https://bugzilla.novell.com/show_bug.cgi?id=781569 https://bugzilla.novell.com/show_bug.cgi?id=781569#c0 Summary: security review: gnome-applets for GNOME 3.6 Classification: openSUSE Product: openSUSE Factory Version: 12.3 Milestone 0 Platform: Other OS/Version: Other Status: NEW Severity: Normal Priority: P5 - None Component: GNOME AssignedTo: security-team@suse.de ReportedBy: dimstar@opensuse.org QAContact: qa-bugs@suse.de Found By: --- Blocker: --- Based on a request from bug 780104, I enabled the cpufreq-selector applet / tool. This installs a system wide dbus service and is controlled by polkit. In order for the package to be able to enter Factory, this requires a security review and approval of the dbus / polkit rules. The current build fails with: [ 500s] (none): E: badness 20000 exceeds threshold 1000, aborting. [ 500s] gnome-applets.x86_64: E: suse-dbus-unauthorized-service (Badness: 10000) /usr/share/dbus-1/system-services/org.gnome.CPUFreqSelector.service [ 500s] gnome-applets.x86_64: E: suse-dbus-unauthorized-service (Badness: 10000) /etc/dbus-1/system.d/org.gnome.CPUFreqSelector.conf [ 500s] The package installs a DBUS system service file. If the package is intended [ 500s] for inclusion in any SUSE product please open a bug report to request review [ 500s] of the service by the security team. [ 500s] [ 500s] gnome-applets.x86_64: I: polkit-untracked-privilege org.gnome.cpufreqselector (??:no:auth_admin_keep) [ 500s] The privilege is not listed in /etc/polkit-default-privs.* which makes it [ 500s] harder for admins to find. If the package is intended for inclusion in any [ 500s] SUSE product please open a bug report to request review of the package by the [ 500s] security team -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.