[ubuntu/xenial-proposed] ldb 2:1.1.24-1ubuntu1 (Accepted)

w upstream release. Fixes: - CVE-2015-3223: Denial of Service. - CVE-2015-5330: Remote memory read. Date: Wed, 06 Jan 2016 07:27:01 -0500 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/+source/ldb/2:1.1.24-1ubuntu1 -BEGIN PGP SIGNED MESSAGE- Ha

[ubuntu/xenial-proposed] samba 2:4.3.3+dfsg-1ubuntu1 (Accepted)

ith PMDA * ctdb: Fix privacy breach on google.com (from documentation) Date: Wed, 06 Jan 2016 07:41:39 -0500 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/+source/samba/2:4.3.3+dfsg-1ubuntu1 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date

[ubuntu/xenial-proposed] libpng 1.2.54-1ubuntu1 (Accepted)

* SECURITY UPDATE: out-of-range read in png_check_keyword() - debian/patches/CVE-2015-8540.patch: check key_len in pngwutil.c. - CVE-2015-8540 Date: Wed, 06 Jan 2016 12:39:08 -0500 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/+source/libpng/1.2.54

[ubuntu/xenial-proposed] libvirt 1.2.21-2ubuntu5 (Accepted)

Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/+source/libvirt/1.2.21-2ubuntu5 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 08 Jan 2016 10:32:17 -0500 Source: libvirt Binary: libvirt-bin libvirt0 libvirt0-dbg libvirt-doc libvirt-dev

[ubuntu/xenial-security] xorg-server-hwe-16.04 2:1.18.4-1ubuntu6.1~16.04.2 (Accepted)

-config.h.in, include/os.h, os/mitauth.c, os/timingsafe_memcmp.c. - CVE-2017-2624 Date: 2017-07-19 13:11:21.840897+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/xorg-server-hwe-16.04/2:1.18.4-1ubuntu6.1~16.04.2 Sorry, changesfile not available.-- Xenial-changes mailing

[ubuntu/xenial-security] xorg-server 2:1.18.4-0ubuntu0.3 (Accepted)

, os/mitauth.c, os/timingsafe_memcmp.c. - CVE-2017-2624 Date: 2017-07-17 17:02:33.723070+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/xorg-server/2:1.18.4-0ubuntu0.3 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com

[ubuntu/xenial-security] imagemagick 8:6.8.9.9-7ubuntu5.8 (Accepted)

-2017-11449, CVE-2017-11450, CVE-2017-11478 Date: 2017-07-21 15:56:19.306510+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/imagemagick/8:6.8.9.9-7ubuntu5.8 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settin

[ubuntu/xenial-proposed] xorg-server-hwe-16.04 2:1.19.3-1ubuntu1~16.04.2 (Accepted)

- debian/patches/CVE-2017-10972.patch: zero target buffer in SProcXSendExtensionEvent in Xi/sendexev.c. - CVE-2017-10972 Date: Tue, 25 Jul 2017 09:04:30 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu X-SWAT https://launchpad.net/ubuntu/+source/xorg-server-hwe-16.04/2:1.19.3-1ubuntu1

[ubuntu/xenial-security] ruby2.3 2.3.1-2~16.04.2 (Accepted)

an/patches/fix_tests.patch: fix tests that do not work correctly. Date: 2017-06-20 18:18:13.993438+00:00 Changed-By: Marc Deslauriers Maintainer: Antonio Terceiro https://launchpad.net/ubuntu/+source/ruby2.3/2.3.1-2~16.04.2 Sorry, changesfile not available.-- Xenial-changes mailing list Xeni

[ubuntu/xenial-security] gdb 7.11.1-0ubuntu1~16.5 (Accepted)

infinite recursion - debian/patches/CVE-2016-6131.patch: prevent infinite recursion in libiberty/cplus-dem.c, added test to libiberty/testsuite/demangle-expected. - CVE-2016-6131 Date: 2017-06-09 19:23:14.661340+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source

[ubuntu/xenial-security] libiberty 20160215-1ubuntu0.2 (Accepted)

recursion in libiberty/cplus-dem.c, added test to libiberty/testsuite/demangle-expected. - CVE-2016-6131 Date: 2017-06-12 16:50:17.378467+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/libiberty/20160215-1ubuntu0.2 Sorry, changesfile not available.-- Xenial

[ubuntu/xenial-security] freeradius 2.2.8+dfsg-0.1ubuntu0.1 (Accepted)

. - CVE-2017-10982 * SECURITY UPDATE: read overflow when decoding option 63 - debian/patches/CVE-2017-10983.patch: decode correct option in src/lib/dhcp.c. - CVE-2017-10983 Date: 2017-07-26 15:22:22.681909+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source

