[ubuntu/trusty-security] python-crypto 2.6.1-4ubuntu0.1 (Accepted)
python-crypto (2.6.1-4ubuntu0.1) trusty-security; urgency=medium * SECURITY UPDATE: throw exception when IV used with ECB or CTR - debian/patches/CVE-2013-7459.patch: force exception when IV used ECB/CTR - CVE-2013-7459.patch Date: 2017-02-14 22:03:13.183590+00:00 Changed-By: Emily Ratliff https://launchpad.net/ubuntu/+source/python-crypto/2.6.1-4ubuntu0.1 Sorry, changesfile not available.-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes
[ubuntu/trusty-updates] python-crypto 2.6.1-4ubuntu0.1 (Accepted)
python-crypto (2.6.1-4ubuntu0.1) trusty-security; urgency=medium * SECURITY UPDATE: throw exception when IV used with ECB or CTR - debian/patches/CVE-2013-7459.patch: force exception when IV used ECB/CTR - CVE-2013-7459.patch Date: 2017-02-14 22:03:13.183590+00:00 Changed-By: Emily Ratliff Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/python-crypto/2.6.1-4ubuntu0.1 Sorry, changesfile not available.-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes
[ubuntu/trusty-updates] snapd 2.22.2~14.04 (Accepted)
snapd (2.22.2~14.04) trusty; urgency=medium * New upstream release, LP: #1659522 - cherry pick fix for sched_setscheduler regression (LP: #1661265) snapd (2.22.1~14.04) trusty; urgency=medium * New upstream release, LP: #1659522 - cherry pick fix for snapctl auth.json handling snapd (2.22~14.04) trusty; urgency=medium * New upstream release, LP: #1659522 - many: make ubuntu-core-launcher mostly go - interfaces/builtin: add account-control interface - interfaces/builtin: add missing syscalls to core-support needed for systemctl - interfaces/builtin: rework core-support to only allow full access to systemctl - debian/tests: drop stale autopkgtest dependencies. - tests: make the debugging of c-unit-tests more useful - store: retry auth-related requests - tests: integration test for system reload - snap: be more helpful in the `snap install ` error message - tests: set SNAPPY_USE_STAGING_STORE in su call - tests: use test snap - spread: set SNAPD_DEBUG=1 in the core snap as well - tests: add extra debugging to security-setuid-root test - cmd,snap,wrappers: systemd reload command support - interfaces: builtin: mir: Allow recv and send - overlord/ifacestate: use ParseConnRef - overlord/snapstate,overlord/ifacestate: add automatic ubuntu-core -> core transition - debian: remove aliases as well in snapd.postrm - many: change interfaces.ParseID to return value - interfaces/opengl: allow access to the nvidia abstract socket - overlord, daemon: flag failures feature fancy forms. - many: add --classic support to try and revert, and make missing these things a little harder - interfaces: allow reading non-PCI-attached usb devices via raw-usb - many: rename snap-alter-ns to snap-update-ns - interfaces/builtin: add core-support - store: increase the retry.LimitTime() - debian: move the packaging out into package/$id-$version_id - overlord/stapstate: don't use unkeyed fields - many: add stub implementation of snap-alter-ns - asserts: improve error message when key is not valid at the given time - snapstate, ifacestate: add snapstate.CheckChangeConflict() to ifacestate.{Connect,Disconnect} - debian: remove trusty specific bits - docs: Add a note about building snapd. - interfaces: miscellaneous updates for default and network-control - daemon: bubble out store.ErrSnapNotFound in the findOne codepath - store: add retry logging into download as well - snap: show price in `snap info` - cmd: add fault injection support code - interfaces: network-manager: allow rw access to /etc/netplan - debian: move systemd files out of ./debian and into ./data/systemd - asserts: implement SuggestFormat to help avoid specifying the wrong format iteration for an assertion - many: detect potentially insecure use of snap-confine - interfaces: allow querying added security backends - cmd: ensure that all .c files have a -test.c file - asserts: don't use 'context' for the path of attributes, want to reuse the concept for something else - interfaces: abbreviate ConnRef construction - tests: ensure systemd override directory is available before using it - cmd: more build system cleanups and a small fix - tests: increase retries for service up - cmd: move seccomp cleanup function to seccomp-support - many: auto-connect plugs and slots symmetrically - overlord: use a ticker for the pruning - interfaces/builtin: add uhid interface - cmd/snap-confine: add shutdown helper - tests: fix path used when debugging - cmd: switch to non-recursive make - overlord/ifacestate: setup security of snaps affected by auto- connection - spread: refresh apt cache before first install - overlord: allow max 500 changes in "ready" state to avoid growing changes for 24h - snap: add {Plug,Slot}Info.SecurityTags - cmd: move snap-discard-ns to dedicated directory - tests: skip i18n test when no "snappy.mo" file is available - interfaces,overlord/ifacestate: small refactor around reference methods - tests: remove the snapd dirs last (should fix random test errors) - interfaces: mm: permissions for protocol proxies - interfaces/builtin: add evolution interfaces - many: extract the logging http client and user-agent handling for use in devicestate - interfaces: unity8-download-manager is the chosen name for this interface. - tests: add "quiet" wrapper function that only prints output on failure - tests: fix failing snapd-reexec test - docs: simplify HACKING.md that snapd itself supports setting up the sockets - overlord: flag required-snaps from model as required and prevent removing them - spread: exclude .o and .a files - tests: parameterize remote store
[ubuntu/trusty-security] bind9 1:9.9.5.dfsg-3ubuntu0.13 (Accepted)
bind9 (1:9.9.5.dfsg-3ubuntu0.13) trusty-security; urgency=medium * SECURITY UPDATE: Combining dns64 and rpz can result in dereferencing a NULL pointer - bin/named/query.c, lib/dns/message.c, lib/dns/rdataset.c: properly handle dns64 and rpz combination. - CVE-2017-3135 * SECURITY UPDATE: regression in CVE-2016-8864 - lib/dns/resolver.c: synthesised CNAME before matching DNAME was still being cached when it should have been, - bin/tests/system/dname/ans3/ans.pl, bin/tests/system/dname/ns1/root.db, bin/tests/system/dname/tests.sh: added tests. - No CVE number bind9 (1:9.9.5.dfsg-3ubuntu0.12) trusty; urgency=medium * Backport (70_precise_mtime.diff) 18b87b2a58d422fe4d3073540bf89b5a812ed2e5 to trusty. LP: #1553176 Date: 2017-02-15 16:26:18.675044+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/bind9/1:9.9.5.dfsg-3ubuntu0.13 Sorry, changesfile not available.-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes
[ubuntu/trusty-updates] gce-compute-image-packages 20160930-0ubuntu3~14.04.0 (Accepted)
gce-compute-image-packages (20160930-0ubuntu3~14.04.0) trusty; urgency=medium * Backport gce-compute-image-packages to trusty (LP: #1643585) * GCE mirrors not in place before startup scripts are run (LP: #1436846) * Run google-startup-scripts after cloud-final Date: 2017-02-03 10:51:11.276667+00:00 Changed-By: Philip Roche Maintainer: Dan Watkins Signed-By: Brian Murray https://launchpad.net/ubuntu/+source/gce-compute-image-packages/20160930-0ubuntu3~14.04.0 Sorry, changesfile not available.-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes
[ubuntu/trusty-updates] bind9 1:9.9.5.dfsg-3ubuntu0.13 (Accepted)
bind9 (1:9.9.5.dfsg-3ubuntu0.13) trusty-security; urgency=medium * SECURITY UPDATE: Combining dns64 and rpz can result in dereferencing a NULL pointer - bin/named/query.c, lib/dns/message.c, lib/dns/rdataset.c: properly handle dns64 and rpz combination. - CVE-2017-3135 * SECURITY UPDATE: regression in CVE-2016-8864 - lib/dns/resolver.c: synthesised CNAME before matching DNAME was still being cached when it should have been, - bin/tests/system/dname/ans3/ans.pl, bin/tests/system/dname/ns1/root.db, bin/tests/system/dname/tests.sh: added tests. - No CVE number Date: 2017-02-15 16:26:18.675044+00:00 Changed-By: Marc Deslauriers Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/bind9/1:9.9.5.dfsg-3ubuntu0.13 Sorry, changesfile not available.-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes
[ubuntu/partner/trusty] google-cloud-sdk 140.0.0-0ubuntu1~14.04 (Accepted)
google-cloud-sdk (140.0.0-0ubuntu1~14.04) trusty; urgency=medium * New upstream release google-cloud-sdk (128.0.0-0ubuntu1) yakkety; urgency=medium * New upstream release * Add python-crcmod as a dependency (LP: #1590894) * Replace /usr/bin shell scripts with direct symlinks to upstream scripts. (LP: #1617014). * Update maintainer to the Canonical team that is actually responsible for the package * Disable auto-updating, as users should be using fresh Ubuntu packages for updates. (LP: #1594909) * Add python-google-compute-engine as a dependency. google-cloud-sdk (111.0.0-0ubuntu1) yakkety; urgency=medium * New upstream release Date: 2017-02-13 13:30:11.147017+00:00 Changed-By: Chris Glass Signed-By: Steve Langasek https://launchpad.net/ubuntu/+source/google-cloud-sdk/140.0.0-0ubuntu1~14.04 Sorry, changesfile not available.-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes
[ubuntu/trusty-updates] qemu 2.0.0+dfsg-2ubuntu1.32 (Accepted)
qemu (2.0.0+dfsg-2ubuntu1.32) trusty; urgency=medium [ Dave Chiluk ] * Qemu VM crash with error "bdrv_error_action: Assertion `error >= 0' failed" (LP: #1655225) Date: 2017-02-08 06:58:12.509503+00:00 Changed-By: ChristianEhrhardt Signed-By: Brian Murray https://launchpad.net/ubuntu/+source/qemu/2.0.0+dfsg-2ubuntu1.32 Sorry, changesfile not available.-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes