w upstream release. Fixes:
- CVE-2015-3223: Denial of Service.
- CVE-2015-5330: Remote memory read.
Date: Wed, 06 Jan 2016 07:27:01 -0500
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/ldb/2:1.1.24-1ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Ha
ith PMDA
* ctdb: Fix privacy breach on google.com (from documentation)
Date: Wed, 06 Jan 2016 07:41:39 -0500
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/samba/2:4.3.3+dfsg-1ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date
* SECURITY UPDATE: out-of-range read in png_check_keyword()
- debian/patches/CVE-2015-8540.patch: check key_len in pngwutil.c.
- CVE-2015-8540
Date: Wed, 06 Jan 2016 12:39:08 -0500
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/libpng/1.2.54
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/libvirt/1.2.21-2ubuntu5
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Fri, 08 Jan 2016 10:32:17 -0500
Source: libvirt
Binary: libvirt-bin libvirt0 libvirt0-dbg libvirt-doc libvirt-dev
-config.h.in, include/os.h,
os/mitauth.c, os/timingsafe_memcmp.c.
- CVE-2017-2624
Date: 2017-07-19 13:11:21.840897+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/xorg-server-hwe-16.04/2:1.18.4-1ubuntu6.1~16.04.2
Sorry, changesfile not available.--
Xenial-changes mailing
,
os/mitauth.c, os/timingsafe_memcmp.c.
- CVE-2017-2624
Date: 2017-07-17 17:02:33.723070+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/xorg-server/2:1.18.4-0ubuntu0.3
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
-2017-11449, CVE-2017-11450, CVE-2017-11478
Date: 2017-07-21 15:56:19.306510+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/imagemagick/8:6.8.9.9-7ubuntu5.8
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settin
- debian/patches/CVE-2017-10972.patch: zero target buffer in
SProcXSendExtensionEvent in Xi/sendexev.c.
- CVE-2017-10972
Date: Tue, 25 Jul 2017 09:04:30 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu X-SWAT
https://launchpad.net/ubuntu/+source/xorg-server-hwe-16.04/2:1.19.3-1ubuntu1
an/patches/fix_tests.patch: fix tests that do not work correctly.
Date: 2017-06-20 18:18:13.993438+00:00
Changed-By: Marc Deslauriers
Maintainer: Antonio Terceiro
https://launchpad.net/ubuntu/+source/ruby2.3/2.3.1-2~16.04.2
Sorry, changesfile not available.--
Xenial-changes mailing list
Xeni
infinite recursion
- debian/patches/CVE-2016-6131.patch: prevent infinite recursion in
libiberty/cplus-dem.c, added test to
libiberty/testsuite/demangle-expected.
- CVE-2016-6131
Date: 2017-06-09 19:23:14.661340+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source
recursion in
libiberty/cplus-dem.c, added test to
libiberty/testsuite/demangle-expected.
- CVE-2016-6131
Date: 2017-06-12 16:50:17.378467+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/libiberty/20160215-1ubuntu0.2
Sorry, changesfile not available.--
Xenial
.
- CVE-2017-10982
* SECURITY UPDATE: read overflow when decoding option 63
- debian/patches/CVE-2017-10983.patch: decode correct option in
src/lib/dhcp.c.
- CVE-2017-10983
Date: 2017-07-26 15:22:22.681909+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/apache2/2.4.18-2ubuntu3.4
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
-token-length.patch,
0226-Use-proper-cast.patch.
Date: 2017-07-31 12:59:15.006435+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/imagemagick/8:6.8.9.9-7ubuntu5.9
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify
-mqtt/test/src/com/rabbitmq/mqtt/test/MqttTest.java,
fix URL in plugins-src/rabbitmq-mqtt/test/Makefile.
- CVE-2016-9877
Date: 2017-07-27 19:04:14.33+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/rabbitmq-server/3.5.7-1ubuntu0.16.04.2
Sorry, changesfile not
pinba-engine-mysql (1.1.0-1ubuntu1.6) xenial-security; urgency=medium
* Rebuild against mysql 5.7.19. (LP: #1707624)
Date: 2017-08-01 14:10:18.672485+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/pinba-engine-mysql/1.1.0-1ubuntu1.6
Sorry, changesfile not available
-2017-7056, CVE-2017-7061,
CVE-2017-7064
Date: 2017-08-01 11:23:26.332928+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/webkit2gtk/2.16.6-0ubuntu0.16.04.1
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings
llvm-toolchain-4.0 (1:4.0-1ubuntu1~16.04.2) xenial-security; urgency=medium
* No change rebuild in the -security pocket.
