed.
* debian/patches/04_get_cwd.patch: Use g_get_current_dir() to determine the
current working directory. This fixes another PATH_MAX related FTBFS on
hurd. Thanks Emilio Pozuelo Monfort for the patch. (Closes: #623017)
-- Martin Pitt <email address hidden> Fri, 05 Aug 2011 09:22:40 +0000
Available diffs
- diff from 0.101-4 to 0.102-1 (25.0 KiB)
policykit-1 (0.101-4) unstable; urgency=high
Urgency high due to security fix.
* Add 00git_fix_proc_race.patch: Avoid /proc race conditions when checking
privileges for pkexec. Patch taken from
https://bugzilla.redhat.com/show_bug.cgi?id=692922, now also landed in
upstream git. [CVE-2011-1485]
* debian/libpolkit-gobject-1-0.symbols: Update for new symbols.
* Add 04_ignore_quilt_po.patch: Ignore .po/ for intltool. This avoids build
failures if quilt patches change files with translatable strings. Thanks
to Kees Cook for the patch!
Available diffs
- diff from 0.101-1ubuntu1 to 0.101-4 (9.5 KiB)
policykit-1 (0.101-1ubuntu1) natty; urgency=low
* SECURITY UPDATE: avoid /proc race conditions when checking privileges
for pkexec.
- Add debian/patches/10_fix_proc_race.patch: fix from upstream.
- Add debian/patches/99_ignore_quilt_po.patch: ignore .pc/ for po files.
- update debian/libpolkit-gobject-1-0.symbols for new symbols.
- CVE-2011-1485
-- Kees Cook <email address hidden> Tue, 19 Apr 2011 12:18:28 -0700
Available diffs
- diff from 0.101-1 to 0.101-1ubuntu1 (6.5 KiB)
policykit-1 (0.94-1ubuntu1.1) karmic-security; urgency=low
* SECURITY UPDATE: avoid /proc race conditions when checking privileges
for pkexec.
- 10_fix_proc_race.patch
- CVE-2011-1485
-- Kees Cook <email address hidden> Tue, 19 Apr 2011 13:06:21 -0700
Available diffs
policykit-1 (0.96-2ubuntu0.1) lucid-security; urgency=low
* SECURITY UPDATE: avoid /proc race conditions when checking privileges
for pkexec.
- 10_fix_proc_race.patch
- CVE-2011-1485
-- Kees Cook <email address hidden> Tue, 19 Apr 2011 12:38:05 -0700
Available diffs
policykit-1 (0.96-2ubuntu1.1) maverick-security; urgency=low
* SECURITY UPDATE: avoid /proc race conditions when checking privileges
for pkexec.
- 10_fix_proc_race.patch
- CVE-2011-1485
-- Kees Cook <email address hidden> Tue, 19 Apr 2011 12:25:33 -0700
Available diffs
policykit-1 (0.101-1) experimental; urgency=low
* New upstream release.
* Update patches
- Drop debian/patches/04_test_signalfd.patch, merged upstream.
- Refresh other patches to apply cleanly.
* debian/libpolkit-gobject-1-0.symbols
- Add polkit_authorization_result_get_dismissed.
* debian/control
- Bump Build-Depends on libglib2.0-dev to (>= 2.28.0).
* debian/rules
- Don't build example programs.
-- Martin Pitt <email address hidden> Mon, 07 Mar 2011 18:19:30 +0000
Available diffs
- diff from 0.100-1 to 0.101-1 (154.2 KiB)
policykit-1 (0.100-1) experimental; urgency=low
* New upstream release.
* Refresh debian/patches/03_complete_session.patch.
* Replace debian/patches/04_test_signalfd.patch with a patch that was merged
upstream. This also allows to drop debian/patches/99_autoreconf.patch.
* Switch from cdbs to dh.
* Bump debhelper compatibility level to 8.
* Install documentation using debian/policykit-1.docs.
* Enable gobject introspection support.
