polkit-0.116-150200.3.12.1<>,gTer͚p9|}My]QuE끃7SWLEݸ<{X&TrQ}ɿuU΃şTTy|tci 'zǿّӲjFc-8aK瞮*j=uty$\xZC3jR*_^x/5׼.(e5ku7 oBsǣ8ńCЇ,_WkwYB.x*}I騌p{>/P()jiC>vFPc%,?>NL?Ld   ?"4 J[  .. . \. . . ...}.X''!'("7"8"9#:$=8>8?8@8C8F8G9.H9.I:x.X:Y:\; .];.^>#bAcB*dBeBfBlBuB.vCwI.xJ.yK`BzLhLxL|LLLLLLLLCpolkit0.116150200.3.12.1PolicyKit Authorization FrameworkPolicyKit is a toolkit for defining and handling authorizations. It is used for allowing unprivileged processes to speak to privileged processes.er͚h03-ch2bQGSUSE Linux Enterprise 15SUSE LLC LGPL-2.1-or-laterhttps://www.suse.com/System/Librarieshttp://www.freedesktop.org/wiki/Software/polkit/linuxx86_64getent group polkitd > /dev/null || groupadd -r polkitd getent passwd polkitd > /dev/null || useradd -r -g polkitd -d /var/lib/polkit -s /sbin/nologin -c "User for polkitd" polkitd if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : for service in polkit.service ; do sysv_service=${service%.*} if [ ! -e /usr/lib/systemd/system/$service ] && [ ! -e /etc/init.d/$sysv_service ]; then mkdir -p /run/systemd/rpm/needs-preset touch /run/systemd/rpm/needs-preset/$service elif [ -e /etc/init.d/$sysv_service ] && [ ! -e /var/lib/systemd/migrated/$sysv_service ]; then /usr/sbin/systemd-sysv-convert --save $sysv_service || : mkdir -p /run/systemd/rpm/needs-sysv-convert touch /run/systemd/rpm/needs-sysv-convert/$service fi done fi exit 0 if [ -x /usr/bin/chkstat ]; then /usr/bin/chkstat -n --set --system /usr/bin/pkexec fi if [ -x /usr/bin/chkstat ]; then /usr/bin/chkstat -n --set --system /usr/lib/polkit-1/polkit-agent-helper-1 fi if [ -x /usr/bin/systemctl ]; then test -n "$FIRST_ARG" || FIRST_ARG="$1" [ -d /var/lib/systemd/migrated ] || mkdir -p /var/lib/systemd/migrated || : if [ "$YAST_IS_RUNNING" != "instsys" ]; then /usr/bin/systemctl daemon-reload || : fi for service in polkit.service ; do sysv_service=${service%.*} if [ -e /run/systemd/rpm/needs-preset/$service ]; then /usr/bin/systemctl preset $service || : rm "/run/systemd/rpm/needs-preset/$service" || : elif [ -e /run/systemd/rpm/needs-sysv-convert/$service ]; then /usr/sbin/systemd-sysv-convert --apply $sysv_service || : rm "/run/systemd/rpm/needs-sysv-convert/$service" || : touch /var/lib/systemd/migrated/$sysv_service || : fi done fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ "$FIRST_ARG" -eq 0 -a -x /usr/bin/systemctl ]; then # Package removal, not upgrade /usr/bin/systemctl --no-reload disable polkit.service || : ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_STOP_ON_REMOVAL" && . /etc/sysconfig/services test "$DISABLE_STOP_ON_REMOVAL" = yes -o \ "$DISABLE_STOP_ON_REMOVAL" = 1 && exit 0 /usr/bin/systemctl stop polkit.service ) || : fi test -n "$FIRST_ARG" || FIRST_ARG="$1" if [ $1 -eq 0 ]; then # Package removal for service in polkit.service ; do sysv_service="${service%.