apport (2.20.1-0ubuntu2.10) xenial-security; urgency=medium
* SECURITY UPDATE: code execution through path traversial in
.crash files (LP: #1700573)
- apport/report.py, test/test_ui.py: fix traversal issue
and add a test for that.
- debian/apport.install, setup.py, xdg-mime/apport.xml: removes
apport as a file handler for .crash files. Thanks to Brian
Murray for the patch and Felix Wilhelm for discovering this.
- CVE-2017-10708
apport (2.20.1-0ubuntu2.9) xenial; urgency=medium
* test/test_signal_crashes.py: delete the test which uses an arbitrary
unpredictable core file size.
apport (2.20.1-0ubuntu2.8) xenial; urgency=medium
* test/test_signal_crashes.py: a ulimit of 1M bytes isn't enough to produce
a core file anymore so bump it to 10M.
apport (2.20.1-0ubuntu2.7) xenial; urgency=medium
* data/general-hooks/ubuntu.py: Modify how a duplicate signature is created
for package installation failures. (LP: #1692127)
apport (2.20.1-0ubuntu2.6) xenial; urgency=medium
* data/general/ubuntu.py: Collect a minimal version of /proc/cpuinfo in
every report. (LP: #1673557)
* data/general/ubuntu-gnome.py: The GNOME3 PPAs are no longer supported for
14.04 or 16.04 so set an UnreportableReason in those reports.
(LP: #1689093)
* test_backend_apt_dpkg.py: Move tests from Ubuntu 15.10 "wily" (which is
EoL now) to 16.04 LTS "xenial". (LP: #1690437)
apport (2.20.1-0ubuntu2.5) xenial; urgency=medium
* apport-gtk: Specify module version with GI imports to avoid warnings.
Thanks Anatoly Techtonik. (LP: #1502173)
Date: 2017-07-17 22:36:14.907617+00:00
Changed-By: leo.barb...@canonical.com (Leonidas S. Barbosa)
Maintainer: Martin Pitt <martin.p...@ubuntu.com>
https://launchpad.net/ubuntu/+source/apport/2.20.1-0ubuntu2.10
Sorry, changesfile not available.
--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
