[ubuntu/xenial-proposed] binutils 2.26.1-1ubuntu1~16.04.4 (Accepted)
binutils (2.26.1-1ubuntu1~16.04.4) xenial-proposed; urgency=medium * SRU * POWER backports (LP: #1655181) - Don't treat .opd section specially when ELFv2. - Fix PowerPC64 ELFv1 undefined weak functions. - Modify POWER9 support to match final ISA 3.0 documentation. * Fix PR gold/18989. Implement --push-state/--pop-state. LP: #1623418. Date: Fri, 10 Feb 2017 02:30:30 +0100 Changed-By: Matthias KloseMaintainer: Ubuntu Developers https://launchpad.net/ubuntu/+source/binutils/2.26.1-1ubuntu1~16.04.4 Format: 1.8 Date: Fri, 10 Feb 2017 02:30:30 +0100 Source: binutils Binary: binutils binutils-dev binutils-multiarch binutils-multiarch-dev binutils-hppa64-linux-gnu binutils-doc binutils-source binutils-s390x-linux-gnu binutils-powerpc64le-linux-gnu binutils-powerpc-linux-gnu binutils-aarch64-linux-gnu binutils-arm-linux-gnueabihf binutils-arm-linux-gnueabi binutils-mips-linux-gnu binutils-mipsel-linux-gnu binutils-alpha-linux-gnu binutils-hppa-linux-gnu binutils-m68k-linux-gnu binutils-mips64-linux-gnuabi64 binutils-mips64el-linux-gnuabi64 binutils-powerpc-linux-gnuspe binutils-powerpc64-linux-gnu binutils-sh4-linux-gnu binutils-sparc64-linux-gnu Architecture: source Version: 2.26.1-1ubuntu1~16.04.4 Distribution: xenial-proposed Urgency: medium Maintainer: Ubuntu Developers Changed-By: Matthias Klose Description: binutils - GNU assembler, linker and binary utilities binutils-aarch64-linux-gnu - GNU binary utilities, for aarch64-linux-gnu target binutils-alpha-linux-gnu - GNU binary utilities, for alpha-linux-gnu target binutils-arm-linux-gnueabi - GNU binary utilities, for arm-linux-gnueabi target binutils-arm-linux-gnueabihf - GNU binary utilities, for arm-linux-gnueabihf target binutils-dev - GNU binary utilities (BFD development files) binutils-doc - Documentation for the GNU assembler, linker and binary utilities binutils-hppa-linux-gnu - GNU binary utilities, for hppa-linux-gnu target binutils-hppa64-linux-gnu - GNU assembler, linker and binary utilities targeted for hppa64-li binutils-m68k-linux-gnu - GNU binary utilities, for m68k-linux-gnu target binutils-mips-linux-gnu - GNU binary utilities, for mips-linux-gnu target binutils-mips64-linux-gnuabi64 - GNU binary utilities, for mips64-linux-gnuabi64 target binutils-mips64el-linux-gnuabi64 - GNU binary utilities, for mips64el-linux-gnuabi64 target binutils-mipsel-linux-gnu - GNU binary utilities, for mipsel-linux-gnu target binutils-multiarch - Binary utilities that support multi-arch targets binutils-multiarch-dev - GNU binary utilities that support multi-arch targets (BFD develop binutils-powerpc-linux-gnu - GNU binary utilities, for powerpc-linux-gnu target binutils-powerpc-linux-gnuspe - GNU binary utilities, for powerpc-linux-gnuspe target binutils-powerpc64-linux-gnu - GNU binary utilities, for powerpc64-linux-gnu target binutils-powerpc64le-linux-gnu - GNU binary utilities, for powerpc64le-linux-gnu target binutils-s390x-linux-gnu - GNU binary utilities, for s390x-linux-gnu target binutils-sh4-linux-gnu - GNU binary utilities, for sh4-linux-gnu target binutils-source - GNU assembler, linker and binary utilities (source) binutils-sparc64-linux-gnu - GNU binary utilities, for sparc64-linux-gnu target Launchpad-Bugs-Fixed: 1623418 1655181 Changes: binutils (2.26.1-1ubuntu1~16.04.4) xenial-proposed; urgency=medium . * SRU * POWER backports (LP: #1655181) - Don't treat .opd section specially when ELFv2. - Fix PowerPC64 ELFv1 undefined weak functions. - Modify POWER9 support to match final ISA 3.0 documentation. * Fix PR gold/18989. Implement --push-state/--pop-state. LP: #1623418. Checksums-Sha1: 7eab56000a815a9754d37f881b8a04523fa3cb80 4028 binutils_2.26.1-1ubuntu1~16.04.4.dsc dbf93cb547d73087cbb6214779dee9a8aa24e8ca 233084 binutils_2.26.1-1ubuntu1~16.04.4.diff.gz Checksums-Sha256: be3feab51074bcbd032425dc9e54cee17da022fd70961f3fa9d44ebdab56a81d 4028 binutils_2.26.1-1ubuntu1~16.04.4.dsc bf53a639bf8603ad4b48d50933e14b5a01c7f48ba0e5876dbfacbc562dd6d217 233084 binutils_2.26.1-1ubuntu1~16.04.4.diff.gz Files: 86808ea90e25fd8e60779c792d76a721 4028 devel optional binutils_2.26.1-1ubuntu1~16.04.4.dsc 8aab6fe36e3e1638724db2696672821a 233084 devel optional binutils_2.26.1-1ubuntu1~16.04.4.diff.gz Original-Maintainer: Matthias Klose -- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] ubuntu-image 0.15+16.04ubuntu1 (Accepted)
ubuntu-image (0.15+16.04ubuntu1) xenial; urgency=medium * SRU tracking number LP: #1665014 * ubuntu-image now supports gadget.yaml files with multiple volume specifications. Each volume describes a different disk image. For the multi-volume case, no implicit root file system structure is added at all; the root file system partition must be defined in the gadget.yaml. -o/--output is ignored in the multi-volume case. (LP:1641727) * Add -O/--output-dir command line options. Disk image files are written here using the volume name and a .img suffix. Deprecate -o/--output. -O and -o are mutually exclusive. * Handle structure parts with size or offset < 1MiB. (LP:1630709) * Warn when the size or offset is not a multiple of the sector size. (LP:1663172 and LP:1621151) * Allow and ignore any string values in the ``defaults`` section. (LP:1661515) * Handle a couple more cases where ubuntu-image as a snap cannot read from /tmp (model assertions and extra snaps). (LP:1663424) * Add a release script. (LP:1655669) * Version numbers for the snap now say "+snap" instead of "+real". (LP:1664296) Date: 2017-02-15 17:04:11.207554+00:00 Changed-By: Barry WarsawSigned-By: Brian Murray https://launchpad.net/ubuntu/+source/ubuntu-image/0.15+16.04ubuntu1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] pollinate 4.23-0ubuntu1~16.04.1 (Accepted)
pollinate (4.23-0ubuntu1~16.04.1) xenial; urgency=medium * Add missing dependency on vim-common, for xxd. (LP: #1656484) Date: 2017-01-14 04:08:10.741212+00:00 Changed-By: Stefano RiveraMaintainer: Dustin Kirkland Signed-By: Brian Murray https://launchpad.net/ubuntu/+source/pollinate/4.23-0ubuntu1~16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] multipath-tools 0.5.0+git1.656f8865-5ubuntu2.4 (Accepted)
multipath-tools (0.5.0+git1.656f8865-5ubuntu2.4) xenial; urgency=medium * debian/patches/wait-for-udev-in-dm_simplecmd_noflush.patch: - Cherrypick from upstream: wait for udev in dm_simplecmd_noflush(). (LP: #1621340) Date: 2017-02-10 13:58:10.333198+00:00 Changed-By: Hua ZhangSigned-By: Brian Murray https://launchpad.net/ubuntu/+source/multipath-tools/0.5.0+git1.656f8865-5ubuntu2.4 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-proposed] lxd 2.0.9-0ubuntu1~16.04.2 (Accepted)
