<div dir="ltr"><div>Hello,</div><div><br></div><div>Some months ago I ported polkit to meson[0]. As you may know, meson has become a popular build system, and a good enough alternative to autotools. I remembered that the port was still floating around with the new version announcement.<br></div><div><br></div><div>I would like to know if there is any interest on it, since now that a new release has happened, it could be the right moment to invest some time updating the port and merge it.<br></div><div><br></div><div>What do you think?</div><div><br></div><div>Best regards,<br></div><div><br></div><div>[0] <a href="https://lists.freedesktop.org/archives/polkit-devel/2018-February/000581.html">https://lists.freedesktop.org/archives/polkit-devel/2018-February/000581.html</a><br></div><div><br></div></div><div class="gmail_extra"><br><div class="gmail_quote">2018-07-10 16:15 GMT+02:00 Miloslav Trmac <span dir="ltr"><<a href="mailto:mitr@redhat.com" target="_blank">mitr@redhat.com</a>></span>:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hello,<br>
polkit-0.115 is now available at<br>
<a href="http://www.freedesktop.org/software/polkit/releases/polkit-0.115.tar.gz" rel="noreferrer" target="_blank">http://www.freedesktop.org/<wbr>software/polkit/releases/<wbr>polkit-0.115.tar.gz</a><br>
<a href="http://www.freedesktop.org/software/polkit/releases/polkit-0.115.tar.gz.sign" rel="noreferrer" target="_blank">http://www.freedesktop.org/<wbr>software/polkit/releases/<wbr>polkit-0.115.tar.gz.sign</a><br>
<br>
--------------<br>
polkit 0.115<br>
--------------<br>
<br>
WARNING WARNING WARNING: This is a prerelease on the road to polkit<br>
1.0. Public API might change and certain parts of the code still needs<br>
some security review. Use at your own risk.<br>
<br>
This is polkit 0.115.<br>
<br>
Highlights:<br>
Fixes CVE-2018-1116, a local information disclosure and denial of service<br>
caused by trusting client-submitted UIDs when referencing processes.<br>
Thanks to Matthias Gerstner of the SUSE security team for reporting<br>
this issue.<br>
<br>
Build requirements<br>
<br>
glib, gobject, gio >= 2.32<br>
mozjs-52<br>
gobject-introspection >= 0.6.2 (optional)<br>
pam (optional)<br>
ConsoleKit OR systemd<br>
<br>
Changes since polkit 0.114:<br>
<br>
Miloslav Trmač (1):<br>
Fix CVE-2018-1116: Trusting client-supplied UID<br>
<br>
Ray Strode (3):<br>
Post-release version bump to 0.115<br>
jsauthority: pass "%s" format string to remaining report function<br>
NEWS: fix date from 2017 to 2018 for 0.114 entry<br>
<br>
Thanks to our contributors.<br>
<br>
Colin Walters and Miloslav Trmač,<br>
July 10, 2018<br>
______________________________<wbr>_________________<br>
polkit-devel mailing list<br>
<a href="mailto:polkit-devel@lists.freedesktop.org">polkit-devel@lists.<wbr>freedesktop.org</a><br>
<a href="https://lists.freedesktop.org/mailman/listinfo/polkit-devel" rel="noreferrer" target="_blank">https://lists.freedesktop.org/<wbr>mailman/listinfo/polkit-devel</a><br>
</blockquote></div><br></div>