-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2010-01-12 11:26:29 UTC
-
Revision ID:
james.westby@ubuntu.com-20100112112629-2mrso91tfezjpd6c
Tags: 0.7~~svn20081020t000444-0ubuntu1.8.10.3
* SECURITY UPDATE: information disclosure via incorrect certificate
validation
- debian/patches/security_CVE-2009-4144.patch: improve error handling
in src/applet-device-wifi.c, src/applet-device-wired.c,
src/connection-editor/nm-connection-list.c,
src/gconf-helpers/gconf-helpers.{c,h},
src/gconf-helpers/nma-gconf-connection.c, src/utils/utils.{c,h}.
- CVE-2009-4144
* SECURITY UPDATE: information disclosure via DBus
- debian/patches/security_CVE-2009-4145.patch: prevent any registration
of objects on the system bus in src/applet.c,
src/connection-editor/nm-connection-list.c,
src/gconf-helpers/nma-gconf-connection.c,
src/gconf-helpers/nma-gconf-settings.{c,h}.
- CVE-2009-4145