[Bug 1007791] Re: Security issue in PackageKit

2021-10-13 Thread Steve Langasek
The Precise Pangolin has reached end of life, so this bug will not be fixed for that release ** Changed in: packagekit (Ubuntu Precise) Status: Triaged => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.l

[Bug 1007791] Re: Security issue in PackageKit

2015-06-17 Thread Rolf Leggewie
lucid has seen the end of its life and is no longer receiving any updates. Marking the lucid task for this ticket as "Won't Fix". ** Changed in: packagekit (Ubuntu Lucid) Status: Triaged => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is s

[Bug 1007791] Re: Security issue in PackageKit

2012-09-10 Thread Matthias Klumpp
** Changed in: packagekit (Ubuntu Quantal) Status: Triaged => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1007791 Title: Security issue in PackageKit To manage notifications a

[Bug 1007791] Re: Security issue in PackageKit

2012-09-06 Thread Matthias Klumpp
Depends on someone fixing bug #1040086 (Sync packagekit from Debian) now. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1007791 Title: Security issue in PackageKit To manage notifications about thi

[Bug 1007791] Re: Security issue in PackageKit

2012-08-22 Thread Bug Watch Updater
** Changed in: packagekit (Debian) Status: New => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1007791 Title: Security issue in PackageKit To manage notifications about this bu

[Bug 1007791] Re: Security issue in PackageKit

2012-06-22 Thread Bug Watch Updater
** Changed in: packagekit (Debian) Status: Unknown => New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1007791 Title: Security issue in PackageKit To manage notifications about this bug go

[Bug 1007791] Re: Security issue in PackageKit

2012-06-22 Thread Matthias Klumpp
** Description changed: Hi! The Aptcc backend in PackageKit saves the changelog to a predictable location in /tmp. As packagekitd is running as root, bad people could just add a symlink named like the file in /tmp (e.g. to /etc/shadow) to screw up the system. I fixed this in Debian alread

[Bug 1007791] Re: Security issue in PackageKit

2012-06-22 Thread Matthias Klumpp
No, there is no CVE yet - I don't know how to create one :P This issue is unfortunately also present in our implementation of Debconf and will also need to be fixed there. (work is in progress) Thanks! -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscr

[Bug 1007791] Re: Security issue in PackageKit

2012-06-22 Thread Jamie Strandboge
Since this is already public via the Debian upload, marking this public. ** Visibility changed to: Public -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1007791 Title: Security issue in PackageKit