[ubuntu/xenial-security] apache2 2.4.18-2ubuntu3.4 (Accepted)

Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/apache2/2.4.18-2ubuntu3.4 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes

[ubuntu/xenial-security] imagemagick 8:6.8.9.9-7ubuntu5.9 (Accepted)

-token-length.patch, 0226-Use-proper-cast.patch. Date: 2017-07-31 12:59:15.006435+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/imagemagick/8:6.8.9.9-7ubuntu5.9 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify

[ubuntu/xenial-security] rabbitmq-server 3.5.7-1ubuntu0.16.04.2 (Accepted)

-mqtt/test/src/com/rabbitmq/mqtt/test/MqttTest.java, fix URL in plugins-src/rabbitmq-mqtt/test/Makefile. - CVE-2016-9877 Date: 2017-07-27 19:04:14.33+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/rabbitmq-server/3.5.7-1ubuntu0.16.04.2 Sorry, changesfile not

[ubuntu/xenial-security] pinba-engine-mysql 1.1.0-1ubuntu1.6 (Accepted)

pinba-engine-mysql (1.1.0-1ubuntu1.6) xenial-security; urgency=medium * Rebuild against mysql 5.7.19. (LP: #1707624) Date: 2017-08-01 14:10:18.672485+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/pinba-engine-mysql/1.1.0-1ubuntu1.6 Sorry, changesfile not available

[ubuntu/xenial-security] webkit2gtk 2.16.6-0ubuntu0.16.04.1 (Accepted)

-2017-7056, CVE-2017-7061, CVE-2017-7064 Date: 2017-08-01 11:23:26.332928+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/webkit2gtk/2.16.6-0ubuntu0.16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings

[ubuntu/xenial-security] llvm-toolchain-4.0 1:4.0-1ubuntu1~16.04.2 (Accepted)

llvm-toolchain-4.0 (1:4.0-1ubuntu1~16.04.2) xenial-security; urgency=medium * No change rebuild in the -security pocket. Date: 2017-08-02 16:48:14.668091+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/llvm-toolchain-4.0/1:4.0-1ubuntu1~16.04.2 Sorry, changesfile not

[ubuntu/xenial-security] freerdp 1.1.0~git20140921.1.440916e+dfsg1-5ubuntu1.2 (Accepted)

* debian/patches/alignment_test_failure.patch: fix FTBFS on armhf because of failing alignment test. Date: 2017-08-03 16:53:22.351789+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/freerdp/1.1.0~git20140921.1.440916e+dfsg1-5ubuntu1.2 Sorry, changesfile not available

[ubuntu/xenial-security] php7.0 7.0.22-0ubuntu0.16.04.1 (Accepted)

{,.in}: Backport "libapache2-mod-phpX.Y now recommends apache2 package (as this is what most people want anyway)" from Debian 8.0.7-3 (LP: #1689646). Date: 2017-08-09 14:08:19.058197+00:00 Changed-By: Nish Aravamudan Signed-By: Marc Deslauriers https://launchpad.net/ubuntu/+sou

[ubuntu/xenial-security] vlc 2.2.2-5ubuntu0.16.04.4 (Accepted)

vlc (2.2.2-5ubuntu0.16.04.4) xenial-security; urgency=medium * SECURITY UPDATE: flac: Fix heap write overflow on frame format change (LP: #1709420) - fix-CVE-2017-9300.patch - CVE-2017-9300 Date: 2017-08-11 14:13:13.334563+00:00 Changed-By: Simon Quigley Signed-By: Marc

[ubuntu/xenial-security] menu-cache 1.0.1-1ubuntu0.1 (Accepted)

menu-cache (1.0.1-1ubuntu0.1) xenial-security; urgency=medium * SECURITY UPDATE: Socket may be blocked by another user (LP: #1703564) - fix-CVE-2017-8933.patch - CVE-2017-8933 Date: 2017-08-11 17:47:15.856720+00:00 Changed-By: Simon Quigley Signed-By: Marc Deslauriers https

[ubuntu/xenial-security] postgresql-9.5 9.5.8-0ubuntu0.16.04.1 (Accepted)

tails about other changes: http://www.postgresql.org/docs/9.5/static/release-9-5-5.html Date: 2017-08-14 14:21:13.402771+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/postgresql-9.5/9.5.8-0ubuntu0.16.04.1 Sorry, changesfile not available.-- Xenial-changes ma

[ubuntu/xenial-security] clamav 0.99.2+dfsg-0ubuntu0.16.04.2 (Accepted)

