fdo-mirrors/dbus
1
0
Fork 0
mirror of https://gitlab.freedesktop.org/dbus/dbus.git synced 2026-01-03 12:40:17 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
dbus/bus
History
John (J5) Palmieri 6db561dce2 CVE-2008-0595 dbus security policy circumvention 
* CVE-2008-0595 - security policy of the type <allow send_interface=
  "some.interface.WithMethods"/> work as an implicit allow for
  messages sent without an interface bypassing the default deny rules
  and potentially allowing restricted methods exported on the bus to be
  executed by unauthorized users.  This patch fixes the issue.
* bus/policy.c (bus_client_policy_check_can_send,
  bus_client_policy_check_can_receive): skip messages without an
  interface when evaluating an allow rule, and thus pass it to the
  default deny rules
2008-02-26 13:30:47 -05:00
..
.gitignore Bring .gitignore files up to date; add *.o, *~ etc. to top-level .gitignore 2007-10-10 17:38:00 +01:00
activation-exit-codes.h 2007-07-26 Havoc Pennington <hp@redhat.com> 2007-07-26 23:01:14 +00:00
activation-helper-bin.c 2007-07-26 Havoc Pennington <hp@redhat.com> 2007-07-26 23:01:14 +00:00
activation-helper.c 2007-07-30 Havoc Pennington <hp@redhat.com> 2007-07-30 16:16:47 +00:00
activation-helper.h 2007-07-24 Richard Hughes <richard@hughsie.com> 2007-07-24 12:01:32 +00:00
activation.c 2007-07-26 Havoc Pennington <hp@redhat.com> 2007-07-26 23:01:14 +00:00
activation.h 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
bus.c check failed allocation (FDO Bug #12920) 2008-01-15 15:49:35 -05:00
bus.h 2007-07-24 Richard Hughes <richard@hughsie.com> 2007-07-24 12:19:59 +00:00
config-loader-expat.c 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
config-loader-libxml.c 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
config-parser-common.c 2007-07-24 Richard Hughes <richard@hughsie.com> 2007-07-24 11:47:31 +00:00
config-parser-common.h 2007-07-24 Richard Hughes <richard@hughsie.com> 2007-07-24 11:47:31 +00:00
config-parser-trivial.c 2007-07-26 Havoc Pennington <hp@redhat.com> 2007-07-26 23:01:14 +00:00
config-parser-trivial.h 2007-07-24 Richard Hughes <richard@hughsie.com> 2007-07-24 11:50:59 +00:00
config-parser.c remove dead code 2008-01-15 13:32:47 -05:00
config-parser.h 2007-07-24 Richard Hughes <richard@hughsie.com> 2007-07-24 11:58:08 +00:00
connection.c plug a possible BusClientPolicy leak (FDO Bug #13242) 2008-01-14 19:04:41 -05:00
connection.h 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
dbus-daemon.1.in 2007-07-26 Havoc Pennington <hp@redhat.com> 2007-07-26 23:01:14 +00:00
desktop-file.c 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
desktop-file.h 2007-07-24 Richard Hughes <richard@hughsie.com> 2007-07-24 12:14:51 +00:00
dir-watch-default.c 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
dir-watch-dnotify.c watch for file creates in dnotify 2008-01-14 18:17:53 -05:00
dir-watch-inotify.c fix inotify support 2008-01-17 14:57:47 -05:00
dir-watch-kqueue.c 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
dir-watch.h 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
dispatch.c 2007-07-26 Havoc Pennington <hp@redhat.com> 2007-07-26 23:01:14 +00:00
dispatch.h 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
driver.c 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
driver.h 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
expirelist.c 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
expirelist.h 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
main.c 2007-08-17 Havoc Pennington <hp@redhat.com> 2007-08-17 16:43:57 +00:00
Makefile.am add inotify support (FDO Bz#13268) 2008-01-14 19:00:36 -05:00
messagebus.in add lsb headers to init script (FDO Bug #11491) 2008-01-15 16:58:36 -05:00
policy.c CVE-2008-0595 dbus security policy circumvention 2008-02-26 13:30:47 -05:00
policy.h 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
rc.messagebus.in * bus/messagebus.in, bus/rc.messagebus.in: run dbus-uuidgen --ensure 2006-10-19 15:34:47 +00:00
selinux.c fix build against the latest gcc/glibc 2008-02-21 13:42:06 -05:00
selinux.h audit_init() was not declared in header, causing warnings; fix this and namespace it 2007-10-23 14:48:52 -04:00
services.c 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
services.h 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
session.conf.in 2007-05-23 Havoc Pennington <hp@redhat.com> 2007-05-23 19:45:56 +00:00
signals.c Add argument path matching support. Bug #11066. 2007-09-20 13:04:38 -04:00
signals.h Add argument path matching support. Bug #11066. 2007-09-20 13:04:38 -04:00
system.conf.in 2007-07-24 Richard Hughes <richard@hughsie.com> 2007-07-24 11:53:35 +00:00
test-launch-helper.c 2007-07-24 Richard Hughes <richard@hughsie.com> 2007-07-24 12:03:04 +00:00
test-main.c 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
test-system.c 2007-07-24 Richard Hughes <richard@hughsie.com> 2007-07-24 13:03:31 +00:00
test.c 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
test.h 2007-07-24 Richard Hughes <richard@hughsie.com> 2007-07-24 12:10:58 +00:00
utils.c 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00
utils.h 2007-07-13 Havoc Pennington <hp@redhat.com> 2007-07-14 02:44:01 +00:00