04:54 +0300
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/pasaffe/0.47-0ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Thu, 16 Jun 2016 17:04:54 +0300
Source: pasaffe
Binary: pasaffe
Architecture: source
Version: 0.47-0ub
: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/openssl/1.0.2g-1ubuntu5
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Thu, 23 Jun 2016 08:33:31 -0400
Source: openssl
Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl1.0.0-udeb libssl-dev
09 10:11:48.555725+00:00
Changed-By: Theodore Ts'o
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/e2fsprogs/1.43.1-1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.c
: source
Version: 2.8.16-1ubuntu3
Distribution: yakkety
Urgency: medium
Maintainer: Ubuntu Developers
Changed-By: Marc Deslauriers
Description:
gimp - The GNU Image Manipulation Program
gimp-data - Data files for GIMP
gimp-dbg - Debugging symbols for GIMP
libgimp2.0 - Libraries for the GNU
nss (2:3.23-2) unstable; urgency=medium
* debian/control, debian/rules: Leave it to dh_makeshlibs to do the right
thing wrt ldconfig. This requires debhelper 9.20160403. Closes: #811124.
Date: 2016-04-04 10:13:34.675941+00:00
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu
2016 14:05:30 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/libgd2/2.2.1-1ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Fri, 08 Jul 2016 14:05:30 -0400
Source: libgd2
Binary: libgd-tools libgd-dev libgd3 libgd-dbg
-2016-2370
- CVE-2016-2371
- CVE-2016-2372
- CVE-2016-2373
- CVE-2016-2374
- CVE-2016-2375
- CVE-2016-2376
- CVE-2016-2377
- CVE-2016-2378
- CVE-2016-2380
- CVE-2016-4323
Date: Tue, 12 Jul 2016 08:17:31 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu
t/markdown. (Closes: #802753)
bcf08d8 Conforms to Policy version 3.9.8.
3b341bf Use secure URIs in the VCS fields.
Date: Fri, 15 Jul 2016 08:06:12 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/mime-support/3.60ubuntu1
-BEGIN PGP SIGN
. Thanks a lot:
- Add udeb support, taken from the work done by Colin Watson for Ubuntu
in 1.10.2-2ubuntu2 and forward.
- Added dependency on libssl-dev for the udeb, as gnutls does not provide
a udeb package.
Date: Fri, 15 Jul 2016 08:24:54 -0400
Changed-By: Marc Deslauriers
5.28 release:
- Avoid "can't break line" warnings from lintian
- Don't copy NULL
- Avoid double encoding with python3. Closes: #828833
file (1:5.28-1) unstable; urgency=medium
* New upstream version 5.28
Date: Fri, 15 Jul 2016 09:34:33 -0400
Changed-By: Marc Des
/watch, update debian/copyright to point to github
* add Homepage: (http://graphite.sil.org/)
Date: Fri, 15 Jul 2016 12:30:22 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/graphite2/1.3.8-1ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash
stine
apache2-suexec-custom apache2-doc apache2-dev apache2-dbg
Architecture: source
Version: 2.4.18-2ubuntu4
Distribution: yakkety
Urgency: medium
Maintainer: Ubuntu Developers
Changed-By: Marc Deslauriers
Description:
apache2- Apache HTTP Server
apache2-bin - Apache HTTP Server (modules and
ts in tests/admin_views/admin.py,
tests/admin_views/models.py, tests/admin_views/tests.py.
- CVE-2016-6186
Date: Tue, 19 Jul 2016 07:56:43 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/python-django/1.8.7-1ubuntu6
-BEGIN PGP S
usb-creator (0.3.3) yakkety; urgency=medium
* Change version strings to 0.3.3. (LP: #1537836)
* Fix PyGI import warnings.
Date: Tue, 26 Jul 2016 09:07:09 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/usb-creator/0.3.3
-BEGIN PGP
for-3.18-kernel-change.patch
The maximum description size is 4095 plus a NULL in kernels from v3.18.
Backported from upstream
Date: 2016-05-01 22:14:53.271787+00:00
Changed-By: Christian Kastner
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/keyutils/1.5.9-9
Sorry, cha
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/gimp/2.8.16-2.2ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Wed, 27 Jul 2016 11:43:48 -0400
Source: gimp
Binary: libgimp2.0 gimp gimp-data libgimp2.0-dev libgimp2.0-doc
ext/zip/zip_stream.c.