lxd (2.0.9-0ubuntu1~16.04.2) xenial; urgency=medium * Cherry-pick upstream regression fix: - 0002-list-Fix-regression-in-json-output.patch (LP: #1667406) Date: Thu, 23 Feb 2017 12:56:02 -0500 Changed-By: Stéphane GraberMaintainer: Ubuntu Developers https://launchpad.net/ubuntu/+source/lxd/2.0.9-0ubuntu1~16.04.2 Format: 1.8 Date: Thu, 23 Feb 2017 12:56:02 -0500 Source: lxd Binary: lxd-client lxd lxc2 lxd-tools golang-github-lxc-lxd-dev Architecture: source Version: 2.0.9-0ubuntu1~16.04.2 Distribution: xenial Urgency: medium Maintainer: Ubuntu Developers Changed-By: Stéphane Graber Description: golang-github-lxc-lxd-dev - Container hypervisor based on LXC - go source lxc2 - Container hypervisor based on LXC - metapackage lxd- Container hypervisor based on LXC - daemon lxd-client - Container hypervisor based on LXC - client lxd-tools - Container hypervisor based on LXC - extra tools Launchpad-Bugs-Fixed: 1667406 Changes: lxd (2.0.9-0ubuntu1~16.04.2) xenial; urgency=medium . * Cherry-pick upstream regression fix: - 0002-list-Fix-regression-in-json-output.patch (LP: #1667406) Checksums-Sha1: 02ab5e7825428bc0b4efde2dea604f0c366fd74e 2826 lxd_2.0.9-0ubuntu1~16.04.2.dsc d2348def71672084bd2f9a37f21bbbd24d8d4058 5096748 lxd_2.0.9.orig.tar.gz e5c3806066c91e3e2d1b8a44323cfaa633ffeb88 91840 lxd_2.0.9-0ubuntu1~16.04.2.debian.tar.xz Checksums-Sha256: 6430001c7cebdc9030f67600d823a7a6e09bd2c9fac79c1bf9d21d7b921bf515 2826 lxd_2.0.9-0ubuntu1~16.04.2.dsc e67866ada06a8c18668e19a8377f5711fe766484d56fef1dff8c6331ece7612c 5096748 lxd_2.0.9.orig.tar.gz e10214d23c4cb26f710cdecc57530b3c6e535e8e904f9cdaa2d9a794331c8da0 91840 lxd_2.0.9-0ubuntu1~16.04.2.debian.tar.xz Files: 7cd68b31661dea1721bb69881539f153 2826 admin optional lxd_2.0.9-0ubuntu1~16.04.2.dsc 2fab2456a29ad8d297cf5dc74f93b772 5096748 admin optional lxd_2.0.9.orig.tar.gz 9ed60d447c08927ca15f692dec7fe272 91840 admin optional lxd_2.0.9-0ubuntu1~16.04.2.debian.tar.xz -- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-proposed] wine1.6 1:1.6.2-0ubuntu14.2 (Accepted)
wine1.6 (1:1.6.2-0ubuntu14.2) xenial; urgency=medium * Set X-AppStream-Ignore=true for included .desktop files to correct wine's display name in the Software app (LP: #1571816) Date: Wed, 22 Feb 2017 19:15:58 -0500 Changed-By: Jeremy BichaMaintainer: Scott Ritchie https://launchpad.net/ubuntu/+source/wine1.6/1:1.6.2-0ubuntu14.2 Format: 1.8 Date: Wed, 22 Feb 2017 19:15:58 -0500 Source: wine1.6 Binary: wine1.6-i386 wine1.6-amd64 wine1.6 wine1.6-dev wine1.6-dbg wine wine1.4-i386 wine1.4-amd64 wine1.4 wine1.4-dev wine1.4-dbg Architecture: source Version: 1:1.6.2-0ubuntu14.2 Distribution: xenial Urgency: medium Maintainer: Scott Ritchie Changed-By: Jeremy Bicha Description: wine - Microsoft Windows Compatibility Layer (meta-package) wine1.4- Microsoft Windows Compatibility Layer (dummy package) wine1.4-amd64 - Microsoft Windows Compatibility Layer (dummy package) wine1.4-dbg - Microsoft Windows Compatibility Layer (dummy package) wine1.4-dev - Microsoft Windows Compatibility Layer (dummy package) wine1.4-i386 - Microsoft Windows Compatibility Layer (dummy package) wine1.6- Microsoft Windows Compatibility Layer (Binary Emulator and Librar wine1.6-amd64 - Microsoft Windows Compatibility Layer (64-bit support) wine1.6-dbg - Microsoft Windows Compatibility Layer (debugging symbols) wine1.6-dev - Microsoft