flashplugin-nonfree (11.2.202.359ubuntu0.14.04.1) trusty-security;
urgency=medium
* New upstream release 11.2.202.359
- debian/flashplugin-installer.{config,postinst},
debian/post-download-hook: Updated version and sha256sum
Date: 2014-05-13 13:39:13.308832+00:00
Changed-By: Marc
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/libxfont/1:1.4.7-1ubuntu0.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman
/login-common/ssl-proxy.h.
- CVE-2014-3430
Date: 2014-05-14 17:57:16.169300+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/dovecot/1:2.2.9-1ubuntu2.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes
:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/libxml2/2.9.1+dfsg1-3ubuntu4.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com
network-manager-applet (0.9.8.8-0ubuntu4.1) trusty; urgency=medium
* debian/patches/11-user-connections.patch: updated to fix importing VPN
connections. (LP: #1294899)
Date: Fri, 16 May 2014 17:14:58 -0400
Changed-By: Marc Deslauriers marc.deslauri...@ubuntu.com
Maintainer: Ubuntu
17:04:21.584035+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/pidgin/1:2.10.9-0ubuntu3.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https
:18.468076+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/lxml/3.3.3-1ubuntu0.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com
-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/gnutls26/2.12.23-12ubuntu2.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo
:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/chkrootkit/0.49-4.1ubuntu1.14.04.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com
* SECURITY UPDATE: denial of service via ECDH null session cert
- debian/patches/CVE-2014-3470.patch: check session_cert is not NULL
before dereferencing it in ssl/s3_clnt.c.
- CVE-2014-3470
Date: 2014-06-02 19:03:12.908623+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/libxml2/2.9.1+dfsg1-3ubuntu4.2
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo
Date: 2014-06-09 17:18:19.572189+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/dpkg/1.17.5ubuntu5.3
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https
:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/json-c/0.11-3ubuntu1.2
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman
:30:12.420805+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/openssl/1.0.1f-1ubuntu2.3
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https
-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/libxml2/2.9.1+dfsg1-3ubuntu4.3
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman
.
- CVE-2014-0478
Date: 2014-06-13 17:30:11.876008+00:00
Changed-By: Michael Vogt michael.v...@canonical.com
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/apt/1.0.1ubuntu2.1
Sorry, changesfile not available.--
Trusty-changes mailing list
of invalidated pointers (LP: #1219245)
* add VBA macro patch
* use internal npapi as this breaks with Firefox 30
Date: 2014-06-18 08:39:12.056266+00:00
Changed-By: Björn Michaelsen bjoern.michael...@canonical.com
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu
pointers (LP: #1219245)
* add VBA macro patch
* use internal npapi as this breaks with Firefox 30
Date: 2014-06-18 08:31:11.963601+00:00
Changed-By: Björn Michaelsen bjoern.michael...@canonical.com
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty
-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/openssl/1.0.1f-1ubuntu2.4
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/trusty
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/php5/5.5.9+dfsg-1ubuntu4.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman
-By: Andrew Starr-Bochicchio a.star...@gmail.com
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/libtorrent-rasterbar/0.16.13-1ubuntu2.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify
working with the more restrictive permissions.
Date: 2014-06-25 17:03:26.614733+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/php5/5.5.9+dfsg-1ubuntu4.2
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes
in
source3/libsmb/clirap.c, source3/smbd/lanman.c.
- CVE-2014-3493
Date: 2014-06-25 16:59:17.080842+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/samba/2:4.1.6+dfsg-1ubuntu2.14.04.2
Sorry, changesfile not available.--
Trusty
-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/gnupg2/2.0.22-3ubuntu1.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/trusty
-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/gnupg/1.4.16-1ubuntu2.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/trusty
/patches/Mumble-SA-2014-006.patch: patch from upstream
- CVE-2014-3756
Date: 2014-07-02 12:33:12.534877+00:00
Changed-By: Felix Geyer debfx-...@fobos.de
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/mumble/1.2.4-0.2ubuntu1.1
Sorry
if RSA
decryption fails to avoid leaking timing information
- debian/patches/CVE-2012-0884-extra.patch: detect symmetric crypto
errors in PKCS7_decrypt and initialize tkeylen properly when
encrypting CMS messages.