/patches/CVE-2017-6420.patch: add bounds checks to libclamav/wwunpack.c. - debian/patches/CVE-2017-6420-2.patch: fix unit tests in libclamav/wwunpack.c, unit_tests/check_jsnorm.c. - CVE-2017-6420 Date: 2017-08-09 12:51:13.996503+00:00 Changed-By: Marc Deslauriers https

[ubuntu/xenial-security] libmspack 0.5-1ubuntu0.16.04.1 (Accepted)

/qtmd.c. - CVE-2017-6419 * SECURITY UPDATE: DoS via crafted CAB file - debian/patches/CVE-2017-11423.patch: fix error handling in mspack/cabd.c. - CVE-2017-11423 Date: 2017-08-16 12:00:23.088377+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/libmspack/0.5

[ubuntu/xenial-security] c-ares 1.10.0-3ubuntu0.2 (Accepted)

: Marc Deslauriers https://launchpad.net/ubuntu/+source/c-ares/1.10.0-3ubuntu0.2 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes

[ubuntu/xenial-security] graphite2 1.3.10-0ubuntu0.16.04.1 (Accepted)

:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/graphite2/1.3.10-0ubuntu0.16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes

[ubuntu/xenial-security] kcoreaddons 5.18.0-0ubuntu1.1 (Accepted)

- a06cef from upstream - CVE-2016-7966_4.patch - 5e13d2 from upstream Date: 2017-08-21 14:28:14.493685+00:00 Changed-By: Simon Quigley Signed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/kcoreaddons/5.18.0-0ubuntu1.1 Sorry, changesfile not available.-- Xenial-changes mailing list

[ubuntu/xenial-security] varnish 4.1.1-1ubuntu0.2 (Accepted)

Changed-By: Simon Quigley Signed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/varnish/4.1.1-1ubuntu0.2 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial

[ubuntu/xenial-security] pjproject 2.1.0.0.ast20130823-1+deb8u1build0.16.04.1 (Accepted)

pjproject (2.1.0.0.ast20130823-1+deb8u1build0.16.04.1) xenial-security; urgency=medium * fake sync from Debian Date: 2017-08-23 12:40:15.232532+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/pjproject/2.1.0.0.ast20130823-1+deb8u1build0.16.04.1 Sorry, changesfile not

[ubuntu/xenial-security] qemu 1:2.5+dfsg-5ubuntu10.15 (Accepted)

es in hw/ide/core.c. - CVE-2017-12809 Date: 2017-08-22 17:03:20.073927+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/qemu/1:2.5+dfsg-5ubuntu10.15 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settin

[ubuntu/xenial-security] bind9 1:9.10.3.dfsg.P4-8ubuntu1.8 (Accepted)

lib/dns/tsig.c, aded test to lib/dns/tests/Makefile.in, lib/dns/tests/tsig_test.c. * debian/patches/update_keys.patch: Update the built in managed keys to include the upcoming root KSK in bind.keys, bind.keys.h. Date: 2017-09-15 15:07:13.980604+00:00 Changed-By: Marc Deslauriers https

[ubuntu/xenial-security] apache2 2.4.18-2ubuntu3.5 (Accepted)

apache2 (2.4.18-2ubuntu3.5) xenial-security; urgency=medium * SECURITY UPDATE: optionsbleed information leak - debian/patches/CVE-2017-9798.patch: disallow method registration at run time in server/core.c. - CVE-2017-9798 Date: 2017-09-18 16:35:48.056965+00:00 Changed-By: Marc

[ubuntu/xenial-security] qemu 1:2.5+dfsg-5ubuntu10.16 (Accepted)

13:48:48.006419+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/qemu/1:2.5+dfsg-5ubuntu10.16 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/x

[ubuntu/xenial-security] samba 2:4.3.11+dfsg-0ubuntu0.16.04.11 (Accepted)

/smbd/reply.c. - CVE-2017-12163 samba (2:4.3.11+dfsg-0ubuntu0.16.04.10) xenial; urgency=medium * d/p/bug_1702529_EACCESS_with_rootshare.patch: Handle corner case for / shares. (LP: #1702529) Date: 2017-09-21 14:19:28.598807+00:00 Changed-By: Marc Deslauriers https://launchpad.net/u

[ubuntu/xenial-security] dnsmasq 2.75-1ubuntu0.16.04.3 (Accepted)

destroyed and recreated. LP: #1639776. + 2675f2061525bc954be14988d64384b74aa7bf8b + 16800ea072dd0cdf14d951c4bb8d2808b3dfe53d Date: 2017-09-27 14:54:21.951527+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/dnsmasq/2.75-1ubuntu0.16.04.3 Sorry, changesfile not available

