[Touch-packages] [Bug 1701068] Re: motd is advertising HBO's Silicon Valley
I have to say, I was very disappointed to see this when I logged onto one of my servers today. I can understand the desire to be able to communicate directly to users and present timely, relevant information, but linking out to content marketing in what seems to be one of its first uses is self-sabotage. This type of behavior will lead to it being disabled and the "important security messages" to not be seen. Note, you can disable this behavior in /etc/default/motd-news -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to base-files in Ubuntu. https://bugs.launchpad.net/bugs/1701068 Title: motd is advertising HBO's Silicon Valley Status in base-files package in Ubuntu: Triaged Bug description: The MOTD is advertising HBO's Silicon Valley. The MOTD should not be advertising anything. Welcome to Ubuntu 17.04 (GNU/Linux 4.10.0-21-generic x86_64) * Documentation: https://help.ubuntu.com * Management: https://landscape.canonical.com * Support:https://ubuntu.com/advantage * How HBO's Silicon Valley built "Not Hotdog" with mobile TensorFlow, Keras & React Native on Ubuntu - https://ubu.one/HBOubu ProblemType: Bug DistroRelease: Ubuntu 17.04 Package: base-files 9.6ubuntu13 ProcVersionSignature: Ubuntu 4.10.0-24.28-generic 4.10.15 Uname: Linux 4.10.0-24-generic x86_64 ApportVersion: 2.20.4-0ubuntu4 Architecture: amd64 Date: Wed Jun 28 12:31:24 2017 InstallationDate: Installed on 2017-05-02 (56 days ago) InstallationMedia: Xubuntu 17.04 "Zesty Zapus" - Release amd64 (20170412) ProcEnviron: TERM=xterm-256color PATH=(custom, no user) XDG_RUNTIME_DIR= LANG=en_US.UTF-8 SHELL=/bin/bash SourcePackage: base-files UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/base-files/+bug/1701068/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1516592] Re: CVE-2015-8126: Multiple buffer overflows
Thanks Marc! -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to libpng in Ubuntu. https://bugs.launchpad.net/bugs/1516592 Title: CVE-2015-8126: Multiple buffer overflows Status in libpng package in Ubuntu: Fix Released Status in libpng source package in Precise: Fix Released Status in libpng source package in Trusty: Fix Released Status in libpng source package in Vivid: Fix Released Status in libpng source package in Wily: Fix Released Bug description: Multiple buffer overflows were found in libpng, see https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8126 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpng/+bug/1516592/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1516592] Re: CVE-2015-8126: Multiple buffer overflows
Debdiff for xenial incorporating the above upstream commits. Successfully builds in a clean xenial pbuilder. ** Patch added: "libpng_1.2.51-0ubuntu4.debdiff" https://bugs.launchpad.net/ubuntu/+source/libpng/+bug/1516592/+attachment/4521636/+files/libpng_1.2.51-0ubuntu4.debdiff -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to libpng in Ubuntu. https://bugs.launchpad.net/bugs/1516592 Title: CVE-2015-8126: Multiple buffer overflows Status in libpng package in Ubuntu: Triaged Bug description: Multiple buffer overflows were found in libpng, see https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8126 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpng/+bug/1516592/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1516592] Re: CVE-2015-8126: Multiple buffer overflows
debdiff for 15.10 security update ** Patch added: "libpng_1.2.51-0ubuntu3.15.10.1.debdiff" https://bugs.launchpad.net/ubuntu/+source/libpng/+bug/1516592/+attachment/4521639/+files/libpng_1.2.51-0ubuntu3.15.10.1.debdiff -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to libpng in Ubuntu. https://bugs.launchpad.net/bugs/1516592 Title: CVE-2015-8126: Multiple buffer overflows Status in libpng package in Ubuntu: Triaged Bug description: Multiple buffer overflows were found in libpng, see https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8126 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpng/+bug/1516592/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1516592] Re: CVE-2015-8126: Multiple buffer overflows
debdiff for 14.04 security update ** Patch added: "libpng_1.2.50-1ubuntu2.14.04.1.debdiff" https://bugs.launchpad.net/ubuntu/+source/libpng/+bug/1516592/+attachment/4521641/+files/libpng_1.2.50-1ubuntu2.14.04.1.debdiff -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to libpng in Ubuntu. https://bugs.launchpad.net/bugs/1516592 Title: CVE-2015-8126: Multiple buffer overflows Status in libpng package in Ubuntu: Triaged Bug description: Multiple buffer overflows were found in libpng, see https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8126 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpng/+bug/1516592/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1516592] Re: CVE-2015-8126: Multiple buffer overflows
debdiff for 15.04 security update ** Patch added: "libpng_1.2.51-0ubuntu3.15.04.1.debdiff" https://bugs.launchpad.net/ubuntu/+source/libpng/+bug/1516592/+attachment/4521640/+files/libpng_1.2.51-0ubuntu3.15.04.1.debdiff -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to libpng in Ubuntu. https://bugs.launchpad.net/bugs/1516592 Title: CVE-2015-8126: Multiple buffer overflows Status in libpng package in Ubuntu: Triaged Bug description: Multiple buffer overflows were found in libpng, see https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8126 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpng/+bug/1516592/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1516592] Re: CVE-2015-8126: Multiple buffer overflows
All of the above have been test build successfully with pbuilder for their respective releases. There doesn't seem to be any public POC yet... -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to libpng in Ubuntu. https://bugs.launchpad.net/bugs/1516592 Title: CVE-2015-8126: Multiple buffer overflows Status in libpng package in Ubuntu: Triaged Status in libpng source package in Trusty: New Status in libpng source package in Vivid: New Status in libpng source package in Wily: New Bug description: Multiple buffer overflows were found in libpng, see https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8126 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpng/+bug/1516592/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1516592] Re: CVE-2015-8126: Multiple buffer overflows