Date: 2017-08-02 16:48:14.668091+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/llvm-toolchain-4.0/1:4.0-1ubuntu1~16.04.2
Sorry, changesfile not
* debian/patches/alignment_test_failure.patch: fix FTBFS on armhf because
of failing alignment test.
Date: 2017-08-03 16:53:22.351789+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/freerdp/1.1.0~git20140921.1.440916e+dfsg1-5ubuntu1.2
Sorry, changesfile not available
{,.in}: Backport "libapache2-mod-phpX.Y now recommends
apache2 package (as this is what most people want anyway)" from
Debian 8.0.7-3 (LP: #1689646).
Date: 2017-08-09 14:08:19.058197+00:00
Changed-By: Nish Aravamudan
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+sou
vlc (2.2.2-5ubuntu0.16.04.4) xenial-security; urgency=medium
* SECURITY UPDATE: flac: Fix heap write overflow on frame format change
(LP: #1709420)
- fix-CVE-2017-9300.patch
- CVE-2017-9300
Date: 2017-08-11 14:13:13.334563+00:00
Changed-By: Simon Quigley
Signed-By: Marc
menu-cache (1.0.1-1ubuntu0.1) xenial-security; urgency=medium
* SECURITY UPDATE: Socket may be blocked by another user (LP: #1703564)
- fix-CVE-2017-8933.patch
- CVE-2017-8933
Date: 2017-08-11 17:47:15.856720+00:00
Changed-By: Simon Quigley
Signed-By: Marc Deslauriers
https
tails about other changes:
http://www.postgresql.org/docs/9.5/static/release-9-5-5.html
Date: 2017-08-14 14:21:13.402771+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/postgresql-9.5/9.5.8-0ubuntu0.16.04.1
Sorry, changesfile not available.--
Xenial-changes ma
/patches/CVE-2017-6420.patch: add bounds checks to
libclamav/wwunpack.c.
- debian/patches/CVE-2017-6420-2.patch: fix unit tests in
libclamav/wwunpack.c, unit_tests/check_jsnorm.c.
- CVE-2017-6420
Date: 2017-08-09 12:51:13.996503+00:00
Changed-By: Marc Deslauriers
https
/qtmd.c.
- CVE-2017-6419
* SECURITY UPDATE: DoS via crafted CAB file
- debian/patches/CVE-2017-11423.patch: fix error handling in
mspack/cabd.c.
- CVE-2017-11423
Date: 2017-08-16 12:00:23.088377+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/libmspack/0.5
: Marc Deslauriers
https://launchpad.net/ubuntu/+source/c-ares/1.10.0-3ubuntu0.2
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/graphite2/1.3.10-0ubuntu0.16.04.1
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
- a06cef from upstream
- CVE-2016-7966_4.patch - 5e13d2 from upstream
Date: 2017-08-21 14:28:14.493685+00:00
Changed-By: Simon Quigley
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/kcoreaddons/5.18.0-0ubuntu1.1
Sorry, changesfile not available.--
Xenial-changes mailing list
Changed-By: Simon Quigley
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/varnish/4.1.1-1ubuntu0.2
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial
pjproject (2.1.0.0.ast20130823-1+deb8u1build0.16.04.1) xenial-security;
urgency=medium
* fake sync from Debian
Date: 2017-08-23 12:40:15.232532+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/pjproject/2.1.0.0.ast20130823-1+deb8u1build0.16.04.1
Sorry, changesfile not
es in
hw/ide/core.c.
- CVE-2017-12809
Date: 2017-08-22 17:03:20.073927+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/qemu/1:2.5+dfsg-5ubuntu10.15
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settin
lib/dns/tsig.c, aded test to
lib/dns/tests/Makefile.in, lib/dns/tests/tsig_test.c.
* debian/patches/update_keys.patch: Update the built in managed keys to
include the upcoming root KSK in bind.keys, bind.keys.h.
Date: 2017-09-15 15:07:13.980604+00:00
Changed-By: Marc Deslauriers
https
apache2 (2.4.18-2ubuntu3.5) xenial-security; urgency=medium
* SECURITY UPDATE: optionsbleed information leak
- debian/patches/CVE-2017-9798.patch: disallow method registration
at run time in server/core.c.
