New changelog entries:
* New upstream bugfix release
- fix a memory leak when GetConnectionCredentials is called
- stop dbus-monitor replying to org.freedesktop.DBus.Peer
messages, including those that another process should have
replied to
New changelog entries:
* New upstream bugfix release
- Hardening: lock down the session bus to only allow EXTERNAL auth by
default, the same as the system bus. This avoids allowing
DBUS_COOKIE_SHA1, which can end up using a predictable random source
on systems where /dev/urandom is unavailable or dbus-daemon runs out
of memory. See the upstream NEWS for more details.
New changelog entries:
* Relax the triggers from interest to interest-noawait (Closes: #771989;
mitigates: #776063; partially reopens: #740139).
This is not strictly correct, because the purpose of the triggers
is to set up the .conf, .service files for system services before those
services satisfy dependencies. However, it mitigates #776063
(apt getting into a stuck state during upgrades), and should in
principle be redundant anyway, because dbus-daemon is meant to use
inotify to keep up with configuration changes. See #771989, #776063
for details.
New changelog entries:
* preinst: partially revert change from 1.8.12-2. It seems that the
preinst is too late to add a useful dpkg-statoverride entry: dpkg has
already loaded the statoverride database by this point, and if we add
the entry in the preinst, dpkg-statoverride won't run and have
its --update side-effect in the postinst. (Closes: #773107, #773838)
* postinst: don't run dpkg-statoverride with 2>/dev/null: in the unlikely
event that it fails for a reason other than "not overridden" (which
results in silently exiting 1), we'll want to know about it.
New changelog entries:
* postinst: use dpkg-statoverride to set the permissions for
dbus-daemon-launch-helper (expected to be 04754 root:messagebus)
as suggested in Policy ยง10.9. This avoids a temporarily broken state
when an upgraded dbus is unpacked but not yet configured (Closes: #773107)
* preinst: opportunistically set up the same dpkg-statoverride entry
if the group already exists, to avoid the same broken state during
upgrades from older versions without needing Pre-Depends: adduser
* postrm: delete the dpkg-statoverride entry on purge