Fedora 25: Warning on python-dbusmock's Serious Code Execution Threat

With this program/Python library you can easily create mock objects on

D-Bus. This is useful for writing tests for software which talks to

D-Bus services such as upower, systemd, ConsoleKit, gnome-session or

others, and it is hard (or impossible without root privileges) to set

the state of the real services to what you expect in your tests.

Security fix for CVE-2015-1326

[ 1 ] Bug #1223312 - CVE-2015-1326 python-dbusmock: arbitrary code execution or file overwrite when templates are loaded from /tmp [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1223312

su -c 'dnf upgrade python-dbusmock' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org