[ubuntu/xenial-proposed] snap-confine 1.0.38-0ubuntu0.16.04.3 (Accepted)
snap-confine (1.0.38-0ubuntu0.16.04.3) xenial; urgency=medium * fix log-observer interface regression (LP: #1606277) Date: Wed, 27 Jul 2016 14:17:11 +0200 Changed-By: Michael VogtMaintainer: Steve Langasek https://launchpad.net/ubuntu/+source/snap-confine/1.0.38-0ubuntu0.16.04.3 Format: 1.8 Date: Wed, 27 Jul 2016 14:17:11 +0200 Source: snap-confine Binary: snap-confine ubuntu-core-launcher Architecture: source Version: 1.0.38-0ubuntu0.16.04.3 Distribution: xenial Urgency: medium Maintainer: Steve Langasek Changed-By: Michael Vogt Description: snap-confine - Support executable to apply confinement for snappy apps ubuntu-core-launcher - Launcher for ubuntu-core (snappy) apps Launchpad-Bugs-Fixed: 1606277 Changes: snap-confine (1.0.38-0ubuntu0.16.04.3) xenial; urgency=medium . * fix log-observer interface regression (LP: #1606277) Checksums-Sha1: 6b1c2b3531c4afa81b5caff527b9ac71e487382d 2226 snap-confine_1.0.38-0ubuntu0.16.04.3.dsc e8b14eb3ae8b8a0c5a73e503fbbfa0af72d52b67 12364 snap-confine_1.0.38-0ubuntu0.16.04.3.debian.tar.xz Checksums-Sha256: d94d3db581d226b9c67045d0e647648bf240cbf80f2ffc4624c045c4afc69436 2226 snap-confine_1.0.38-0ubuntu0.16.04.3.dsc 4687c32e1b96be397cf0b0f55a80c18ac18ba9339ae5ebfedd66aff5728e0509 12364 snap-confine_1.0.38-0ubuntu0.16.04.3.debian.tar.xz Files: 04449e6e808e3b0a7ce5cf9b80e3e91b 2226 utils optional snap-confine_1.0.38-0ubuntu0.16.04.3.dsc 0c2d86d986b60f15bc0951a01c94f37e 12364 utils optional snap-confine_1.0.38-0ubuntu0.16.04.3.debian.tar.xz -- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-proposed] pollinate 4.21-0ubuntu1~16.04 (Accepted)
pollinate (4.21-0ubuntu1~16.04) xenial-proposed; urgency=medium [ Dustin Kirkland ] * pollinate: - fix broken printing of binary data, this was breaking check_pollen nagios scripts on the server [ Junien Fridrick ] * entropy.ubuntu.com.pem: - simplify CA cert to just the DigiCert chain (drop GoDaddy) pollinate (4.20-0ubuntu1) yakkety; urgency=medium * debian/control: - drop the anerd references, hasn't existed in basically forever - update description - add dummy | dh-apparmor dependency to get this building on precise, where dh-systemd doesn't exist - drop run-one dependency, no longer needed - make the bsdutils dependency (for logger) explicit, add epoch * debian/rules: - use systemd, when possible * pollinate: - fix breakage on older (trusty, precise) Ubuntu, where logger does not support --id=[ID]; check version of bsdutils (provides logger) to ensure that it's at least ubuntu wily - cloud-init version string * debian/pollinate.service, debian/pollinate.upstart: - improve the init messages logged pollinate (4.19-0ubuntu1) yakkety; urgency=medium [ Martin Pitt ] * debian/pollinate.service: Move installation from network.target to multi-user.target. network.target is too early and causes dependency loops with e. g. NFS. (LP: #1576333) * debian/pollinate.preinst: Clean up old enablement symlink on upgrade. This needs to be kept until after 18.04 LTS. Date: Mon, 11 Jul 2016 10:52:57 -0500 Changed-By: Dustin Kirklandhttps://launchpad.net/ubuntu/+source/pollinate/4.21-0ubuntu1~16.04 Format: 1.8 Date: Mon, 11 Jul 2016 10:52:57 -0500 Source: pollinate Binary: pollinate Architecture: source Version: 4.21-0ubuntu1~16.04 Distribution: xenial-proposed Urgency: medium Maintainer: Dustin Kirkland Changed-By: Dustin Kirkland Description: pollinate - seed the pseudo random number generator Launchpad-Bugs-Fixed: 1576333 Changes: pollinate (4.21-0ubuntu1~16.04) xenial-proposed; urgency=medium . [ Dustin Kirkland ] * pollinate: - fix broken printing of binary data, this was breaking check_pollen nagios scripts on the server . [ Junien Fridrick ] * entropy.ubuntu.com.pem: - simplify CA cert to just the DigiCert chain (drop GoDaddy) . pollinate (4.20-0ubuntu1) yakkety; urgency=medium . * debian/control: - drop the anerd references, hasn't existed in basically forever - update description - add dummy | dh-apparmor dependency to get this building on precise, where dh-systemd doesn't exist - drop run-one dependency, no longer needed - make the bsdutils dependency (for logger) explicit, add epoch * debian/rules: - use systemd, when possible * pollinate: - fix breakage on older (trusty, precise) Ubuntu, where logger does not support --id=[ID]; check version of bsdutils (provides logger) to ensure that it's at least ubuntu wily - cloud-init version string * debian/pollinate.service, debian/pollinate.upstart: - improve the init messages logged . pollinate (4.19-0ubuntu1) yakkety; urgency=medium . [ Martin Pitt ] * debian/pollinate.service: Move installation from network.target to multi-user.target. network.target is too early and causes dependency loops with e. g. NFS. (LP: #1576333) * debian/pollinate.preinst: Clean up old enablement symlink on upgrade. This needs to be kept until after 18.04 LTS. Checksums-Sha1: c97619ac0d0fd128a73486a3df1c9f80b841422c 1814 pollinate_4.21-0ubuntu1~16.04.dsc 5f8b75cdf0bde92d06519becc767d4acfcc79dd8 91408 pollinate_4.21.orig.tar.gz 501f73888aced887fe8010c48d44fc3600e4513b 12388 pollinate_4.21-0ubuntu1~16.04.debian.tar.xz Checksums-Sha256: 7fea34773ccd5e5e3bf5b6ed121ca2faf173ec62ae7fef434f2231059cde1bcc 1814 pollinate_4.21-0ubuntu1~16.04.dsc 22bf7b85961fd2a51d7f04aac73133ff4e27607e9fae6a5fdb64e36a51c0cefc 91408 pollinate_4.21.orig.tar.gz f66bc346c8772e057a3c746979df75e516784b1dbb7acb9bb3b9b229fe78e344 12388 pollinate_4.21-0ubuntu1~16.04.debian.tar.xz Files: 8ea7259e4e44c77096a623401b26ec82 1814 admin optional pollinate_4.21-0ubuntu1~16.04.dsc 9267302de2be2fa12657fba2280486ff 91408 admin optional pollinate_4.21.orig.tar.gz b9f19013e9e0bfce170d73a31517ef00 12388 admin optional pollinate_4.21-0ubuntu1~16.04.debian.tar.xz -- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-proposed] python-cassandra-driver 2.5.1-1ubuntu0.1 (Accepted)
python-cassandra-driver (2.5.1-1ubuntu0.1) xenial; urgency=high * Cherry-pick upstream commit to fix compat with python 2.7.12 - weakref.ref no longer accepts kwargs. (LP: #1603436) Date: Mon, 25 Jul 2016 12:17:29 +0100 Changed-By: Dimitri John LedkovMaintainer: Ubuntu Developers https://launchpad.net/ubuntu/+source/python-cassandra-driver/2.5.1-1ubuntu0.1 Format: 1.8 Date: Mon, 25 Jul 2016 12:17:29 +0100 Source: python-cassandra-driver Binary: python-cassandra python3-cassandra Architecture: source Version: 2.5.1-1ubuntu0.1 Distribution: xenial Urgency: high Maintainer: Ubuntu Developers Changed-By: Dimitri John Ledkov Description: python-cassandra - Python driver for Apache Cassandra python3-cassandra - Python driver for Apache Cassandra (Python 3) Launchpad-Bugs-Fixed: 1603436 Changes: python-cassandra-driver (2.5.1-1ubuntu0.1) xenial; urgency=high . * Cherry-pick upstream commit to fix compat with python 2.7.12 - weakref.ref no longer accepts kwargs. (LP: #1603436) Checksums-Sha1: a7ad1500f708b970f52ab0852eabfc93144263a1 1977 python-cassandra-driver_2.5.1-1ubuntu0.1.dsc 6426cf1f01a87ea3c9a598b4eefb532ae3bfe208 3568 python-cassandra-driver_2.5.1-1ubuntu0.1.debian.tar.xz Checksums-Sha256: 484487e07270d64ab6dc71df7c7e79685d94b297806bc7f8e8a4b25bd1e125d0 1977 python-cassandra-driver_2.5.1-1ubuntu0.1.dsc 40147faeaebc053c78a7ef55a21c0b7057b7cc176c5327758983a38cfce8119a 3568 python-cassandra-driver_2.5.1-1ubuntu0.1.debian.tar.xz Files: 8a545f489a0b816f62f28e47a235bcf3 1977 python optional python-cassandra-driver_2.5.1-1ubuntu0.1.dsc 1dd32eb0356db37cf33b1801ac0a8ca5 3568 python optional python-cassandra-driver_2.5.1-1ubuntu0.1.debian.tar.xz Original-Maintainer: Sandro Tosi -- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-proposed] virt-manager 1:1.3.2-3ubuntu1.16.04.2 (Accepted)
virt-manager (1:1.3.2-3ubuntu1.16.04.2) xenial; urgency=medium * debian/patches/use_virtio_for_pseries_disks.patch: virtinst: Use virtio bus type for disks on pSeries machines. Closes LP: #1597610. Date: Wed, 20 Jul 2016 16:39:21 -0700 Changed-By: Nishanth AravamudanMaintainer: Ubuntu Developers Signed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/virt-manager/1:1.3.2-3ubuntu1.16.04.2 Format: 1.8 Date: Wed, 20 Jul 2016 16:39:21 -0700 Source: virt-manager Binary: virt-manager virtinst Architecture: source Version: 1:1.3.2-3ubuntu1.16.04.2 Distribution: xenial Urgency: medium Maintainer: Ubuntu Developers Changed-By: Nishanth Aravamudan Description: virt-manager - desktop application for managing virtual machines virtinst - Programs to create and clone virtual machines Launchpad-Bugs-Fixed: 1597610 Changes: virt-manager (1:1.3.2-3ubuntu1.16.04.2) xenial; urgency=medium . * debian/patches/use_virtio_for_pseries_disks.patch: virtinst: Use virtio bus type for disks on pSeries machines. Closes LP: #1597610. Checksums-Sha1: 2d52e606daae692e0687c7e3eab18d318d50fed6 2275 virt-manager_1.3.2-3ubuntu1.16.04.2.dsc 2a4ace741b972bfeb6d38afe856cc4681b0cde30 18812 virt-manager_1.3.2-3ubuntu1.16.04.2.debian.tar.xz Checksums-Sha256: f1168433f78da5ebbba6a23747f315160945ebbf3cc8081bba3ebe6e1a341842 2275 virt-manager_1.3.2-3ubuntu1.16.04.2.dsc c5b3936b10056af56a5d6bc58bc85e81ad1fcb7104d138637684df8e991d 18812 virt-manager_1.3.2-3ubuntu1.16.04.2.debian.tar.xz Files: ee8dcbae5ebf17b77a4dd2f4e55f49f5 2275 admin optional virt-manager_1.3.2-3ubuntu1.16.04.2.dsc b18ff14365ea68bcd8dd189f60465f86 18812 admin optional virt-manager_1.3.2-3ubuntu1.16.04.2.debian.tar.xz Original-Maintainer: Debian Libvirt Maintainers -- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] openjdk-8 8u91-b14-3ubuntu1~16.04.1 (Accepted)
openjdk-8 (8u91-b14-3ubuntu1~16.04.1) xenial-security; urgency=medium * Backport to Ubuntu 16.04. openjdk-8 (8u91-b14-3ubuntu1) yakkety; urgency=medium * SECURITY UPDATE: IIOP Input Stream Hooking - d/p/corba-8079718.patch: S8079718, CVE-2016-3458: defaultReadObject is not forbidden in readObject in subclasses of InputStreamHook which provides leverage to deserialize malicious objects if a reference to the input stream can be obtained separately. * SECURITY UPDATE: Complete name checking - d/p/jaxp-8148872.patch: S8148872, CVE-2016-3500: In some cases raw names in XML data are not checked for length limits allowing for DoS attacks. * SECURITY UPDATE: Better delineation of XML processing - d/p/jaxp-8149962.patch: S8149962, CVE-2016-3508: Denial of service measures do not take newline characters into account. This can be used to conduct attacks like the billion laughs DoS. * SECURITY UPDATE: Coded byte streams - d/p/hotspot-8152479.patch: S8152479, CVE-2016-3550: A fuzzed class file triggers an integer overflow in array access. * SECURITY UPDATE: Clean up lookup visibility - d/p/jdk-8154475.patch: S8154475, CVE-2016-3587: A fast path change allowed access to MH.invokeBasic via the public lookup object. MH.iB does not do full type checking which can be used to create type confusion. * SECURITY UPDATE: Bolster bytecode verification - d/p/hotspot-8155981.patch: S8155981, CVE-2016-3606: The bytecode verifier checks that any classes' method calls super. before returning. There is a way to bypass this requirement which allows creating subclasses of classes that are not intended to be extended. * SECURITY UPDATE: Persistent Parameter Processing - d/p/jdk-8155985.patch: S8155985, CVE-2016-3598: TOCTOU issue with types List passed into dropArguments() which can be used to cause type confusion. * SECURITY UPDATE: Additional method handle validation - d/p/jdk-8158571.patch: S8158571, CVE-2016-3610: MHs.filterReturnValue does not check the filter parameter list size. The single expected parameter is put in the last parameter position for the filter MH allowing for type confusion. * SECURITY UPDATE: Enforce GCM limits - d/p/jdk-8146514.patch: S8146514: In GCM the