-dbus 1.13.16 (UNRELEASED)
+dbus 1.13.16 (2020-06-02)
=========================
+The “ominous mushroom hat” release.
+
+Denial of service fixes:
+
+• CVE-2020-12049: If a message contains more file descriptors than can
+ be sent, close those that did get through before reporting error.
+ Previously, a local attacker could cause the system dbus-daemon (or
+ another system service with its own DBusServer) to run out of file
+ descriptors, by repeatedly connecting to the server and sending fds that
+ would get leaked.
+ Thanks to Kevin Backhouse of GitHub Security Lab.
+ (dbus#294, GHSL-2020-057; Simon McVittie)
+
Enhancements:
• The API reference manual can be built as a Qt compiled help file if
m4_define([dbus_major_version], [1])
m4_define([dbus_minor_version], [13])
-m4_define([dbus_micro_version], [15])
+m4_define([dbus_micro_version], [16])
m4_define([dbus_version],
[dbus_major_version.dbus_minor_version.dbus_micro_version])
AC_INIT([dbus], [dbus_version], [https://gitlab.freedesktop.org/dbus/dbus/issues], [dbus])
#
## increment if the interface has additions, changes, removals.
-LT_CURRENT=30
+LT_CURRENT=31
## increment any time the source changes; set to
## 0 if you increment CURRENT
## increment if any interfaces have been added; set to 0
## if any interfaces have been changed or removed. removal has
## precedence over adding, so set to 0 if both happened.
-LT_AGE=27
+LT_AGE=28
AC_SUBST(LT_CURRENT)
AC_SUBST(LT_REVISION)
projects / thirdparty / dbus.git / commitdiff
