[ubuntu/xenial-updates] libjackson-json-java 1.9.2-7ubuntu0.2 (Accepted)

2021-02-18 Thread Ubuntu Archive Robot
libjackson-json-java (1.9.2-7ubuntu0.2) xenial-security; urgency=medium * SECURITY UPDATE: Improper input sanitization - debian/patches/CVE-2017-15095.patch: Fix deserialization. - debian/patches/CVE-2017-7525.patch: Backport all known security fixes from 2.x that were missing,

[ubuntu/xenial-security] libjackson-json-java 1.9.2-7ubuntu0.2 (Accepted)

2021-02-18 Thread Paulo Flabiano Smorigo
libjackson-json-java (1.9.2-7ubuntu0.2) xenial-security; urgency=medium * SECURITY UPDATE: Improper input sanitization - debian/patches/CVE-2017-15095.patch: Fix deserialization. - debian/patches/CVE-2017-7525.patch: Backport all known security fixes from 2.x that were missing,

[ubuntu/xenial-proposed] linux-aws 4.4.0-1122.136 (Accepted)

2021-02-18 Thread Andy Whitcroft
linux-aws (4.4.0-1122.136) xenial; urgency=medium * xenial/linux-aws: 4.4.0-1122.136 -proposed tracker (LP: #1914129) * Xenial update: v4.4.249 upstream stable release (LP: #1910139) - [Config] updateconfigs for SPI_DYNAMIC * aws: properly support instance types with > 255 cpu cores

[ubuntu/xenial-proposed] linux-meta-aws 4.4.0.1122.127 (Accepted)

2021-02-18 Thread Andy Whitcroft
linux-meta-aws (4.4.0.1122.127) xenial; urgency=medium * Bump ABI 4.4.0-1122 Date: 2021-02-16 22:40:39.640872+00:00 Changed-By: Khaled El Mously Signed-By: Andy Whitcroft https://launchpad.net/ubuntu/+source/linux-meta-aws/4.4.0.1122.127 Sorry, changesfile not available.-- Xenial-changes

[ubuntu/xenial-updates] bind9 1:9.10.3.dfsg.P4-8ubuntu1.18 (Accepted)

2021-02-18 Thread Ubuntu Archive Robot
bind9 (1:9.10.3.dfsg.P4-8ubuntu1.18) xenial-security; urgency=medium * SECURITY UPDATE: off-by-one bug in ISC SPNEGO implementation - debian/patches/CVE-2020-8625.patch: properly calculate length in lib/dns/spnego.c. - CVE-2020-8625 Date: 2021-02-15 14:17:09.151595+00:00

[ubuntu/xenial-updates] openssl 1.0.2g-1ubuntu4.19 (Accepted)

2021-02-18 Thread Ubuntu Archive Robot
openssl (1.0.2g-1ubuntu4.19) xenial-security; urgency=medium * SECURITY UPDATE: Integer overflow in CipherUpdate - debian/patches/CVE-2021-23840-pre1.patch: add new EVP error codes in crypto/evp/evp_err.c, crypto/evp/evp.h. - debian/patches/CVE-2021-23840-pre2.patch: add a new EVP

[ubuntu/xenial-security] openssl 1.0.2g-1ubuntu4.19 (Accepted)

2021-02-18 Thread Marc Deslauriers
openssl (1.0.2g-1ubuntu4.19) xenial-security; urgency=medium * SECURITY UPDATE: Integer overflow in CipherUpdate - debian/patches/CVE-2021-23840-pre1.patch: add new EVP error codes in crypto/evp/evp_err.c, crypto/evp/evp.h. - debian/patches/CVE-2021-23840-pre2.patch: add a new EVP

[ubuntu/xenial-security] bind9 1:9.10.3.dfsg.P4-8ubuntu1.18 (Accepted)

2021-02-18 Thread Marc Deslauriers
bind9 (1:9.10.3.dfsg.P4-8ubuntu1.18) xenial-security; urgency=medium * SECURITY UPDATE: off-by-one bug in ISC SPNEGO implementation - debian/patches/CVE-2020-8625.patch: properly calculate length in lib/dns/spnego.c. - CVE-2020-8625 Date: 2021-02-15 14:17:09.151595+00:00