SECURITY update to dbus-1.12.16.

CVE-2019-12749: Do not attempt to carry out DBUS_COOKIE_SHA1 authentication for identities that differ from the user running the DBusServer.
2019-06-15 09:59:57 +00:00 · 2019-06-15 09:59:57 +00:00 · 8f6ee193ef
commit 8f6ee193ef
parent 9cc8e6970f
2 changed files with 5 additions and 5 deletions
--- a/x11/dbus/Makefile
+++ b/x11/dbus/Makefile
@ -1,4 +1,4 @@
-# $OpenBSD: Makefile,v 1.158 2019/05/18 19:02:05 ajacoutot Exp $
+# $OpenBSD: Makefile,v 1.159 2019/06/15 09:59:57 ajacoutot Exp $

 PORTROACH=		limitw:1,even
 DPB_PROPERTIES=		parallel
@ -6,7 +6,7 @@ DPB_PROPERTIES=		parallel
 COMMENT-main=		message bus system
 COMMENT-suid=		DBus setuid helper for starting system services

-V=			1.12.14
+V=			1.12.16
 DISTNAME=		dbus-${V}
 EPOCH-main=		0

@ -22,7 +22,7 @@ HOMEPAGE=		http://dbus.freedesktop.org/
 MAINTAINER=		Antoine Jacoutot <ajacoutot@openbsd.org>

 # GPLv2+
-PERMIT_PACKAGE_CDROM=	Yes
+PERMIT_PACKAGE=		Yes

 WANTLIB += c expat pthread

--- a/x11/dbus/distinfo
+++ b/x11/dbus/distinfo
@ -1,2 +1,2 @@
-SHA256 (dbus-1.12.14.tar.gz) = RPnCkK6PbK3rLDKTFsA3FvFxzhDa3dhcC//Q999RTI0=
-SIZE (dbus-1.12.14.tar.gz) = 2091526
+SHA256 (dbus-1.12.16.tar.gz) = VKItL6QvLrKocfMoEcYAW1MblhOxuToNJpsF51Sf7IA=
+SIZE (dbus-1.12.16.tar.gz) = 2093296