- CVE-2016-6297
* debian/patches/fix_exif_tests.patch: fix exif test results after
security changes.
Date: Wed, 27 Jul 2016 08:14:20 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/php7.0/7.0.8-3ubuntu2
buffer
length in hw/virtio/virtio.c.
- CVE-2016-6490
Date: Wed, 03 Aug 2016 08:36:16 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/qemu/1:2.6+dfsg-3ubuntu2
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Wed, 03 Aug
2016 10:05:28 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/xmlrpc-epi/0.54.2-1.1ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Mon, 08 Aug 2016 10:05:28 -0400
Source: xmlrpc-epi
Binary: libxmlrpc-epi-dev libxmlrpc
/gd_tga.c.
- CVE-2016-6214
Date: Wed, 10 Aug 2016 13:55:18 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/libgd2/2.2.1-1ubuntu3
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Wed, 10 Aug 2016 13:55:18 -0400
Source: libgd2
openssl (1.0.2g-1ubuntu8) yakkety; urgency=medium
* Remove unused FIPS patches for now. (LP: #1594748, LP: #1593953,
LP: #1591797, LP: #1588524)
Date: Mon, 15 Aug 2016 14:20:42 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/openssl
libfontconfig1 libfontconfig1-dbg
Architecture: source
Version: 2.11.94-0ubuntu2
Distribution: yakkety
Urgency: medium
Maintainer: Ubuntu Developers
Changed-By: Marc Deslauriers
Description:
fontconfig - generic font configuration library - support binaries
fontconfig-config - generic font
pool in cipher/random.c.
- CVE-2016-6313
Date: Wed, 17 Aug 2016 13:32:13 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/gnupg/1.4.20-1ubuntu4
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Wed, 17 Aug 2016 13:32:13
in the
csprng pool in random/random-csprng.c.
- CVE-2016-6313
Date: Wed, 17 Aug 2016 13:42:24 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/libgcrypt20/1.7.2-2ubuntu1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
) unstable; urgency=medium
* drop gpgv-udeb package -- it should now be built by gnupg2.
* drop gnupg-dbg package since we now have auto-generated -dbgsym packages
Date: Fri, 19 Aug 2016 07:40:34 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubun
pinba-engine-mysql (1.1.0-1ubuntu2) yakkety; urgency=medium
* Rebuild against mysql 5.7.12.
Date: Mon, 25 Apr 2016 09:31:31 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/pinba-engine-mysql/1.1.0-1ubuntu2
Format: 1.8
Date: Mon, 25 Apr
ext/wddx/wddx.c, added test to ext/wddx/tests/bug73065.phpt.
- CVE-2016-7418
Date: Mon, 03 Oct 2016 15:48:48 -0400
Changed-By: Marc Deslauriers
Maintainer: Ubuntu Developers
https://launchpad.net/ubuntu/+source/php7.0/7.0.8-3ubuntu3
Format: 1.8
Date: Mon, 03 Oct 2016 15:48:48 -0400
Source
:9.10.3.dfsg.P4-10.1ubuntu1
Distribution: yakkety
Urgency: medium
Maintainer: Ubuntu Developers
Changed-By: Marc Deslauriers
Description:
bind9 - Internet Domain Name Server
bind9-doc - Documentation for BIND
bind9-host - Version of 'host' bundled with BIND 9.X
bind9utils - Utilitie
libdbd-mysql-perl (4.035-1ubuntu0.1) yakkety-security; urgency=medium
* SECURITY UPDATE: unsafe sprintf w/variable length input
- debian/patches/CVE-2016-1246.patch: don't use sprintf in dbdimp.c.
- CVE-2016-1246
Date: 2016-10-13 17:41:44.783281+00:00
Changed-By: Marc Deslau
ix an integer
overflow issue in function opj_pi_create_decode of
pi.c in src/lib/openjp2/pi.c.
- CVE-2016-7163
Date: 2016-10-14 12:08:14.126607+00:00
Changed-By: Nikita Yerenkov-Scott
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/openjpeg2/2.1.1-1ubuntu0.1
Sorry, ch
mysql-5.7 (5.7.16-0ubuntu0.16.10.1) yakkety-security; urgency=medium
* SECURITY UPDATE: Update to 5.7.16 to fix security issues
- CVE-2016-5584
- CVE-2016-7440
Date: 2016-10-24 13:56:14.031277+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.16
:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/quagga/1.0.20160315-2ubuntu0.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/yakkety-changes
g against liblua5.1-0-dev on architectures
that libluajit is available.
Date: 2016-10-18 09:51:16.791157+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/nginx/1.10.1-0ubuntu1.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.c
nginx (1.10.1-0ubuntu1.2) yakkety-security; urgency=medium
* SECURITY REGRESSION: postinst upgrade failure (LP: #1637058)
- debian/nginx-common.postinst: fix return code so script doesn't exit.
Date: 2016-10-27 14:46:14.141690+00:00
Changed-By: Marc Deslauriers
https://launchpa
-9014
Date: 2016-10-31 14:34:13.743054+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/python-django/1.8.7-1ubuntu8.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https
.
- No CVE number
Date: 2016-10-12 13:17:14.616318+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/dbus/1.10.10-1ubuntu1.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https
-2016-8670.patch: avoid potentially dangerous
signed to unsigned conversion in src/gd_io_dp.c.
- CVE-2016-8670
Date: 2016-10-18 13:02:44.256964+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/libgd2/2.2.1-1ubuntu3.2
Sorry, changesfile not available.--
Yakkety
/HTMLFormatter.py,
Mailman/htmlformat.py.
- CVE-2016-6893
Date: 2016-10-06 15:55:13.861447+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/mailman/1:2.1.22-1ubuntu0.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify
:19.660358+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/bind9/1:9.10.3.dfsg.P4-10.1ubuntu1.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo
-2016-8706
Date: 2016-11-02 12:31:13.832384+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/memcached/1.4.25-2ubuntu2.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https
, lib/cookie.h, lib/http.c.
- CVE-2016-8623
* SECURITY UPDATE: invalid URL parsing with #
- debian/patches/CVE-2016-8624.patch: accept # as end of host name in
lib/url.c.
- CVE-2016-8624
Date: 2016-11-02 19:27:29.700878+00:00
Changed-By: Marc Deslauriers
https://launchpad.net
E-2016-9105
* SECURITY UPDATE: denial of service via memory leakage in 9pfs
- debian/patches/CVE-2016-9106.patch: fix memory leak in v9fs_write in
hw/9pfs/9p.c.
- CVE-2016-9106
Date: 2016-11-08 14:03:45.503836+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/qemu
:45:28.407866+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/gst-plugins-bad1.0/1.8.3-1ubuntu1.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo
, CVE-2016-7530,
CVE-2016-7531, CVE-2016-7532, CVE-2016-7533, CVE-2016-7534,
CVE-2016-7535, CVE-2016-7536, CVE-2016-7537, CVE-2016-7538,
CVE-2016-7539, CVE-2016-7540
Date: 2016-11-10 18:21:47.255073+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/imagemag
tar (1.29b-1ubuntu0.1) yakkety-security; urgency=medium
* SECURITY UPDATE: extract pathname bypass
- debian/patches/CVE-2016-6321.patch: skip members whose names contain
".." in src/extract.c.
- CVE-2016-6321
Date: 2016-11-17 16:26:51.907878+00:00
Changed-By: Marc D
warnings in
gst/flx/gstflxdec.c.
- No CVE number
Date: 2016-11-22 16:21:13.590819+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/gst-plugins-good1.0/1.8.3-1ubuntu1.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
:59:41.183058+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/moin/1.9.8-1ubuntu1.16.10.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/yakkety
logic based on
GstByteReader/Writer in gst/flx/flx_color.c, gst/flx/flx_fmt.h,
gst/flx/gstflxdec.c, gst/flx/gstflxdec.h.
- No CVE number
Date: 2016-11-25 13:48:19.400094+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/gst-plugins-good1.0/1.8.3-1ubuntu1.2
/primitives/test_hkdf.py.
- CVE-2016-9243
Date: 2016-11-17 15:53:14.124862+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/python-cryptography/1.5-2ubuntu0.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or
te is based on!
- CVE-2016-7799, CVE-2016-7906, CVE-2016-8677, CVE-2016-8862,
CVE-2016-9556
* debian/patches/0070-Fix-PixelColor-off-by-one-on-i386.patch: add back
changes from 8:6.8.9.9-7ubuntu1 lost during the previous update.