[ubuntu/xenial-security] ca-certificates 20170717~16.04.1 (Accepted)

ca-certificates (20170717~16.04.1) xenial-security; urgency=medium * Update ca-certificates database to 20170717: - backport changes from the Ubuntu 17.10 20170717 package Date: 2017-09-27 15:41:22.802012+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/ca

[ubuntu/xenial-security] libidn 1.32-3ubuntu1.2 (Accepted)

libidn (1.32-3ubuntu1.2) xenial-security; urgency=medium * SECURITY UPDATE: Integer overflow - debian/patches/CVE-2017-14062.patch: fix integer overflow in punycode.c. - CVE-2017-14062 Date: 2017-09-25 18:04:17.111684+00:00 Changed-By: Marc Deslauriers https://launchpad.net

[ubuntu/xenial-security] nss 2:3.28.4-0ubuntu0.16.04.3 (Accepted)

Date: 2017-09-29 13:39:19.866453+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/nss/2:3.28.4-0ubuntu0.16.04.3 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com

[ubuntu/xenial-security] git 1:2.7.4-0ubuntu1.3 (Accepted)

- archimport-use-safe_pipe_capture-for-user-input.diff - CVE-2017-14867 Date: 2017-10-04 18:12:16.327546+00:00 Changed-By: Simon Quigley Signed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/git/1:2.7.4-0ubuntu1.3 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial

[ubuntu/xenial-security] wordpress-shibboleth 1.4-2+deb8u1build0.16.04.2 (Accepted)

wordpress-shibboleth (1.4-2+deb8u1build0.16.04.2) xenial-security; urgency=medium * fake sync from Debian Date: 2017-10-06 18:38:15.345937+00:00 Changed-By: Marc Deslauriers Maintainer: Dominic Hargreaves https://launchpad.net/ubuntu/+source/wordpress-shibboleth/1.4-2+deb8u1build0.16.04.2

[ubuntu/xenial-security] libxfont 1:1.5.1-1ubuntu0.16.04.3 (Accepted)

PCF file - debian/patches/CVE-2017-13722.patch: check string boundaries in src/bitmap/pcfread.c. - CVE-2017-13722 Date: 2017-10-06 16:54:24.440083+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/libxfont/1:1.5.1-1ubuntu0.16.04.3 Sorry, changesfile not

[ubuntu/xenial-security] libxfont2 1:2.0.1-3~ubuntu16.04.2 (Accepted)

PCF file - debian/patches/CVE-2017-13722.patch: check string boundaries in src/bitmap/pcfread.c. - CVE-2017-13722 Date: 2017-10-06 16:54:19.575057+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/libxfont2/1:2.0.1-3~ubuntu16.04.2 Sorry, changesfile not

[ubuntu/xenial-security] curl 7.47.0-1ubuntu2.3 (Accepted)

anged-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/curl/7.47.0-1ubuntu2.3 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes

[ubuntu/xenial-security] python-oslo.concurrency 3.7.1-0ubuntu1.1 (Accepted)

python-oslo.concurrency (3.7.1-0ubuntu1.1) xenial-security; urgency=medium * No change rebuild for the -security pocket. Date: 2017-08-25 15:52:18.574911+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/python-oslo.concurrency/3.7.1-0ubuntu1.1 Sorry, changesfile not

[ubuntu/xenial-security] keystone 2:9.3.0-0ubuntu3.1 (Accepted)

/fix_requirements.patch: fix ftbfs. Date: 2017-08-25 21:06:13.417666+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/keystone/2:9.3.0-0ubuntu3.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe

[ubuntu/xenial-security] openvswitch 2.5.2-0ubuntu0.16.04.2 (Accepted)

-2017-9265 Date: 2017-08-25 00:57:13.896635+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/openvswitch/2.5.2-0ubuntu0.16.04.2 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at:

[ubuntu/xenial-security] wayland 1.12.0-1~ubuntu16.04.2 (Accepted)

wayland (1.12.0-1~ubuntu16.04.2) xenial-security; urgency=medium * No change rebuild in the -security pocket. Date: 2017-10-11 18:45:15.849460+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/wayland/1.12.0-1~ubuntu16.04.2 Sorry, changesfile not available.-- Xenial

[ubuntu/xenial-security] mir 0.26.3+16.04.20170605-0ubuntu1.1 (Accepted)

mir (0.26.3+16.04.20170605-0ubuntu1.1) xenial-security; urgency=medium * No change rebuild in the -security pocket. Date: 2017-10-11 22:24:26.235865+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/mir/0.26.3+16.04.20170605-0ubuntu1.1 Sorry, changesfile not available