counter should not be allowed to wrap (per the spec), since that plus exposing the encrypted data could lead to leaking information. * SECURITY UPDATE: Construction of static protection domains - d/p/jdk-8147771.patch: S8147771: SubjectDomainCombiner does not honor the staticPermission field and will create ProtectionDomains that vary with the system policy which may allow unexpected permission sets. * SECURITY UPDATE: Share Class Data - d/p/hotspot-8150752.patch: S8150752: Additional verification of AppCDS archives is required to prevent an attacker from creating a type confusion situation. * SECURITY UPDATE: Enforce update ordering - d/p/jdk-8149070.patch: S8149070: If the GCM methods update() and updateAAD() are used out of order, the security of the system can be weakened and an exception should be thrown to warn the developer. * SECURITY UPDATE: Constrain AppCDS behavior - d/p/hotspot-8153312.patch: S8153312: AppCDS does not create classloader constraints upon reloading classes which could allow class spoofing under some circumstances. openjdk-8 (8u91-b14-3) unstable; urgency=medium * Fix an issue with libatk-wrapper (Samuel Thibault). Closes: #827795. * Update the KFreeBSD support patch (Steven Chamberlain). Closes: #825514. * debian/patches/hotspot-JDK-8158260-ppc64el.patch: JDK-8158260, PPC64: unaligned Unsafe.getInt can lead to the generation of illegal instructions (Tiago Stürmer Daitx). LP: #1594393. openjdk-8 (8u91-b14-2ubuntu1) yakkety; urgency=medium * Disable the atk bridge again on Ubuntu yakkety (failing TCK tests). openjdk-8 (8u91-b14-2) unstable; urgency=medium * Set initial VMThreadStackSize to 1600 on s390x. openjdk-8 (8u91-b14-1) unstable; urgency=high * Drop unused g++-4.9 build dependency. Date: 2016-07-20 20:58:13.256913+00:00 Changed-By: Tiago Stürmer DaitxSigned-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/openjdk-8/8u91-b14-3ubuntu1~16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-security] openjdk-8 8u91-b14-3ubuntu1~16.04.1 (Accepted)
openjdk-8 (8u91-b14-3ubuntu1~16.04.1) xenial-security; urgency=medium * Backport to Ubuntu 16.04. openjdk-8 (8u91-b14-3ubuntu1) yakkety; urgency=medium * SECURITY UPDATE: IIOP Input Stream Hooking - d/p/corba-8079718.patch: S8079718, CVE-2016-3458: defaultReadObject is not forbidden in readObject in subclasses of InputStreamHook which provides leverage to deserialize malicious objects if a reference to the input stream can be obtained separately. * SECURITY UPDATE: Complete name checking - d/p/jaxp-8148872.patch: S8148872, CVE-2016-3500: In some cases raw names in XML data are not checked for length limits allowing for DoS attacks. * SECURITY UPDATE: Better delineation of XML processing - d/p/jaxp-8149962.patch: S8149962, CVE-2016-3508: Denial of service measures do not take newline characters into account. This can be used to conduct attacks like the billion laughs DoS. * SECURITY UPDATE: Coded byte streams - d/p/hotspot-8152479.patch: S8152479, CVE-2016-3550: A fuzzed class file triggers an integer overflow in array access. * SECURITY UPDATE: Clean up lookup visibility - d/p/jdk-8154475.patch: S8154475, CVE-2016-3587: A fast path change allowed access to MH.invokeBasic via the public lookup object. MH.iB does not do full type checking which can be used to create type confusion. * SECURITY UPDATE: Bolster bytecode verification - d/p/hotspot-8155981.patch: S8155981, CVE-2016-3606: The bytecode verifier checks that any classes' method calls super. before returning. There is a way to bypass this requirement which allows creating subclasses of classes that are not intended to be extended. * SECURITY UPDATE: Persistent Parameter Processing - d/p/jdk-8155985.patch: S8155985, CVE-2016-3598: TOCTOU issue with types List passed into dropArguments() which can be used to cause type confusion. * SECURITY UPDATE: Additional method handle validation - d/p/jdk-8158571.patch: S8158571, CVE-2016-3610: MHs.filterReturnValue does not check the filter parameter list size. The single expected parameter is put in the last parameter position for the filter MH allowing for type confusion. * SECURITY UPDATE: Enforce GCM limits - d/p/jdk-8146514.patch: S8146514: In GCM the counter should not be allowed to wrap (per the spec), since that plus exposing the encrypted data could lead to leaking information. * SECURITY UPDATE: Construction of static protection domains - d/p/jdk-8147771.patch: S8147771: SubjectDomainCombiner does not honor the staticPermission field and will create ProtectionDomains that vary with the system policy which may allow unexpected permission sets. * SECURITY UPDATE: Share Class Data - d/p/hotspot-8150752.patch: S8150752: Additional verification of AppCDS archives is required to prevent an attacker from creating a type confusion situation. * SECURITY UPDATE: Enforce update ordering - d/p/jdk-8149070.patch: S8149070: If the GCM methods update() and updateAAD() are used out of order, the security of the system can be weakened and an exception should be thrown to warn the developer. * SECURITY UPDATE: Constrain AppCDS behavior - d/p/hotspot-8153312.patch: S8153312: AppCDS does not create classloader constraints upon reloading classes which could allow class spoofing under some circumstances. openjdk-8 (8u91-b14-3) unstable; urgency=medium * Fix an issue with libatk-wrapper (Samuel Thibault). Closes: #827795. * Update the KFreeBSD support patch (Steven Chamberlain). Closes: #825514. * debian/patches/hotspot-JDK-8158260-ppc64el.patch: JDK-8158260, PPC64: unaligned Unsafe.getInt can lead to the generation of illegal instructions (Tiago Stürmer Daitx). LP: #1594393. openjdk-8 (8u91-b14-2ubuntu1) yakkety; urgency=medium * Disable the atk bridge again on Ubuntu yakkety (failing TCK tests). openjdk-8 (8u91-b14-2) unstable; urgency=medium * Set initial VMThreadStackSize to 1600 on s390x. openjdk-8 (8u91-b14-1) unstable; urgency=high * Drop unused g++-4.9 build dependency. Date: 2016-07-20 20:58:13.256913+00:00 Changed-By: Tiago Stürmer DaitxSigned-By: Steve Beattie https://launchpad.net/ubuntu/+source/openjdk-8/8u91-b14-3ubuntu1~16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] snapcraft 2.13.1 (Accepted)
snapcraft (2.13.1) xenial; urgency=medium [ Joe Talbott ] * parser - Add handling for carriage returns in wiki (#681) [ Sergio Schvezov ] * New upstream release 2.13.1 (LP: #1605107) snapcraft (2.13) xenial; urgency=medium [ Colin Watson ] * Make maven plugin honour https_proxy and proxy authentication (#642) [ Dustin Kirkland ] * add a link for filing bugs/issues (#647) [ Joe Talbott ] * parser - Handle malformed wiki entries. (#636) * Use '/usr/bin/env python3' (#649) * parser - Don't allow duplicate wiki entries. (#613) * Preserve the ordering of the wiki entries (#596) [ Leo Arias ] * Add the test for the downloader snap (#589) * Do not clean before running the snaps tests (#637) [ Jonathan Cave ] * Create Plainbox Provider plugin (#609) [ Matthew Aguirre ] * ant plugin: use python std libraries and add tests (#644) * new plugin: gradle (#651) * maven plugin: support maven targets (#650) * Put options before jar task in command. (#655) [ Kyle Fazzari ] * Support "never" as a daemon restart condition. (#659) [ Simon Quigley ] * Fix four typos in `snapcraft help` (#667) [ Robin Winslow ] * Fix broken links to https://snapcraft.io (#665) * Implemented `snapcraft release` (#648) * Implement `snapcraft push` (#653) * Allow / in parts (#666) * Capture the correct exception when not being able to decode json (#672) * Special handling for pc files for conflicts (#676) * New upstream release 2.13 (LP: #1605107) Date: 2016-07-25 13:27:11.26+00:00 Changed-By: Sergio SchvezovSigned-By: Chris J Arges https://launchpad.net/ubuntu/+source/snapcraft/2.13.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes