from an untrusted source. A vulnerable application could
be exploited for remote code execution, including executing arbitrary shell
commands.
* Declare compliance with Debian Policy 3.9.7.
* Vcs-Browser: Use https.
Date: Tue, 08 Mar 2016 09:58:49 -0500
Changed-By: Marc Deslauriers
-2016-2512
Date: Fri, 04 Mar 2016 11:03:43 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/python-django/1.8.7-1ubuntu3
-BEGIN PGP SIGNED MESSAGE-
Hash: SH
perl (5.22.1-8) unstable; urgency=high
* [SECURITY] CVE-2016-2381 fix duplicate environment variable taint
checking issue
Date: 2016-03-01 22:21:07.924177+00:00
Changed-By: Niko Tyni <ntyni+launch...@mappi.helsinki.fi>
Signed-By: Marc Deslauriers <marc.deslauri...@canonical.c
) can make use of them
too.
Date: Tue, 01 Mar 2016 14:09:30 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/openssl/1.0.2g-1ubuntu1
-BEGIN PGP SIGNED MESSA
to
tests/auth_tests/test_hashers.py.
- CVE-2016-2513
Date: Thu, 25 Feb 2016 10:02:48 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/python-django/1.
libssh (0.6.3-4.2ubuntu1) xenial; urgency=medium
* SECURITY UPDATE: weakness in diffie-hellman secret key generation
- debian/patches/CVE-2016-0739.patch: fix bits/bytes confusion bug in
src/dh.c.
- CVE-2016-0739
Date: Tue, 23 Feb 2016 07:47:11 -0500
Changed-By: Marc Deslauriers
nss (2:3.21-1ubuntu3) xenial; urgency=medium
* debian/patches/relax_dh_size.patch: removed, now require a minimum DH
size of 1023 bits.
Date: Thu, 18 Feb 2016 11:23:15 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-d
Date: Thu, 18 Feb 2016 09:36:00 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/cpio/2.11+dfsg-5ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1
to BuildDepends
Date: Wed, 17 Feb 2016 19:09:04 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/pasaffe/0.45-0ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Form
he CFF driver, now that most related fonts have been fixed.
Closes: #795653.
* Enable stage1 build without X library dependencies for bootstrapping.
Closes: #752270, #752271.
Date: Wed, 17 Feb 2016 10:13:11 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Mainta
xdelta3 (3.0.8-dfsg-1ubuntu2) xenial; urgency=medium
* debian/patches/fix_lzma_test.patch: fix lzma test so we can run the
builtin tests.
Date: Wed, 17 Feb 2016 08:33:32 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-d
16:42:23 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/glibc/2.21-0ubuntu6
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Tue, 16 Feb 2016 16
gnupg (1.4.20-1ubuntu3) xenial; urgency=medium
* debian/patches/lp1541925.patch: switch to final upstream commit.
Date: Fri, 12 Feb 2016 07:19:26 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.c
-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/eog/3.18.1-1ubuntu2
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Fri, 12 Feb 2016 11:48:18 -0500
Source: eog
Bin
Feb 2016 10:54:55 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libgcrypt20/1.6.4-5ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date:
gnupg2 (2.0.28-3ubuntu2) xenial; urgency=medium
* debian/gcc5-fix.patch: add upstream fix for an optimization issue when
compiling with gcc 5. (LP: #1501634)
Date: Tue, 09 Feb 2016 16:11:42 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Deve
gnupg (1.4.20-1ubuntu2) xenial; urgency=medium
* debian/patches/lp1541925.patch: Make sure directory exists before
creating the lock. (LP: #1541925)
Date: Tue, 09 Feb 2016 14:39:34 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubu
elta3
Binary: xdelta3
Architecture: source
Version: 3.0.8-dfsg-1ubuntu1
Distribution: xenial
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Description:
xdelta3- Diff utility which works w
wine1.6 (1:1.6.2-0ubuntu11) xenial; urgency=medium
* debian/patches/preserve_surface_contents.patch: upstream patch to fix
black squares in certain windows (LP: #1330009)
Date: Sun, 07 Feb 2016 12:00:36 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer:
com>
Signed-By: Marc Deslauriers <marc.deslauri...@canonical.com>
https://launchpad.net/ubuntu/+source/ca-certificates/20160104
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mail
.
* debian/patches/CVE-2016-0701.patch: dropped, upstream.
openssl (1.0.2f-2) unstable; urgency=high
* New upstream version.
- Fixes CVE-2016-0701
- Not affected by CVE-2015-3197 because SSLv2 is disabled.
Date: Tue, 02 Feb 2016 13:37:21 -0500
Changed-By: Marc Deslauriers <marc.desla
-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/virt-manager/1:1.3.2-0ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Thu, 28 Jan 2016 13:11:39 -0500
composer (1.0.0~alpha11-1ubuntu1) xenial; urgency=medium
* debian/patches/0007-Fix-tests-new-json-schema.patch: fix tests when
using json-schema 1.6.
