[ubuntu/xenial-updates] firefox 82.0+build2-0ubuntu0.16.04.5 (Accepted)
firefox (82.0+build2-0ubuntu0.16.04.5) xenial; urgency=medium * Silence more GTK style-related assertions - debian/patches/silence-gtk-style-assertions.patch firefox (82.0+build2-0ubuntu0.16.04.4) xenial; urgency=medium * Silence more GTK style-related assertions - debian/patches/silence-gtk-style-assertions.patch firefox (82.0+build2-0ubuntu0.16.04.3) xenial; urgency=medium * Fix a FTBFS with the patch that silences GTK style-related assertions - debian/patches/silence-gtk-style-assertions.patch firefox (82.0+build2-0ubuntu0.16.04.2) xenial; urgency=medium * Silence GTK style-related assertions - debian/patches/silence-gtk-style-assertions.patch firefox (82.0+build2-0ubuntu0.16.04.1) xenial; urgency=medium * New upstream stable release (82.0+build2) [ Rico Tzschichholz ] * Update cbindgen to 0.15.0 - debian/build/create-tarball.py * Update patches - debian/patches/ppc-no-static-sizes.patch - debian/patches/lower-python3-requirement.patch - debian/patches/unity-menubar.patch Date: 2020-10-23 17:23:15.141485+00:00 Changed-By: Olivier Tilloy Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/firefox/82.0+build2-0ubuntu0.16.04.5 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-security] firefox 82.0+build2-0ubuntu0.16.04.5 (Accepted)
firefox (82.0+build2-0ubuntu0.16.04.5) xenial; urgency=medium * Silence more GTK style-related assertions - debian/patches/silence-gtk-style-assertions.patch firefox (82.0+build2-0ubuntu0.16.04.4) xenial; urgency=medium * Silence more GTK style-related assertions - debian/patches/silence-gtk-style-assertions.patch firefox (82.0+build2-0ubuntu0.16.04.3) xenial; urgency=medium * Fix a FTBFS with the patch that silences GTK style-related assertions - debian/patches/silence-gtk-style-assertions.patch firefox (82.0+build2-0ubuntu0.16.04.2) xenial; urgency=medium * Silence GTK style-related assertions - debian/patches/silence-gtk-style-assertions.patch firefox (82.0+build2-0ubuntu0.16.04.1) xenial; urgency=medium * New upstream stable release (82.0+build2) [ Rico Tzschichholz ] * Update cbindgen to 0.15.0 - debian/build/create-tarball.py * Update patches - debian/patches/ppc-no-static-sizes.patch - debian/patches/lower-python3-requirement.patch - debian/patches/unity-menubar.patch Date: 2020-10-23 17:23:15.141485+00:00 Changed-By: Olivier Tilloy Signed-By: Chris Coulson https://launchpad.net/ubuntu/+source/firefox/82.0+build2-0ubuntu0.16.04.5 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] perl 5.22.1-9ubuntu0.9 (Accepted)
perl (5.22.1-9ubuntu0.9) xenial-security; urgency=medium * SECURITY UPDATE: heap buffer overflow in regex compiler - debian/patches/fixes/CVE-2020-10543.patch: prevent integer overflow from nested regex quantifiers in regcomp.c. - CVE-2020-10543 * SECURITY UPDATE: regex intermediate language state corruption - debian/patches/fixes/CVE-2020-10878.patch: extract rck_elide_nothing in embed.fnc, embed.h, proto.h, regcomp.c. - CVE-2020-10878 * SECURITY UPDATE: regex intermediate language state corruption - debian/patches/fixes/CVE-2020-12723.patch: avoid mutating regexp program within GOSUB in embed.fnc, embed.h, proto.h, regcomp.c, t/re/pat.t. - CVE-2020-12723 * debian/patches/fixes/fix_test_2020.patch: fix FTBFS caused by test failing in the year 2020 in cpan/Time-Local/t/Local.t. Date: 2020-10-19 12:09:08.535166+00:00 Changed-By: Marc Deslauriers Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/perl/5.22.1-9ubuntu0.9 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] snapd 2.47.1 (Accepted)
snapd (2.47.1) xenial; urgency=medium
* New upstream release, LP: #1895929
- o/configstate: create /etc/sysctl.d when applying early config
defaults
- cmd/snap-bootstrap/initramfs-mounts: also copy /etc/machine-id for
same IP addr
- packaging/{ubuntu,debian}: add liblzo2-dev as a dependency for
building snapd
- cmd/snap: allow snap help vs --all to diverge purposefully
- snap: snap help output refresh
snapd (2.47) xenial; urgency=medium
* New upstream release, LP: #1895929
- tests: fix nested core20 shellcheck bug
- many/apparmor: adjust rule for reading apparmor profile for new
kernel
- snap-repair: add uc20 support
- cmd/snap/auto-import: stop importing system user assertions from
initramfs mnts
- cmd/s-b/initramfs-mounts: use ConfigureTargetSystem for install,
recover modes
- gadget: resolve device mapper devices for fallback device lookup
- secboot: add boot manager profile to pcr protection profile
- sysconfig,o/devicestate: mv DisableNoCloud to
DisableAfterLocalDatasourcesRun