Date: 2016-11-29 18:45:15.939582+00:00
Changed-By:
-5180
Date: 2016-10-06 14:36:22.189268+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/c-ares/1.11.0-1ubuntu0.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com
:14.981225+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/game-music-emu/0.6.0-3ubuntu0.16.10.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/yakkety
as they are not backwards compatible.
Date: 2016-12-02 15:16:31.809476+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/nss/2:3.26.2-0ubuntu0.16.10.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or
python-bottle (0.12.7-1+deb8u1build0.16.10.1) yakkety-security; urgency=medium
* fake sync from Debian
Date: 2017-01-05 12:45:38.532019+00:00
Changed-By: Marc Deslauriers
Maintainer: David Paleino
https://launchpad.net/ubuntu/+source/python-bottle/0.12.7-1+deb8u1build0.16.10.1
Sorry
exim4 (4.87-3ubuntu1.1) yakkety-security; urgency=medium
* SECURITY UPDATE: DKIM information leakage
- debian/patches/CVE-2016-9963.patch: fix information leakage in
src/dkim.c, src/transports/smtp.c.
- CVE-2016-9963
Date: 2017-01-05 14:45:20.254884+00:00
Changed-By: Marc
Ultra type tile decoder
- debian/patches/CVE-2016-9942.patch: use _safe variant in
libvncclient/ultra.c.
- CVE-2016-9942
Date: 2017-01-06 13:23:19.065079+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/libvncserver/0.9.10+dfsg-3ubuntu0.16.10.1
Sorry, changesfile
ns2/example.db,
bin/tests/system/dname/tests.sh.
- No CVE number
Date: 2017-01-09 15:15:35.454543+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/bind9/1:9.10.3.dfsg.P4-10.1ubuntu1.2
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-chan
t the handling of eflags with SYSCALL
Date: 2017-01-12 14:44:16.511937+00:00
Changed-By: Stefan Bader
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/xen/4.7.0-0ubuntu2.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify set
Linux kernel allowing ptrace
in user namespaces
- CVE-2016-8659
* Backport 0.1.5-1 from zesty for minor packaging improvements
Date: 2017-01-04 15:21:13.422569+00:00
Changed-By: Jeremy Bicha
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/bubblewrap/0.1.5-1
date in test.
Date: 2017-01-18 20:13:14.206952+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.17-0ubuntu0.16.10.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https
/patches/CVE-2016-10109-2.patch: check for a valid hContext
handles in src/winscard_svc.c.
- CVE-2016-10109
Date: 2017-01-06 15:33:19.778341+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/pcsc-lite/1.8.14-1ubuntu1.16.10.1
Sorry, changesfile not available.--
Yakkety
-9775
* debian/tomcat8.init: further hardening.
Date: 2017-01-18 13:32:05.031161+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/tomcat8/8.0.37-1ubuntu0.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubs
mapserver (7.0.1-3ubuntu0.1) yakkety-security; urgency=medium
* Add upstream patches to fix CVE-2016-9839 & CVE-2017-5522.
(LP: #1648998)
Date: 2017-01-24 14:45:15.955076+00:00
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/mapserver/7.0.1-3ubuntu0.1
Sorry, changes
-3265
- CVE-2017-3258
- CVE-2017-3257
- CVE-2017-3244
- CVE-2017-3243
- CVE-2017-3238
- CVE-2016-6664
Date: 2017-01-24 18:49:16.119506+00:00
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/mariadb-10.0/10.0.29-0ubuntu0.16.10.1
Sorry, changesfile not available
: fix carry bug in
bn_sqr8x_internal in crypto/bn/asm/x86_64-mont5.pl.
- CVE-2017-3732
Date: 2017-01-30 15:25:15.330199+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/openssl/1.0.2g-1ubuntu9.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Ya
.patch: add more precise checks to
lib/opencdk/read-packet.c.
- CVE-2017-5337
Date: 2017-01-26 19:18:14.964259+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/gnutls28/3.5.3-5ubuntu1.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety
- CVE-2017-5194
- CVE-2017-5195
- CVE-2017-5196
- CVE-2017-5356
Date: 2017-01-25 18:33:29.999602+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/irssi/0.8.19-1ubuntu2.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes
libxpm (1:3.5.11-1ubuntu0.16.10.1) yakkety-security; urgency=medium
* SECURITY UPDATE: OOB write when handling malicious XPM files
- debian/patches/CVE-2016-10164.patch: add bounds checks to
src/CrDatFrI.c.