[ubuntu/xenial-security] x11proto-core 7.0.31-1~ubuntu16.04.2 (Accepted)

x11proto-core (7.0.31-1~ubuntu16.04.2) xenial-security; urgency=medium * No change rebuild in the -security pocket. Date: 2017-10-11 18:51:35.633779+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/x11proto-core/7.0.31-1~ubuntu16.04.2 Sorry, changesfile not available

[ubuntu/xenial-security] xorg-server 2:1.18.4-0ubuntu0.6 (Accepted)

: Build against libxfont1-dev. (LP: #1687981, #1707691) * disable-rotation-transform-gpuscreens.patch: Dropped, NVIDIA driver supports rotation now. (LP: #1706287) Date: 2017-10-11 19:44:28.757562+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/xorg-server/2:1.18.4

[ubuntu/xenial-security] xorg-server-hwe-16.04 2:1.19.3-1ubuntu1~16.04.3 (Accepted)

8.4-1ubuntu9) zesty; urgency=medium * control: Depend on libxfont1-dev. xorg-server (2:1.18.4-1ubuntu8) zesty; urgency=medium * xvfb-run: Bump default bitdepth to 16 so that GLX works. Date: 2017-10-12 11:20:38.035342+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/xorg-

[ubuntu/xenial-security] xen 4.6.5-0ubuntu1.4 (Accepted)

27 / CVE-2017-12137 - x86/grant: Disallow misaligned PTEs - XSA-228 / CVE-2017-12136 - gnttab: split maptrack lock to make it fulfill its purpose again - XSA-230 / CVE-2017-12855 - gnttab: correct pin status fixup for copy Date: 2017-10-13 15:40:49.000718+00:00 Changed-By

[ubuntu/xenial-security] wpa 2.4-0ubuntu6.2 (Accepted)

-16 12:46:26.492135+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/wpa/2.4-0ubuntu6.2 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial

[ubuntu/xenial-security] xorg-server 2:1.18.4-0ubuntu0.7 (Accepted)

/io.c. * debian/patches/xkb_escape_fix.patch: escape non-printable characters correctly in xkb/xkbtext.c. Date: 2017-10-13 13:55:17.566750+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/xorg-server/2:1.18.4-0ubuntu0.7 Sorry, changesfile not available.-- Xenial-changes

[ubuntu/xenial-security] xorg-server-hwe-16.04 2:1.19.3-1ubuntu1~16.04.4 (Accepted)

length in os/io.c. * debian/patches/xkb_escape_fix.patch: escape non-printable characters correctly in xkb/xkbtext.c. Date: 2017-10-13 14:09:15.116700+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/xorg-server-hwe-16.04/2:1.19.3-1ubuntu1~16.04.4 Sorry, changesfile

[ubuntu/xenial-security] curl 7.47.0-1ubuntu2.4 (Accepted)

curl (7.47.0-1ubuntu2.4) xenial-security; urgency=medium * SECURITY UPDATE: IMAP FETCH response out of bounds read - debian/patches/CVE-2017-1000257.patch: check size in lib/imap.c. - CVE-2017-1000257 Date: 2017-10-17 22:39:14.556181+00:00 Changed-By: Marc Deslauriers https

[ubuntu/xenial-security] mysql-5.7 5.7.20-0ubuntu0.16.04.1 (Accepted)

-2017-10311, CVE-2017-10313, CVE-2017-10314, CVE-2017-10320, CVE-2017-10379, CVE-2017-10384 * Removed patches included in new version: - debian/patches/fix_failing_test.patch Date: 2017-10-18 14:41:30.799476+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/mysql-5.7

[ubuntu/xenial-security] webkit2gtk 2.18.0-0ubuntu0.16.04.2 (Accepted)

: don't use ENABLE_ASSEMBLER=0. * debian/libwebkit2gtk-4.0-37.symbols: updated for new version. Date: 2017-10-20 11:30:36.925917+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/webkit2gtk/2.18.0-0ubuntu0.16.04.2 Sorry, changesfile not available.-- Xenial-changes ma

[ubuntu/xenial-security] nvidia-graphics-drivers-384 384.90-0ubuntu0.16.04.1 (Accepted)

nvidia-graphics-drivers-384 (384.90-0ubuntu0.16.04.1) xenial; urgency=medium * SECURITY UPDATE: - CVE-2017-6266, 2017-6267, 2017-6272 (LP: #1721219). Date: 2017-10-05 13:16:55.753725+00:00 Changed-By: Alberto Milone Signed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/nvidia

[ubuntu/xenial-security] pacemaker 1.1.14-2ubuntu1.2 (Accepted)

: notify only on completed handshake in lrmd/tls_backend.c. - CVE-2016-7797 Date: 2017-06-02 19:06:14.017327+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/pacemaker/1.1.14-2ubuntu1.2 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes

[ubuntu/xenial-security] wget 1.17.1-1ubuntu1.3 (Accepted)

: Marc Deslauriers https://launchpad.net/ubuntu/+source/wget/1.17.1-1ubuntu1.3 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes

[ubuntu/xenial-security] irssi 0.8.19-1ubuntu1.5 (Accepted)

, src/irc/dcc/dcc-get.c, src/irc/dcc/dcc-send.c. - CVE-2017-15227 - CVE-2017-15228 - CVE-2017-15721 - CVE-2017-15722 - CVE-2017-15723 Date: 2017-10-25 12:35:16.453477+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/irssi/0.8.19-1ubuntu1.5 Sorry

[ubuntu/xenial-security] quagga 0.99.24.1-2ubuntu1.3 (Accepted)

15:16:50.417428+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/quagga/0.99.24.1-2ubuntu1.3 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial

[ubuntu/xenial-security] openssl 1.0.2g-1ubuntu4.9 (Accepted)

Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/openssl/1.0.2g-1ubuntu4.9 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes

[ubuntu/xenial-security] postgresql-common 173ubuntu0.1 (Accepted)

init/helper scripts (LP: #1727209) - use lchown instead of chown in pg_createcluster, pg_ctlcluster, pg_upgradecluster. - 8b4d0a889a8287181c4bdf46462db9b737a6e25d - No CVE number Date: 2017-11-08 13:46:52.096053+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu

[ubuntu/xenial-security] bchunk 1.2.0-12+deb8u1build0.16.04.1 (Accepted)

bchunk (1.2.0-12+deb8u1build0.16.04.1) xenial-security; urgency=medium * fake sync from Debian Date: 2017-11-13 14:16:15.272257+00:00 Changed-By: Marc Deslauriers Maintainer: Praveen Arimbrathodiyil https://launchpad.net/ubuntu/+source/bchunk/1.2.0-12+deb8u1build0.16.04.1 Sorry, changesfile

[ubuntu/xenial-security] libpam4j 1.4-2+deb8u1build0.16.04.1 (Accepted)

libpam4j (1.4-2+deb8u1build0.16.04.1) xenial-security; urgency=medium * fake sync from Debian Date: 2017-11-13 15:27:32.293588+00:00 Changed-By: Marc Deslauriers Maintainer: Debian Java Maintainers https://launchpad.net/ubuntu/+source/libpam4j/1.4-2+deb8u1build0.16.04.1 Sorry, changesfile

[ubuntu/xenial-security] postgresql-9.5 9.5.10-0ubuntu0.16.04 (Accepted)

release - Details about other changes at full changelog: https://www.postgresql.org/docs/9.5/static/release-9-5-9.html Date: 2017-11-13 15:10:32.505586+00:00 Changed-By: ChristianEhrhardt Signed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/postgresql-9.5/9.5.10-0ubuntu0.16.04

[ubuntu/xenial-security] webkit2gtk 2.18.3-0ubuntu0.16.04.1 (Accepted)

-13796, CVE-2017-13798, CVE-2017-13802, CVE-2017-13803 * debian/patches/*.patch: refreshed. Date: 2017-11-15 12:07:29.035421+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/webkit2gtk/2.18.3-0ubuntu0.16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing

[ubuntu/xenial-security] procmail 3.22-25ubuntu0.16.04.1 (Accepted)

procmail (3.22-25ubuntu0.16.04.1) xenial-security; urgency=medium * SECURITY UPDATE: buffer overflow in the loadbuf function - debian/patches/30: make sure buffer is big enough in src/formisc.c. - CVE-2017-16844 Date: 2017-11-17 13:11:23.530664+00:00 Changed-By: Marc Deslauriers https

[ubuntu/xenial-security] samba 2:4.3.11+dfsg-0ubuntu0.16.04.12 (Accepted)

heap memory information leak - debian/patches/CVE-2017-15275.patch: zero out unused grown area in source3/smbd/srvstr.c. - CVE-2017-15275 Date: 2017-11-16 12:27:37.437174+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/samba/2:4.3.11+dfsg-0ubuntu0.16.04.12

[ubuntu/xenial-security] ldns 1.6.17-8ubuntu0.1 (Accepted)

- debian/patches/CVE-2017-1000232.patch: free after reallocing to 0 size in str2host.c. - CVE-2017-1000232 Date: 2017-11-21 19:00:33.279689+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/ldns/1.6.17-8ubuntu0.1 Sorry, changesfile not available.-- Xenial-changes

[ubuntu/xenial-security] libraw 0.17.1-1ubuntu0.1 (Accepted)

- debian/patches/CVE-2017-14608.patch: add checks to dcraw/dcraw.c, internal/dcraw_common.cpp. - CVE-2017-14608 Date: 2017-11-16 19:55:58.469229+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/libraw/0.17.1-1ubuntu0.1 Sorry, changesfile not available.-- Xenial

[ubuntu/xenial-security] libxml-libxml-perl 2.0123+dfsg-1ubuntu0.1 (Accepted)

14:25:21.571389+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/libxml-libxml-perl/2.0123+dfsg-1ubuntu0.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/x

[ubuntu/xenial-security] optipng 0.7.6-1ubuntu0.16.04.1 (Accepted)

: Marc Deslauriers https://launchpad.net/ubuntu/+source/optipng/0.7.6-1ubuntu0.16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes

[ubuntu/xenial-security] curl 7.47.0-1ubuntu2.5 (Accepted)

bounds read - debian/patches/CVE-2017-8817.patch: fix heap buffer overflow in setcharset in lib/curl_fnmatch.c, added tests to tests/data/Makefile.inc, tests/data/test1163. - CVE-2017-8817 Date: 2017-11-28 18:23:24.225109+00:00 Changed-By: Marc Deslauriers https://launchpad.net

[ubuntu/xenial-security] libxfont 1:1.5.1-1ubuntu0.16.04.4 (Accepted)

:18.891109+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/libxfont/1:1.5.1-1ubuntu0.16.04.4 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial

[ubuntu/xenial-security] libxfont2 1:2.0.1-3~ubuntu16.04.3 (Accepted)

:27.115072+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/libxfont2/1:2.0.1-3~ubuntu16.04.3 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial

[ubuntu/xenial-security] libxcursor 1:1.1.14-1ubuntu0.16.04.1 (Accepted)

libxcursor (1:1.1.14-1ubuntu0.16.04.1) xenial-security; urgency=medium * SECURITY UPDATE: heap overflows when parsing malicious files - debian/patches/CVE-2017-16612.patch: add checks to src/file.c. - CVE-2017-16612 Date: 2017-11-29 13:34:13.792254+00:00 Changed-By: Marc Deslauriers

[ubuntu/xenial-security] evince 3.18.2-1ubuntu4.3 (Accepted)

* debian/patches/git_mimetype_typo.patch: - remove trailing ";" which leads to non working mailcap, regression introduced in the previous upload (lp: #1716357) Date: 2017-11-30 20:22:12.201544+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/evince/3.18.2-

[ubuntu/xenial-security] openssl 1.0.2g-1ubuntu4.10 (Accepted)

ug in crypto/bn/asm/rsaz-avx2.pl. - CVE-2017-3738 Date: 2017-12-07 20:38:53.825333+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/openssl/1.0.2g-1ubuntu4.10 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settin

[ubuntu/xenial-security] webkit2gtk 2.18.4-0ubuntu0.16.04.1 (Accepted)

/patches/user-agent-branding.patch: add optional distributor string to user agent. - debian/rules: set -DUSER_AGENT_GTK_DISTRIBUTOR_NAME. Date: 2017-12-21 01:38:37.065006+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/webkit2gtk/2.18.4-0ubuntu0.16.04.1 Sorry

[ubuntu/xenial-security] awstats 7.4+dfsg-1ubuntu0.2 (Accepted)

wwwroot/cgi-bin/awstats.pl. - CVE-2017-1000501 Date: 2018-01-05 16:01:17.442459+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/awstats/7.4+dfsg-1ubuntu0.2 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify

[ubuntu/xenial-security] tomcat8 8.0.32-1ubuntu1.5 (Accepted)

/apache/catalina/filters/CorsFilter.java. - CVE-2017-7674 tomcat8 (8.0.32-1ubuntu1.4) xenial; urgency=medium * Fix an upgrade error when JAVA_OPTS in /etc/default/tomcat8 contains the '%' character (LP: #1666570). Date: 2017-09-28 13:54:18.666311+00:00 Changed-By: Marc Deslauri

[ubuntu/xenial-security] nvidia-graphics-drivers-384 384.111-0ubuntu0.16.04.1 (Accepted)

). Date: 2018-01-08 15:50:13.892999+00:00 Changed-By: Alberto Milone Signed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/nvidia-graphics-drivers-384/384.111-0ubuntu0.16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings

[ubuntu/xenial-security] irssi 0.8.19-1ubuntu1.6 (Accepted)

20:27:12.849518+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/irssi/0.8.19-1ubuntu1.6 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial

[ubuntu/xenial-security] webkit2gtk 2.18.5-0ubuntu0.16.04.1 (Accepted)

webkit2gtk (2.18.5-0ubuntu0.16.04.1) xenial-security; urgency=medium * Updated to 2.18.5 to add Spectre mitigations. - CVE-2017-5715, CVE-2017-5753 Date: 2018-01-10 16:59:30.622521+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/webkit2gtk/2.18.5-0ubuntu0.16.04.1

[ubuntu/xenial-security] intel-microcode 3.20180108.0~ubuntu16.04.2 (Accepted)

-04, rev 0x0080, size 98304 sig 0x000906e9, pf_mask 0x2a, 2018-01-04, rev 0x0080, size 98304 * source: remove unneeded intel-ucode/ directory * source: remove superseded upstream data file: 20170707 Date: 2018-01-09 20:30:09.143941+00:00 Changed-By: Marc Deslauriers https

[ubuntu/xenial-security] bind9 1:9.10.3.dfsg.P4-8ubuntu1.10 (Accepted)

=medium * d/bind9.service: source the defaults file and start the daemon with the options set there (LP: #1565060). Date: 2018-01-16 13:29:22.634739+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/bind9/1:9.10.3.dfsg.P4-8ubuntu1.10 Sorry, changesfile not available

[ubuntu/xenial-security] intel-microcode 3.20180108.0+really20170707ubuntu16.04.1 (Accepted)

intel-microcode (3.20180108.0+really20170707ubuntu16.04.1) xenial-security; urgency=medium * Revert to 20170707 version of microcode because of regressions on certain hardware. (LP: #1742933) Date: 2018-01-22 12:35:13.655911+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu

[ubuntu/xenial-security] mysql-5.7 5.7.21-0ubuntu0.16.04.1 (Accepted)

, CVE-2018-2645, CVE-2018-2646, CVE-2018-2647, CVE-2018-2665, CVE-2018-2667, CVE-2018-2668, CVE-2018-2696, CVE-2018-2703 Date: 2018-01-19 16:49:38.791284+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.21-0ubuntu0.16.04.1 Sorry, changesfile not

[ubuntu/xenial-security] openssh 1:7.2p2-4ubuntu2.4 (Accepted)

a port number (LP: #1670745). Date: 2018-01-18 14:08:13.318637+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/openssh/1:7.2p2-4ubuntu2.4 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at

[ubuntu/xenial-security] pinba-engine-mysql 1.1.0-1ubuntu1.7 (Accepted)

pinba-engine-mysql (1.1.0-1ubuntu1.7) xenial-security; urgency=medium * Rebuild against mysql 5.7.21. Date: 2018-01-19 19:33:22.153224+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/pinba-engine-mysql/1.1.0-1ubuntu1.7 Sorry, changesfile not available.-- Xenial

[ubuntu/xenial-security] enigmail 2:1.9.9-0ubuntu0.16.04.1 (Accepted)

: Marc Deslauriers https://launchpad.net/ubuntu/+source/enigmail/2:1.9.9-0ubuntu0.16.04.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes

[ubuntu/xenial-security] gcab 0.7-1ubuntu0.1 (Accepted)

gcab (0.7-1ubuntu0.1) xenial-security; urgency=medium * SECURITY UPDATE: code execution via crafted .cab file - debian/patches/CVE-2018-5345.patch: add size check in libgcab/cabinet.c. - CVE-2018-5345 Date: 2018-01-24 13:12:17.547404+00:00 Changed-By: Marc Deslauriers https

[ubuntu/xenial-security] clamav 0.99.3+addedllvm-0ubuntu0.16.04.1 (Accepted)

(0.99.2+dfsg-0ubuntu0.16.04.3) xenial; urgency=medium * d/control: bump break/replaces dependencies to respect major trusty version upgrades (LP: #1532608) Date: 2018-01-29 16:07:23.953402+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/clamav/0.99.3+addedllvm

[ubuntu/xenial-proposed] update-manager 1:16.04.11 (Accepted)

speeds up the script by > 50% in testing. [ Marc Deslauriers ] * ubuntu-support-status: use component to differentiate packages supported by the community and packages supported by Canonical, and override the Supported tag for main and restricted to work around the inaccur

[ubuntu/xenial-security] squid3 3.5.12-1ubuntu7.5 (Accepted)

(3.5.12-1ubuntu7.4) xenial; urgency=medium * debian/patches/passive-ftp-segfault-1560429.patch: Fix for segfault when ftp passive mode is not available. Closes: #793473, LP: #1560429. Date: 2018-02-01 16:05:15.494120+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source

[ubuntu/xenial-security] systemd 229-4ubuntu21.1 (Accepted)

1628687) Date: 2018-02-01 14:15:19.632824+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/+source/systemd/229-4ubuntu21.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes

<    1   2   3   4   5   6   7   8   9   >