- CVE-2012-0884
[ Marc Deslauriers ]
* debian/patches
/pr/tests/Makefile.in, nspr/pr/tests/prfdbl.c.
- CVE-2014-1545
Date: 2014-06-27 15:26:12.241719+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/nspr/2:4.10.2-1ubuntu1.1
Sorry, changesfile not available.--
Trusty-changes mailing list
/dbus-message.c.
- CVE-2014-3533
Date: 2014-07-03 18:53:13.934682+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/dbus/1.6.18-0ubuntu4.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/xen/4.4.0-0ubuntu5.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/trusty
.
- CVE-2014-4721
Date: 2014-07-07 16:23:13.819648+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/php5/5.5.9+dfsg-1ubuntu4.3
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify
+00:00
Changed-By: Reinhard Tartler siret...@gmail.com
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/libav/6:9.14-0ubuntu0.14.04.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings
manpage in doc/magic.man.
- CVE-2014-3538
* debian/patches/commands-strength.patch: reduce strength of awk rule so
it doesn't get priority over perl scripts.
Date: 2014-07-10 17:34:12.573683+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty
invalid blocks in
libtransmission/peer-msgs.c.
- CVE-2014-4909
Date: 2014-07-11 18:48:12.441482+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/transmission/2.82-1.1ubuntu3.1
Sorry, changesfile not available.--
Trusty-changes
:31:36.135680+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/miniupnpc/1.6-3ubuntu2.14.04.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https
-2014-4260
Date: 2014-07-16 19:25:30.738762+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/mysql-5.5/5.5.38-0ubuntu0.14.04.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings
in lib/LWP/Protocol/https.pm.
- CVE-2014-3230
* debian/patches/fix-https-proxy: updated to work with security fix.
* debian/patches/cert.patch: refreshed
Date: 2014-06-27 20:33:12.123113+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/cups/1.7.2-0ubuntu1.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo
* SECURITY UPDATE: denial of service via NULL value
- debian/patches/CVE-2014-3469.patch: check for NULLs in lib/element.c.
- CVE-2014-3469
Date: 2014-07-18 20:11:12.603662+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/libtasn1-6
- debian/patches/CVE-2014-0231.patch: added new configuration option
CGIDScriptTimeout in modules/generators/mod_cgid.c.
- CVE-2014-0231
Date: 2014-07-22 14:29:12.135485+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/apache2
/lzo1x_d.ch, src/lzo2a_d.ch.
- CVE-2014-4607
Date: 2014-07-11 13:27:16.984485+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/lzo2/2.06-1.2ubuntu1.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes
/tomcat/util/buf/Ascii.java, added test to
test/org/apache/tomcat/util/buf/TestAscii.java.
- CVE-2014-0099
Date: 2014-07-24 20:33:13.075001+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/tomcat7/7.0.52-1ubuntu0.1
Sorry
: 2014-07-30 19:42:35.079564+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/unity/7.2.2+14.04.20140714-0ubuntu1.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings
upstream
* Refresh make_libkdeinit4_private.diff to remove fuzz
Date: 2014-07-30 23:32:29.847843+00:00
Changed-By: Felix Geyer debfx-...@fobos.de
Maintainer: Kubuntu Members kubuntu-de...@lists.ubuntu.com
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu
-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/samba/2:4.1.6+dfsg-1ubuntu2.14.04.3
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman
/spawn_int.h, added test to posix/tst-spawn.c.
- CVE-2014-4043
Date: 2014-07-28 17:12:12.405039+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/eglibc/2.19-0ubuntu6.1
Sorry, changesfile not available.--
Trusty-changes mailing list
kubuntu-de...@lists.ubuntu.com
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/krfb/4:4.13.0-0ubuntu1.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https
13:48:12.675544+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/gpgme1.0/1.4.3-0.1ubuntu5.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https
message
- debian/patches/CVE-2014-5139.patch: fix SRP authentication and make
sure ciphersuite is set up correctly in ssl/s3_clnt.c, ssl/ssl_lib.c,
ssl/s3_lib.c, ssl/ssl.h, ssl/ssl_ciph.c, ssl/ssl_locl.h.