- Add Build-Depends on libgirepository1.0-dev (>= 0.9.12),
gobject-introspection (>= 0.9.12-4~) and gir1.2-glib-2.0.
- Add package gir1.2-polkit-1.0 containing the typelib files.
- Install gir files in libpolkit-agent-1-dev.install and
libpolkit-gobject-1-dev.install.
- Call dh_girepository in debian/rules.
Available diffs
- diff from 0.99-1 to 0.100-1 (100.2 KiB)
policykit-1 (0.99-1) experimental; urgency=low
[ Michael Biebl ]
* New upstream release.
* debian/patches/00git-fix-error-freeing.patch
- Remove, fixed upstream.
* debian/patches/00git-pkexec-information-disclosure.patch
- Remove, merged upstream.
* debian/control
- Drop Build-Depends on libeggdbus-1-dev.
- Bump Build-Depends on libglib2.0-dev to (>= 2.25.12) for GDBus.
* Switch to source format 3.0 (quilt).
- Add debian/source/format.
- Drop Build-Depends on quilt.
- Remove /usr/share/cdbs/1/rules/patchsys-quilt.mk from debian/rules.
- Remove debian/README.source.
[ Robert Ancell ]
* Add debian/patches/02_gettext.patch: Use gettext for translations in
.policy files if they specify a gettext domain.
[ James Westby ]
* Add debian/patches/03_complete_session.patch: Fix the race that leads to
the password box disappearing, but the dialog remaining.
[ Martin Pitt ]
* debian/rules: Set DPKG_GENSYMBOLS_CHECK_LEVEL to 4 to point out outdated
.symbols files more strongly.
-- Martin Pitt <email address hidden> Thu, 04 Nov 2010 17:27:09 -0400
Available diffs
- diff from 0.99-0ubuntu1 to 0.99-1 (3.3 KiB)
| Superseded in natty-release |
policykit-1 (0.99-0ubuntu1) natty; urgency=low
* New upstream release
* debian/control:
- Drop build-depends on libeggdbus-1-dev
- Bump build-depends on libglib2.0-dev
- Add Vcs-Bzr link
* debian/libpolkit-backend-1-0.symbols:
* debian/libpolkit-gobject-1-0.symbols:
- Updated
* debian/patches/00git-fix-error-freeing.patch:
* debian/patches/00git-pkexec-information-disclosure.patch:
- Applied upstream
-- Robert Ancell <email address hidden> Tue, 02 Nov 2010 17:29:12 +1100
Available diffs
- diff from 0.96-2ubuntu2 to 0.99-0ubuntu1 (224.3 KiB)
| Superseded in natty-release |
policykit-1 (0.96-2ubuntu2) natty; urgency=low
* debian/patches/03_complete_session.patch
- Fix the race that leads to the password box disappearing, but the dialog
remaining. (LP: #649939, #445303)
-- James Westby <email address hidden> Thu, 28 Oct 2010 09:14:26 -0400
Available diffs
- diff from 0.96-2ubuntu1 to 0.96-2ubuntu2 (960 bytes)
policykit-1 (0.96-2ubuntu1) maverick; urgency=low
* debian/patches/02_gettext.patch:
- Allow gettext to be used for translations (LP: #619632)
-- Robert Ancell <email address hidden> Thu, 26 Aug 2010 11:19:22 +1000
Available diffs
- diff from 0.96-2 to 0.96-2ubuntu1 (2.1 KiB)
policykit-1 (0.96-2) unstable; urgency=medium
* Urgency medium, just two small, but important bug fixes.
* Add 00git-pkexec-information-disclosure.patch: Fix information disclosure
vulnerability that allows an attacker to verify whether or not arbitrary
files exist, violating directory permissions.
* 00git-fix-error-freeing.patch: Fix crash when calling CheckAuthorization()
with an invalid PID. (LP: #540464)
-- Martin Pitt <email address hidden> Fri, 09 Apr 2010 12:09:53 +0200
Available diffs
- diff from 0.96-1 to 0.96-2 (2.1 KiB)
policykit-1 (0.96-1) unstable; urgency=low
* New upstream release.
