[ubuntu/trusty-security] python-crypto 2.6.1-4ubuntu0.1 (Accepted)
python-crypto (2.6.1-4ubuntu0.1) trusty-security; urgency=medium * SECURITY UPDATE: throw exception when IV used with ECB or CTR - debian/patches/CVE-2013-7459.patch: force exception when IV used ECB/CTR - CVE-2013-7459.patch Date: 2017-02-14 22:03:13.183590+00:00 Changed-By: Emily Ratliff https://launchpad.net/ubuntu/+source/python-crypto/2.6.1-4ubuntu0.1 Sorry, changesfile not available.-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes
[ubuntu/trusty-updates] python-crypto 2.6.1-4ubuntu0.1 (Accepted)
python-crypto (2.6.1-4ubuntu0.1) trusty-security; urgency=medium * SECURITY UPDATE: throw exception when IV used with ECB or CTR - debian/patches/CVE-2013-7459.patch: force exception when IV used ECB/CTR - CVE-2013-7459.patch Date: 2017-02-14 22:03:13.183590+00:00 Changed-By: Emily Ratliff Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/python-crypto/2.6.1-4ubuntu0.1 Sorry, changesfile not available.-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes
[ubuntu/trusty-updates] snapd 2.22.2~14.04 (Accepted)
snapd (2.22.2~14.04) trusty; urgency=medium
* New upstream release, LP: #1659522
- cherry pick fix for sched_setscheduler regression
(LP: #1661265)
snapd (2.22.1~14.04) trusty; urgency=medium
* New upstream release, LP: #1659522
- cherry pick fix for snapctl auth.json handling
snapd (2.22~14.04) trusty; urgency=medium
* New upstream release, LP: #1659522
- many: make ubuntu-core-launcher mostly go
- interfaces/builtin: add account-control interface
- interfaces/builtin: add missing syscalls to core-support needed
for systemctl
- interfaces/builtin: rework core-support to only allow full access
to systemctl
- debian/tests: drop stale autopkgtest dependencies.
- tests: make the debugging of c-unit-tests more useful
- store: retry auth-related requests
- tests: integration test for system reload
- snap: be more helpful in the `snap install `
error message
- tests: set SNAPPY_USE_STAGING_STORE in su call
- tests: use test snap
- spread: set SNAPD_DEBUG=1 in the core snap as well
- tests: add extra debugging to security-setuid-root test
- cmd,snap,wrappers: systemd reload command support
- interfaces: builtin: mir: Allow recv and send
- overlord/ifacestate: use ParseConnRef
- overlord/snapstate,overlord/ifacestate: add automatic ubuntu-core
-> core transition
- debian: remove aliases as well in snapd.postrm
- many: change interfaces.ParseID to return value
- interfaces/opengl: allow access to the nvidia abstract socket
- overlord, daemon: flag failures feature fancy forms.
- many: add --classic support to try and revert, and make missing
these things a little harder
- interfaces: allow reading non-PCI-attached usb devices via raw-usb
- many: rename snap-alter-ns to snap-update-ns
- interfaces/builtin: add core-support
- store: increase the retry.LimitTime()
- debian: move the packaging out into package/$id-$version_id
- overlord/stapstate: don't use unkeyed fields
- many: add stub implementation of snap-alter-ns
- asserts: improve error message when key is not valid at the given
time
- snapstate, ifacestate: add snapstate.CheckChangeConflict() to
ifacestate.{Connect,Disconnect}
- debian: remove trusty specific bits
- docs: Add a note about building snapd.
- interfaces: miscellaneous updates for default and network-control
- daemon: bubble out store.ErrSnapNotFound in the findOne codepath
- store: add retry logging into download as well
- snap: show price in `snap info`
- cmd: add fault injection support code
- interfaces: network-manager: allow rw access to /etc/netplan
- debian: move systemd files out of ./debian and into ./data/systemd
- asserts: implement SuggestFormat to help avoid specifying the
wrong format iteration for an assertion
- many: detect potentially insecure use of snap-confine
- interfaces: allow querying added security backends
- cmd: ensure that all .c files have a -test.c file
- asserts: don't use 'context' for the path of attributes, want to
reuse the concept for something else
- interfaces: abbreviate ConnRef construction
- tests: ensure systemd override directory is available before using
it
- cmd: more build system cleanups and a small fix
- tests: increase retries for service up
- cmd: move seccomp cleanup function to seccomp-support
- many: auto-connect plugs and slots symmetrically
- overlord: use a ticker for the pruning
- interfaces/builtin: add uhid interface
- cmd/snap-confine: add shutdown helper
- tests: fix path used when debugging
- cmd: switch to non-recursive make
- overlord/ifacestate: setup security of snaps affected by auto-
connection
- spread: refresh apt cache before first install
- overlord: allow max 500 changes in "ready" state to avoid growing
changes for 24h
- snap: add {Plug,Slot}Info.SecurityTags
- cmd: move snap-discard-ns to dedicated directory
- tests: skip i18n test when no "snappy.mo" file is available
- interfaces,overlord/ifacestate: small refactor around reference
methods
- tests: remove the snapd dirs last (should fix random test errors)
- interfaces: mm: permissions for protocol proxies
- interfaces/builtin: add evolution interfaces
- many: extract the logging http client and user-agent handling for
use in devicestate
- interfaces: unity8-download-manager is the chosen name for this
interface.