Windows Compatibility Layer (Development files) wine1.6-i386 - Microsoft Windows Compatibility Layer (32-bit support) Launchpad-Bugs-Fixed: 1571816 Changes: wine1.6 (1:1.6.2-0ubuntu14.2) xenial; urgency=medium . * Set X-AppStream-Ignore=true for included .desktop files to correct wine's display name in the Software app (LP: #1571816) Checksums-Sha1: ac86396b51c58852d58c25fe1ca812a0e415184f 3149 wine1.6_1.6.2-0ubuntu14.2.dsc 06050698966027267e2170f959f66dfec98bf171 150008 wine1.6_1.6.2-0ubuntu14.2.debian.tar.xz Checksums-Sha256: 70ee8fd0cf768ea6c1d370377e45fb4b58e74275794e88dc4bab8b38f8a15488 3149 wine1.6_1.6.2-0ubuntu14.2.dsc 6e8da115d2d2a162384b23b76815b2521729865c4ef0e0b625971789cd1e2ae2 150008 wine1.6_1.6.2-0ubuntu14.2.debian.tar.xz Files: efbbbfb2b20c8adf53b039b87e492859 3149 otherosfs optional wine1.6_1.6.2-0ubuntu14.2.dsc 51a1fc76bf020c308ae720c0a2984f7a 150008 otherosfs optional wine1.6_1.6.2-0ubuntu14.2.debian.tar.xz -- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-proposed] sssd 1.13.4-1ubuntu1.2 (Accepted)
sssd (1.13.4-1ubuntu1.2) xenial; urgency=medium * d/p/restart_providers_on_timeshift.patch: Implement watchdog and use SIGUSR2 after watchdog detects time shift to execute pending scheduled tasks that could be stuck (LP: #1641875) Date: Thu, 23 Feb 2017 11:46:31 +0100 Changed-By: Victor TapiaMaintainer: Ubuntu Developers Signed-By: Louis Bouchard https://launchpad.net/ubuntu/+source/sssd/1.13.4-1ubuntu1.2 Format: 1.8 Date: Thu, 23 Feb 2017 11:46:31 +0100 Source: sssd Binary: sssd sssd-common sssd-ad sssd-ad-common sssd-dbus sssd-ipa sssd-krb5 sssd-krb5-common sssd-ldap sssd-proxy sssd-tools libnss-sss libpam-sss libipa-hbac0 libipa-hbac-dev libsss-idmap0 libsss-idmap-dev libsss-nss-idmap0 libsss-nss-idmap-dev libsss-sudo libsss-simpleifp0 libsss-simpleifp-dev libwbclient-sssd libwbclient-sssd-dev python-libipa-hbac python-libsss-nss-idmap python-sss python3-libipa-hbac python3-libsss-nss-idmap python3-sss Architecture: source Version: 1.13.4-1ubuntu1.2 Distribution: xenial Urgency: medium Maintainer: Ubuntu Developers Changed-By: Victor Tapia Description: libipa-hbac-dev - FreeIPA HBAC Evaluator library libipa-hbac0 - FreeIPA HBAC Evaluator library libnss-sss - Nss library for the System Security Services Daemon libpam-sss - Pam module for the System Security Services Daemon libsss-idmap-dev - ID mapping library for SSSD -- development files libsss-idmap0 - ID mapping library for SSSD libsss-nss-idmap-dev - SID based lookups library for SSSD -- development files libsss-nss-idmap0 - SID based lookups library for SSSD libsss-simpleifp-dev - SSSD D-Bus responder helper library -- development files libsss-simpleifp0 - SSSD D-Bus responder helper library libsss-sudo - Communicator library for sudo libwbclient-sssd - SSSD libwbclient implementation libwbclient-sssd-dev - SSSD libwbclient implementation -- development files python-libipa-hbac - Python bindings for the FreeIPA HBAC Evaluator library python-libsss-nss-idmap - Python bindings for the SID lookups library python-sss - Python module for the System Security Services Daemon python3-libipa-hbac - Python3 bindings for the FreeIPA HBAC Evaluator library python3-libsss-nss-idmap - Python3 bindings for the SID lookups library python3-sss - Python3 module for the System Security Services Daemon sssd - System