[ubuntu/xenial-updates] golang-github-seccomp-libseccomp-golang 0.0~git20150813.0.1b506fc-2+deb9u1build0.16.04.1 (Accepted)
golang-github-seccomp-libseccomp-golang (0.0~git20150813.0.1b506fc-2+deb9u1build0.16.04.1) xenial-security; urgency=medium * fake sync from Debian Date: 2020-10-07 18:56:18.504944+00:00 Changed-By: Mike Salvatore Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/golang-github-seccomp-libseccomp-golang/0.0~git20150813.0.1b506fc-2+deb9u1build0.16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-security] golang-github-seccomp-libseccomp-golang 0.0~git20150813.0.1b506fc-2+deb9u1build0.16.04.1 (Accepted)
golang-github-seccomp-libseccomp-golang (0.0~git20150813.0.1b506fc-2+deb9u1build0.16.04.1) xenial-security; urgency=medium * fake sync from Debian Date: 2020-10-07 18:56:18.504944+00:00 Changed-By: Mike Salvatore https://launchpad.net/ubuntu/+source/golang-github-seccomp-libseccomp-golang/0.0~git20150813.0.1b506fc-2+deb9u1build0.16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] livecd-rootfs 2.408.60 (Accepted)
livecd-rootfs (2.408.60) xenial; urgency=medium [ Cody Shepherd ] * Install grub-legacy-ec2 for all ubuntu-cpc (LP: #1888575) Date: 2020-09-16 20:43:08.868058+00:00 Changed-By: Steve Langasek https://launchpad.net/ubuntu/+source/livecd-rootfs/2.408.60 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] ubuntu-meta 1.361.6 (Accepted)
ubuntu-meta (1.361.6) xenial; urgency=medium * Refreshed dependencies; LP: #1888575. * Added motd-news-config to server (via germinate now rather than hard-coding, since germinate has managed to pick it up) * Removed grub-legacy-ec2 from server [amd64 arm64 armhf i386 powerpc ppc64el] Date: 2020-09-16 22:01:09.619882+00:00 Changed-By: Steve Langasek https://launchpad.net/ubuntu/+source/ubuntu-meta/1.361.6 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] newsbeuter 2.9-3ubuntu0.1 (Accepted)
newsbeuter (2.9-3ubuntu0.1) xenial-security; urgency=medium * SECURITY UPDATE: Remote code execution vulnerabilities - debian/patches/23-fix-RCE-on-bookmark.patch: Fix a RCE vulnerability on the bookmark command. - debian/patches/25-fix-RCE-in-podbeuter.patch: Work around shell code in podcast names. - CVE-2017-12904 - CVE-2017-14500 * SECURITY UPDATE: Other fixes - debian/patches/01-typos.patch: Fix a few typos - debian/patches/02-new-issue-tracker.patch: Change the docs to reference the new issue tracker. - debian/patches/04-cache-deletion-with-one-feed.patch: Fixes a bug that deleted the cache if there is one feed configured. - debian/patches/07-json-object-get.patch: Replace deprecated function calls. - debian/patches/08-feeds-marked-unread.patch: Fix a bug that marked posts unread. - debian/patches/09-config-parser-off-by-one.patch: Don't fail if 3 arguments are passed to highlight. - debian/patches/10-a2x-warnings.patch: Fix a2x warning when generating the manpages. - debian/patches/11-query-feed-tokenization.patch: Fix age filter for query feeds not being parsed properly. - debian/patches/12-highlight-article-priority.patch: Fix highlight-article not working with unread items. - debian/patches/13-dont-include-compilation-time.patch: Using __DATE__ or __TIME__ breaks reproducible builds. - debian/patches/14-handle-urls-files-lacking-eol.patch: Properly handle urls files that lack the EOL character at the end. - debian/patches/15-dont-skip-ignored.patch: Fix a bug that skipped items while checking against ignore rules. - debian/patches/16-fix-invalid-pointers.patch: Fix a use after free in the rss parser. - debian/patches/17-dont-ignore-self-closing-tags.patch: Don't ignore self closing HTML break elements. - debian/patches/18-ssl-verify.patch: Add a config option to control SSL verification. - debian/patches/19-clean-doc.patch: Clean the docs before compiling. - debian/patches/20-prevent-http-header-reset.patch: Fix authentication issues when using external APIs. - debian/patches/21-parse-h5-h6-html-headers.patch: Fix h5 and h6 html headers not being handled. - debian/patches/22-use-pkg-config-to-search-for-ncursesw.patch: Use pkg-config to search for ncursesw. - debian/patches/24-link-binaries-order.patch: Link binaries in the same order to avoid random reproducability failures. - debian/patches/101-macro-example.patch: Fix a mistake in an example macro. - debian/patches/102-color-config-example.patch: Use the actual color commands in the docs to improve readablility. - debian/patches/201-german-l10n-revision.patch: Revised german translation. Date: 2020-10-05 19:48:21.251049+00:00 Changed-By: Paulo Flabiano Smorigo Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/newsbeuter/2.9-3ubuntu0.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-security] newsbeuter 2.9-3ubuntu0.1 (Accepted)