*}" rm -f "/var/lib/systemd/migrated/$sysv_service" || : done fi if [ -x /usr/bin/systemctl ]; then /usr/bin/systemctl daemon-reload || : fi if [ "$FIRST_ARG" -ge 1 ]; then # Package upgrade, not uninstall if [ -x /usr/bin/systemctl ]; then ( test "$YAST_IS_RUNNING" = instsys && exit 0 test -f /etc/sysconfig/services -a \ -z "$DISABLE_RESTART_ON_UPDATE" && . /etc/sysconfig/services test "$DISABLE_RESTART_ON_UPDATE" = yes -o \ "$DISABLE_RESTART_ON_UPDATE" = 1 && exit 0 /usr/bin/systemctl try-restart polkit.service ) || : fi fi~A9Zh0:8@c+)VJihP BAA큤AA聠A큤AA큤A큤AA큤AAer͕er͕er͕er͕er͕er͕er͕er͖er͖er͖er͖er͖er͖er͖er͕er͕er͕er͕er͗Z.er͖er͖er͖er͖er͖er͖er͖er͖er͖er͖er͖er͖er͖er͖er͖er͖er͖er͖er͖er͖er͖er͕er͖er͕er͕er͖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-0.116-150200.3.12.1.src.rpmconfig(polkit)polkitpolkit(x86-64) !@@@@@@@@@@@@@@@@@@@@@@@@@    /bin/sh/bin/sh/bin/sh/bin/sh/bin/shconfig(polkit)dbus-1libc.so.6()(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libexpat.so.1()(64bit)libgcc_s.so.1()(64bit)libgcc_s.so.1(GCC_3.0)(64bit)libgio-2.0.so.0()(64bit)libglib-2.0.so.0()(64bit)libgobject-2.0.so.0()(64bit)libmozjs-60.so()(64bit)libmozjs-60.so(js)(64bit)libpam.so.0()(64bit)libpam.so.0(LIBPAM_1.0)(64bit)libpolkit-agent-1.so.0()(64bit)libpolkit-gobject-1.so.0()(64bit)libpolkit0libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2.5)(64bit)libstdc++.so.6()(64bit)libstdc++.so.6(CXXABI_1.3)(64bit)libstdc++.so.6(CXXABI_1.3.9)(64bit)libstdc++.so.6(GLIBCXX_3.4)(64bit)libsystemd.so.0()(64bit)libsystemd.so.0(LIBSYSTEMD_209)(64bit)libsystemd.so.0(LIBSYSTEMD_213)(64bit)permissionsrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)shadow0.116-150200.3.12.10.116-150200.3.12.13.0.4-14.6.0-14.0-15.2-14.14.1 /usr/bin/chkstat -n --warn --system -e /usr/bin/pkexec 1>&2 /usr/bin/chkstat -n --warn --system -e /usr/lib/polkit-1/polkit-agent-helper-1 1>&2d$(@b a@`]@]z@\t@\g\\@[v[E@ZUZ@ZY@Y?WXWV@VV@UL@T@T@jsegitz@suse.comrfrohl@suse.commeissner@suse.commeissner@suse.combjorn.lie@gmail.commeissner@suse.combjorn.lie@gmail.comdimstar@opensuse.orgmvetter@suse.commeissner@suse.combjorn.lie@gmail.commeissner@suse.combjorn.lie@gmail.comschwab@suse.dedimstar@opensuse.orgdimstar@opensuse.orglnussel@suse.defbui@suse.comfbui@suse.commeissner@suse.comantoine.belvire@laposte.nettchvatal@suse.commeissner@suse.com- Change permissions for rules folders (bsc#1209282)- CVE-2021-4115: fixed a denial of service via file descriptor leak (bsc#1195542) added CVE-2021-4115.patch- CVE-2021-4034: fixed a local privilege escalation in pkexec (bsc#1194568) added CVE-2021-4034-pkexec-fix.patch- CVE-2021-3560: fixed a local privilege escalation using polkit_system_bus_name_get_creds_sync() (bsc#1186497) CVE-2021-3560.patch- Fix usage of libexecdir instead of prefix/lib where applicable.