Format: 1.8
Date: Wed, 07 Dec 2011 16:35:28 -0600
Source: acpid
Binary: acpid kacpimon
Architecture: armel
Version: 1:2.0.7-1ubuntu2.4
Distribution: natty
Urgency: low
Maintainer: Ubuntu/armel Build Daemon <buildd@crabapple.buildd>
Changed-By: Tyler Hicks <tyhicks@canonical.com>
Description: 
 acpid      - Advanced Configuration and Power Interface event daemon
 kacpimon   - Kernel ACPI Event Monitor
Launchpad-Bugs-Fixed: 893821
Changes: 
 acpid (1:2.0.7-1ubuntu2.4) natty-security; urgency=low
 .
   * SECURITY UPDATE: Arbitrary code execution in the power button handling
     script (LP: #893821)
     - debian/powerbtn.sh: Ensure that the DBUS_SESSION_BUS_ADDRESS environment
       variable is only read from a process owned by the user that will be
       evaluating the variable.
     - CVE-2011-2777
   * SECURITY UPDATE: Unprivileged users may be able to write to directories
     and read files created by event handler scripts
     - event.c: Set a restrictive umask of 0077 before running an event handler
       script. Based on upstream patch.
     - CVE-2011-4578
Checksums-Sha1: 
 06925f88e0a0d23b8bf356f1df1fe1bdd980f573 32374 acpid_2.0.7-1ubuntu2.4_armel.deb
 fcdd83be735507da34b946e77c8435d2af406cde 12040 kacpimon_2.0.7-1ubuntu2.4_armel.deb
Checksums-Sha256: 
 fce58e1bba7c998d25c2041508a4f7b98bf30b243bcec1f362d4940be09df445 32374 acpid_2.0.7-1ubuntu2.4_armel.deb
 a79699f16f5dcdf53d9fcf73e4ad72fa25a76d4c8cc72ba7ecfe6522a30c4fe5 12040 kacpimon_2.0.7-1ubuntu2.4_armel.deb
Files: 
 871e03feaf93dcb9b92d2f05db5a12c1 32374 admin optional acpid_2.0.7-1ubuntu2.4_armel.deb
 cb2b87d528a295f1fa29ab5225791553 12040 utils extra kacpimon_2.0.7-1ubuntu2.4_armel.deb
Original-Maintainer: Debian Acpi Team <pkg-acpi-devel@lists.alioth.debian.org>