UbuntuUpdates.org

Package "ibus"

Name: ibus

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Intelligent Input Bus - Wayland support

Latest version: 1.5.17-3ubuntu5.3
Release: bionic (18.04)
Level: updates
Repository: universe

Links



Other versions of "ibus" in Bionic

Repository Area Version
base main 1.5.17-3ubuntu4
base universe 1.5.17-3ubuntu4
security universe 1.5.17-3ubuntu5.3
security main 1.5.17-3ubuntu5.3
updates main 1.5.17-3ubuntu5.3

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1.5.17-3ubuntu5.3 2020-03-24 12:07:10 UTC

  ibus (1.5.17-3ubuntu5.3) bionic-security; urgency=medium

  * SECURITY UPDATE: Lack of access control on DBus socket allows other
    local users to make arbitrary method calls
    - debian/patches/CVE-2019-14822.patch:
      Re-enable to implement GDBusAuthObserver callback in bus/server.c to
      add access control to the DBus server socket
    - CVE-2019-14822
  * Add breaks for older libglib2.0-0 releases which do not contain the
    GDBusServer fix for Qt applications

 -- Alex Murray <email address hidden> Mon, 04 Nov 2019 11:28:41 +1030

Source diff to previous version
CVE-2019-14822 missing authorization flaw

Version: 1.5.17-3ubuntu5.2 2019-09-23 16:06:27 UTC

  ibus (1.5.17-3ubuntu5.2) bionic-security; urgency=medium

  * SECURITY UPDATE: ibus regression in Qt applications (LP: #1844853)
    - debian/patches/CVE-2019-14822.patch: disabled pending further
      investigation.

 -- Marc Deslauriers <email address hidden> Mon, 23 Sep 2019 13:30:51 +0200

Source diff to previous version
1844853 IBus no longer works in Qt applications after upgrade
CVE-2019-14822 missing authorization flaw

Version: 1.5.17-3ubuntu5.1 2019-09-16 14:06:27 UTC

  ibus (1.5.17-3ubuntu5.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Lack of access control on DBus socket allows other
    local users to make arbitrary method calls
    - debian/patches/CVE-2019-14822.patch: Implement GDBusAuthObserver
      callback in bus/server.c to add access control to the DBus server
      socket
    - CVE-2019-14822

 -- Alex Murray <email address hidden> Wed, 11 Sep 2019 12:29:32 +0930

Source diff to previous version
CVE-2019-14822 missing authorization flaw

Version: 1.5.17-3ubuntu5 2019-08-19 19:06:34 UTC

  ibus (1.5.17-3ubuntu5) bionic; urgency=medium

  * debian/patches/ubuntu-password-discard-environment-variables.patch:
    - Added upstream patch which implements selective ignoring of processing
      inputs to password fields based on two new environment variables,
      IBUS_DISCARD_PASSWORD and IBUS_DISCARD_PASSWORD_APPS (LP: #1838358)

 -- Matthew Ruffell <email address hidden> Thu, 01 Aug 2019 16:07:31 +1200

1838358 Ibus causes gnome-shell to freeze when password fields are selected in Firefox



About   -   Send Feedback to @ubuntu_updates