[ubuntu/xenial-updates] chromium-browser 63.0.3239.84-0ubuntu0.16.04.1 (Accepted)

chromium-browser (63.0.3239.84-0ubuntu0.16.04.1) xenial; urgency=medium * Upstream release: 63.0.3239.84 - CVE-2017-15407: Out of bounds write in QUIC. - CVE-2017-15408: Heap buffer overflow in PDFium. - CVE-2017-15409: Out of bounds write in Skia. - CVE-2017-15410: Use after fre

[ubuntu/xenial-updates] openssl 1.0.2g-1ubuntu4.10 (Accepted)

openssl (1.0.2g-1ubuntu4.10) xenial-security; urgency=medium * SECURITY UPDATE: Read/write after SSL object in error state - debian/patches/CVE-2017-3737-pre.patch: add test/ssltestlib.*, add to test/Makefile. - debian/patches/CVE-2017-3737-1.patch: don't allow read/write after

[ubuntu/xenial-security] chromium-browser 63.0.3239.84-0ubuntu0.16.04.1 (Accepted)

chromium-browser (63.0.3239.84-0ubuntu0.16.04.1) xenial; urgency=medium * Upstream release: 63.0.3239.84 - CVE-2017-15407: Out of bounds write in QUIC. - CVE-2017-15408: Heap buffer overflow in PDFium. - CVE-2017-15409: Out of bounds write in Skia. - CVE-2017-15410: Use after fre

[ubuntu/xenial-security] openssl 1.0.2g-1ubuntu4.10 (Accepted)

openssl (1.0.2g-1ubuntu4.10) xenial-security; urgency=medium * SECURITY UPDATE: Read/write after SSL object in error state - debian/patches/CVE-2017-3737-pre.patch: add test/ssltestlib.*, add to test/Makefile. - debian/patches/CVE-2017-3737-1.patch: don't allow read/write after

[ubuntu/xenial-updates] debian-installer-utils 1.113ubuntu1.16.04.1 (Accepted)

debian-installer-utils (1.113ubuntu1.16.04.1) xenial; urgency=medium * Make sure udevd internal state is up-to-date before calling trigger & settle. This insures that newly anna-installed udev rules and kernel modules are loaded by udevd for correct processing of the udev rules. LP:

[ubuntu/xenial-updates] yubioath-desktop 2.3.0-1ubuntu0.1 (Accepted)

yubioath-desktop (2.3.0-1ubuntu0.1) xenial; urgency=medium * Add missing dependencies (Fixes LP: #1586751) * Add dependency on python-pkg-resources, python-click and pcscd. * Drop recommends on pcscd. Date: 2017-11-05 16:33:10.934739+00:00 Changed-By: Hans Joachim Desserud Signed-By: Łukas

[ubuntu/xenial-updates] virtualbox-hwe 5.0.40-dfsg-0ubuntu1.16.04.1~16.04.4 (Accepted)

virtualbox-hwe (5.0.40-dfsg-0ubuntu1.16.04.1~16.04.4) xenial; urgency=medium * Provide vboxguest-hwe, to avoid clash with old package (residual config is not purged on removal LP: #1708315) virtualbox (5.0.40-dfsg-0ubuntu1.16.04.3) xenial; urgency=medium * Tweak and reduce previous patch

[ubuntu/xenial-updates] ubuntu-fan 0.12.8~16.04.1 (Accepted)

ubuntu-fan (0.12.8~16.04.1) xenial; urgency=medium * fanatic: Optionally provide DNS server for docker test (LP: #1732717) ubuntu-fan (0.12.7~16.04.1) xenial; urgency=medium * fanctl: cmd_up needs to proparate scan_config errors (LP: #1719644) * fanatic: Clean up config if bringup fails (L

[ubuntu/xenial-proposed] sysstat 11.2.0-1ubuntu0.2 (Accepted)

sysstat (11.2.0-1ubuntu0.2) xenial; urgency=medium * Add 14-fix-mtab-reading.patch to fix a crash occurring in sadc while reading really long lines in /etc/mtab (LP: #1720627). Date: Wed, 06 Dec 2017 16:57:50 +0100 Changed-By: Dariusz Gadomski Maintainer: Ubuntu Developers Signed-By: Eric

[ubuntu/xenial-proposed] ubuntu-image 1.3+16.04ubuntu2 (Accepted)

ubuntu-image (1.3+16.04ubuntu2) xenial; urgency=medium * Work-around build-time test_hook_fired issues due to the unavailability of sudo on builders. This is xenial-specific as for all other series sudo is not used because of a newer mkfs.ext4 available. Use the UBUNTU_IMAGE_TESTS_