UbuntuUpdates.org

Package "ibus-gtk3"

Name: ibus-gtk3

Description:

Intelligent Input Bus - GTK+3 support

Latest version: 1.5.11-1ubuntu2.4
Release: xenial (16.04)
Level: updates
Repository: main
Head package: ibus
Homepage: https://github.com/ibus/ibus/releases

Links


Download "ibus-gtk3"


Other versions of "ibus-gtk3" in Xenial

Repository Area Version
base main 1.5.11-1ubuntu2
security main 1.5.11-1ubuntu2.4

Changelog

Version: 1.5.11-1ubuntu2.4 2020-03-24 12:07:03 UTC

  ibus (1.5.11-1ubuntu2.4) xenial-security; urgency=medium

  * SECURITY UPDATE: Lack of access control on DBus socket allows other
    local users to make arbitrary method calls
    - debian/patches/CVE-2019-14822.patch:
      Re-enable to implement GDBusAuthObserver callback in bus/server.c to
      add access control to the DBus server socket
    - CVE-2019-14822
  * Add breaks for older libglib2.0-0 releases which do not contain the
    GDBusServer fix for Qt applications

 -- Alex Murray <email address hidden> Mon, 04 Nov 2019 11:30:01 +1030

Source diff to previous version
CVE-2019-14822 missing authorization flaw

Version: 1.5.11-1ubuntu2.3 2019-09-23 16:06:22 UTC

  ibus (1.5.11-1ubuntu2.3) xenial-security; urgency=medium

  * SECURITY UPDATE: ibus regression in Qt applications (LP: #1844853)
    - debian/patches/CVE-2019-14822.patch: disabled pending further
      investigation.

 -- Marc Deslauriers <email address hidden> Mon, 23 Sep 2019 13:31:22 +0200

Source diff to previous version
1844853 IBus no longer works in Qt applications after upgrade
CVE-2019-14822 missing authorization flaw

Version: 1.5.11-1ubuntu2.2 2019-09-16 14:06:22 UTC

  ibus (1.5.11-1ubuntu2.2) xenial-security; urgency=medium

  * SECURITY UPDATE: Lack of access control on DBus socket allows other
    local users to make arbitrary method calls
    - debian/patches/CVE-2019-14822.patch: Implement GDBusAuthObserver
      callback in bus/server.c to add access control to the DBus server
      socket
    - CVE-2019-14822

 -- Alex Murray <email address hidden> Wed, 11 Sep 2019 12:32:56 +0930

Source diff to previous version
CVE-2019-14822 missing authorization flaw

Version: 1.5.11-1ubuntu2.1 2018-04-16 09:06:34 UTC

  ibus (1.5.11-1ubuntu2.1) xenial; urgency=medium

  * debian/patches/ubuntu-conditional-chmod.patch: backport an upstream commit
    to make a call to chmod conditional, to avoid apparmor denials for confined
    apps (e.g. snaps) that use libibus (LP: #1761585)

 -- Olivier Tilloy <email address hidden> Fri, 06 Apr 2018 15:58:24 +0200

1761585 ibus_bus_init does an unconditional call to chmod on $HOME/.config/ibus/bus



About   -   Send Feedback to @ubuntu_updates