- CVE-2014-5139
Date: 2014-08-07 13:37:12.615589+00:00
Changed-By: Marc
av_log with an unchecked double to enum conversion
- eamad: use the bytestream2 API instead of AV_RL (CVE-2013-0851)
Date: 2014-08-10 18:10:19.695614+00:00
Changed-By: Reinhard Tartler siret...@gmail.com
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty
/ldap_principal2.c
- CVE-2014-4345
Date: 2014-08-08 19:21:12.745040+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/krb5/1.12+dfsg-2ubuntu4.2
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
python-pycadf (0.4.1-0ubuntu1.1) trusty-security; urgency=medium
* SECURITY UPDATE: X_AUTH_TOKEN disclosure
- debian/patches/CVE-2014-4615.patch: filter out token in
pycadf/middleware/notifier.py.
- CVE-2014-4615
Date: 2014-07-09 19:10:12.544457+00:00
Changed-By: Marc Deslauriers
:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/serf/1.3.3-1ubuntu0.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman
: 2014-08-13 17:03:13.843541+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/subversion/1.8.8-1ubuntu3.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe
+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/lua5.1/5.1.5-5ubuntu0.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman
.patch: use sliding window method for
exponentiation algorithm in mpi/mpi-pow.c.
- CVE-2014-5270
Date: 2014-08-19 13:38:12.438356+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/libgcrypt11/1.5.3-2ubuntu4.1
Sorry, changesfile
-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/procmail/3.22-21ubuntu0.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/trusty
-5030
- CVE-2014-5031
* debian/patches/cups-restore-access-to-logfiles.patch: fix regressions
caused by recent security updates by allowing access to cupsd.conf and
the log files. (LP: #1349387)
Date: 2014-09-05 20:10:16.067132+00:00
Changed-By: Marc Deslauriers marc.deslauri
ovmf package for qemu-system-x86 to support UEFI boot
(Closes: #714249)
* switch from sdl1 to sdl2 (build-depend on libsdl2-dev)
* output last 50 lines of config.log in case configure failed
Date: 2014-08-12 15:33:13.096633+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
in nss/lib/pk11wrap/pk11cert.c.
- CVE-2014-1544
Date: 2014-09-09 12:14:49.348244+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/nss/2:3.15.4-1ubuntu7.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes
:16.797470+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/curl/7.35.0-1ubuntu2.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com
,tests}.py.
- debian/patches/CVE-2014-0483-bug23431.patch: regression fix in
django/contrib/admin/options.py, added tests to
tests/admin_views/{admin,models,tests}.py.
- CVE-2014-0483
Date: 2014-09-10 19:25:17.309917+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
:16.135329+00:00
Changed-By: Michael Vogt michael.v...@canonical.com
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/apt/1.0.1ubuntu2.3
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings
.
- debian/patches/x32_support: included upstream.
- debian/patches/CVE-2014-1545.patch: included upstream.
* debian/libnspr4.symbols: updated for new version.
Date: 2014-09-19 13:54:04.510872+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty
.
* debian/patches/38_ppc64le.patch: new patch for ppc64le support.
* debian/libnss3.symbols: updated for new version.
* debian/rules: USE_X32 instead of USE_x32.
Date: 2014-09-19 14:33:16.949061+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty
13:43:36.390736+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/nginx/1.4.6-1ubuntu3.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https
max_incomplete_connections in bus/bus.*, bus/connection.*,
dbus/dbus-server-protected.h, dbus/dbus-server.c, dbus/dbus-watch.*.
- CVE-2014-3639
Date: 2014-09-17 15:11:15.731475+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/dbus
the apt state directory
* Fix regression when Dir::state::lists is set to a relative path
* Fix regression when cdrom: sources got rewriten by apt-cdrom add
Date: 2014-09-23 12:01:13.573820+00:00
Changed-By: Michael Vogt michael.v...@canonical.com
Signed-By: Marc Deslauriers marc.deslauri
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/bash/4.3-7ubuntu1.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo
nss (2:3.17.1-0ubuntu0.14.04.1) trusty-security; urgency=medium
* SECURITY UPDATE: update to 3.17.1
- see USN-2361-1
* debian/libnss3.symbols: updated for new version.
* debian/patches/38_ppc64le.patch: removed, upstream.
Date: 2014-09-24 12:06:13.208646+00:00
Changed-By: Marc
bash (4.3-7ubuntu1.2) trusty-security; urgency=medium
* SECURITY UPDATE: incomplete fix for CVE-2014-6271
- debian/patches/CVE-2014-7169.diff: fix logic in parse.y.
- CVE-2014-7169
Date: 2014-09-25 06:45:58.433850+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https
bash (4.3-7ubuntu1.3) trusty-security; urgency=medium
* Updated debian/patches/CVE-2014-7169.diff to also patch y.tab.c in
case it doesn't get regenerated when built (LP: #1374207)
Date: 2014-09-26 01:38:12.596290+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https
and suffixes for function exports
- debian/patches/variables-affix.diff: add prefixes and suffixes in
variables.c.
Date: 2014-09-27 07:56:17.451924+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/bash/4.3-7ubuntu1.4
Sorry
of service and possible code execution via
stack overflows in File Transfer feature
- debian/patches/CVE-2014-6055.patch: check sizes in
libvncserver/rfbserver.c.
- CVE-2014-6055
Date: 2014-09-25 18:12:18.398388+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/libvirt/1.2.2-0ubuntu13.1.5
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo
-2014-7188 / XSA-108
* x86/HVM: properly bound x2APIC MSR range
Date: 2014-09-30 19:12:12.538816+00:00
Changed-By: Stefan Bader stefan.ba...@canonical.com
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/xen/4.4.0-0ubuntu5.2
Sorry
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/apt/1.0.1ubuntu2.5
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/trusty
in jscript.c.
- CVE-2014-7204
Date: 2014-10-07 13:44:17.780149+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/exuberant-ctags/1:5.9~svn20110310-7ubuntu0.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty
:
- debian/patches/CVE-2014-6271.diff
- debian/patches/CVE-2014-7169.diff
- debian/patches/variables-affix.diff
- debian/patches/CVE-2014-718x.diff
Date: 2014-10-07 19:09:17.996371+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty
-02 15:54:44.196169+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/rsyslog/7.4.4-1ubuntu2.3
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https
.
- CVE-2014-1829
* SECURITY UPDATE: Proxy-Authorization header disclosure on redirect
- debian/patches/CVE-2014-1830.patch: also strip proxy headers in
requests/sessions.py, added test to test_requests.py.
- CVE-2014-1830
Date: 2014-10-10 12:28:17.266455+00:00
Changed-By: Marc
/utils/os_win32.c,
use instead of system() in wpa_supplicant/wpa_cli.c,
hostapd/hostapd_cli.c.
- CVE-2014-3686
Date: 2014-10-10 13:47:20.262214+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/wpa/2.1-0ubuntu1.1
Sorry
mysql-5.5 (5.5.40-0ubuntu0.14.04.1) trusty-security; urgency=medium
* SECURITY UPDATE: Update to 5.5.40 to fix security issues (LP: #1379903)
Date: 2014-10-10 21:53:44.612792+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/mysql-5.5
: Mon, 20 Oct 2014 10:30:21 -0400
Changed-By: Marc Deslauriers marc.deslauri...@ubuntu.com
Maintainer: Ubuntu Desktop Team ubuntu-desk...@lists.ubuntu.com
https://launchpad.net/ubuntu/trusty/+source/xchat-gnome/1:0.30.0~git20131003.d20b8d+really20110821-0.2ubuntu12.1
Format: 1.8
Date: Mon, 20 Oct
Changed-By: Marc Deslauriers marc.deslauri...@ubuntu.com
Maintainer: Ubuntu Developers ubuntu-devel-disc...@lists.ubuntu.com
https://launchpad.net/ubuntu/trusty/+source/xchat/2.8.8-7.1ubuntu5.1
Format: 1.8
Date: Mon, 20 Oct 2014 11:55:26 -0400
Source: xchat
Binary: xchat xchat-common
Architecture: source
pollinate (4.7-0ubuntu1.2) trusty-security; urgency=medium
* debian/patches/1381359.patch: LP: #1381359
- update expiring SSL certificate
Date: 2014-10-22 14:28:20.079763+00:00
Changed-By: Dustin Kirkland dustin.kirkl...@gmail.com
Signed-By: Marc Deslauriers marc.deslauri
libxml2 (2.9.1+dfsg1-3ubuntu4.4) trusty-security; urgency=medium
* SECURITY UPDATE: denial of service via entity expansion
- debian/patches/CVE-2014-3660.patch: added additional tests to
parser.c.
- CVE-2014-3660
Date: 2014-10-16 20:15:15.344301+00:00
Changed-By: Marc Deslauriers
-2014-3698
Date: 2014-10-27 16:40:22.859073+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/pidgin/1:2.10.9-0ubuntu3.2
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings
:42.43+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/php5/5.5.9+dfsg-1ubuntu4.5
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com
, updated
documentation in doc/wget.texi.
- CVE-2014-4877
Date: 2014-10-30 14:31:18.293524+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/wget/1.15-1ubuntu1.14.04.1
Sorry, changesfile not available.--
Trusty-changes mailing list
via XML expansion
- debian/patches/CVE-2014-8080.patch: limit expansions in
lib/rexml/entity.rb, added tests to test/rexml/test_document.rb,
test/rexml/test_entity.rb.
- CVE-2014-8080
Date: 2014-11-03 18:54:12.164529+00:00
Changed-By: Marc Deslauriers marc.deslauri
* SECURITY UPDATE: denial of service via XML expansion
- debian/patches/CVE-2014-8080.patch: limit expansions in
lib/rexml/entity.rb, added tests to test/rexml/test_document.rb,
test/rexml/test_entity.rb.
- CVE-2014-8080
Date: 2014-11-03 19:03:11.695755+00:00
Changed-By: Marc
-04 18:43:14.369545+00:00
Changed-By: Björn Michaelsen bjoern.michael...@canonical.com
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/libreoffice-l10n/1:4.2.7-0ubuntu1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty
:41:14.106058+00:00
Changed-By: Björn Michaelsen bjoern.michael...@canonical.com
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/trusty/+source/libreoffice/1:4.2.7-0ubuntu1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes
/Makefile.inc, src/tool_setup.h, src/tool_strdup.{c,h}.
- CVE-2014-3707
Date: 2014-11-06 17:53:13.877134+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/+source/curl/7.35.0-1ubuntu2.2
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty
- Add a note in README.Debian.
Date: 2014-11-11 14:18:38.328115+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/+source/libvirt/1.2.2-0ubuntu13.1.7
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
* reload kvm_intel if needed to set the nested=Y flag (LP: #1324174)
Date: 2014-11-11 22:03:11.408497+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/+source/qemu/2.0.0+dfsg-2ubuntu1.7
Sorry, changesfile not available.--
Trusty-changes mailing
enigmail (2:1.7.2-0ubuntu0.14.04.1) trusty-security; urgency=medium
* SECURITY UPDATE: wrong encryption when only BCC is used
- New upstream release v1.7.2
- CVE-2014-5369
Date: 2014-11-14 13:48:35.640999+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https
-...@fobos.de
Signed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/+source/quassel/0.10.0-0ubuntu2.1
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman
/test_document.rb.
- CVE-2014-8090
Date: 2014-11-19 20:13:11.757165+00:00
Changed-By: Marc Deslauriers marc.deslauri...@canonical.com
https://launchpad.net/ubuntu/+source/ruby2.0/2.0.0.484-1ubuntu2.2
Sorry, changesfile not available.--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify
101 - 200 of 923 matches
Mail list logo
