Skip to content
This repository has been archived by the owner on Apr 12, 2021. It is now read-only.
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs-channels
base: 13050bedc49f
Choose a base ref
...
head repository: NixOS/nixpkgs-channels
compare: 3acebb03952a
Choose a head ref
  • 2 commits
  • 1 file changed
  • 2 contributors

Commits on Feb 8, 2019

  1. polkit: fix CVE-2019-6133 

    Jann Horn of Google found that Polkit doesn't properly check
if a process is already authenticated, which can lead to an
authentication reuse by a different user[0]. See also [1]

Closes #55391

[0]: https://bugs.chromium.org/p/project-zero/issues/detail?id=1692
[1]: https://gitlab.freedesktop.org/polkit/polkit/issues/75

(cherry picked from commit 7da64c9)
    @worldofpeace @Mic92
    worldofpeace authored and Mic92 committed Feb 8, 2019
    Copy the full SHA
    a859ce5 View commit details
    Browse the repository at this point in the history

Commits on Feb 9, 2019

  1. Merge branch 'staging-18.09' into release-18.09 

    polkit security
    @vcunat
    vcunat committed Feb 9, 2019
    Copy the full SHA
    3acebb0 View commit details
    Browse the repository at this point in the history