#1137166 bookworm-pu: package firewalld/1.3.3-1~deb12u2

#1137166#5
Date:
2026-05-20 09:30:19 UTC
From:
To:
[ Reason ]
I'd like to fix an outstanding CVE that security-team tagged no-dsa
which is already fixed in bullseye, trixie/stable, testing & unstable.

[ Impact ]
An unprivileged local user can modify the active firewall rules.

[ Tests ]
https://debusine.debian.net/debian/developers/work-request/708125/


[ Risks ]
The change fixes the dbus access policy and should have no other affect
outside of dbus access to firewalld.

[ Checklist ]
  [x] *all* changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in (old)stable
  [x] the issue is verified as fixed in unstable

[ Changes ]
Fix dbus access to 2 methods.

[ Other info ]
none

#1137166#12
Date:
2026-05-22 21:58:30 UTC
From:
To:
Hi,

Please go ahead.

Thanks,

#1137166#19
Date:
2026-05-23 10:08:08 UTC
From:
To:
package release.debian.org
tags 1137166 = bookworm pending
thanks

Hi,

The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm.

Thanks for your contribution!

Upload details
==============

Package: firewalld
Version: 1.3.3-1~deb12u2

Explanation: fix dbus policy checking [CVE-2026-4948]

#1137166#24
Date:
2026-05-23 10:08:08 UTC
From:
To:
package release.debian.org
tags 1137166 = bookworm pending
thanks

Hi,

The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm.

Thanks for your contribution!

Upload details
==============

Package: firewalld
Version: 1.3.3-1~deb12u2

Explanation: fix dbus policy checking [CVE-2026-4948]