[ubuntu/xenial-proposed] bsh 2.0b4-17ubuntu1 (Accepted)

from an untrusted source. A vulnerable application could be exploited for remote code execution, including executing arbitrary shell commands. * Declare compliance with Debian Policy 3.9.7. * Vcs-Browser: Use https. Date: Tue, 08 Mar 2016 09:58:49 -0500 Changed-By: Marc Deslauriers

[ubuntu/xenial-proposed] python-django 1.8.7-1ubuntu3 (Accepted)

-2016-2512 Date: Fri, 04 Mar 2016 11:03:43 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/python-django/1.8.7-1ubuntu3 -BEGIN PGP SIGNED MESSAGE- Hash: SH

[ubuntu/xenial-proposed] perl 5.22.1-8 (Accepted)

perl (5.22.1-8) unstable; urgency=high * [SECURITY] CVE-2016-2381 fix duplicate environment variable taint checking issue Date: 2016-03-01 22:21:07.924177+00:00 Changed-By: Niko Tyni <ntyni+launch...@mappi.helsinki.fi> Signed-By: Marc Deslauriers <marc.deslauri...@canonical.c

[ubuntu/xenial-proposed] openssl 1.0.2g-1ubuntu1 (Accepted)

) can make use of them too. Date: Tue, 01 Mar 2016 14:09:30 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/openssl/1.0.2g-1ubuntu1 -BEGIN PGP SIGNED MESSA

[ubuntu/xenial-proposed] python-django 1.8.7-1ubuntu2 (Accepted)

to tests/auth_tests/test_hashers.py. - CVE-2016-2513 Date: Thu, 25 Feb 2016 10:02:48 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/python-django/1.

[ubuntu/xenial-proposed] libssh 0.6.3-4.2ubuntu1 (Accepted)

libssh (0.6.3-4.2ubuntu1) xenial; urgency=medium * SECURITY UPDATE: weakness in diffie-hellman secret key generation - debian/patches/CVE-2016-0739.patch: fix bits/bytes confusion bug in src/dh.c. - CVE-2016-0739 Date: Tue, 23 Feb 2016 07:47:11 -0500 Changed-By: Marc Deslauriers

[ubuntu/xenial-proposed] nss 2:3.21-1ubuntu3 (Accepted)

nss (2:3.21-1ubuntu3) xenial; urgency=medium * debian/patches/relax_dh_size.patch: removed, now require a minimum DH size of 1023 bits. Date: Thu, 18 Feb 2016 11:23:15 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-d

[ubuntu/xenial-proposed] cpio 2.11+dfsg-5ubuntu1 (Accepted)

Date: Thu, 18 Feb 2016 09:36:00 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/cpio/2.11+dfsg-5ubuntu1 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1

[ubuntu/xenial-proposed] pasaffe 0.45-0ubuntu1 (Accepted)

to BuildDepends Date: Wed, 17 Feb 2016 19:09:04 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/pasaffe/0.45-0ubuntu1 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Form

[ubuntu/xenial-proposed] freetype 2.6.1-0.1ubuntu1 (Accepted)

he CFF driver, now that most related fonts have been fixed. Closes: #795653. * Enable stage1 build without X library dependencies for bootstrapping. Closes: #752270, #752271. Date: Wed, 17 Feb 2016 10:13:11 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Mainta

[ubuntu/xenial-proposed] xdelta3 3.0.8-dfsg-1ubuntu2 (Accepted)

xdelta3 (3.0.8-dfsg-1ubuntu2) xenial; urgency=medium * debian/patches/fix_lzma_test.patch: fix lzma test so we can run the builtin tests. Date: Wed, 17 Feb 2016 08:33:32 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-d

[ubuntu/xenial-proposed] glibc 2.21-0ubuntu6 (Accepted)

16:42:23 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/glibc/2.21-0ubuntu6 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 16 Feb 2016 16

[ubuntu/xenial-proposed] gnupg 1.4.20-1ubuntu3 (Accepted)

gnupg (1.4.20-1ubuntu3) xenial; urgency=medium * debian/patches/lp1541925.patch: switch to final upstream commit. Date: Fri, 12 Feb 2016 07:19:26 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.c

[ubuntu/xenial-proposed] eog 3.18.1-1ubuntu2 (Accepted)

-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/eog/3.18.1-1ubuntu2 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 12 Feb 2016 11:48:18 -0500 Source: eog Bin

[ubuntu/xenial-proposed] libgcrypt20 1.6.4-5ubuntu1 (Accepted)

Feb 2016 10:54:55 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/libgcrypt20/1.6.4-5ubuntu1 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date:

[ubuntu/xenial-proposed] gnupg2 2.0.28-3ubuntu2 (Accepted)

gnupg2 (2.0.28-3ubuntu2) xenial; urgency=medium * debian/gcc5-fix.patch: add upstream fix for an optimization issue when compiling with gcc 5. (LP: #1501634) Date: Tue, 09 Feb 2016 16:11:42 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Deve

