Commit a0926ef8 authored by Simon McVittie's avatar Simon McVittie

Prepare 1.12.18

Signed-off-by: Simon McVittie's avatarSimon McVittie <>
parent 8bc13818
Pipeline #155045 passed with stage
in 9 minutes and 40 seconds
dbus 1.12.18 (UNRELEASED)
dbus 1.12.18 (2020-06-02)
The telepathic vines release.
Denial of service fixes:
CVE-2020-12049: If a message contains more file descriptors than can
be sent, close those that did get through before reporting error.
Previously, a local attacker could cause the system dbus-daemon (or
another system service with its own DBusServer) to run out of file
descriptors, by repeatedly connecting to the server and sending fds that
would get leaked.
Thanks to Kevin Backhouse of GitHub Security Lab.
(dbus#294, GHSL-2020-057; Simon McVittie)
Other fixes:
Fix a crash when the dbus-daemon is terminated while one or more
monitors are active (dbus#291, dbus!140; Simon McVittie)
......@@ -3,7 +3,7 @@ AC_PREREQ([2.63])
m4_define([dbus_major_version], [1])
m4_define([dbus_minor_version], [12])
m4_define([dbus_micro_version], [17])
m4_define([dbus_micro_version], [18])
......@@ -42,7 +42,7 @@ LT_CURRENT=22
## increment any time the source changes; set to
## 0 if you increment CURRENT
## increment if any interfaces have been added; set to 0
## if any interfaces have been changed or removed. removal has
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment