mutt (1.5.24-1ubuntu0.3) xenial-security; urgency=medium
* SECURITY UPDATE: Man-in-the-middle attack
- debian/patches/CVE-2020-14093.patch: prevent
possible IMAP MITM via PREAUTH response in imap/imap.c.
- CVE-2020-14093
* SECURITY UPDATE: Connection even if the user rejects an
gnutls28 (3.4.10-4ubuntu1.8) xenial; urgency=medium
* d/p/50_Update-session_ticket.c-to-add-support-for-zero-leng.patch:
- add support for zero length session tickets returned from the server,
thanks Rod for the backport and testing! (lp: #1876286)
Date: Wed, 17 Jun 2020 23:06:13 +02
mutt (1.5.24-1ubuntu0.3) xenial-security; urgency=medium
* SECURITY UPDATE: Man-in-the-middle attack
- debian/patches/CVE-2020-14093.patch: prevent
possible IMAP MITM via PREAUTH response in imap/imap.c.
- CVE-2020-14093
* SECURITY UPDATE: Connection even if the user rejects an
nfs-utils (1:1.2.8-9ubuntu12.3) xenial-security; urgency=medium
* SECURITY UPDATE: privilege escalation via directory permissions
- debian/patches/CVE-2019-3689.patch: take user-id from
/var/lib/nfs/sm in support/nsm/file.c, utils/statd/sm-notify.man,
utils/statd/statd.man.
-
nfs-utils (1:1.2.8-9ubuntu12.3) xenial-security; urgency=medium
* SECURITY UPDATE: privilege escalation via directory permissions
- debian/patches/CVE-2019-3689.patch: take user-id from
/var/lib/nfs/sm in support/nsm/file.c, utils/statd/sm-notify.man,
utils/statd/statd.man.
-
makedumpfile (1:1.6.3-2~16.04.3) xenial; urgency=medium
* d/p/0004-align_PMD_SECTION_MASK_with_PHYS_MASK.patch (LP: #1869465)
Fix error on arm64 with 1TB+ of physical or firmware-mapped RAM.
Date: 2020-06-09 14:22:12.187487+00:00
Changed-By: Ioanna Alifieraki
Signed-By: Łukasz Zemczak
htt