- CVE-2017-9798
Date: 2017-09-18 16:35:48.056965+00:00
Changed-By: Marc
13:48:48.006419+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/qemu/1:2.5+dfsg-5ubuntu10.16
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/x
/smbd/reply.c.
- CVE-2017-12163
samba (2:4.3.11+dfsg-0ubuntu0.16.04.10) xenial; urgency=medium
* d/p/bug_1702529_EACCESS_with_rootshare.patch:
Handle corner case for / shares. (LP: #1702529)
Date: 2017-09-21 14:19:28.598807+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/u
destroyed and recreated. LP: #1639776.
+ 2675f2061525bc954be14988d64384b74aa7bf8b
+ 16800ea072dd0cdf14d951c4bb8d2808b3dfe53d
Date: 2017-09-27 14:54:21.951527+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/dnsmasq/2.75-1ubuntu0.16.04.3
Sorry, changesfile not available
ca-certificates (20170717~16.04.1) xenial-security; urgency=medium
* Update ca-certificates database to 20170717:
- backport changes from the Ubuntu 17.10 20170717 package
Date: 2017-09-27 15:41:22.802012+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/ca
libidn (1.32-3ubuntu1.2) xenial-security; urgency=medium
* SECURITY UPDATE: Integer overflow
- debian/patches/CVE-2017-14062.patch: fix integer overflow
in punycode.c.
- CVE-2017-14062
Date: 2017-09-25 18:04:17.111684+00:00
Changed-By: Marc Deslauriers
https://launchpad.net
Date: 2017-09-29 13:39:19.866453+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/nss/2:3.28.4-0ubuntu0.16.04.3
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com
- archimport-use-safe_pipe_capture-for-user-input.diff
- CVE-2017-14867
Date: 2017-10-04 18:12:16.327546+00:00
Changed-By: Simon Quigley
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/git/1:2.7.4-0ubuntu1.3
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial
wordpress-shibboleth (1.4-2+deb8u1build0.16.04.2) xenial-security;
urgency=medium
* fake sync from Debian
Date: 2017-10-06 18:38:15.345937+00:00
Changed-By: Marc Deslauriers
Maintainer: Dominic Hargreaves
https://launchpad.net/ubuntu/+source/wordpress-shibboleth/1.4-2+deb8u1build0.16.04.2
PCF file
- debian/patches/CVE-2017-13722.patch: check string boundaries in
src/bitmap/pcfread.c.
- CVE-2017-13722
Date: 2017-10-06 16:54:24.440083+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/libxfont/1:1.5.1-1ubuntu0.16.04.3
Sorry, changesfile not
PCF file
- debian/patches/CVE-2017-13722.patch: check string boundaries in
src/bitmap/pcfread.c.
- CVE-2017-13722
Date: 2017-10-06 16:54:19.575057+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/libxfont2/1:2.0.1-3~ubuntu16.04.2
Sorry, changesfile not
anged-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/curl/7.47.0-1ubuntu2.3
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
python-oslo.concurrency (3.7.1-0ubuntu1.1) xenial-security; urgency=medium
* No change rebuild for the -security pocket.
Date: 2017-08-25 15:52:18.574911+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/python-oslo.concurrency/3.7.1-0ubuntu1.1
Sorry, changesfile not
/fix_requirements.patch: fix ftbfs.
Date: 2017-08-25 21:06:13.417666+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/keystone/2:9.3.0-0ubuntu3.1
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe
-2017-9265
Date: 2017-08-25 00:57:13.896635+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/openvswitch/2.5.2-0ubuntu0.16.04.2
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
wayland (1.12.0-1~ubuntu16.04.2) xenial-security; urgency=medium
* No change rebuild in the -security pocket.
Date: 2017-10-11 18:45:15.849460+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/wayland/1.12.0-1~ubuntu16.04.2
Sorry, changesfile not available.--
Xenial
mir (0.26.3+16.04.20170605-0ubuntu1.1) xenial-security; urgency=medium
* No change rebuild in the -security pocket.
Date: 2017-10-11 22:24:26.235865+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/mir/0.26.3+16.04.20170605-0ubuntu1.1
Sorry, changesfile not available
x11proto-core (7.0.31-1~ubuntu16.04.2) xenial-security; urgency=medium
* No change rebuild in the -security pocket.
Date: 2017-10-11 18:51:35.633779+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/x11proto-core/7.0.31-1~ubuntu16.04.2
Sorry, changesfile not available
: Build against libxfont1-dev. (LP: #1687981, #1707691)
* disable-rotation-transform-gpuscreens.patch: Dropped, NVIDIA driver
supports rotation now. (LP: #1706287)
Date: 2017-10-11 19:44:28.757562+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/xorg-server/2:1.18.4
8.4-1ubuntu9) zesty; urgency=medium
* control: Depend on libxfont1-dev.
xorg-server (2:1.18.4-1ubuntu8) zesty; urgency=medium
* xvfb-run: Bump default bitdepth to 16 so that GLX works.
Date: 2017-10-12 11:20:38.035342+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/xorg-
27 / CVE-2017-12137
- x86/grant: Disallow misaligned PTEs
- XSA-228 / CVE-2017-12136
- gnttab: split maptrack lock to make it fulfill its purpose again
- XSA-230 / CVE-2017-12855
- gnttab: correct pin status fixup for copy
Date: 2017-10-13 15:40:49.000718+00:00
Changed-By
-16 12:46:26.492135+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/wpa/2.4-0ubuntu6.2
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial
/io.c.
* debian/patches/xkb_escape_fix.patch: escape non-printable characters
correctly in xkb/xkbtext.c.
Date: 2017-10-13 13:55:17.566750+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/xorg-server/2:1.18.4-0ubuntu0.7
Sorry, changesfile not available.--
Xenial-changes
length in os/io.c.
* debian/patches/xkb_escape_fix.patch: escape non-printable characters
correctly in xkb/xkbtext.c.
Date: 2017-10-13 14:09:15.116700+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/xorg-server-hwe-16.04/2:1.19.3-1ubuntu1~16.04.4
Sorry, changesfile
curl (7.47.0-1ubuntu2.4) xenial-security; urgency=medium
* SECURITY UPDATE: IMAP FETCH response out of bounds read
- debian/patches/CVE-2017-1000257.patch: check size in lib/imap.c.
- CVE-2017-1000257
Date: 2017-10-17 22:39:14.556181+00:00
Changed-By: Marc Deslauriers
https
-2017-10311, CVE-2017-10313, CVE-2017-10314,
CVE-2017-10320, CVE-2017-10379, CVE-2017-10384
* Removed patches included in new version:
- debian/patches/fix_failing_test.patch
Date: 2017-10-18 14:41:30.799476+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/mysql-5.7
: don't use ENABLE_ASSEMBLER=0.
* debian/libwebkit2gtk-4.0-37.symbols: updated for new version.
Date: 2017-10-20 11:30:36.925917+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/webkit2gtk/2.18.0-0ubuntu0.16.04.2
Sorry, changesfile not available.--
Xenial-changes ma
nvidia-graphics-drivers-384 (384.90-0ubuntu0.16.04.1) xenial; urgency=medium
* SECURITY UPDATE:
- CVE-2017-6266, 2017-6267, 2017-6272 (LP: #1721219).
Date: 2017-10-05 13:16:55.753725+00:00
Changed-By: Alberto Milone
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/nvidia
: notify only on completed
handshake in lrmd/tls_backend.c.
- CVE-2016-7797
Date: 2017-06-02 19:06:14.017327+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/pacemaker/1.1.14-2ubuntu1.2
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes
: Marc Deslauriers
https://launchpad.net/ubuntu/+source/wget/1.17.1-1ubuntu1.3
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
,
src/irc/dcc/dcc-get.c, src/irc/dcc/dcc-send.c.
- CVE-2017-15227
- CVE-2017-15228
- CVE-2017-15721
- CVE-2017-15722
- CVE-2017-15723
Date: 2017-10-25 12:35:16.453477+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/irssi/0.8.19-1ubuntu1.5
Sorry
15:16:50.417428+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/quagga/0.99.24.1-2ubuntu1.3
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/openssl/1.0.2g-1ubuntu4.9
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
init/helper scripts
(LP: #1727209)
- use lchown instead of chown in pg_createcluster, pg_ctlcluster,
pg_upgradecluster.