** Summary changed: - Multiple buffer overflows + CVE-2015-8126: Multiple buffer overflows -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to libpng in Ubuntu. https://bugs.launchpad.net/bugs/1516592 Title: CVE-2015-8126: Multiple buffer overflows Status in libpng package in Ubuntu: Triaged Bug description: Multiple buffer overflows were found in libpng, see https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8126 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpng/+bug/1516592/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1516592] Re: Multiple buffer overflows
For libpng12, it looks like these are the needed commits: https://github.com/glennrp/libpng/commit/216dbf7f7eef5d999f2e3ba054407917098e9f85 https://github.com/glennrp/libpng/commit/3939689e7d9d06ee05411210bc8e605adcff294e https://github.com/glennrp/libpng/commit/475bab6170f651b9863e9fc1b8ffd6cd89a45aa0 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to libpng in Ubuntu. https://bugs.launchpad.net/bugs/1516592 Title: Multiple buffer overflows Status in libpng package in Ubuntu: Triaged Bug description: Multiple buffer overflows were found in libpng, see https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8126 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libpng/+bug/1516592/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1228922] Re: Provide a property to make a ListView header sticky
didrocks is correct. That's what I envisioned when originally making the request. It seems like a pretty common design pattern. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to ubuntu-ui-toolkit in Ubuntu. https://bugs.launchpad.net/bugs/1228922 Title: Provide a property to make a ListView header sticky Status in ubuntu-ui-toolkit package in Ubuntu: Confirmed Bug description: BlackBerry Cascades (their Qml toolkit) provides a ListHeaderMode.Sticky property that would be very welcome in the Ubuntu Toolkit. I'll let their docs describe it: We also use the headerMode property to customize the behavior of the header items in the list. By using ListHeaderMode.Sticky, when the list scrolls and a header reaches the top of the visible area, the header stays there (or sticks) as the list continues to scroll, until a new header reaches the top. http://developer.blackberry.com/native/documentation/cascades/ui/lists/lists_create_main_ui.html The Unity8 Dash seems to have an internal component that works in a similar fashion. Maybe it could be generalized: http://bazaar.launchpad.net/~unity- team/unity8/trunk/files/head:/plugins/ListViewWithPageHeader/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ubuntu-ui-toolkit/+bug/1228922/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1447654] Re: installing policykit-1 hangs under systemd
Reopening the task for vivid as well. AFAICT, this is not fixed there. I've been able to reproduce it consistently. Let me know if there's anything I can do to help test. ** Changed in: policykit-1 (Ubuntu Vivid) Status: Fix Released = Confirmed -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to policykit-1 in Ubuntu. https://bugs.launchpad.net/bugs/1447654 Title: installing policykit-1 hangs under systemd Status in policykit-1 package in Ubuntu: Confirmed Status in policykit-1 source package in Vivid: Confirmed Bug description: I've installed 15.04 using the current amd64 netboot.tar.gz (MD5 = 6566065bf73a9c81feeddf5520dda122). It installs fine, but I'm getting errors installing packages (such as lubuntu-core). Last few lines from apt-get: Processing triggers for systemd (219-7ubuntu3) ... Error getting authority: Error initializing authority: Error calling StartServiceByName for org.freedesktop.PolicyKit1: Timeout was reached (g-io-error-quark, 24) Failed to execute operation: Connection timed out dpkg: error processing package systemd (--unpack): subprocess installed post-installation script returned error exit status 1 Processing triggers for libglib2.0-0:amd64 (2.44.0-1ubuntu3) ... Processing triggers for shared-mime-info (1.3-1) ... Processing triggers for mime-support (3.58ubuntu1) ... Processing triggers for udev (219-7ubuntu3) ... Processing triggers for dbus (1.8.12-1ubuntu5) ... Errors were encountered while processing: systemd E: Sub-process /usr/bin/dpkg returned an error code (1) I've done a second install using the server iso and lubuntu-core installs fine on that. The only thing different was my install media. SRU INFORMATION === Test case: - Boot a minimal VM and purge apport policykit-1, or do the above netboot installation. - sudo apt-get install policykit-1 apport - The above hangs on the systemd triggers and eventually fails in vivid final. It should succeed fine with this update. Regression potential: Very low: polkitd does not keep state, so one can restart it fine. The postinst shell modification is simple and obvious. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/policykit-1/+bug/1447654/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 438638] Re: add-apt-repository should call apt-get update after adding the repository
** Changed in: software-properties (Ubuntu) Importance: Undecided = Wishlist -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to software-properties in Ubuntu. https://bugs.launchpad.net/bugs/438638 Title: add-apt-repository should call apt-get update after adding the repository Status in software-properties package in Ubuntu: Confirmed Bug description: After adding a PPA with add-apt-repository I have tried sudo apt-get upgrade, there were no updates available, I had to manually call apt-get update. If I am adding a repository I want the cache to be updated, that should be automatically done by add-apt-repostiory . Using this strategy would allow to update only the just added repository: http://askubuntu.com/a/197532/7788 ProblemType: Bug Architecture: i386 Date: Tue Sep 29 11:12:45 2009DistroRelease: Ubuntu 9.10 Package: python-software-properties 0.75.4 PackageArchitecture: all ProcEnviron: LANGUAGE=pt_PT.utf8 PATH=(custom, user) LANG=pt_PT.utf8 SHELL=/bin/bash ProcVersionSignature: Ubuntu 2.6.31-11.36-genericSourcePackage: software-properties Uname: Linux 2.6.31-11-generic i686 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/software-properties/+bug/438638/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp