id	summary	reporter	owner	description	type	status	priority	milestone	component	version	resolution	keywords	cc
961	D-Bus 1.8.4 Announce with security fix	William Harrington	clfs-commits@…	"http://comments.gmane.org/gmane.comp.freedesktop.dbus/15817

We need to upgrade this during our package freeze. It is a critical fix.

Security fix:

• Alban Crequy at Collabora Ltd. discovered and fixed a
  denial-of-service flaw in dbus-daemon, part of the reference
  implementation of D-Bus. Additionally, in highly unusual environments
  the same flaw could lead to a side channel between processes that
  should not be able to communicate. (CVE-2014-3477, fd.o #78979)

http://seclists.org/oss-sec/2014/q2/509"	task	closed	critical	CLFS Standard 3.0	BOOK	CLFS Sysroot GIT	fixed		berzerkula@… jonathan@…