[ubuntu/xenial-updates] chromium-browser 69.0.3497.81-0ubuntu0.16.04.1 (Accepted)
chromium-browser (69.0.3497.81-0ubuntu0.16.04.1) xenial; urgency=medium * Upstream release: 69.0.3497.81 - CVE-2018-16065: Out of bounds write in V8. - CVE-2018-16066: Out of bounds read in Blink. - CVE-2018-16067: Out of bounds read in WebAudio. - CVE-2018-16068: Out of bounds write in Mojo. - CVE-2018-16069: Out of bounds read in SwiftShader. - CVE-2018-16070: Integer overflow in Skia. - CVE-2018-16071: Use after free in WebRTC. - CVE-2018-16072: Cross origin pixel leak in Chrome's interaction with Android's MediaPlayer. - CVE-2018-16073: Site Isolation bypass after tab restore. - CVE-2018-16074: Site Isolation bypass using Blob URLS. - CVE-2018-16075: Local file access in Blink. - CVE-2018-16076: Out of bounds read in PDFium. - CVE-2018-16077: Content security policy bypass in Blink. - CVE-2018-16078: Credit card information leak in Autofill. - CVE-2018-16079: URL spoof in permission dialogs. - CVE-2018-16080: URL spoof in full screen mode. - CVE-2018-16081: Local file access in DevTools. - CVE-2018-16082: Stack buffer overflow in SwiftShader. - CVE-2018-16083: Out of bounds read in WebRTC. - CVE-2018-16084: User confirmation bypass in external protocol handling. - CVE-2018-16085: Use after free in Memory Instrumentation. * debian/control: add uuid-dev as a build dependency (needed by fontconfig) * debian/rules: specify AR=llvm-ar-6.0 to build gn * debian/patches/additional-search-engines.patch: refreshed * debian/patches/disable-sse2: refreshed * debian/patches/fix-extra-arflags.patch: refreshed * debian/patches/gn-add-missing-arm-impl-files.patch: added * debian/patches/last-commit-position: replaced by debian/patches/gn-no-last-commit-position.patch * debian/patches/no-new-ninja-flag.patch: updated * debian/patches/relax-ninja-version-requirement.patch: updated * debian/patches/search-credit.patch: refreshed * debian/patches/set-rpath-on-chromium-executables.patch: refreshed * debian/patches/skia-undef-HWCAP_CRC32.patch: refreshed * debian/patches/suppress-newer-clang-warning-flags.patch: updated * debian/patches/title-bar-default-system.patch-v35: refreshed Date: 2018-09-05 11:58:45.624063+00:00 Changed-By: Olivier Tilloy Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/chromium-browser/69.0.3497.81-0ubuntu0.16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-proposed] shim-signed 1.33.1~16.04.2 (Accepted)
shim-signed (1.33.1~16.04.2) xenial; urgency=medium * Update to the signed 15+1533136590.3beb971-0ubuntu1 binary from Microsoft. (LP: #1790724) Date: Wed, 05 Sep 2018 11:23:24 -0400 Changed-By: Mathieu Trudel-Lapierre Maintainer: Steve Langasek https://launchpad.net/ubuntu/+source/shim-signed/1.33.1~16.04.2 Format: 1.8 Date: Wed, 05 Sep 2018 11:23:24 -0400 Source: shim-signed Binary: shim-signed Architecture: source Version: 1.33.1~16.04.2 Distribution: xenial Urgency: medium Maintainer: Steve Langasek Changed-By: Mathieu Trudel-Lapierre Description: shim-signed - Secure Boot chain-loading bootloader (Microsoft-signed binary) Launchpad-Bugs-Fixed: 1790724 Changes: shim-signed (1.33.1~16.04.2) xenial; urgency=medium . * Update to the signed 15+1533136590.3beb971-0ubuntu1 binary from Microsoft. (LP: #1790724) Checksums-Sha1: 177e94cd712f26abf5510ba1d2535fc066b7f404 1663 shim-signed_1.33.1~16.04.2.dsc c06ccfe3a5d176e9bfcc86ec592b6dca5da8a9c7 344880 shim-signed_1.33.1~16.04.2.tar.xz 