[ubuntu/xenial-security] nss 2:3.28.4-0ubuntu0.16.04.3 (Accepted)

nss (2:3.28.4-0ubuntu0.16.04.3) xenial-security; urgency=medium * SECURITY UPDATE: Use-after-free in TLS 1.2 generating handshake hashes - debian/patches/CVE-2017-7805.patch: Simplify handling of CertificateVerify in nss/lib/ssl/ssl3con.c, nss/lib/ssl/ssl3prot.h. - CVE-2017-7805 D

[ubuntu/xenial-updates] libidn 1.32-3ubuntu1.2 (Accepted)

libidn (1.32-3ubuntu1.2) xenial-security; urgency=medium * SECURITY UPDATE: Integer overflow - debian/patches/CVE-2017-14062.patch: fix integer overflow in punycode.c. - CVE-2017-14062 Date: 2017-09-25 18:04:17.111684+00:00 Changed-By: Marc Deslauriers Signed-By: Ubuntu Archive

[ubuntu/xenial-security] firefox 56.0+build6-0ubuntu0.16.04.1 (Accepted)

firefox (56.0+build6-0ubuntu0.16.04.1) xenial-security; urgency=medium * New upstream stable release (56.0build6) [ Rico Tzschichholz ] * Bump build-dep on rustc >= 1.17.0 and cargo >= 0.18 * Build-dep on clang-3.9, llvm-3.9-dev on 64bit archs for stylo - update debian/control{,.in}

[ubuntu/xenial-security] rustc 1.17.0+dfsg2-8~ubuntu0.16.04.2 (Accepted)

rustc (1.17.0+dfsg2-8~ubuntu0.16.04.2) xenial; urgency=medium * Backport 1.17.0 to xenial * Relax llvm-toolchain-3.9 requirement to 1:3.9.1-4~ * Relax the gdb requirement and don't build-conflict on gdb-minimal rustc (1.17.0+dfsg2-8) unstable; urgency=medium * Workaround for linux #86554

[ubuntu/xenial-security] llvm-toolchain-3.9 1:3.9.1-4ubuntu3~16.04.2 (Accepted)

llvm-toolchain-3.9 (1:3.9.1-4ubuntu3~16.04.2) xenial; urgency=medium * Backport upstream patch to fix a rustc miscompilation bug on armhf - add debian/patches/fix-computeKnownBits-for-ARMISD::CMOV.patch - update debian/patches/series Date: 2017-07-26 12:22:38.945313+00:00 Changed-By: Ch

[ubuntu/xenial-security] cargo 0.18.0-0ubuntu0.16.04.1 (Accepted)

cargo (0.18.0-0ubuntu0.16.04.1) xenial; urgency=medium * Update to 0.18.0 * Refresh debian/patches/clean-cargo-deps.patch cargo (0.17.0-0ubuntu1~16.04.5) xenial; urgency=medium * Backport 0.17.0 to xenial * Build-Depend on libssl-dev rather than libssl1.0-dev cargo (0.17.0-0ubuntu1) z

[ubuntu/xenial-security] libidn 1.32-3ubuntu1.2 (Accepted)

libidn (1.32-3ubuntu1.2) xenial-security; urgency=medium * SECURITY UPDATE: Integer overflow - debian/patches/CVE-2017-14062.patch: fix integer overflow in punycode.c. - CVE-2017-14062 Date: 2017-09-25 18:04:17.111684+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubun

[ubuntu/xenial-proposed] linux-meta-aws 4.4.0.1038.40 (Accepted)

linux-meta-aws (4.4.0.1038.40) xenial; urgency=medium * Bump ABI 4.4.0-1038 Date: 2017-09-28 20:01:22.424449+00:00 Changed-By: Thadeu Lima de Souza Cascardo Signed-By: Andy Whitcroft https://launchpad.net/ubuntu/+source/linux-meta-aws/4.4.0.1038.40 Sorry, changesfile not available.-- Xenial-

[ubuntu/xenial-proposed] linux-aws 4.4.0-1038.47 (Accepted)

linux-aws (4.4.0-1038.47) xenial; urgency=low * linux-aws: 4.4.0-1038.47 -proposed tracker (LP: #1720042) [ Ubuntu: 4.4.0-97.120 ] * linux: 4.4.0-97.120 -proposed tracker (LP: #1718149) * blk-mq: possible deadlock on CPU hot(un)plug (LP: #1670634) - [Config] s390x -- disable CONFIG_{

[ubuntu/xenial-updates] ca-certificates 20170717~16.04.1 (Accepted)

ca-certificates (20170717~16.04.1) xenial-security; urgency=medium * Update ca-certificates database to 20170717: - backport changes from the Ubuntu 17.10 20170717 package Date: 2017-09-27 15:41:22.802012+00:00 Changed-By: Marc Deslauriers Signed-By: Ubuntu Archive Robot https://launchpa

[ubuntu/xenial-updates] poppler 0.41.0-0ubuntu1.3 (Accepted)

poppler (0.41.0-0ubuntu1.3) xenial-security; urgency=medium * SECURITY UPDATE: Memory corruption - infinite loop - debian/patches/CVE-2017-14519.patch: fix infinite recursion in poppler/Gfx.cc, poppler/Gfx.h, poppler/GfxFont.cc, poppler/GfxFont.h - CVE-2017-14519 Date: 2017-09-29

[ubuntu/xenial-updates] nss 2:3.28.4-0ubuntu0.16.04.3 (Accepted)

nss (2:3.28.4-0ubuntu0.16.04.3) xenial-security; urgency=medium * SECURITY UPDATE: Use-after-free in TLS 1.2 generating handshake hashes - debian/patches/CVE-2017-7805.patch: Simplify handling of CertificateVerify in nss/lib/ssl/ssl3con.c, nss/lib/ssl/ssl3prot.h. - CVE-2017-7805 D

[ubuntu/xenial-security] poppler 0.41.0-0ubuntu1.3 (Accepted)

poppler (0.41.0-0ubuntu1.3) xenial-security; urgency=medium * SECURITY UPDATE: Memory corruption - infinite loop - debian/patches/CVE-2017-14519.patch: fix infinite recursion in poppler/Gfx.cc, poppler/Gfx.h, poppler/GfxFont.cc, poppler/GfxFont.h - CVE-2017-14519 Date: 2017-09-29

[ubuntu/xenial-updates] dnsmasq 2.75-1ubuntu0.16.04.3 (Accepted)

dnsmasq (2.75-1ubuntu0.16.04.3) xenial-security; urgency=medium * SECURITY UPDATE: add fixes to correct multiple security issues - CVE-2017-14491 DNS heap buffer overflow. - CVE-2017-14492, DHCPv6 RA heap overflow. - CVE-2017-14493, DHCPv6 - Stack buffer overflow. - CVE-2017-1449

[ubuntu/xenial-security] ca-certificates 20170717~16.04.1 (Accepted)

ca-certificates (20170717~16.04.1) xenial-security; urgency=medium * Update ca-certificates database to 20170717: - backport changes from the Ubuntu 17.10 20170717 package Date: 2017-09-27 15:41:22.802012+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/ca-certificat

[ubuntu/xenial-security] dnsmasq 2.75-1ubuntu0.16.04.3 (Accepted)

dnsmasq (2.75-1ubuntu0.16.04.3) xenial-security; urgency=medium * SECURITY UPDATE: add fixes to correct multiple security issues - CVE-2017-14491 DNS heap buffer overflow. - CVE-2017-14492, DHCPv6 RA heap overflow. - CVE-2017-14493, DHCPv6 - Stack buffer overflow. - CVE-2017-1449