[ubuntu/xenial-security] kde4libs 4:4.14.16-0ubuntu3.3 (Accepted)

2019-08-15 Thread Paulo Flabiano Smorigo
execute code (LP: #1839432). - debian/patches/CVE-2019-14744.patch: remove support for $(...) in config keys with [$e] marker. - CVE-2019-14744 Date: 2019-08-15 22:31:14.485866+00:00 Changed-By: Paulo Flabiano Smorigo https://launchpad.net/ubuntu/+source/kde4libs/4:4.14.16-0ubuntu3.3

[ubuntu/xenial-security] ansible 2.0.0.2-2ubuntu1.3 (Accepted)

2019-07-22 Thread Paulo Flabiano Smorigo
information disclosure in log and command line. - debian/patches/CVE-2018-16837.patch: user: Don't pass ssh_key_passphrase on command line. - CVE-2018-16837 Date: 2019-07-18 20:46:13.140447+00:00 Changed-By: Paulo Flabiano Smorigo https://launchpad.net/ubuntu/+source/ansible/2.0.0.2

[ubuntu/xenial-security] ansible 2.0.0.2-2ubuntu1.2 (Accepted)

2019-07-17 Thread Paulo Flabiano Smorigo
: Don't pass ssh_key_passphrase on command line. - CVE-2018-16837 Date: 2019-07-16 15:11:13.706260+00:00 Changed-By: Paulo Flabiano Smorigo https://launchpad.net/ubuntu/+source/ansible/2.0.0.2-2ubuntu1.2 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes

[ubuntu/xenial-security] znc 1.6.3-1ubuntu0.2 (Accepted)

2019-06-27 Thread Paulo Flabiano Smorigo
code execution and privilege escalation. - CVE-2019-12816 Date: 2019-06-27 18:27:13.411464+00:00 Changed-By: Paulo Flabiano Smorigo https://launchpad.net/ubuntu/+source/znc/1.6.3-1ubuntu0.2 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com

[ubuntu/xenial-security] gpac 0.5.2-426-gc5ad4e4+dfsg5-1ubuntu0.1 (Accepted)

2019-03-28 Thread Paulo Flabiano Smorigo
checks on gf_text_get_utf8_line - CVE-2018-7752 - CVE-2018-13005 - CVE-2018-13006 - CVE-2018-20760 - CVE-2018-20761 - CVE-2018-20762 - CVE-2018-20763 - CVE-2018-1000100 Date: 2019-03-27 18:58:12.770959+00:00 Changed-By: Paulo Flabiano Smorigo https

[ubuntu/xenial-security] sqlite3 3.11.0-1ubuntu1.1 (Accepted)

2019-02-26 Thread Paulo Flabiano Smorigo
. (LP: #1814869) - d/p/0002-Better-error-message-text-when-the-schema-is-corrupt.patch: Better message and additional checks. - No CVE associated. Date: 2019-02-21 15:47:15.127180+00:00 Changed-By: Paulo Flabiano Smorigo https://launchpad.net/ubuntu/+source/sqlite3/3.11.0-1ubuntu1.1

[ubuntu/xenial-security] postgis 2.2.1+dfsg-2ubuntu0.1 (Accepted)

2019-02-26 Thread Paulo Flabiano Smorigo
:19:54.412126+00:00 Changed-By: Paulo Flabiano Smorigo https://launchpad.net/ubuntu/+source/postgis/2.2.1+dfsg-2ubuntu0.1 Sorry, changesfile not available.-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo

[ubuntu/xenial-security] lighttpd 1.4.35-4ubuntu2.1 (Accepted)

2019-01-31 Thread Paulo Flabiano Smorigo
lighttpd (1.4.35-4ubuntu2.1) xenial-security; urgency=medium * SECURITY UPDATE: Fix vulnerability in HTTPoxy. - debian/patches/CVE-2016-1000212.patch: Mitigation for HTTPoxy vulnerability. - CVE-2016-1000212 Date: 2019-01-31 17:18:19.590691+00:00 Changed-By: Paulo Flabiano

[ubuntu/xenial-security] xrdp 0.6.1-2ubuntu0.3 (Accepted)

2019-01-22 Thread Paulo Flabiano Smorigo
xrdp (0.6.1-2ubuntu0.3) xenial-security; urgency=medium * SECURITY REGRESSION: Fix conection problem (LP: #1811122). Date: 2019-01-17 12:18:28.177688+00:00 Changed-By: Paulo Flabiano Smorigo https://launchpad.net/ubuntu/+source/xrdp/0.6.1-2ubuntu0.3 Sorry, changesfile not available.-- Xenial

[ubuntu/xenial-security] xrdp 0.6.1-2ubuntu0.1 (Accepted)

2019-01-09 Thread Paulo Flabiano Smorigo
to rfbEncryptBytes - debian/patches/CVE-2013-1430-6.patch: sesman, xrdp: const, spacing changes - CVE-2013-1430 Date: 2019-01-08 21:36:13.640106+00:00 Changed-By: Paulo Flabiano Smorigo https://launchpad.net/ubuntu/+source/xrdp/0.6.1-2ubuntu0.1 Sorry, changesfile not available.-- Xenial