This update fixes the following security problems:
- By using alternate syntax for specifying USB devices instead of a
/proc/bus/usb path one could bypass access control rules and open
any USB device.
- Class specific exclude rules did not match devices that set their class ID at
interface level. Therefore the default exclude rules for HID and hub devices
did not work on many devices.