- CVE-2016-10164
Date: 2017-01-25 20:55:28.532915+00:00
Changed-By: Marc
iucode-tool (1.6.1-1ubuntu0.1) yakkety-security; urgency=medium
* SECURITY UPDATE: heap buffer overflow on -tr loader
- debian/patches/CVE-2017-0357.patch: check al in intel_microcode.c.
- CVE-2017-0357
Date: 2017-01-25 19:15:14.813948+00:00
Changed-By: Marc Deslauriers
https
webkit2gtk (2.14.3-0ubuntu0.16.10.1) yakkety-security; urgency=medium
* Updated to 2.14.3 to fix multiple security issues.
Date: 2017-02-03 00:11:34.811849+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/webkit2gtk/2.14.3-0ubuntu0.16.10.1
Sorry, changesfile not
01:51:19.738972+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/squid3/3.5.12-1ubuntu8.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/yakkety-changes
, rsa.c, testsuite/rsa-test.c.
- CVE-2016-6489
Date: 2017-02-03 14:24:58.204984+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/nettle/3.2-1ubuntu0.16.10.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings
webkit2gtk (2.14.5-0ubuntu0.16.10.1) yakkety-security; urgency=medium
* Updated to 2.14.5 to fix multiple security issues.
Date: 2017-02-15 12:54:14.393806+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/webkit2gtk/2.14.5-0ubuntu0.16.10.1
Sorry, changesfile not
/ans.pl,
bin/tests/system/dname/ns1/root.db, bin/tests/system/dname/tests.sh.
- No CVE number
Date: 2017-02-15 16:26:24.536997+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/bind9/1:9.10.3.dfsg.P4-10.1ubuntu1.3
Sorry, changesfile not available.--
Yakkety-changes
idate color map
range indexes in src/vnccolormap.c, src/vncconnection.c, add test to
src/vncconnectiontest.c.
- CVE-2017-5885
Date: 2017-02-17 19:07:25.248933+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/gtk-vnc/0.6.0-1ubuntu1.1
Sorry, changesfile not avai
-9578-1.patch: limit size in server/reds.c.
- debian/patches/CVE-2016-9578-2.patch: limit caps in server/reds.c.
- CVE-2016-9578
Date: 2017-02-15 19:26:13.686124+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/spice/0.12.8-1ubuntu0.1
Sorry, changesfile not available
: 2017-02-21 15:48:22.738064+00:00
Changed-By: LocutusOfBorg
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/tcpdump/4.9.0-1ubuntu1~ubuntu16.10.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at
imagemagick (8:6.8.9.9-7ubuntu8.3) yakkety-security; urgency=medium
* SECURITY REGRESSION: text coder issue (LP: #1589580)
- debian/patches/fix_text_coder.patch: add extra check to coders/mvg.c,
fix logic in coders/txt.c.
Date: 2017-02-22 18:24:32.571798+00:00
Changed-By: Marc
php7.0 (7.0.15-0ubuntu0.16.10.2) yakkety-security; urgency=medium
* No change rebuild in the -security pocket.
Date: 2017-02-23 13:51:14.363319+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/php7.0/7.0.15-0ubuntu0.16.10.2
Sorry, changesfile not available.--
Yakkety
afted BitsPerSample value
- debian/patches/CVE-2017-5225.patch: check bps in tools/tiffcp.c.
- CVE-2017-5225
Date: 2017-02-24 18:28:14.520934+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/tiff/4.0.6-2ubuntu0.1
Sorry, changesfile not available.--
Yakkety-changes mailing
y" in net.hadess.SensorProxy.conf
Date: 2017-02-28 12:49:17.288468+00:00
Changed-By: Jeremy Bicha
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/iio-sensor-proxy/1.3-1ubuntu2
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify s
:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/libgd2/2.2.1-1ubuntu3.3
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/yakkety-changes
CVE number.
- fixes (LP: #1668552)
Date: 2017-03-01 13:27:20.210015+00:00
Changed-By: vishnunaini
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/ktnef/4:16.04.3-0ubuntu1.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Itzik Kotler, Yonatan Fridburg and Amit Klein for reporting this
issue, Albert Astals Cid for fixing this issue.
