2210424 – Please update xsel to 1.2.1

Bug 2210424 - Please update xsel to 1.2.1

Summary: Please update xsel to 1.2.1

Keywords:
Status:	NEW
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	xsel
Sub Component:
Version:	39
Hardware:	Unspecified
OS:	Linux
Priority:	unspecified
Severity:	medium
Target Milestone:	---
Assignee:	Mikolaj Izdebski
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	CVE-2022-0725
TreeView+	depends on / blocked

Reported:	2023-05-27 12:41 UTC by Julian Sikorski
Modified:	2023-08-16 08:09 UTC (History)
CC List:	5 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Julian Sikorski 2023-05-27 12:41:48 UTC

xsel 1.2.0 shipped by Fedora is very old, and lacks the following patch in particular:
https://github.com/kfish/xsel/commit/79748acf3045546a4d8ae444de99bb7a07d16eb7
This has caused keepass to leak passwords to systemd journal.

Reproducible: Always

Steps to Reproduce:
Copy something to the clipboard and run 'xsel --clear --clipboard > /tmp/log'
Actual Results:  
The log file then contains the previous clipboard content.

Expected Results:  
Log file does not contain previous clipboard content

The issue was affecting Fedora only because e.g. Ubuntu has been shipping a snapshot from 2018 for several years.

Comment 1 Fedora Release Engineering 2023-08-16 08:09:51 UTC

This bug appears to have been reported against 'rawhide' during the Fedora Linux 39 development cycle.
Changing version to 39.

Note You need to log in before you can comment on or make changes to this bug.