From: Simon McVittie Date: Mon, 9 Feb 2015 11:06:32 +0000 (+0000) Subject: Merge branch '1.8-cve-2015-0245' into cve-2015-0245 X-Git-Tag: dbus-1.9.10~2 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=a3c1b66b7a784280b0763ee4014c258144ae7876;p=thirdparty%2Fdbus.git Merge branch '1.8-cve-2015-0245' into cve-2015-0245 Conflicts: NEWS bus/system.conf.in configure.ac --- a3c1b66b7a784280b0763ee4014c258144ae7876 diff --cc NEWS index 61d69c32a,bb1f08e46..148d2d786 --- a/NEWS +++ b/NEWS @@@ -1,65 -1,28 +1,79 @@@ -D-Bus 1.8.18 (UNRELEASED) +D-Bus 1.9.10 (UNRELEASED) == -... - -D-Bus 1.8.16 (2015-02-09) -== - -The âpoorly concealed wrestlersâ release. ++The âsad cyborgsâ release. + + Security fixes: + + â¢ Do not allow non-uid-0 processes to send forged ActivationFailure + messages. On Linux systems with systemd activation, this would + allow a local denial of service: unprivileged processes could + flood the bus with these forged messages, winning the race with + the actual service activation and causing an error reply + to be sent back when service auto-activation was requested. + This does not prevent the real service from being started, + so it only works while the real service is not running. + (CVE-2015-0245, fd.o #88811; Simon McVittie) + +Enhancements: + +â¢ The new Monitoring interface in the dbus-daemon lets dbus-monitor and + similar tools receive messages without altering the security properties + of the system bus, by calling the new BecomeMonitor method on a + private connection. This bypasses the normal and rules + entirely, so to preserve normal message-privacy assumptions, only root + is allowed to do this on the system bus. Restricted environments, + such as Linux with LSMs, should lock down access to the Monitoring + interface. (fd.o #46787, Simon McVittie) + +â¢ dbus-monitor uses BecomeMonitor to capture more traffic, if the + dbus-daemon supports it and access permissions allow it. + It still supports the previous approach ("eavesdropping" match rules) + for compatibility with older bus daemons. (fd.o #46787, Simon) + +â¢ dbus-monitor can now log the message stream as binary data for later + analysis, with either no extra framing beyond the normal D-Bus headers, + or libpcap-compatible framing treating each D-Bus message + as a captured packet. (fd.o #46787, Simon) + - Fixes: + Other fixes: -â¢ fix a Windows build failure (fd.o #88009, Ralf Habacker) +â¢ Fix some CMake build regressions (fd.o #88964, Ralf Habacker) + +â¢ On Unix, forcibly terminate regression tests after 60 seconds to + prevent them from blocking continuous integration frameworks + (fd.o #46787, Simon) + +D-Bus 1.9.8 (2015-02-03) +== + +The âall the types of precipitationâ release. + +Dependencies: + +â¢ full test coverage now requires GLib 2.36 +â¢ full test coverage now requires PyGI (PyGObject 3, + "import gi.repository.GObject") instead of the + obsolete PyGObject 2 ("import gobject") + +Enhancements: + +â¢ add GLib-style "installed tests" (fd.o #88810, Simon McVittie) + +â¢ better regression test coverage, including systemd activation + (fd.o #57952, #88810; Simon McVittie) + +Fixes: + +â¢ fatal errors correctly make the dbus-daemon exit even if is + turned off (fd.o #88808, Simon McVittie) + +â¢ TCP sockets on Windows no longer fail to listen approximately 1 time + in 256, caused by a logic error that should have always made it fail but + was mitigated by incorrect endianness for the port number + (fd.o #87999, Ralf Habacker) + +â¢ fix some Windows build failures (fd.o #88009, #88010; Ralf Habacker) â¢ on Windows, allow up to 8K connections to the dbus-daemon instead of the previous 64, completing a previous fix which only worked under diff --cc bus/system.conf.in index d292451ef,851b9e639..ac78c734f --- a/bus/system.conf.in +++ b/bus/system.conf.in @@@ -71,24 -68,16 +71,32 @@@ + + + + + + + + + + + + + + + + + system.d