[ubuntu/xenial-proposed] gnupg 1.4.20-1ubuntu2 (Accepted)

gnupg (1.4.20-1ubuntu2) xenial; urgency=medium * debian/patches/lp1541925.patch: Make sure directory exists before creating the lock. (LP: #1541925) Date: Tue, 09 Feb 2016 14:39:34 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubu

[ubuntu/xenial-proposed] xdelta3 3.0.8-dfsg-1ubuntu1 (Accepted)

elta3 Binary: xdelta3 Architecture: source Version: 3.0.8-dfsg-1ubuntu1 Distribution: xenial Urgency: medium Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Description: xdelta3- Diff utility which works w

[ubuntu/xenial-proposed] wine1.6 1:1.6.2-0ubuntu11 (Accepted)

wine1.6 (1:1.6.2-0ubuntu11) xenial; urgency=medium * debian/patches/preserve_surface_contents.patch: upstream patch to fix black squares in certain windows (LP: #1330009) Date: Sun, 07 Feb 2016 12:00:36 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer:

[ubuntu/xenial-proposed] ca-certificates 20160104 (Accepted)

com> Signed-By: Marc Deslauriers <marc.deslauri...@canonical.com> https://launchpad.net/ubuntu/+source/ca-certificates/20160104 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mail

[ubuntu/xenial-proposed] openssl 1.0.2f-2ubuntu1 (Accepted)

. * debian/patches/CVE-2016-0701.patch: dropped, upstream. openssl (1.0.2f-2) unstable; urgency=high * New upstream version. - Fixes CVE-2016-0701 - Not affected by CVE-2015-3197 because SSLv2 is disabled. Date: Tue, 02 Feb 2016 13:37:21 -0500 Changed-By: Marc Deslauriers <marc.desla

[ubuntu/xenial-proposed] virt-manager 1:1.3.2-0ubuntu1 (Accepted)

-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/virt-manager/1:1.3.2-0ubuntu1 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 28 Jan 2016 13:11:39 -0500

[ubuntu/xenial-proposed] composer 1.0.0~alpha11-1ubuntu1 (Accepted)

composer (1.0.0~alpha11-1ubuntu1) xenial; urgency=medium * debian/patches/0007-Fix-tests-new-json-schema.patch: fix tests when using json-schema 1.6. Date: Thu, 28 Jan 2016 09:21:45 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubu

[ubuntu/xenial-proposed] bind9 1:9.9.5.dfsg-12.1ubuntu1 (Accepted)

bind9 (1:9.9.5.dfsg-12.1ubuntu1) xenial; urgency=medium * SECURITY UPDATE: denial of service via string formatting operations - lib/dns/rdata/in_1/apl_42.c: use correct length. - CVE-2015-8704 Date: Thu, 28 Jan 2016 08:27:29 -0500 Changed-By: Marc Deslauriers <marc.desla

[ubuntu/xenial-proposed] libwmf 0.2.8.4-10.5ubuntu1 (Accepted)

libpng transition. (Closes: #662416) Date: Wed, 27 Jan 2016 15:10:24 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/libwmf/0.2.8.4-10.5ubuntu1 -BEGIN PGP SI

[ubuntu/xenial-proposed] memcached 1.4.25-1ubuntu2 (Accepted)

memcached (1.4.25-1ubuntu2) xenial; urgency=medium * debian/patches/disable_slabs_test.patch: disable unreliable test. Date: Tue, 26 Jan 2016 10:47:19 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.c

[ubuntu/xenial-proposed] php-crypt-gpg 1.4.0-1ubuntu1 (Accepted)

php-crypt-gpg (1.4.0-1ubuntu1) xenial; urgency=medium * debian/tests/control: added php-pear to Depends. Date: Tue, 26 Jan 2016 12:46:58 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://l

[ubuntu/xenial-proposed] php-horde-icalendar 2.1.2-1ubuntu1 (Accepted)

php-horde-icalendar (2.1.2-1ubuntu1) xenial; urgency=medium * debian/patches/disable_broken_test.patch: disable new test added to 2.1.2 without any code changes as it is failing on some archs. Date: Tue, 26 Jan 2016 13:11:04 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.

