apport (2.14.7-0ubuntu8.3) utopic-security; urgency=medium
* SECURITY UPDATE: privilege escalation through namespaces and crafted
chroot (LP: #1438345)
- data/apport: If crash comes from a container, rather than
chrooting into it, detect what LXC container it is and then use the
attach_wait API call to execute apport in the container.
- data/apport: Don't fail when encountering unicode characters.
(Thanks to Martin Pitt)
- test/test_signal_crashes.py: Test for the unicode fix.
(Thanks to Martin Pitt)
- CVE-2015-1318
Date: 2015-04-10 12:32:21.183832+00:00
Changed-By: Stéphane Graber <[email protected]>
Maintainer: Martin Pitt <[email protected]>
Signed-By: Marc Deslauriers <[email protected]>
https://launchpad.net/ubuntu/+source/apport/2.14.7-0ubuntu8.3
Sorry, changesfile not available.
--
Utopic-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.canonical.com/mailman/listinfo/utopic-changes