newsbeuter (2.9-3ubuntu0.1) xenial-security; urgency=medium * SECURITY UPDATE: Remote code execution vulnerabilities - debian/patches/23-fix-RCE-on-bookmark.patch: Fix a RCE vulnerability on the bookmark command. - debian/patches/25-fix-RCE-in-podbeuter.patch: Work around shell code in podcast names. - CVE-2017-12904 - CVE-2017-14500 * SECURITY UPDATE: Other fixes - debian/patches/01-typos.patch: Fix a few typos - debian/patches/02-new-issue-tracker.patch: Change the docs to reference the new issue tracker. - debian/patches/04-cache-deletion-with-one-feed.patch: Fixes a bug that deleted the cache if there is one feed configured. - debian/patches/07-json-object-get.patch: Replace deprecated function calls. - debian/patches/08-feeds-marked-unread.patch: Fix a bug that marked posts unread. - debian/patches/09-config-parser-off-by-one.patch: Don't fail if 3 arguments are passed to highlight. - debian/patches/10-a2x-warnings.patch: Fix a2x warning when generating the manpages. - debian/patches/11-query-feed-tokenization.patch: Fix age filter for query feeds not being parsed properly. - debian/patches/12-highlight-article-priority.patch: Fix highlight-article not working with unread items. - debian/patches/13-dont-include-compilation-time.patch: Using __DATE__ or __TIME__ breaks reproducible builds. - debian/patches/14-handle-urls-files-lacking-eol.patch: Properly handle urls files that lack the EOL character at the end. - debian/patches/15-dont-skip-ignored.patch: Fix a bug that skipped items while checking against ignore rules. - debian/patches/16-fix-invalid-pointers.patch: Fix a use after free in the rss parser. - debian/patches/17-dont-ignore-self-closing-tags.patch: Don't ignore self closing HTML break elements. - debian/patches/18-ssl-verify.patch: Add a config option to control SSL verification. - debian/patches/19-clean-doc.patch: Clean the docs before compiling. - debian/patches/20-prevent-http-header-reset.patch: Fix authentication issues when using external APIs. - debian/patches/21-parse-h5-h6-html-headers.patch: Fix h5 and h6 html headers not being handled. - debian/patches/22-use-pkg-config-to-search-for-ncursesw.patch: Use pkg-config to search for ncursesw. - debian/patches/24-link-binaries-order.patch: Link binaries in the same order to avoid random reproducability failures. - debian/patches/101-macro-example.patch: Fix a mistake in an example macro. - debian/patches/102-color-config-example.patch: Use the actual color commands in the docs to improve readablility. - debian/patches/201-german-l10n-revision.patch: Revised german translation. Date: 2020-10-05 19:48:21.251049+00:00 Changed-By: Paulo Flabiano Smorigo https://launchpad.net/ubuntu/+source/newsbeuter/2.9-3ubuntu0.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] vino 3.8.1-0ubuntu9.3 (Accepted)
vino (3.8.1-0ubuntu9.3) xenial-security; urgency=medium * SECURITY UPDATE: DoS via unchecked malloc - debian/patches/CVE-2014-6053.patch: check malloc() return value in server/libvncserver/rfbserver.c. - CVE-2014-6053 * SECURITY UPDATE: client cut length issue - debian/patches/CVE-2018-7225.patch: limit client cut text length to 1 MB in server/libvncserver/rfbserver.c. - CVE-2018-7225 * SECURITY UPDATE: information disclosure via memory leak - debian/patches/CVE-2019-15681.patch: don't leak stack memory to the remote in server/libvncserver/rfbserver.c. - CVE-2019-15681 * SECURITY UPDATE: NULL pointer dereference - debian/patches/CVE-2020-14397.patch: add missing NULL pointer checks in server/libvncserver/rfbregion.c, server/libvncserver/rfbserver.c. - CVE-2020-14397 * SECURITY UPDATE: out-of-bounds access via encodings - debian/patches/CVE-2020-1440x.patch: prevent OOB accesses in server/libvncserver/corre.c, server/libvncserver/hextile.c, server/libvncserver/rre.c. - CVE-2020-14402 - CVE-2020-14403 - CVE-2020-14404 Date: 2020-10-06 15:24:18.332730+00:00 Changed-By: Marc Deslauriers Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/vino/3.8.1-0ubuntu9.3 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-security] vino 3.8.1-0ubuntu9.3 (Accepted)
vino (3.8.1-0ubuntu9.3) xenial-security; urgency=medium * SECURITY UPDATE: DoS via unchecked malloc - debian/patches/CVE-2014-6053.patch: check malloc() return value in server/libvncserver/rfbserver.c. - CVE-2014-6053 * SECURITY UPDATE: client cut length issue - debian/patches/CVE-2018-7225.patch: limit client cut text length to 1 MB in server/libvncserver/rfbserver.c. - CVE-2018-7225 * SECURITY UPDATE: information disclosure via memory leak - debian/patches/CVE-2019-15681.patch: don't leak stack memory to the remote in server/libvncserver/rfbserver.c. - CVE-2019-15681 * SECURITY UPDATE: NULL pointer dereference - debian/patches/CVE-2020-14397.patch: add missing NULL pointer checks in server/libvncserver/rfbregion.c, server/libvncserver/rfbserver.c. - CVE-2020-14397 * SECURITY UPDATE: out-of-bounds access via encodings - debian/patches/CVE-2020-1440x.patch: prevent OOB accesses in server/libvncserver/corre.c, server/libvncserver/hextile.c, server/libvncserver/rre.c. - CVE-2020-14402 - CVE-2020-14403 - CVE-2020-14404 Date: 2020-10-06 15:24:18.332730+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/vino/3.8.1-0ubuntu9.3 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