- 8b4d0a889a8287181c4bdf46462db9b737a6e25d
- No CVE number
Date: 2017-11-08 13:46:52.096053+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu
bchunk (1.2.0-12+deb8u1build0.16.04.1) xenial-security; urgency=medium
* fake sync from Debian
Date: 2017-11-13 14:16:15.272257+00:00
Changed-By: Marc Deslauriers
Maintainer: Praveen Arimbrathodiyil
https://launchpad.net/ubuntu/+source/bchunk/1.2.0-12+deb8u1build0.16.04.1
Sorry, changesfile
libpam4j (1.4-2+deb8u1build0.16.04.1) xenial-security; urgency=medium
* fake sync from Debian
Date: 2017-11-13 15:27:32.293588+00:00
Changed-By: Marc Deslauriers
Maintainer: Debian Java Maintainers
https://launchpad.net/ubuntu/+source/libpam4j/1.4-2+deb8u1build0.16.04.1
Sorry, changesfile
release
- Details about other changes at full changelog:
https://www.postgresql.org/docs/9.5/static/release-9-5-9.html
Date: 2017-11-13 15:10:32.505586+00:00
Changed-By: ChristianEhrhardt
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/postgresql-9.5/9.5.10-0ubuntu0.16.04
-13796, CVE-2017-13798, CVE-2017-13802,
CVE-2017-13803
* debian/patches/*.patch: refreshed.
Date: 2017-11-15 12:07:29.035421+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/webkit2gtk/2.18.3-0ubuntu0.16.04.1
Sorry, changesfile not available.--
Xenial-changes mailing
procmail (3.22-25ubuntu0.16.04.1) xenial-security; urgency=medium
* SECURITY UPDATE: buffer overflow in the loadbuf function
- debian/patches/30: make sure buffer is big enough in src/formisc.c.
- CVE-2017-16844
Date: 2017-11-17 13:11:23.530664+00:00
Changed-By: Marc Deslauriers
https
heap memory information leak
- debian/patches/CVE-2017-15275.patch: zero out unused grown area in
source3/smbd/srvstr.c.
- CVE-2017-15275
Date: 2017-11-16 12:27:37.437174+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/samba/2:4.3.11+dfsg-0ubuntu0.16.04.12
- debian/patches/CVE-2017-1000232.patch: free after reallocing to 0
size in str2host.c.
- CVE-2017-1000232
Date: 2017-11-21 19:00:33.279689+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/ldns/1.6.17-8ubuntu0.1
Sorry, changesfile not available.--
Xenial-changes
- debian/patches/CVE-2017-14608.patch: add checks to dcraw/dcraw.c,
internal/dcraw_common.cpp.
- CVE-2017-14608
Date: 2017-11-16 19:55:58.469229+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/libraw/0.17.1-1ubuntu0.1
Sorry, changesfile not available.--
Xenial
14:25:21.571389+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/libxml-libxml-perl/2.0123+dfsg-1ubuntu0.1
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/x
: Marc Deslauriers
https://launchpad.net/ubuntu/+source/optipng/0.7.6-1ubuntu0.16.04.1
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
bounds read
- debian/patches/CVE-2017-8817.patch: fix heap buffer overflow in
setcharset in lib/curl_fnmatch.c, added tests to
tests/data/Makefile.inc, tests/data/test1163.
- CVE-2017-8817
Date: 2017-11-28 18:23:24.225109+00:00
Changed-By: Marc Deslauriers
https://launchpad.net
:18.891109+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/libxfont/1:1.5.1-1ubuntu0.16.04.4
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial
:27.115072+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/libxfont2/1:2.0.1-3~ubuntu16.04.3
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial
libxcursor (1:1.1.14-1ubuntu0.16.04.1) xenial-security; urgency=medium
* SECURITY UPDATE: heap overflows when parsing malicious files
- debian/patches/CVE-2017-16612.patch: add checks to src/file.c.
- CVE-2017-16612
Date: 2017-11-29 13:34:13.792254+00:00
Changed-By: Marc Deslauriers
* debian/patches/git_mimetype_typo.patch:
- remove trailing ";" which leads to non working mailcap, regression
introduced in the previous upload (lp: #1716357)
Date: 2017-11-30 20:22:12.201544+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/evince/3.18.2-
ug in
crypto/bn/asm/rsaz-avx2.pl.
- CVE-2017-3738
Date: 2017-12-07 20:38:53.825333+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/openssl/1.0.2g-1ubuntu4.10
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settin
/patches/user-agent-branding.patch: add optional distributor
string to user agent.
- debian/rules: set -DUSER_AGENT_GTK_DISTRIBUTOR_NAME.
Date: 2017-12-21 01:38:37.065006+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/webkit2gtk/2.18.4-0ubuntu0.16.04.1
Sorry
wwwroot/cgi-bin/awstats.pl.