* debian/libpolkit-backend-1-0.symbols
- Update for new API addition.
-- Ubuntu Archive Auto-Sync <email address hidden> Wed, 27 Jan 2010 01:32:10 +0000
Available diffs
- diff from 0.95-1 to 0.96-1 (139.8 KiB)
policykit-1 (0.95-1) unstable; urgency=low
* New upstream release.
* Remove patches
- debian/patches/02_dont_export_private_symbols.patch (merged upstream)
- debian/patches/03_path_max.patch (merged upstream)
- debian/patches/04-ref-authority.patch (merged upstream)
- debian/patches/05-pkexec-env.patch (merged upstream)
- debian/patches/99_autoreconf.patch (obsolete)
* debian/control
- Bump Build-Depends on libeggbus-1-dev to (>= 0.6).
* debian/rules
- The example application is no longer built by default so we don't need
to manually remove it anymore.
* debian/libpolkit-{backend,gobject}-1-0.symbols
- Update for new API additions.
Available diffs
- diff from 0.94-5 to 0.95-1 (79.4 KiB)
policykit-1 (0.94-5) unstable; urgency=low
* Add debian/patches/04-ref-authority.patch: Ref the instance returned by
polkit_authority_get(), since the documentation says that it needs to be
unref'ed after usage. This fixes crashes in NetworkManager and probably
other programs, too. (LP: #438574, #432452, fd.o #24566)
* Add debian/patches/05-pkexec-env.patch: Add missing comma so that pkexec
saves both LANG and LANGUAGE, not LANGLANGUAGE. (Cherrypicked from trunk)
* Add myself to Uploaders: with Michael's consent.
Available diffs
- diff from 0.94-1ubuntu1 to 0.94-5 (3.8 KiB)
policykit-1 (0.94-1ubuntu1) karmic; urgency=low
* fix network-manager crashes when opening connection editor
with system connections; crahes turned out to be caused by
freed policy kit authority - fix involves propery reffing
authority in singleton accessor (LP: #438574, #432452)
- See: https://bugs.freedesktop.org/show_bug.cgi?id=24566
- add 03_0001-authority-g_object_ref-authority-when-returning-sing.patch
-- Alexander Sack <email address hidden> Fri, 16 Oct 2009 12:18:17 +0200
Available diffs
- diff from 0.94-1 to 0.94-1ubuntu1 (1.2 KiB)
policykit-1 (0.94-1) unstable; urgency=low
* Rename package to policykit-1. Upstream (at least temporarily) forked
the project to make it installable in parallel with policykit 0.9, until
all programs are ported to the new API.
* Drop all patches except 01_pam_polkit.patch.
* Refresh debian/patches/01_pam_polkit.patch.
* debian/control
- Update Build-Depends
+ Drop libdbus-1-dev, libdbus-glib-1-dev.
+ Add libeggdbus-1-dev (>= 0.5) and lsb-release.
+ Bump libglib2-dev dependency to (>= 2.21.4).
- Update list of binary packages and their package descriptions.
- Drop dependency on adduser.
- Bump Standards-Version to 3.8.3.
+ Add README.source which refers to the quilt documentation.
- Update Vcs-* fields. Package is now managed using Git and hosted on
git.debian.org.
* Update shared library structure: libpolkit-{,dbus,grant} →
libpolkit-{agent,backend,gobject}-1.
* Rename policykit, policykit-doc → policykit-1, policykit-1-doc.
* Update and revise all *.install files.
* debian/rules, debian/policykit.init: Drop init script, package doesn't use
/var/run any more.
* debian/policykit-1.postinst: Don't create "polkituser" system user, it's
not used any more.
* Update watch file.
* debian/patches/02_dont_export_private_symbols.patch
- Don't export private symbols in the libraries.
* debian/patches/99_autoreconf.patch
- Update the autotools files as the previous patch also touches the build
system.
* Add symbols files for libpolkit-{agent,backend,gobject}-1 for improved
shlibs dependencies.