- polkit-keyinit.patch: add pam_keyinit to the polkit configuration (bsc#1144053)- Update to version 0.116: + Leaking zombie child processes. + Possible resource leak found by static analyzer. + Output messages tuneup. + Sanity fixes. + pkttyagent tty echo disabled on SIGINT. + HACKING: add link to Code of Conduct. + polkitbackend: comment typos fix. + configure.ac: fix detection of systemd with cgroups v2. + CVE-2018-19788 High UIDs overflow fix. + CVE-2019-6133 Slowfork vulnerability fix. + Allow unset process-uid. + Port the JS authority to mozjs-60. + Use JS_EncodeStringToUTF8. + Updated translations. - Replace pkgconfig(mozjs-52) with pkgconfig(mozjs-60) BuildRequires following upstreams changes. - Drop patches fixed upstream: + polkit-fix-possible-resource-leak.patch + polkit-fix-leaking-zombie-child-processes.patch + polkit-CVE-2018-19788.patch - Refresh patches with quilt.- Use systemd_ordering instead of systemd_requires: strictly speaking, polkit does not require systemd to be present. Just that when we install on a system with systemd (e.g outside containers) we would want systemd to be present before installing polkit. Help also reduce a cycle without special hacks in systemd.spec.- bsc#1130588: Require shadow instead of old pwdutils - User proper Requires(pre)/Requires(post) for permissions and shadow- polkit-CVE-2018-19788.patch: Fixed handling of UIDs over MAX_UINT (bsc#1118277 CVE-2018-19788)- Add polkit-fix-possible-resource-leak.patch: Fix possible resource leak found by static analyzer. - Add polkit-fix-leaking-zombie-child-processes.patch: polkitd: fix zombie not reaped when js spawned process timed out (fdo#106021).- Update to version 0.115: - Fix CVE-2018-1116: Trusting client-supplied UID (bsc#1099031) - jsauthority: pass "%s" format string to remaining report function (obsoletes polkit-jsauthority-pass-format-string.patch)- Update to version 0.114: + Port to mozjs 52, the latest version of the firefox JavaScript engine. + Add gettext support for policy files. + Fixes for various memory leaks. + Updated translations. - Update keyring with Ray Strode public key. - Drop with_systemd define and all conditionals and polkit-no-systemd.patch and ConsoleKit BuildRequires, we only support systemd now. - Drop upstream fixed polkit-itstools.patch. - Rebase pkexec.patch with quilt. - Add gcc-c++ and pkgconfig(mozjs-52) BuildRequires: New dependencies. - Drop conditional pkgconfig(mozjs-17.0) and pkgconfig(mozjs185): no longer supported. - Drop autoconf and automake BuildRequires: They are implicit via libtool BuildRequires. - Replace glib2-devel and gobject-introspection-devel with their pkgconfig counterparts: pkgconfig(gio-unix-2.0), pkgconfig(gmodule-2.0) and pkgconfig(gobject-introspection-1.0). - Add polkit-jsauthority-pass-format-string.patch: jsauthority: pass "%s" format string to remaining report function, patch from upstream git, adding missed commit (bgo#105865). - Drop polkit-revert-session-magic.patch: Upstream systemd bug is since a long time fixed (gh#systemd#58) (boo#954139).- pkexec.patch: pkexec: allow --version and --help even if not setuid- Modernize spec-file by calling spec-cleaner- Add polkit-itstools.patch: Add gettext support for .policy files.- Use gettext as fallback to get potential distro translations for polkit actions. Similar mechnism as used for desktop file translations. That way it's possible to use weblate to add additional translations that are not provided by upstream (polkit-gettext.patch).- Use pkgconfig() instead of requiring systemd package names directly.- systemd.pc is shipped by systemd main package (bsc#983167) Strangely polkit wants systemd.pc to detect that the target system is running systemd even if its configured to build systemd support...- polkit-revert-session-magic.patch: revert a session detection change that could lead to sessions not being detected as active due to a systemd bug. bsc#954139- Update to 0.113: * Fix CVE-2015-4625 * Fix CVE-2015-3256 * Fix CVE-2015-3255 * Fix CVE-2015-3218 * On systemd-213 and later, the “active” state is shared across all sessions of an user, instead of being tracked separately * pkexec: when not given a program to execute, runs the users’ shell by default - Remove polkit-no-kded-leak.patch (upstreamed)- Try to fix kded leaking due to powerdevil exposing this issue in polkit: (bsc#912889) * polkit-no-kded-leak.patch- Added gpg signature and keyring with David Zeuthen and Miloslav Trmac ids./bin/sh/bin/sh/bin/sh/bin/sh/bin/shh03-ch2b 1702022554  !"#$%&'()*+,-.csdadehrhuiditplptsksvtrukzhzh0.116-150200.3.12.10.116-150200.3.12.10.116-150200.3.12.1  ! "dbus-1system.dorg.freedesktop.PolicyKit1.confpolkit-1polkit-1rules.d50-default.rulespkactionpkcheckpkexecpkttyagentpolkit-1polkit-agent-helper-1polkitdpolkit.servicedbus-1system-servicesorg.freedesktop.PolicyKit1.servicepolkitCOPYINGpolkit-1.mopolkit-1.mopolkit-1.mopolkit-1.mopolkit-1.mopolkit-1.mopolkit-1.mopolkit-1.mopolkit-1.mopolkit-1.mopolkit-1.mopolkit-1.mopolkit-1.mopolkit-1.mopolkit-1.mopkaction.1.gzpkcheck.1.gzpkexec.1.gzpkttyagent.1.gzpolkit.8.gzpolkitd.8.gzpolkit-1actionsorg.freedesktop.policykit.policyrules.dpolkit/etc//etc/dbus-1//etc/dbus-1/system.d//etc/pam.d//etc/polkit-1//etc/polkit-1/rules.d//usr/bin//usr/lib//usr/lib/polkit-1//usr/lib/systemd/system//usr/share//usr/share/dbus-1//usr/share/dbus-1/system-services//usr/share/licenses//usr/share/licenses/polkit//usr/share/locale/cs/LC_MESSAGES//usr/share/locale/da/LC_MESSAGES//usr/share/locale/de/LC_MESSAGES//usr/share/locale/hr/LC_MESSAGES//usr/share/locale/hu/LC_MESSAGES//usr/share/locale/id/LC_MESSAGES//usr/share/locale/it/LC_MESSAGES//usr/share/locale/pl/LC_MESSAGES//usr/share/locale/pt_BR/LC_MESSAGES//usr/share/locale/sk/LC_MESSAGES//usr/share/locale/sv/LC_MESSAGES//usr/share/locale/tr/LC_MESSAGES//usr/share/locale/uk/LC_MESSAGES//usr/share/locale/zh_CN/LC_MESSAGES//usr/share/locale/zh_TW/LC_MESSAGES//usr/share/man/man1//usr/share/man/man8//usr/share/polkit-1//usr/share/polkit-1/actions//var/lib/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:31767/SUSE_SLE-15-SP2_Update/2e03c4d362f8d370476985f1f4c3e35f-polkit.SUSE_SLE-15-SP2_Updatedrpmxz5x86_64-suse-linux directoryXML 1.0 document, ASCII textASCII textELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, BuildID[sha1]=d015e2031d038121d3648c258fe206ab435475bf, for GNU/Linux 3.2.0, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, BuildID[sha1]=63795263b069f31f26cb878bb565a7e5c8559724, for GNU/Linux 3.2.0, strippedsetuid ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, BuildID[sha1]=836b2e63e7d552466ab17e7a2e9f13bf38eff753, for GNU/Linux 3.2.0, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, BuildID[sha1]=03363a1f3d14a4277ea174d4301a400085690163, for GNU/Linux 3.2.0, strippedsetuid ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, BuildID[sha1]=fd2137641a468214c9128759b5ebacf7d17a276b, for GNU/Linux 3.2.0, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, BuildID[sha1]=983b2af3e0edf49aaeee21473583f5df52d3cd33, for GNU/Linux 3.2.0, strippedtroff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix)troff or preprocessor input, UTF-8 Unicode text, with very long lines (gzip compressed data, max compression, from Unix)troff or preprocessor input, ASCII text, with very long lines (gzip compressed data, max compression, from Unix)XML 1.0 document, UTF-8 Unicode text#- R RRRRRRR RRRRRRRRRR RRRRRRRRRR RRRRRRRRR R RRRRRRRR RR RR RRRRRRRRRRR RRR RR&7Yԉ x%Asystemdsystemdutf-8bc9a0865473a5b289d9168f8f15a771659354b14d963eea642c3575ae94c68af? 7zXZ !t/)P]"k%UN0wD8j6isqRdr=69甋dnkW2lV^Yj`E \9:; R%oR wf070]پFłe 2pb#)j2zL[7#:&c~t}jAQtb򶘕jiQ W8wip>{n*$ ({lǘM/UxI+:UåHS"+ćkh{N3Sz%=`:F2+%yń(u]1yLoҳnEY%:Un0I9!K-"!O(=M"9=>C+IB_/p@0 g?OXy៯7k<=X0]6F+pĦD\7=u{Sף9pV7zW[Aee8ڨmX +ޓD@> z&׿DްWMF< ǡ0`·) ypb-=b{sň;XZJ̈#WE[.لG1831]BiYx}g&L=ލ/1|6Tqҕp;#F@af>䓶J{5^ O' PW1K޳i{,'xY7P42sp@:ux[|(wѩ80Y G px亷58b+E|\__ۏRYP}$dm!]쬍1;R.5~;l@Q `x]: '.8z)-vvVrEZeCn{*p}# hnviEf# \#PeHy.4޸fQ^T=ܤK!:EFFE D1Ls6& Pׁc\=Q񑷋YUIuݹĵQ)ıwRlxfNԎ$pǗΪb c1uz3B1u jIj{W]M2e?^=hq+װAo+?֘M(8ce'MS(d)Iӗv#R|&Yt {VtKϏ: YvBTl rIe,kov3'JAfYL*P3I3`x\~G&r@Iw\FhTҬ:9Yh#3_SNЈyRߌ8dUi5ӮAU7 nN'9ks]d :w[2d,ZIx9MYt<~$2F>5zn*8!O;#|SY-AK;xFlo`$',"UaO"\!UKYU9xQC*Y^k0ZĚDα*P V}U_Vh!r\Sc(-BO[W 1<_ZqG@d2YAoE^~ 1 UQN6}PrgE>^64B2cm'{5k3!ߔ4pRى:`&?A;#?/Hr}-?JxnJx`E+p1jGij1g)۫+aDjpFj4 {+gngrϚ<.P.2~ ? U/:{=Eӣ>p! 87a_%# }FTprgCF?+ڝx}!(4^D!oQսX*q3^P,I!+ͦn!kۤ~yLmk}?C7ѨGGs pHM3?u󐟂lbAE& "r[Y{wkPG.؀, 5HdPx2yP̵ÞZ,@'>bYџ W5 k`EMQ1,9W8*G}k&1x PIcSA#$"ɆWeB2'A,J{民C8|xS%gܹ_$c04gxȻ"%2_e<#%$x ͯI]s2!ZB(%5hs'd q9e52=x/^ы;rSKlc[l WU}#2"B/ yLj&R7u|{Ho VUSܢ,4 +!geU1n/R@{'K.Ls!Q$~㒭TS#asXސyAaUW|&;TK/qm*7]0a 7PfK\oT0N_G, 8L^qX2j2hAf~`Ae zŖޯtbWC]rԗNQ21ۭM$d0(.1vjdtPW;YIx IX mGhEj^%d*ѶU̗T/8a %ؿ3&6Bҳyw$4.`F:}]5F3 GaJؽHN7݅Z&Ԣ$۞V9RJoL2/ɀcPnUjzh_e-spՀZG[_MTʍ!Uu6ʟ>fLZA5yHd20}4B { K6Ckv%Ib$[k GuO@B=)We=dcGzS@l :p+d@˪9 |& e% W!?swIHH"Xp(z8BQ ,Q2*3{N+F\6~ n3X& Mo*PQF=- oC3 I܉2 +VH t}s>#?JXT OK1N2 ^ a[d/yan4*q2*R]H YZ