Security Services Daemon -- metapackage sssd-ad- System Security Services Daemon -- Active Directory back end sssd-ad-common - System Security Services Daemon -- PAC responder sssd-common - System Security Services Daemon -- common files sssd-dbus - System Security Services Daemon -- D-Bus responder sssd-ipa - System Security Services Daemon -- IPA back end sssd-krb5 - System Security Services Daemon -- Kerberos back end sssd-krb5-common - System Security Services Daemon -- Kerberos helpers sssd-ldap - System Security Services Daemon -- LDAP back end sssd-proxy - System Security Services Daemon -- proxy back end sssd-tools - System Security Services Daemon -- tools Launchpad-Bugs-Fixed: 1641875 Changes: sssd (1.13.4-1ubuntu1.2) xenial; urgency=medium . * d/p/restart_providers_on_timeshift.patch: Implement watchdog and use SIGUSR2 after watchdog detects time shift to execute pending scheduled tasks that could be stuck (LP: #1641875) Checksums-Sha1: 55e0d3a631ce7f531eea354889843ddcf6e35af4 4489 sssd_1.13.4-1ubuntu1.2.dsc 39ef07cbfe7ea6d6225a211fb3c72ec248a80e1f 3002233 sssd_1.13.4.orig.tar.gz f36858d29ee53c84179c8fde962d3c3c038b818d 1449375 sssd_1.13.4-1ubuntu1.2.diff.gz Checksums-Sha256: 4991bf53a9550ee8df0ce4723eeca3c09eed590a95405891fa7c9dc04ed4e7da 4489 sssd_1.13.4-1ubuntu1.2.dsc e21822339a4b6bd35bb7629e9e9836d460637f45edbf659da0ff05f4394a1197 3002233 sssd_1.13.4.orig.tar.gz 3ef16dada1411527e37e9515cf0cc3fe2b04317d1b562d639793b95367ec0223 1449375 sssd_1.13.4-1ubuntu1.2.diff.gz Files: 28e295baf3967a7aeb06a06a30d1281a 4489 utils extra sssd_1.13.4-1ubuntu1.2.dsc aebb21b6371c024428e4cb05bc049573 3002233 utils extra sssd_1.13.4.orig.tar.gz a45dbd51257831cde5d083ab46ae7377 1449375 utils extra sssd_1.13.4-1ubuntu1.2.diff.gz Original-Maintainer: Debian SSSD Team -- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-proposed] desktop-file-utils 0.22-1ubuntu5.1 (Accepted)
desktop-file-utils (0.22-1ubuntu5.1) xenial; urgency=medium * debian/defaults.list: - Use GNOME Software as default snap: URL handler (LP: #1666100) Date: Mon, 20 Feb 2017 16:54:20 +1300 Changed-By: Robert AncellMaintainer: Ubuntu Developers https://launchpad.net/ubuntu/+source/desktop-file-utils/0.22-1ubuntu5.1 Format: 1.8 Date: Mon, 20 Feb 2017 16:54:20 +1300 Source: desktop-file-utils Binary: desktop-file-utils Architecture: source Version: 0.22-1ubuntu5.1 Distribution: xenial Urgency: medium Maintainer: Ubuntu Developers Changed-By: Robert Ancell Description: desktop-file-utils - Utilities for .desktop files Launchpad-Bugs-Fixed: 1666100 Changes: desktop-file-utils (0.22-1ubuntu5.1) xenial; urgency=medium . * debian/defaults.list: - Use GNOME Software as default snap: URL handler (LP: #1666100) Checksums-Sha1: 72e69cacce8d91c1ab40044c431aacd397193d2e 1532 desktop-file-utils_0.22-1ubuntu5.1.dsc 11d211f53434b85fc6c156142a72ded0f23016ed 6968 desktop-file-utils_0.22-1ubuntu5.1.debian.tar.xz Checksums-Sha256: 2b89cd03962bf21ef394b48e96f338c8dd8e8c97ef3cb466a00e28395fdc4335 1532 desktop-file-utils_0.22-1ubuntu5.1.dsc 0a5bce9f2335c92418f6b507fe4844ca3b177969cd297621c354bd26af1767fb 6968 desktop-file-utils_0.22-1ubuntu5.1.debian.tar.xz Files: 211aa1aa57530edd4cf44e6d60c2cea9 1532 devel optional desktop-file-utils_0.22-1ubuntu5.1.dsc 07286affc8a23f39b5e65f38bd7f3ac0 6968 devel optional desktop-file-utils_0.22-1ubuntu5.1.debian.tar.xz Original-Maintainer: Ross Burton -- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] php7.0 7.0.15-0ubuntu0.16.04.2 (Accepted)
