[ubuntu/xenial-updates] poppler 0.41.0-0ubuntu1.16 (Accepted)

2020-11-26 Thread Ubuntu Archive Robot
poppler (0.41.0-0ubuntu1.16) xenial-security; urgency=medium * SECURITY REGRESSION: broken Splash output (LP: #1905741) - debian/rules: don't build with --enable-cmyk as this causes a regression with xpdf and gdal. This reverts the fix for CVE-2019-10871. Date: 2020-11-26

[ubuntu/xenial-security] poppler 0.41.0-0ubuntu1.16 (Accepted)

2020-11-26 Thread Marc Deslauriers
poppler (0.41.0-0ubuntu1.16) xenial-security; urgency=medium * SECURITY REGRESSION: broken Splash output (LP: #1905741) - debian/rules: don't build with --enable-cmyk as this causes a regression with xpdf and gdal. This reverts the fix for CVE-2019-10871. Date: 2020-11-26

[ubuntu/xenial-updates] xdg-utils 1.1.1-1ubuntu1.16.04.4 (Accepted)

2020-11-26 Thread Ubuntu Archive Robot
xdg-utils (1.1.1-1ubuntu1.16.04.4) xenial-security; urgency=medium * SECURITY UPDATE: local file inclusion vulnerability - debian/patches/CVE-2020-27748.patch: remove attachment handling from mailto in scripts/xdg-email.in. - CVE-2020-27748 Date: 2020-11-25 13:27:14.197144+00:00

[ubuntu/xenial-security] xdg-utils 1.1.1-1ubuntu1.16.04.4 (Accepted)

2020-11-26 Thread Leonidas S. Barbosa
xdg-utils (1.1.1-1ubuntu1.16.04.4) xenial-security; urgency=medium * SECURITY UPDATE: local file inclusion vulnerability - debian/patches/CVE-2020-27748.patch: remove attachment handling from mailto in scripts/xdg-email.in. - CVE-2020-27748 Date: 2020-11-25 13:27:14.197144+00:00

[ubuntu/xenial-updates] ec2-instance-connect 1.1.12+dfsg1-0ubuntu3~16.04.1 (Accepted)

2020-11-26 Thread Łukasz Zemczak
ec2-instance-connect (1.1.12+dfsg1-0ubuntu3~16.04.1) xenial; urgency=medium * Verify that domain returned from IMDS is an AWS domain (LP: #1904741) Date: 2020-11-18 16:22:10.144730+00:00 Changed-By: Balint Reczey Signed-By: Łukasz Zemczak