21e7e7e08853a59c54705a91760e7fb3149af1ce 6307 shim-signed_1.33.1~16.04.2_source.buildinfo Checksums-Sha256: 02ab185b194c0c40782d662df9324e0b35891df0b310fe2b7a6357347285d8c8 1663 shim-signed_1.33.1~16.04.2.dsc 5c99e2e9d7a494d464e8bffeb4ed4c4d161e804caaa1b8ba762f14caec2d973c 344880 shim-signed_1.33.1~16.04.2.tar.xz 8ec20c1bd5f41020fe3c248497fea14b7a87859c2deffca0734dafd96e1345c8 6307 shim-signed_1.33.1~16.04.2_source.buildinfo Files: 24603388d592a6c4c574e07396eac905 1663 utils optional shim-signed_1.33.1~16.04.2.dsc 41521e507df0c94ab916bb9be9c1209b 344880 utils optional shim-signed_1.33.1~16.04.2.tar.xz d5f13248e3b7480b4b832445fee6f21a 6307 utils optional shim-signed_1.33.1~16.04.2_source.buildinfo -- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-proposed] shim 15+1533136590.3beb971-0ubuntu1 (Accepted)
shim (15+1533136590.3beb971-0ubuntu1) cosmic; urgency=medium [ Steve Langasek ] * Fix Vcs link. [ dann frazier ] * Enable arm64 build. [ Mathieu Trudel-Lapierre ] * New upstream snapshot. * debian/patches/abort_abort_abort.patch: dropped patch, included upstream. * debian/rules: - define RELEASE and COMMIT_ID for the snapshot. - Set ENABLE_HTTPBOOT to enable the HTTP Boot feature. * debian/patches/fixup_git.patch: don't run git in clean; we're not really in a git tree. Date: 2018-08-22 14:54:13.319466+00:00 Changed-By: Mathieu Trudel-Lapierre https://launchpad.net/ubuntu/+source/shim/15+1533136590.3beb971-0ubuntu1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-security] chromium-browser 69.0.3497.81-0ubuntu0.16.04.1 (Accepted)
chromium-browser (69.0.3497.81-0ubuntu0.16.04.1) xenial; urgency=medium * Upstream release: 69.0.3497.81 - CVE-2018-16065: Out of bounds write in V8. - CVE-2018-16066: Out of bounds read in Blink. - CVE-2018-16067: Out of bounds read in WebAudio. - CVE-2018-16068: Out of bounds write in Mojo. - CVE-2018-16069: Out of bounds read in SwiftShader. - CVE-2018-16070: Integer overflow in Skia. - CVE-2018-16071: Use after free in WebRTC. - CVE-2018-16072: Cross origin pixel leak in Chrome's interaction with Android's MediaPlayer. - CVE-2018-16073: Site Isolation bypass after tab restore. - CVE-2018-16074: Site Isolation bypass using Blob URLS. - CVE-2018-16075: Local file access in Blink. - CVE-2018-16076: Out of bounds read in PDFium. - CVE-2018-16077: Content security policy bypass in Blink. - CVE-2018-16078: Credit card information leak in Autofill. - CVE-2018-16079: URL spoof in permission dialogs. - CVE-2018-16080: URL spoof in full screen mode. - CVE-2018-16081: Local file access in DevTools. - CVE-2018-16082: Stack buffer overflow in SwiftShader. - CVE-2018-16083: Out of bounds read in WebRTC. - CVE-2018-16084: User confirmation bypass in external protocol handling. - CVE-2018-16085: Use after free in Memory Instrumentation. * debian/control: add uuid-dev as a build dependency (needed by fontconfig) * debian/rules: specify AR=llvm-ar-6.0 to build gn * debian/patches/additional-search-engines.patch: refreshed * debian/patches/disable-sse2: refreshed * debian/patches/fix-extra-arflags.patch: refreshed * debian/patches/gn-add-missing-arm-impl-files.patch: added * debian/patches/last-commit-position: replaced by debian/patches/gn-no-last-commit-position.patch * debian/patches/no-new-ninja-flag.patch: updated * debian/patches/relax-ninja-version-requirement.patch: updated * debian/patches/search-credit.patch: refreshed * debian/patches/set-rpath-on-chromium-executables.patch: refreshed * debian/patches/skia-undef-HWCAP_CRC32.patch: refreshed * debian/patches/suppress-newer-clang-warning-flags.patch: updated * debian/patches/title-bar-default-system.patch-v35: refreshed Date: 2018-09-05 11:58:45.624063+00:00 Changed-By: Olivier Tilloy Signed-By: Chris Coulson https://launchpad.net/ubuntu/+source/chromium-browser/69.0.3497.81-0ubuntu0.16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] initramfs-tools 0.122ubuntu8.12 (Accepted)
initramfs-tools (0.122ubuntu8.12) xenial; urgency=medium [ Scott Moser ] * scripts/functions: write netplan config files to /run/netplan for network devices configured with configure_networking. (LP: #1769682) [ Mathieu Trudel-Lapierre ] * scripts/functions: add 'critical: true' parameter; requires netplan 0.32~16.04.5. (LP: #1769682) * debian/rules: skip tests on non-x86 architectures, where they then to be false negatives (extra macaddress matching makes the tests fail to match expected values). Date: 2018-06-19 20:14:10.459728+00:00 Changed-By: Mathieu Trudel-Lapierre Signed-By: Steve Langasek https://launchpad.net/ubuntu/+source/initramfs-tools/0.122ubuntu8.12 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] zsh 5.1.1-1ubuntu2.3 (Accepted)
zsh (5.1.1-1ubuntu2.3) xenial-security; urgency=medium * SECURITY UPDATE: Arbitrary code execution - debian/patches/CVE-2018-0502-and-CVE-2018-13259.patch: fix in Src/exec.c and add test Test/A05execution.ztst. - CVE-2018-0502 - CVE-2018-13259 * SECURITY UPDATE: Stack-based buffer overflow - debian/patches/CVE-2018-1100.patch: fix int Src/utils.c. - CVE-2018-1100 Date: 2018-09-10 20:04:12.921698+00:00 Changed-By: leo.barb...@canonical.com (Leonidas S. Barbosa) Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/zsh/5.1.1-1ubuntu2.3 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-security] zsh 5.1.1-1ubuntu2.3 (Accepted)
zsh (5.1.1-1ubuntu2.3) xenial-security; urgency=medium * SECURITY UPDATE: Arbitrary code execution - debian/patches/CVE-2018-0502-and-CVE-2018-13259.patch: fix in Src/exec.c and add test Test/A05execution.ztst. - CVE-2018-0502 - CVE-2018-13259 * SECURITY UPDATE: Stack-based buffer overflow - debian/patches/CVE-2018-1100.patch: fix int Src/utils.c. - CVE-2018-1100 Date: 2018-09-10 20:04:12.921698+00:00 Changed-By: leo.barb...@canonical.com (Leonidas S. Barbosa) https://launchpad.net/ubuntu/+source/zsh/5.1.1-1ubuntu2.3 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] flashplugin-nonfree 31.0.0.108ubuntu0.16.04.1 (Accepted)
flashplugin-nonfree (31.0.0.108ubuntu0.16.04.1) xenial-security; urgency=medium * New upstream release (31.0.0.108) - debian/flashplugin-installer.{config,postinst}, debian/post-download-hook: Updated version and sha256sum Date: 2018-09-11 12:51:30.739626+00:00 Changed-By: Chris Coulson Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/flashplugin-nonfree/31.0.0.108ubuntu0.16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-security] flashplugin-nonfree 31.0.0.108ubuntu0.16.04.1 (Accepted)
flashplugin-nonfree (31.0.0.108ubuntu0.16.04.1) xenial-security; urgency=medium * New upstream release (31.0.0.108) - debian/flashplugin-installer.{config,postinst}, debian/post-download-hook: Updated version and sha256sum Date: 2018-09-11 12:51:30.739626+00:00 Changed-By: Chris Coulson https://launchpad.net/ubuntu/+source/flashplugin-nonfree/31.0.0.108ubuntu0.16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/partner/xenial] adobe-flashplugin 1:20180911.1-0ubuntu0.16.04.1 (Accepted)
adobe-flashplugin (1:20180911.1-0ubuntu0.16.04.1) xenial; urgency=medium * New upstream releases (31.0.0.108) adobe-flashplugin (1:20180814.1-0ubuntu1) cosmic; urgency=medium * New upstream releases (30.0.0.154) Date: 2018-09-11 12:52:21.505437+00:00 Changed-By: Chris Coulson Signed-By: Andy Whitcroft https://launchpad.net/ubuntu/+source/adobe-flashplugin/1:20180911.1-0ubuntu0.16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/partner/xenial-proposed] adobe-flashplugin 1:20180911.1-0ubuntu0.16.04.1 (Accepted)
adobe-flashplugin (1:20180911.1-0ubuntu0.16.04.1) xenial; urgency=medium * New upstream releases (31.0.0.108) Date: Mon, 10 Sep 2018 21:52:42 +0100 Changed-By: Chris Coulson Maintainer: DL-Flash Player Ubuntu https://launchpad.net/ubuntu/+source/adobe-flashplugin/1:20180911.1-0ubuntu0.16.04.1 Format: 1.8 Date: Mon, 10 Sep 2018 21:52:42 +0100 Source: adobe-flashplugin Binary: adobe-flashplugin adobe-flash-properties-gtk adobe-flash-properties-kde Architecture: source Version: 1:20180911.1-0ubuntu0.16.04.1 Distribution: xenial Urgency: medium Maintainer: DL-Flash Player Ubuntu Changed-By: Chris Coulson Description: adobe-flash-properties-gtk - GTK+ control panel for Adobe Flash Player plugin adobe-flash-properties-kde - KDE control panel Adobe Flash Player plugin adobe-flashplugin - Adobe Flash Player plugin Changes: adobe-flashplugin (1:20180911.1-0ubuntu0.16.04.1) xenial; urgency=medium . * New upstream releases (31.0.0.108) Checksums-Sha1: 7a12799b412a74a0a64bdf2c1ad12f9547bfa3f4 2051 adobe-flashplugin_20180911.1-0ubuntu0.16.04.1.dsc ce089f79ed1d169c47778ab2e4199f6ce8c57b71 7752 adobe-flashplugin_20180911.1-0ubuntu0.16.04.1.diff.gz 11fc591e029d91d29cac0a9b4544fdba36d9 15234 adobe-flashplugin_20180911.1-0ubuntu0.16.04.1_source.buildinfo Checksums-Sha256: 5c37e2b5e7ae9512a1e864f1abc05c0609ff833ce9bfc67247739942a1793272 2051 adobe-flashplugin_20180911.1-0ubuntu0.16.04.1.dsc a15538267df12be3621a9aa62a2d4edf217fa67ac83bab5ca1a32bcd5a670e40 7752 adobe-flashplugin_20180911.1-0ubuntu0.16.04.1.diff.gz 933b0bdc7f6909048db58e8db4345129eaf44f98dad692e70655ee92ae261d90 15234 adobe-flashplugin_20180911.1-0ubuntu0.16.04.1_source.buildinfo Files: 4d4d5a5ea6198abfda1c6159ca986322 2051 partner/web optional adobe-flashplugin_20180911.1-0ubuntu0.16.04.1.dsc a775e5638466297e0ae5e58f24ca196f 7752 partner/web optional adobe-flashplugin_20180911.1-0ubuntu0.16.04.1.diff.gz cd2e77dc6839e9164f2bb391c9ac4360 15234 partner/web optional adobe-flashplugin_20180911.1-0ubuntu0.16.04.1_source.buildinfo -- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-security] linux-meta-azure-edge 4.15.0.1023.20 (Accepted)
linux-meta-azure-edge (4.15.0.1023.20) xenial; urgency=medium * Bump ABI 4.15.0-1023 Date: 2018-08-29 12:57:12.309668+00:00 Changed-By: Marcelo Cerri Signed-By: Łukasz Zemczak https://launchpad.net/ubuntu/+source/linux-meta-azure-edge/4.15.0.1023.20 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] linux-meta-azure-edge 4.15.0.1023.20 (Accepted)
linux-meta-azure-edge (4.15.0.1023.20) xenial; urgency=medium * Bump ABI 4.15.0-1023 Date: 2018-08-29 12:57:12.309668+00:00 Changed-By: Marcelo Cerri Signed-By: Łukasz Zemczak https://launchpad.net/ubuntu/+source/linux-meta-azure-edge/4.15.0.1023.20 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes