| tjaalton | lightdm login screen doesn't seem to switch the display off after awhile | 09:16 |
|---|---|---|
| mdeslaur | mlankhorst: fyi, I'm preparing xorg-server security updates, and they will collide with stuff in -proposed unfortunately | 12:37 |
| mdeslaur | mlankhorst: I can rebase the stuff in -proposed when I'm done if you'd like | 12:37 |
| tjaalton | mdeslaur: CVE-2013-4396? | 12:38 |
| ubottu | Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted ImageText request that triggers memory-allocation failure. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4396) | 12:38 |
| mdeslaur | tjaalton: that and CVE-2013-1056 in our xkb caching patch | 12:38 |
| ubottu | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1056) | 12:38 |
| tjaalton | I uploaded that one yesterday and it got through aiui | 12:38 |
| mdeslaur | tjaalton: for saucy yes, I'm doing the stable releases | 12:39 |
| tjaalton | ah | 12:39 |
| mdeslaur | tjaalton: thanks for saucy btw | 12:39 |
| tjaalton | yeah I forgot about the stable ones :) | 12:39 |
| mlankhorst | mdeslaur: eep stable releases :) | 12:40 |
| mdeslaur | mlankhorst: sorry for the collision, it's rather unfortunate and a PITA part of the security update process | 12:40 |
| mlankhorst | yeah :/ | 12:41 |
| tjaalton | oh | 12:42 |
| tjaalton | yeah I had a few oem-priority fixes there.. | 12:43 |
| mdeslaur | tjaalton: in raring-proposed? | 12:43 |
| mdeslaur | tjaalton: or the one mlankhorst just uploaded to precise-proposed? | 12:43 |
| tjaalton | quantal | 12:44 |
| tjaalton | and the backport | 12:44 |
| tjaalton | to precise | 12:44 |
| tjaalton | 2:1.13.0-0ubuntu6.3 | 12:44 |
| mdeslaur | tjaalton: if all goes well, I'll be publishing them tomorrow, so we can re-upload to -proposed after that | 12:45 |
| tjaalton | this one didn't even get accepted | 12:47 |
| tjaalton | yet | 12:47 |
| mdeslaur | it depends how long it's going to take me to rebuild half of the backported raring stack into the -security pocket *sigh* | 12:48 |
| mlankhorst | always fun :P | 12:51 |
| mlankhorst | too bad we have to keep changelog history, it would be so much easier without.. | 12:52 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!