Date: Thu, 28 Jan 2016 09:21:45 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubu
bind9 (1:9.9.5.dfsg-12.1ubuntu1) xenial; urgency=medium
* SECURITY UPDATE: denial of service via string formatting operations
- lib/dns/rdata/in_1/apl_42.c: use correct length.
- CVE-2015-8704
Date: Thu, 28 Jan 2016 08:27:29 -0500
Changed-By: Marc Deslauriers <marc.desla
libpng
transition. (Closes: #662416)
Date: Wed, 27 Jan 2016 15:10:24 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libwmf/0.2.8.4-10.5ubuntu1
-BEGIN PGP SI
memcached (1.4.25-1ubuntu2) xenial; urgency=medium
* debian/patches/disable_slabs_test.patch: disable unreliable test.
Date: Tue, 26 Jan 2016 10:47:19 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.c
php-crypt-gpg (1.4.0-1ubuntu1) xenial; urgency=medium
* debian/tests/control: added php-pear to Depends.
Date: Tue, 26 Jan 2016 12:46:58 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://l
php-horde-icalendar (2.1.2-1ubuntu1) xenial; urgency=medium
* debian/patches/disable_broken_test.patch: disable new test added to
2.1.2 without any code changes as it is failing on some archs.
Date: Tue, 26 Jan 2016 13:11:04 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.
conntrack-tools (1:1.4.3-3) unstable; urgency=medium
* [8689754] d/control: fix typo in conntrack-tools-dbg long description
* [b403285] conntrackd: add libsystemd integration
Date: 2015-11-05 16:10:52.570799+00:00
Changed-By: Alexander Wirt <formo...@debian.org>
Signed-By: Marc Desla
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/pygments/2.0.1+dfsg-2ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Fri, 22 Jan 2016 13:12:59
usb-creator (0.3.2) xenial; urgency=medium
* bin/usb-creator-helper: properly handle utf-8 characters
(LP: #1527900)
Date: Fri, 22 Jan 2016 14:35:42 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.c
nodejs (4.2.6~dfsg-1ubuntu1) xenial; urgency=medium
* debian/patches/fix_sslv3_test.patch: properly handle how SSLv3 was
disabled in openssl.
Date: Fri, 22 Jan 2016 11:08:38 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-d
-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/apache2/2.4.18-1ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Thu, 21 Jan 2016 15:15:22 -0500
Sou
release, refresh 02_manpage_additions.patch
* Use autoreconf in addition of autotools, to regenerate build system and not
stick on older autoreconf versions
Date: Fri, 22 Jan 2016 09:43:27 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers &
packagingroot inside PEAR/Command/Install.php
(Closes: #805222)
Date: Thu, 21 Jan 2016 14:32:01 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/php5/5.6.17+d
-completion.patch to fix zsh completion generation
Date: Fri, 22 Jan 2016 09:38:38 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/curl/7.46.0-1ubuntu1
-BEGI
libxml2 (2.9.3+dfsg1-1) unstable; urgency=medium
* New upstream release.
Date: 2015-12-14 16:20:37.738576+00:00
Signed-By: Marc Deslauriers <marc.deslauri...@canonical.com>
https://launchpad.net/ubuntu/+source/libxml2/2.9.3+dfsg1-1
Sorry, changesfile not available.--
Xenial-changes m
icu (55.1-7) unstable; urgency=high
* Fix CVE-2015-2632 vulnerability.
Date: 2016-01-03 22:15:34.142364+00:00
Changed-By: Laszlo Boszormenyi <g...@debian.org>
Signed-By: Marc Deslauriers <marc.deslauri...@canonical.com>
https://launchpad.net/ubuntu/+source/icu/55.1-7
Sorry,
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/rsync/3.1.1-3ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Tue, 19 Jan 2016 14:58:35 -0500
S
u Developers <ubuntu-devel-disc...@lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Description:
isc-dhcp-client - DHCP client for automatically obtaining an IP address
isc-dhcp-client-dbg - ISC DHCP server for automatic IP address assignment
(client deb
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/libvirt/1.2.21-2ubuntu5
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Fri, 08 Jan 2016 10:32:17
release. Fixes:
- CVE-2015-3223: Denial of Service.
- CVE-2015-5330: Remote memory read.
Date: Wed, 06 Jan 2016 07:27:01 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ub
* SECURITY UPDATE: out-of-range read in png_check_keyword()
- debian/patches/CVE-2015-8540.patch: check key_len in pngwutil.c.
- CVE-2015-8540
Date: Wed, 06 Jan 2016 12:39:08 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-d
usb-creator (0.3.1) xenial; urgency=medium
* usbcreator/backends/udisks/backend.py: also properly detect mini.iso.
(LP: #1527086)
Date: Thu, 17 Dec 2015 11:18:55 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-d
* SECURITY UPDATE: buffer overead with HTML parser in push mode
- debian/patches/CVE-2015-8242.patch: use pointer in the input in
HTMLparser.c.
- CVE-2015-8242
Date: Wed, 09 Dec 2015 10:15:37 -0500
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Deve
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/apache2/2.4.17-3ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Thu, 03 Dec 2015 10:07:35
701 - 746 of 746 matches
Mail list logo