- tests: add "quiet" wrapper function that only prints output on
failure
- tests: fix failing snapd-reexec test
- docs: simplify HACKING.md that snapd itself supports setting up
the sockets
- overlord: flag required-snaps from model as required and prevent
removing them
- spread: exclude .o and .a files
- tests: parameterize remote store
[ubuntu/trusty-security] bind9 1:9.9.5.dfsg-3ubuntu0.13 (Accepted)
bind9 (1:9.9.5.dfsg-3ubuntu0.13) trusty-security; urgency=medium * SECURITY UPDATE: Combining dns64 and rpz can result in dereferencing a NULL pointer - bin/named/query.c, lib/dns/message.c, lib/dns/rdataset.c: properly handle dns64 and rpz combination. - CVE-2017-3135 * SECURITY UPDATE: regression in CVE-2016-8864 - lib/dns/resolver.c: synthesised CNAME before matching DNAME was still being cached when it should have been, - bin/tests/system/dname/ans3/ans.pl, bin/tests/system/dname/ns1/root.db, bin/tests/system/dname/tests.sh: added tests. - No CVE number bind9 (1:9.9.5.dfsg-3ubuntu0.12) trusty; urgency=medium * Backport (70_precise_mtime.diff) 18b87b2a58d422fe4d3073540bf89b5a812ed2e5 to trusty. LP: #1553176 Date: 2017-02-15 16:26:18.675044+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/bind9/1:9.9.5.dfsg-3ubuntu0.13 Sorry, changesfile not available.-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes
[ubuntu/trusty-updates] gce-compute-image-packages 20160930-0ubuntu3~14.04.0 (Accepted)
gce-compute-image-packages (20160930-0ubuntu3~14.04.0) trusty; urgency=medium * Backport gce-compute-image-packages to trusty (LP: #1643585) * GCE mirrors not in place before startup scripts are run (LP: #1436846) * Run google-startup-scripts after cloud-final Date: 2017-02-03 10:51:11.276667+00:00 Changed-By: Philip Roche Maintainer: Dan Watkins Signed-By: Brian Murray https://launchpad.net/ubuntu/+source/gce-compute-image-packages/20160930-0ubuntu3~14.04.0 Sorry, changesfile not available.-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes
[ubuntu/trusty-updates] bind9 1:9.9.5.dfsg-3ubuntu0.13 (Accepted)
bind9 (1:9.9.5.dfsg-3ubuntu0.13) trusty-security; urgency=medium * SECURITY UPDATE: Combining dns64 and rpz can result in dereferencing a NULL pointer - bin/named/query.c, lib/dns/message.c, lib/dns/rdataset.c: properly handle dns64 and rpz combination. - CVE-2017-3135 * SECURITY UPDATE: regression in CVE-2016-8864 - lib/dns/resolver.c: synthesised CNAME before matching DNAME was still being cached when it should have been, - bin/tests/system/dname/ans3/ans.pl, bin/tests/system/dname/ns1/root.db, bin/tests/system/dname/tests.sh: added tests. - No CVE number Date: 2017-02-15 16:26:18.675044+00:00 Changed-By: Marc Deslauriers Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/bind9/1:9.9.5.dfsg-3ubuntu0.13 Sorry, changesfile not available.-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes
[ubuntu/partner/trusty] google-cloud-sdk 140.0.0-0ubuntu1~14.04 (Accepted)
google-cloud-sdk (140.0.0-0ubuntu1~14.04) trusty; urgency=medium * New upstream release google-cloud-sdk (128.0.0-0ubuntu1) yakkety; urgency=medium * New upstream release * Add python-crcmod as a dependency (LP: #1590894) * Replace /usr/bin shell scripts with direct symlinks to upstream scripts. (LP: #1617014). * Update maintainer to the Canonical team that is actually responsible for the package * Disable auto-updating, as users should be using fresh Ubuntu packages for updates. (LP: #1594909) * Add python-google-compute-engine as a dependency. google-cloud-sdk (111.0.0-0ubuntu1) yakkety; urgency=medium * New upstream release Date: 2017-02-13 13:30:11.147017+00:00 Changed-By: Chris Glass Signed-By: Steve Langasek https://launchpad.net/ubuntu/+source/google-cloud-sdk/140.0.0-0ubuntu1~14.04 Sorry, changesfile not available.-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes
[ubuntu/trusty-updates] qemu 2.0.0+dfsg-2ubuntu1.32 (Accepted)
qemu (2.0.0+dfsg-2ubuntu1.32) trusty; urgency=medium [ Dave Chiluk ] * Qemu VM crash with error "bdrv_error_action: Assertion `error >= 0' failed" (LP: #1655225) Date: 2017-02-08 06:58:12.509503+00:00 Changed-By: ChristianEhrhardt Signed-By: Brian Murray https://launchpad.net/ubuntu/+source/qemu/2.0.0+dfsg-2ubuntu1.32 Sorry, changesfile not available.-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes
