Comment # 1 on bug 1032717 from 
This issue was found in the context of a general security review for
backintime in bug 1007723. While this issue on its own is not of high severity
the following circumstances call for quick action:

- There are more minor and moderate issues like a possible DoS in the DBus
service. I've created an upstream pull request addressing multiple issues:
https://github.com/bit-team/backintime/pull/727. Updates should be submitted
that contains all these fixes plus the patch from attachment 719151 [details].

- Affected versions of backintime are currently in Factory, Leap 42.1 and Leap
42.2. All these versions contain the DBus service that was never approved by
the security team. This was possible by suppressing the corresponding warnings
in the package's rpmlintrc.

Please submit fixed versions for Factory, Leap 42.1 and Leap 42.2!

You are receiving this mail because: