ubuntu/+source/kde4libs:ubuntu/trusty-security

Last commit made on 2017-05-15
Get this branch:
git clone -b ubuntu/trusty-security https://git.launchpad.net/ubuntu/+source/kde4libs
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/trusty-security
Repository:
lp:ubuntu/+source/kde4libs

Recent commits

b957a78... by Marc Deslauriers on 2017-05-11

Import patches-unapplied version 4:4.13.3-0ubuntu0.5 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 60c150e3824249850c8c342108fcc61c37c77f17

New changelog entries:
  * SECURITY UPDATE: privilege escalation in DBus auth backend
    - debian/patches/CVE-2017-8422.patch: verify caller in
      kdecore/auth/AuthBackend.cpp, kdecore/auth/AuthBackend.h,
      kdecore/auth/backends/dbus/DBusHelperProxy.cpp,
      kdecore/auth/backends/dbus/DBusHelperProxy.h,
      kdecore/auth/backends/policykit/PolicyKitBackend.cpp,
      kdecore/auth/backends/policykit/PolicyKitBackend.h,
      kdecore/auth/backends/polkit-1/Polkit1Backend.cpp,
      kdecore/auth/backends/polkit-1/Polkit1Backend.h.
    - CVE-2017-8422

60c150e... by Marc Deslauriers on 2017-03-08

Import patches-unapplied version 4:4.13.3-0ubuntu0.4 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 054c337de7fd3e05c5972a614fd65c2465ad9ca2

New changelog entries:
  * SECURITY UPDATE: information leak via crafted PAC file (LP: #1668871)
    - debian/patches/CVE-2017-6410.patch: sanitize URLs in
      kio/misc/kpac/script.cpp.
    - CVE-2017-6410

054c337... by Marc Deslauriers on 2016-07-25

Import patches-unapplied version 4:4.13.3-0ubuntu0.3 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: aab4c7d00e085d2a000629d33d13bed1efdfbc8b

New changelog entries:
  * SECURITY UPDATE: file extraction out of the expected directory
    - debian/patches/CVE-2016-6232.patch: limit files to extraction folder
      in kdecore/io/karchive.cpp.
    - CVE-2016-6232

aab4c7d... by Marc Deslauriers on 2014-11-21

Import patches-unapplied version 4:4.13.3-0ubuntu0.2 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: d3df3b2475c1e246640cd6aedd6b7338fdf9ed6d

New changelog entries:
  * No change rebuild in the -security pocket.

d3df3b2... by Philip Muškovac on 2014-08-04

Import patches-unapplied version 4:4.13.3-0ubuntu0.1 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 58c04bbd12eccf88d0dc90ee410396a6a19d9df1

New changelog entries:
  * New upstream bugfix release (LP: #1349296)
    - drop CVE-2014-3494.patch, applied upstream

58c04bb... by Felix Geyer on 2014-07-29

Import patches-unapplied version 4:4.13.2a-0ubuntu0.3 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 2c21a85bf075274d5133da9ae5ca1c836211299e

New changelog entries:
  * SECURITY UPDATE: kauth authentication bypass (LP: #1350019)
    - debian/patches/CVE-2014-5033.patch: use dbus system bus name instead
      of PID for authentication. Cherry-picked from upstream.
    - CVE-2014-5033

2c21a85... by Rohan Garg on 2014-06-25

Import patches-unapplied version 4:4.13.2a-0ubuntu0.2 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 56a51ebed808261cba2a340f85087d9aed55b540

New changelog entries:
  * Fix KMail/KIO SSL flaw
    - CVE-2014-3494 (LP: #1332064)

56a51eb... by Philip Muškovac on 2014-06-18

Import patches-unapplied version 4:4.13.2a-0ubuntu0.1 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: e5d1d46e445800418217917db83de57345ad919c

New changelog entries:
  * New upstream bugfix release (LP: #1327591)
  * Drop kubuntu_meinproc-libxml-fix.diff and kubuntu_revert_6246e99b.diff,
    applied upstream
  * Refresh make_libkdeinit4_private.diff to remove fuzz

e5d1d46... by Philip Muškovac on 2014-05-10

Import patches-unapplied version 4:4.13.1-0ubuntu0.1 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 1632038ba20ed41d7fe7e10f91285ccabbc5baa4

New changelog entries:
  [ Philip Muškovac ]
  * New upstream bugfix release (LP: #1318142)
  * Revert upstream commit 6246e99b as it causes problems with the
    free space calculation of CIFS mounts (kde bug #334776)

1632038... by Jonathan Riddell on 2014-05-28

Import patches-unapplied version 4:4.13.0-0ubuntu1.1 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: f4bc86ed7b102c213a160a52c8d5a278af7f1745

New changelog entries:
  * Add kubuntu_meinproc-libxml-fix.diff to fix documentation
    compilation in KDE Software with meinproc after libxml security
    fix broke it LP: #1324066