-D-Bus 1.6.10 (UNRELEASED)
+D-Bus 1.7.0 (UNRELEASED)
==
+Build-time configuration changes:
+
+• The --with-dbus-session-bus-default-address configure option is no longer
+ supported. Use the new --with-dbus-session-bus-connect-address and
+ --with-dbus-session-bus-listen-address options instead. On Windows, you
+ usually want them to have the same argument; on Unix, the defaults are
+ usually correct.
+
+• Similarly, the DBUS_SESSION_BUS_DEFAULT_ADDRESS cmake variable is no longer
+ supported; use the new DBUS_SESSION_BUS_LISTEN_ADDRESS and
+ DBUS_SESSION_BUS_CONNECT_ADDRESS variables instead.
+
+Enhancements:
+
+• D-Bus Specification 0.21
+ · actually say that /org/freedesktop/DBus is the object that
+ implements o.fd.DBus (fd.o #51865, Colin Walters)
+ · various reorganisation for better clarity (fd.o #38252, Simon McVittie)
+ · stop claiming that all basic types work just like INT32 (strings don't!)
+
+Fixes:
+
+ • In the activation helper, when compiled for tests, do not reset the system
+ bus address, fixing the regression tests. (fd.o #52202, Simon)
+
+ • Fix building with Valgrind 3.8, at the cost of causing harmless warnings
+ with Valgrind 3.6 on some compilers (fd.o #55932, Arun Raghavan)
+
+ • Don't leak temporary fds pointing to /dev/null (fd.o #56927, Michel HERMIER)
+
+ D-Bus 1.6.8 (2012-09-28)
+ ==
+
+ The "Fix one thing, break another" release.
+
+ • Follow up to CVE-2012-3524: The additional hardening
+ work to use __secure_getenv() as a followup to bug #52202
+ broke certain configurations of gnome-keyring. Given
+ the difficulty of making this work without extensive
+ changes to gnome-keyring, use of __secure_getenv() is
+ deferred.
+
+ D-Bus 1.6.6 (2012-09-28)
+ ==
+
+ The "Clear the environment in your setuid binaries, please" release.
+
++Fixes:
++
• CVE-2012-3524: Don't access environment variables (fd.o #52202)
Thanks to work and input from Colin Walters, Simon McVittie,
Geoffrey Thomas, and others.
projects / platform / upstream / dbus.git / commitdiff