[ubuntu/xenial-proposed] conntrack-tools 1:1.4.3-3 (Accepted)

conntrack-tools (1:1.4.3-3) unstable; urgency=medium * [8689754] d/control: fix typo in conntrack-tools-dbg long description * [b403285] conntrackd: add libsystemd integration Date: 2015-11-05 16:10:52.570799+00:00 Changed-By: Alexander Wirt <formo...@debian.org> Signed-By: Marc Desla

[ubuntu/xenial-proposed] pygments 2.0.1+dfsg-2ubuntu1 (Accepted)

Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/pygments/2.0.1+dfsg-2ubuntu1 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 22 Jan 2016 13:12:59

[ubuntu/xenial-proposed] usb-creator 0.3.2 (Accepted)

usb-creator (0.3.2) xenial; urgency=medium * bin/usb-creator-helper: properly handle utf-8 characters (LP: #1527900) Date: Fri, 22 Jan 2016 14:35:42 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.c

[ubuntu/xenial-proposed] nodejs 4.2.6~dfsg-1ubuntu1 (Accepted)

nodejs (4.2.6~dfsg-1ubuntu1) xenial; urgency=medium * debian/patches/fix_sslv3_test.patch: properly handle how SSLv3 was disabled in openssl. Date: Fri, 22 Jan 2016 11:08:38 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-d

[ubuntu/xenial-proposed] apache2 2.4.18-1ubuntu1 (Accepted)

-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/apache2/2.4.18-1ubuntu1 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 21 Jan 2016 15:15:22 -0500 Sou

[ubuntu/xenial-proposed] memcached 1.4.25-1ubuntu1 (Accepted)

release, refresh 02_manpage_additions.patch * Use autoreconf in addition of autotools, to regenerate build system and not stick on older autoreconf versions Date: Fri, 22 Jan 2016 09:43:27 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers &

[ubuntu/xenial-proposed] php5 5.6.17+dfsg-3ubuntu1 (Accepted)

packagingroot inside PEAR/Command/Install.php (Closes: #805222) Date: Thu, 21 Jan 2016 14:32:01 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/php5/5.6.17+d

[ubuntu/xenial-proposed] curl 7.46.0-1ubuntu1 (Accepted)

-completion.patch to fix zsh completion generation Date: Fri, 22 Jan 2016 09:38:38 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/curl/7.46.0-1ubuntu1 -BEGI

[ubuntu/xenial-proposed] libxml2 2.9.3+dfsg1-1 (Accepted)

libxml2 (2.9.3+dfsg1-1) unstable; urgency=medium * New upstream release. Date: 2015-12-14 16:20:37.738576+00:00 Signed-By: Marc Deslauriers <marc.deslauri...@canonical.com> https://launchpad.net/ubuntu/+source/libxml2/2.9.3+dfsg1-1 Sorry, changesfile not available.-- Xenial-changes m

[ubuntu/xenial-proposed] icu 55.1-7 (Accepted)

icu (55.1-7) unstable; urgency=high * Fix CVE-2015-2632 vulnerability. Date: 2016-01-03 22:15:34.142364+00:00 Changed-By: Laszlo Boszormenyi <g...@debian.org> Signed-By: Marc Deslauriers <marc.deslauri...@canonical.com> https://launchpad.net/ubuntu/+source/icu/55.1-7 Sorry,

[ubuntu/xenial-proposed] rsync 3.1.1-3ubuntu1 (Accepted)

Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/rsync/3.1.1-3ubuntu1 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 19 Jan 2016 14:58:35 -0500 S

[ubuntu/xenial-proposed] isc-dhcp 4.3.1-5ubuntu5 (Accepted)

u Developers <ubuntu-devel-disc...@lists.ubuntu.com> Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Description: isc-dhcp-client - DHCP client for automatically obtaining an IP address isc-dhcp-client-dbg - ISC DHCP server for automatic IP address assignment (client deb

[ubuntu/xenial-proposed] libvirt 1.2.21-2ubuntu5 (Accepted)

Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/libvirt/1.2.21-2ubuntu5 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 08 Jan 2016 10:32:17

[ubuntu/xenial-proposed] ldb 2:1.1.24-1ubuntu1 (Accepted)

release. Fixes: - CVE-2015-3223: Denial of Service. - CVE-2015-5330: Remote memory read. Date: Wed, 06 Jan 2016 07:27:01 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ub

[ubuntu/xenial-proposed] libpng 1.2.54-1ubuntu1 (Accepted)

* SECURITY UPDATE: out-of-range read in png_check_keyword() - debian/patches/CVE-2015-8540.patch: check key_len in pngwutil.c. - CVE-2015-8540 Date: Wed, 06 Jan 2016 12:39:08 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-d

[ubuntu/xenial-proposed] usb-creator 0.3.1 (Accepted)

usb-creator (0.3.1) xenial; urgency=medium * usbcreator/backends/udisks/backend.py: also properly detect mini.iso. (LP: #1527086) Date: Thu, 17 Dec 2015 11:18:55 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-d

[ubuntu/xenial-proposed] libxml2 2.9.2+zdfsg1-4ubuntu2 (Accepted)

* SECURITY UPDATE: buffer overead with HTML parser in push mode - debian/patches/CVE-2015-8242.patch: use pointer in the input in HTMLparser.c. - CVE-2015-8242 Date: Wed, 09 Dec 2015 10:15:37 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Deve

[ubuntu/xenial-proposed] apache2 2.4.17-3ubuntu1 (Accepted)

Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/+source/apache2/2.4.17-3ubuntu1 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 03 Dec 2015 10:07:35

<    3   4   5   6   7   8