mirror of
https://github.com/motioneye-project/motioneyeos.git
synced 2025-04-21 13:57:16 +00:00
fa0687fe79
- Fix CVE-2020-12049: An issue was discovered in dbus >= 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus or another system service's private AF_UNIX socket could use this to make the system service reach its file descriptor limit, denying service to subsequent D-Bus clients. - Also update indentation in hash file (two spaces) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr> (cherry picked from commit 7cee9d2659b72683f2630d47a11a26e43b837fb9) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>