-D-Bus 1.6.10 (UNRELEASED)
+D-Bus 1.6.14 (UNRELEASED)
==
+Fixes:
+
+• If malloc() returns NULL in _dbus_string_init() or similar, don't free
+ an invalid pointer if the string is later freed (fd.o #65959, Chengwei Yang)
+
+• If malloc() returns NULL in dbus_set_error(), don't va_end() a va_list
+ that was never va_start()ed (fd.o #66300, Chengwei Yang)
+
+D-Bus 1.6.12 (2013-06-13)
+==
+
+The “does this unit have a soul?” release.
+
+Fixes:
+
+• CVE-2013-2168: Fix misuse of va_list that could be used as a denial
+ of service for system services. Vulnerability reported by Alexandru Cornea.
+ (Simon)
+
+• In dbus-daemon, don't crash if a .service file starts with key=value
+ (fd.o #60853, Chengwei Yang)
+
+• Unix-specific:
+ · Fix an assertion failure if we try to activate systemd services before
+ systemd connects to the bus (fd.o #50199, Chengwei Yang)
+ · Avoid compiler warnings for ignoring the return from write()
+ (Chengwei Yang)
+
+D-Bus 1.6.10 (2013-04-24)
+==
+
+The “little-known facts about bananas” release.
+
+• Following Unicode Corrigendum #9, the noncharacters U+nFFFE, U+nFFFF,
+ U+FDD0..U+FDEF are allowed in UTF-8 strings again.
+ (fd.o #63072, Simon McVittie)
+
+• Diagnose incorrect use of dbus_connection_get_data() with negative slot
+ (i.e. before allocating the slot) rather than returning junk
+ (fd.o #63127, Dan Williams)
+
• In the activation helper, when compiled for tests, do not reset the system
bus address, fixing the regression tests. (fd.o #52202, Simon)
projects / platform / upstream / dbus.git / blobdiff