- No CVE number.
- fixes (LP: #1668871)
Date: 2017-03-01 14:21:13.812919+00:00
Changed-By: vishnunaini
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu
Itzik Kotler, Yonatan Fridburg and Amit Klein for reporting this
issue, Albert Astals Cid for fixing this issue.
- No CVE number.
- fixes (LP: #1668871)
Date: 2017-03-01 14:39:13.881607+00:00
Changed-By: vishnunaini
Signed-By: Marc Deslauriers
https://launchpad.net
/bug73800.phpt, ext/mysqli/tests/bug74021.phpt.
Date: 2017-03-02 12:20:16.087042+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/php7.0/7.0.15-0ubuntu0.16.10.4
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings
in
master/_bin/munin-cgi-graph.in.
- CVE-2017-6188
Date: 2017-03-02 12:29:19.525857+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/munin/2.0.25-2ubuntu0.16.10.2
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
munin (2.0.25-2ubuntu0.16.10.3) yakkety-security; urgency=medium
* SECURITY REGRESSION: log spamming issue (LP: #1669764)
- debian/patches/CVE-2017-6188-3.patch: use looks_like_number in
master/_bin/munin-cgi-graph.in.
Date: 2017-03-03 12:45:24.978758+00:00
Changed-By: Marc
.
- No CVE number
Date: 2017-03-06 19:00:40.096051+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/network-manager-applet/1.2.6-0ubuntu1.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at
te is based on!
- CVE-2016-8707, CVE-2016-10062, CVE-2016-10144, CVE-2016-10145,
CVE-2016-10146, CVE-2017-5506, CVE-2017-5507, CVE-2017-5508,
CVE-2017-5510, CVE-2017-5511
Date: 2017-03-02 21:20:14.657235+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+s
UPDATE: denial of service via invalid compressed file size
- debian/patches/CVE-2017-5601.patch: add check to
libarchive/archive_read_support_format_lha.c.
- CVE-2017-5601
Date: 2017-03-09 16:42:20.022374+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source
icu (57.1-4ubuntu0.1) yakkety-security; urgency=medium
* SECURITY UPDATE: stack-based buffer overflow via long locale string
- debian/patches/CVE-2016-7415.patch: use patch from 57.1-5.
- CVE-2016-7415
Date: 2017-03-10 17:43:13.998276+00:00
Changed-By: Marc Deslauriers
https
.
- CVE-2016-10197
Date: 2017-03-10 19:41:18.997397+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/libevent/2.0.21-stable-2ubuntu0.16.10.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe
-9190.patch: add size check to
libImaging/Storage.c, add test to Tests/images/negative_size.ppm,
Tests/test_file_ppm.py.
- CVE-2016-9190
Date: 2017-03-10 14:03:34.854458+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/pillow/3.3.1-1ubuntu0.1
Sorry
pidgin (1:2.10.12-0ubuntu9.1) yakkety-security; urgency=medium
* SECURITY UPDATE: Out-of-bounds write when stripping xml
- debian/patches/CVE-2017-2640.patch: improve entity processing in
libpurple/util.c.
- CVE-2017-2640
Date: 2017-03-13 19:42:13.366477+00:00
Changed-By: Marc
te is based on!
- CVE-2017-6498, CVE-2017-6499, CVE-2017-6500
Date: 2017-03-14 15:06:33.676689+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/imagemagick/8:6.8.9.9-7ubuntu8.5
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubunt
-15 14:58:19.733762+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/libxml2/2.9.4+dfsg1-2ubuntu0.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo
freetype (2.6.3-3ubuntu1.1) yakkety-security; urgency=medium
* SECURITY UPDATE: DoS and possible code execution via missing glyph name
- debian/patches/CVE-2016-10244.patch: add check to src/type1/t1load.c.
- CVE-2016-10244
Date: 2017-03-16 18:04:55.345825+00:00
Changed-By: Marc
: Jeremy Bicha
Signed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/audiofile/0.3.6-3ubuntu0.1
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/yakkety-changes
:15.519823+00:00
Changed-By: Marc Deslauriers
https://launchpad.net/ubuntu/+source/samba/2:4.4.5+dfsg-2ubuntu5.4
Sorry, changesfile not available.--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/yakkety
1 - 100 of 171 matches
Mail list logo