php7.0 (7.0.15-0ubuntu0.16.04.2) xenial-security; urgency=medium * No change rebuild in the -security pocket. Date: 2017-02-23 13:57:21.947572+00:00 Changed-By: Marc DeslauriersSigned-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/php7.0/7.0.15-0ubuntu0.16.04.2 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-security] php7.0 7.0.15-0ubuntu0.16.04.2 (Accepted)
php7.0 (7.0.15-0ubuntu0.16.04.2) xenial-security; urgency=medium * No change rebuild in the -security pocket. php7.0 (7.0.15-0ubuntu0.16.04.1) xenial; urgency=medium * New upstream release - LP: #1663405 - Refresh patches for new upstream release. * debian/patches/0050-Fix-pdo_pgsql.patch: Fixed #73959 - lastInsertId fails to throw an exception in pdsql. Thanks to andrewnester. Closes LP: #1658289. php7.0 (7.0.13-0ubuntu0.16.04.1) xenial; urgency=medium * New upstream release - LP: #1645431 - Refresh patches for new upstream release. * Drop: - SECURITY UPDATE: proxy request header vulnerability (httpoxy) + debian/patches/CVE-2016-5385.patch: only use HTTP_PROXY from the local environment in ext/standard/basic_functions.c, main/SAPI.c, main/php_variables.c. + CVE-2016-5385 [ Fixed in 7.0.9 ] - SECURITY UPDATE: inadequate error handling in bzread() + debian/patches/CVE-2016-5399.patch: do not allow reading past error read in ext/bz2/bz2.c. + CVE-2016-5399 [ Fixed in 7.0.9 ] - SECURITY UPDATE: integer overflow in the virtual_file_ex function + debian/patches/CVE-2016-6289.patch: properly check path_length in Zend/zend_virtual_cwd.c. + CVE-2016-6289 [ Fixed in 7.0.9 ] - SECURITY UPDATE: use after free in unserialize() with unexpected session deserialization + debian/patches/CVE-2016-6290.patch: destroy var_hash properly in ext/session/session.c, added test to ext/session/tests/bug72562.phpt. + CVE-2016-6290 [ Fixed in 7.0.9 ] - SECURITY UPDATE: out of bounds read in exif_process_IFD_in_MAKERNOTE + debian/patches/CVE-2016-6291.patch: add more bounds checks to ext/exif/exif.c. + CVE-2016-6291 [ Fixed in 7.0.9 ] - SECURITY UPDATE: NULL pointer dereference in exif_process_user_comment + debian/patches/CVE-2016-6292.patch: properly handle encoding in ext/exif/exif.c. + CVE-2016-6292 [ Fixed in 7.0.9 ] - SECURITY UPDATE: locale_accept_from_http out-of-bounds access + debian/patches/CVE-2016-6294.patch: check length in ext/intl/locale/locale_methods.c, added test to ext/intl/tests/bug72533.phpt. + CVE-2016-6294 [ Fixed in 7.0.9 ] - SECURITY UPDATE: use after free vulnerability in SNMP with GC and unserialize() + debian/patches/CVE-2016-6295.patch: add new handler to ext/snmp/snmp.c, add test to ext/snmp/tests/bug72479.phpt. + CVE-2016-6295 [ Fixed in 7.0.9 ] - SECURITY UPDATE: heap buffer overflow in simplestring_addn + debian/patches/CVE-2016-6296.patch: prevent overflows in ext/xmlrpc/libxmlrpc/simplestring.