- CVE-2017-1000501
Date: 2018-01-05 16:01:17.442459+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/awstats/7.4+dfsg-1ubuntu0.2
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify
/apache/catalina/filters/CorsFilter.java.
- CVE-2017-7674
tomcat8 (8.0.32-1ubuntu1.4) xenial; urgency=medium
* Fix an upgrade error when JAVA_OPTS in /etc/default/tomcat8
contains the '%' character (LP: #1666570).
Date: 2017-09-28 13:54:18.666311+00:00
Changed-By: Marc Deslauri
).
Date: 2018-01-08 15:50:13.892999+00:00
Changed-By: Alberto Milone
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/nvidia-graphics-drivers-384/384.111-0ubuntu0.16.04.1
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings
20:27:12.849518+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/irssi/0.8.19-1ubuntu1.6
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial
webkit2gtk (2.18.5-0ubuntu0.16.04.1) xenial-security; urgency=medium
* Updated to 2.18.5 to add Spectre mitigations.
- CVE-2017-5715, CVE-2017-5753
Date: 2018-01-10 16:59:30.622521+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/webkit2gtk/2.18.5-0ubuntu0.16.04.1
-04, rev 0x0080, size 98304
sig 0x000906e9, pf_mask 0x2a, 2018-01-04, rev 0x0080, size 98304
* source: remove unneeded intel-ucode/ directory
* source: remove superseded upstream data file: 20170707
Date: 2018-01-09 20:30:09.143941+00:00
Changed-By: Marc Deslauriers
https
=medium
* d/bind9.service: source the defaults file and start the daemon with the
options set there (LP: #1565060).
Date: 2018-01-16 13:29:22.634739+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/bind9/1:9.10.3.dfsg.P4-8ubuntu1.10
Sorry, changesfile not available
intel-microcode (3.20180108.0+really20170707ubuntu16.04.1) xenial-security;
urgency=medium
* Revert to 20170707 version of microcode because of regressions on
certain hardware. (LP: #1742933)
Date: 2018-01-22 12:35:13.655911+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu
, CVE-2018-2645, CVE-2018-2646,
CVE-2018-2647, CVE-2018-2665, CVE-2018-2667, CVE-2018-2668,
CVE-2018-2696, CVE-2018-2703
Date: 2018-01-19 16:49:38.791284+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.21-0ubuntu0.16.04.1
Sorry, changesfile not
a port number (LP: #1670745).
Date: 2018-01-18 14:08:13.318637+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/openssh/1:7.2p2-4ubuntu2.4
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at
pinba-engine-mysql (1.1.0-1ubuntu1.7) xenial-security; urgency=medium
* Rebuild against mysql 5.7.21.
Date: 2018-01-19 19:33:22.153224+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/pinba-engine-mysql/1.1.0-1ubuntu1.7
Sorry, changesfile not available.--
Xenial
: Marc Deslauriers
https://launchpad.net/ubuntu/+source/enigmail/2:1.9.9-0ubuntu0.16.04.1
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
gcab (0.7-1ubuntu0.1) xenial-security; urgency=medium
* SECURITY UPDATE: code execution via crafted .cab file
- debian/patches/CVE-2018-5345.patch: add size check in
libgcab/cabinet.c.
- CVE-2018-5345
Date: 2018-01-24 13:12:17.547404+00:00
Changed-By: Marc Deslauriers
https
(0.99.2+dfsg-0ubuntu0.16.04.3) xenial; urgency=medium
* d/control: bump break/replaces dependencies to respect major trusty
version upgrades (LP: #1532608)
Date: 2018-01-29 16:07:23.953402+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/clamav/0.99.3+addedllvm
speeds up the script by > 50% in testing.
[ Marc Deslauriers ]
* ubuntu-support-status: use component to differentiate packages
supported by the community and packages supported by Canonical, and
override the Supported tag for main and restricted to work around the
inaccur
(3.5.12-1ubuntu7.4) xenial; urgency=medium
* debian/patches/passive-ftp-segfault-1560429.patch: Fix for segfault
when ftp passive mode is not available. Closes: #793473, LP:
#1560429.
Date: 2018-02-01 16:05:15.494120+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source
1628687)
Date: 2018-02-01 14:15:19.632824+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/systemd/229-4ubuntu21.1
Sorry, changesfile not available.--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
101 - 200 of 809 matches
Mail list logo