- tests: make gadget-reseal more robust
- tests: skip nested images pre-configuration by default
- tests: fix for basic20 test running on external backend and rpi
- tests: improve kernel reseal test
- boot: adjust comments, naming, log success around reseal
- tests/nested, fakestore: changes necessary to run nested uc20
signed/secured tests
- tests: add nested core20 gadget reseal test
- boot/modeenv: track unknown keys in Read and put back into modeenv
during Write
- interfaces/process-control: add sched_setattr to seccomp
- boot: with unasserted kernels reseal if there's a hint modeenv
changed
- client: bump the default request timeout to 120s
- configcore: do not error in console-conf.disable for install mode
- boot: streamline bootstate20.go reseal and tests changes
- boot: reseal when changing kernel
- cmd/snap/model: specify grade in the model command output
- tests: simplify
repack_snapd_snap_with_deb_content_and_run_mode_first_boot_tweaks
- test: improve logging in nested tests
- nested: add support to telnet to serial port in nested VM
- secboot: use the snapcore/secboot native recovery key type
- tests/lib/nested.sh: use more focused cloud-init config for uc20
- tests/lib/nested.sh: wait for the tpm socket to exist
- spread.yaml, tests/nested: misc changes
- tests: add more checks to disk space awareness spread test
- tests: disk space awareness spread test
- boot: make MockUC20Device use a model and MockDevice more
realistic
- boot,many: reseal only when meaningful and necessary
- tests/nested/core20/kernel-failover: add test for failed refresh
of uc20 kernel
- tests: fix nested to work with qemu and kvm
- boot: reseal when updating boot assets
- tests: fix snap-routime-portal-info test
- boot: verify boot chain file in seal and reseal tests
- tests: use full path to test-snapd-refresh.version binary
- boot: store boot chains during install, helper for checking
whether reseal is needed
- boot: add call to reseal an existing key
- boot: consider boot chains with unrevisioned kernels incomparable
- overlord: assorted typos and miscellaneous changes
- boot: group SealKeyModelParams by model, improve testing
- secboot: adjust parameters to buildPCRProtectionProfile
- strutil: add SortedListsUniqueMergefrom the doc comment:
- snap/naming: upgrade TODO to TODO:UC20
- secboot: add call to reseal an existing key
- boot: in seal.go adjust error message and function names
- o/snapstate: check available disk space in RemoveMany
- boot: build bootchains data for sealing
- tests: remove "set -e" from function only shell libs
- o/snapstate: disk space check on UpdateMany
- o/snapstate: disk space check with snap update
- snap: implement new `snap reboot` command
- boot: do not reorder boot assets when generating predictable boot
chains and other small tweaks
- tests: some fixes and improvements for nested execution
- tests/core/uc20-recovery: fix check for at least specific calls to
mock-shutdown
- boot: be consistent using bootloader.Role* consts instead of
strings
- boot: helper for generating secboot load chains from a given boot
asset sequence
- boot: tweak boot chains to support a list of kernel command lines,
keep track of model and kernel boot file
- boot,secboot: switch to expose and use snapcore/secboot load event
trees
- tests: use `nested_exec` in core{20,}-early-config test
- devicestate: enable cloud-init on uc20 for grade signed and
secured
- boot: add "rootdir" to baseBootenvSuite and use in tests
- tests/lib/cla_check.py: don't allow users.noreply.github.com
commits to pass CLA
- boot:
[ubuntu/xenial-security] perl 5.22.1-9ubuntu0.9 (Accepted)
perl (5.22.1-9ubuntu0.9) xenial-security; urgency=medium * SECURITY UPDATE: heap buffer overflow in regex compiler - debian/patches/fixes/CVE-2020-10543.patch: prevent integer overflow from nested regex quantifiers in regcomp.c. - CVE-2020-10543 * SECURITY UPDATE: regex intermediate language state corruption - debian/patches/fixes/CVE-2020-10878.patch: extract rck_elide_nothing in embed.fnc, embed.h, proto.h, regcomp.c. - CVE-2020-10878 * SECURITY UPDATE: regex intermediate language state corruption - debian/patches/fixes/CVE-2020-12723.patch: avoid mutating regexp program within GOSUB in embed.fnc, embed.h, proto.h, regcomp.c, t/re/pat.t. - CVE-2020-12723 * debian/patches/fixes/fix_test_2020.patch: fix FTBFS caused by test failing in the year 2020 in cpan/Time-Local/t/Local.t. Date: 2020-10-19 12:09:08.535166+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/perl/5.22.1-9ubuntu0.9 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