* debian/rules
- Disable introspection support.
- When building for Ubuntu, install a localauthority.conf.d configuration
file which considers "admin" group users as administrators.
- Don't install example application.
* debian/copyright
- Update copyright holder.
- License was changed to LGPL 2.1+.
-- Martin Pitt <email address hidden> Mon, 28 Sep 2009 09:19:38 +0100
Available diffs
- diff from 0.94-0ubuntu2 to 0.94-1 (12.6 KiB)
| Superseded in karmic-release |
policykit-1 (0.94-0ubuntu2) karmic; urgency=low
* Add proper shlibs files. Don't use symbols files, they are too complex
because of the egg-dbus-binding-tool clutter.
-- Martin Pitt <email address hidden> Wed, 26 Aug 2009 14:38:34 +0200
Available diffs
- diff from 0.94-0ubuntu1 to 0.94-0ubuntu2 (474 bytes)
| Superseded in karmic-release |
policykit-1 (0.94-0ubuntu1) karmic; urgency=low * New upstream release (LP: #417984) [ 0.94 ] - Post-release version bump to 0.94 - Require correct versions of glib and eggdbus - Ignore .pkla files starting with dot and don't segfault on error path - Allow unprivileged callers to check authorizations - Don't spawn man(1) from a setuid program - Add polkit.retains_authorization_after_challenge to authz result - Ensure all fds except stdin/stdout/stderr are closed after exec(2) - Be more careful when determining process start time - Pass the right struct offset for the ::changed class signal handler - Don't set the GError if the process doesn't exist - Remove temporary authorization when the subject it applies to vanishes - Generate GI gir and typelibs for libpolkit-gobject-1 - Update NEWS for release - Bug 23093 – FreeBSD portability fixes [ 0.93 ] - Post-release version bump to 0.93 - GIO modules need to be prefix with lib - Cancel an authentication if the unique name for the subject vanishes - Plug a couple of memory leaks - Move local authority management to a separate library - Rip out polkit-local and refactor local authority to only use tmp authz - Move authentication agent bits to separate authority subclass - Also pass the identity of the subject we are checking for - Actually make the local authority look up authorization files - In .pkla files, use Result{Any,Inactive,Active} instead of just Result - Rename some man pages and the daemon binary - Add docs detailing how the Local Authority works - Add support for querying and revoking temporary authorizations - Fix make distcheck - Update TODO - Update NEWS for release - Use unique ids for sections to prevent them being autogenerated - More unique ids to get the docs build fully predictable * debian/control: - Add BZR link - Bump glib and eggdbus depends * debian/rules: - Disable introspection * debian/watch: - Updated download link -- Robert Ancell <email address hidden> Mon, 24 Aug 2009 09:11:46 +0200
Available diffs
- diff from 0.92-0ubuntu1 to 0.94-0ubuntu1 (242.3 KiB)
policykit-1 (0.92-0ubuntu1) karmic; urgency=low
* Rename package to policykit-1. Upstream (at least temporarily) forked
the project to make it installable in parallel with policykit 0.9, until
all programs are ported to the new API.
* Drop all patches except 01_pam_polkit.patch.
* Update shared library structure: libpolkit-{,dbus,grant} →
libpolkit-{agent,backend,gobject}-1.
* debian/control:
- libdbus-1-dev, libdbus-glib-1-dev → libeggdbus-1-dev
* debian/copyright: Update copyright.
* debian/rules, debian/policykit.init: Drop init script, package doesn't use
/var/run any more.
* debian/rules: Fix permissions of /var/lib/polkit-1/ which upstream build
system installs without executable permissions.
* debian/rules: Don't create "polkituser" system user, it's not used any
more.
* debian/rules: When building for Ubuntu, install a localauthority.conf.d
configuration file which considers "admin" group users as administrators.
Add "lsb-release" build dependency.
-- Martin Pitt <email address hidden> Mon, 22 Jun 2009 09:24:18 +0200
| 76 → 110 of 110 results | First • Previous • Next • Last |