*. + CVE-2016-6296 [ Fixed in 7.0.9 ] - SECURITY UPDATE: integer overflow in php_stream_zip_opener + debian/patches/CVE-2016-6297.patch: use size_t in ext/zip/zip_stream.c. + CVE-2016-6297 [ Fixed in 7.0.9 ] - debian/patches/fix_exif_tests.patch: fix exif test results after security changes. [ Fixed in 7.0.9 ] - SECURITY UPDATE: denial of service or code execution via crafted serialized data + debian/patches/CVE-2016-7124.patch: fix unserializing logic in ext/session/session.c, ext/standard/var_unserializer.c*, ext/wddx/wddx.c, added tests to ext/standard/tests/serialize/bug72663.phpt, ext/standard/tests/serialize/bug72663_2.phpt, ext/standard/tests/serialize/bug72663_3.phpt. + CVE-2016-7124 [ Fixed in 7.0.10 ] - SECURITY UPDATE: arbitrary-type session data injection + debian/patches/CVE-2016-7125.patch: consume data even if not storing in ext/session/session.c, added test to ext/session/tests/bug72681.phpt. + CVE-2016-7125 [ Fixed in 7.0.10 ] - SECURITY UPDATE: denial of service and possible code execution in imagegammacorrect function + debian/patches/CVE-2016-7127.patch: check gamma values in ext/gd/gd.c, added test to ext/gd/tests/bug72730.phpt. + CVE-2016-7127 [ Fixed in 7.0.10 ] - SECURITY UPDATE: information disclosure via exif_process_IFD_in_TIFF + debian/patches/CVE-2016-7128.patch: properly handle thumbnails in ext/exif/exif.c. + CVE-2016-7128 [ Fixed in 7.0.10 ] - SECURITY UPDATE: denial of service and possible code execution via invalid ISO 8601 time value + debian/patches/CVE-2016-7129.patch: properly handle strings in ext/wddx/wddx.c, added test to ext/wddx/tests/bug72749.phpt. + CVE-2016-7129 [ Fixed in 7.0.10 ] - SECURITY UPDATE: denial of service and possible code execution via invalid base64 binary value + debian/patches/CVE-2016-7130.patch: properly handle string in ext/wddx/wddx.c, added test to ext/wddx/tests/bug72750.phpt. + CVE-2016-7130 [
[ubuntu/xenial-updates] libreoffice 1:5.1.6~rc2-0ubuntu1~xenial1 (Accepted)
libreoffice (1:5.1.6~rc2-0ubuntu1~xenial1) xenial; urgency=medium * new upstream rc libreoffice (1:5.1.5~rc2-0ubuntu1~xenial1) xenial; urgency=medium * new upstream rc Date: 2016-10-19 16:11:14.203285+00:00 Changed-By: Björn MichaelsenSigned-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/libreoffice/1:5.1.6~rc2-0ubuntu1~xenial1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-security] libreoffice 1:5.1.6~rc2-0ubuntu1~xenial1 (Accepted)
libreoffice (1:5.1.6~rc2-0ubuntu1~xenial1) xenial; urgency=medium * new upstream rc libreoffice (1:5.1.5~rc2-0ubuntu1~xenial1) xenial; urgency=medium * new upstream rc Date: 2016-10-19 16:11:14.203285+00:00 Changed-By: Björn MichaelsenSigned-By: Emily Ratliff https://launchpad.net/ubuntu/+source/libreoffice/1:5.1.6~rc2-0ubuntu1~xenial1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes
[ubuntu/xenial-updates] makedumpfile 1:1.5.9-5ubuntu0.4 (Accepted)
makedumpfile (1:1.5.9-5ubuntu0.4) xenial; urgency=medium * d/p/0006-PATCH-Support-newer-kernels.patch : Support kernel versions up to 4.8 (LP: #1557751) * Turn hardcoded timeo and retrans NFS options into parameters that can be modified in /etc/default/kdump-tools. Also use the NFS defaults (timeo=600, retrans=3) for these parameters. Make those values visible in the 'show' command if NFS is configured (LP: #1641235) * Complete support for kernel versions 4.8 and later : d/p/0007-PATCH-Looking-for-page.compound_order-compound_dtor-.patch, d/p/0008-PATCH-Skip-examining-compound-tail-pages.patch (LP: #1655625) Date: 2017-02-15 10:09:11.765969+00:00 Changed-By: Louis BouchardSigned-By: Andy Whitcroft https://launchpad.net/ubuntu/+source/makedumpfile/1:1.5.9-5ubuntu0.4 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes