[ubuntu/trusty-proposed] walinuxagent 2.2.2-0ubuntu0~14.04.1 (Accepted)

[Łukasz 'sil2100' Zemczak]

walinuxagent (2.2.2-0ubuntu0~14.04.1) trusty; urgency=medium

  * Backport zesty version to trusty.
  * New upstream release (LP: #1651128)
- d/patches/fix-auto-update.patch,
  d/patches/lp1623570-adjust-walinuxagent-service-after-and-wants.patch:
  - Dropped as changes have been applied upstream
- Refreshed debian/patches/disable_import_test.patch

Date: Mon, 16 Jan 2017 10:10:41 +0100
Changed-By: Łukasz 'sil2100' Zemczak 
Maintainer: Ben Howard 
https://launchpad.net/ubuntu/+source/walinuxagent/2.2.2-0ubuntu0~14.04.1
Format: 1.8
Date: Mon, 16 Jan 2017 10:10:41 +0100
Source: walinuxagent
Binary: walinuxagent
Architecture: source
Version: 2.2.2-0ubuntu0~14.04.1
Distribution: trusty
Urgency: medium
Maintainer: Ben Howard 
Changed-By: Łukasz 'sil2100' Zemczak 
Description:
 walinuxagent - Windows Azure Linux Agent
Launchpad-Bugs-Fixed: 1651128
Changes:
 walinuxagent (2.2.2-0ubuntu0~14.04.1) trusty; urgency=medium
 .
   * Backport zesty version to trusty.
   * New upstream release (LP: #1651128)
 - d/patches/fix-auto-update.patch,
   d/patches/lp1623570-adjust-walinuxagent-service-after-and-wants.patch:
   - Dropped as changes have been applied upstream
 - Refreshed debian/patches/disable_import_test.patch
Checksums-Sha1:
 b311749aa2f6ec648c0adfe950e35fda2ce1058c 1606 
walinuxagent_2.2.2-0ubuntu0~14.04.1.dsc
 b8bc1b902b1b848ca38bc8fa95ee992aedb02364 572817 walinuxagent_2.2.2.orig.tar.gz
 932a30b71ac55fe09024df28025d403a4e0273d3 9872 
walinuxagent_2.2.2-0ubuntu0~14.04.1.debian.tar.xz
Checksums-Sha256:
 2ca0ab695d64c6bf3fd89185aea28b451aa977258b83a39c0d4d0765ce9cc5d2 1606 
walinuxagent_2.2.2-0ubuntu0~14.04.1.dsc
 69d999068798c38e934b7ee76cd461e86e940b54deff790b5cfb020645e4888f 572817 
walinuxagent_2.2.2.orig.tar.gz
 c947e1aa0ecde1156877636d9da47a1416d213ed0af3ad911a86722aaad0588b 9872 
walinuxagent_2.2.2-0ubuntu0~14.04.1.debian.tar.xz
Files:
 09ec8d88685b41b328a55b2dc5d6a7ec 1606 python extra 
walinuxagent_2.2.2-0ubuntu0~14.04.1.dsc
 cbf603d87c5651e3b866af6df8e9503d 572817 python extra 
walinuxagent_2.2.2.orig.tar.gz
 d73f10285c6178430fc21766d6306678 9872 python extra 
walinuxagent_2.2.2-0ubuntu0~14.04.1.debian.tar.xz
Original-Maintainer: Microsoft Corporation 
-- 
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/trusty-changes

[ubuntu/trusty-updates] lxc 1.0.9-0ubuntu2 (Accepted)

[Stéphane Graber]

lxc (1.0.9-0ubuntu2) trusty; urgency=medium

  * Cherry-pick upstream bugfix (LP: #1647016):
- 0001-tests-skip-unpriv-tests-on-broken-overlay-module.patch

lxc (1.0.9-0ubuntu1) trusty; urgency=medium

  * New upstream bugfix release. (LP: #1647016)
- Security fix for CVE-2016-8649
- utils: make detect_ramfs_rootfs() return bool
- tests: add test for detect_ramfs_rootfs()
- add Documentation entries to lxc and lxc@ units
- mark the python examples as having utf-8 encoding
- log: sanity check the returned value from snprintf()
- lxc-alpine: mount /dev/shm as tmpfs
- archlinux: Do DHCP on eth0
- archlinux: Fix resolving
- Drop leftover references to lxc_strerror()
- tests: fix image download for s390x
- tools: fix coding style in lxc_attach
- tools: make overlay valid backend
- tools: better error reporting for lxc-start
- alpine: Fix installing extra packages
- lxc-alpine: do not drop setfcap
- s390x: Fix seccomp handling of personalities
- tools: correct the argument typo in lxc_copy
- Use libtool for liblxc.so
- c/r: use --external instead of --veth-pair
- c/r: remember to increment netnr
- c/r: add checkpoint/restore support for macvlan interfaces
- ubuntu: Fix package upgrades requiring proc
- c/r: drop duplicate hunk from macvlan case
- c/r: use snprintf to compute device name
- Tweak libtool handling to work with Android
- tests: add lxc_error() and lxc_debug()
- container start: clone newcgroup immediately
- use python3_sitearch for including the python code
- fix rpm build, include all built files, but only once
- cgfs: fix invalid free()
- find OpenSUSE's build also as obs-build
- improve help text for --fancy and --fancy-format
- improve wording of the help page for lxc-ls
- cgfs: add print_cgfs_init_debuginfo()
- cgfs: skip empty entries under /proc/self/cgroup
- cgfs: explicitly check for NULL
- tools: use correct exit code for lxc-stop
- c/r: explicitly emit bind mounts as criu arguments
- log: bump LXC_LOG_BUFFER_SIZE to 4096
- conf: merge network namespace move & rename on shutdown
- c/r: save criu's stdout during dump too
- c/r: remove extra \ns from logs
- c/r: fix off-by-one error
- c/r: check state before doing a checkpoint/restore
- start: CLONE_NEWCGROUP after we have setup cgroups
- create symlink for /var/run
- utils: add lxc_append_string()
- cgroups: remove isolated cpus from cpuset.cpus
- Update Ubuntu release name: add zesty and remove wily
- templates: add squashfs support to lxc-ubuntu-cloud.in
- cgroups: skip v2 hierarchy entry
- also stop lxc-net in runlevels 0 and 6
- add lxc.egg-info to gitignore
- install bash completion where pkg-config tells us to
- conf: do not use %m format specifier
- debian: Don't depend on libui-dialog-perl
- cgroups: use %zu format specifier to print size_t
- lxc-checkpoint: automatically detect if --external or --veth-pair
- cgroups: prevent segfault in cgfsng
- utils: add lxc_preserve_ns()
- start: add netnsfd to lxc_handler
- conf: use lxc_preserve_ns()
- attach: use lxc_preserve_ns()
- lxc_user_nic: use lxc_preserve_ns()
- conf, start: improve log output
- conf: explicitly remove veth device from host
- conf, start: be smarter when deleting networks
- start, utils: improve preserve_ns()
- start, error: improve log + non-functional changes
- start, namespace: move ns_info to namespace.{c,h}
- attach, utils: bugfixes
- attach: use ns_info[LXC_NS_MAX] struct
- namespace: always attach to user namespace first
- cgroup: improve isolcpus handling
- cgroups: handle non-existent isolcpus file
- utils: add lxc_safe_uint()
- tests: add unit tests for lxc_safe_uint()
- utils: add lxc_safe_int()
- tests: add unit tests for lxc_safe_int()
- conf/ile: get ip prefix via lxc_safe_uint()
- confile: use lxc_safe_u/int in config_init_{u,g}id
- conf/ile: use lxc_safe_uint() in config_pts()
- conf/ile: use lxc_safe_u/int() in config_start()
- conf/ile: use lxc_safe_uint() in config_monitor()
- conf/ile: use lxc_safe_uint() in config_tty()
- conf/ile: use lxc_safe_uint() in config_kmsg()
- conf/ile: avoid atoi in config_lsm_aa_incomplete()
- conf/ile: use lxc_safe_uint() in config_autodev()
- conf/ile: avoid atoi() in config_ephemeral()
- utils: use lxc_safe_int()
- lxc_monitord: use lxc_safe_int() && use exit()
- start: use lxc_safe_int()
- conf: use lxc_safe_{u}int()
- tools/lxc_execute: use lxc_safe_uint()
- tools/lxc_stop: use lxc_safe_uint()
- utils: add lxc_safe_long()
- tests: add unit tests for lxc_safe_long()
- tools/lxc_stop: use lxc_safe_long()
- tools/lxc_top: use lxc_safe_int()
- tools/lxc_ls: use lxc_safe_uint()
- tools/lxc_autostart: use 

[ubuntu/trusty-proposed] kombu 3.0.7-1ubuntu1.1 (Accepted)

[Corey Bryant]

kombu (3.0.7-1ubuntu1.1) trusty; urgency=medium

  * d/p/fix-uuid-shim.patch: Cherry-pick patch from upstream to fix uuid
shim in newer Python versions (LP: #1656333).

Date: Fri, 13 Jan 2017 08:39:16 -0500
Changed-By: Corey Bryant 
Maintainer: Ubuntu Developers 
https://launchpad.net/ubuntu/+source/kombu/3.0.7-1ubuntu1.1
Format: 1.8
Date: Fri, 13 Jan 2017 08:39:16 -0500
Source: kombu
Binary: python-kombu python-kombu-doc
Architecture: source
Version: 3.0.7-1ubuntu1.1
Distribution: trusty
Urgency: medium
Maintainer: Ubuntu Developers 
Changed-By: Corey Bryant 
Description:
 python-kombu - AMQP Messaging Framework for Python
 python-kombu-doc - AMQP Messaging Framework for Python (Documentation)
Launchpad-Bugs-Fixed: 1656333
Changes:
 kombu (3.0.7-1ubuntu1.1) trusty; urgency=medium
 .
   * d/p/fix-uuid-shim.patch: Cherry-pick patch from upstream to fix uuid
 shim in newer Python versions (LP: #1656333).
Checksums-Sha1:
 e59e5afdac5faaff62e36d1cd555b22a51d2784c 2480 kombu_3.0.7-1ubuntu1.1.dsc
 fbff9f55aad566ead8bcfc139c413b605bce4326 330463 kombu_3.0.7.orig.tar.gz
 65ca5ffca21bfd402616e5a3beaf5f304f4059c0 6636 
kombu_3.0.7-1ubuntu1.1.debian.tar.xz
Checksums-Sha256:
 1332755076e89e3ffb4d3ea34b556b70ba3a0573c9d5042beae2ece8dcd2e601 2480 
kombu_3.0.7-1ubuntu1.1.dsc
 1aed91b4e58c5114069b9432d229a6b8564f63000f50b03de1c514f2bdd42f1b 330463 
kombu_3.0.7.orig.tar.gz
 1ecce6eac49a21ad07b006a2e42c7c9ba031aba5855ad4889143997865601eb8 6636 
kombu_3.0.7-1ubuntu1.1.debian.tar.xz
Files:
 940922d72e35480b11643ff4880c03e3 2480 python optional 
kombu_3.0.7-1ubuntu1.1.dsc
 148e4e6502ca386e0b034fbbab82abfe 330463 python optional kombu_3.0.7.orig.tar.gz
 a7640cf85c9a30ee347e4cc47549b764 6636 python optional 
kombu_3.0.7-1ubuntu1.1.debian.tar.xz
Original-Maintainer: Debian Python Modules Team 

-- 
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/trusty-changes

[ubuntu/trusty-updates] dbus 1.6.18-0ubuntu4.5 (Accepted)

[Robie Basak]

dbus (1.6.18-0ubuntu4.5) trusty; urgency=medium

  * debian/patches/unrequested-reply-mediation.patch: Don't let unrequested
reply messages through and don't audit them. Unrequested reply messages
are error or method_return messages that are sent from D-Bus connection A
to D-Bus connection B that do not correspond to any message ever sent by
D-Bus connection B. They should be quietly dropped as there's no use for
them outside of malicious activity. Patch based on upstream patches.
(LP: #1641243)

Date: 2016-12-01 21:55:11.118143+00:00
Changed-By: Tyler Hicks 
Signed-By: Robie Basak 
https://launchpad.net/ubuntu/+source/dbus/1.6.18-0ubuntu4.5
Sorry, changesfile not available.-- 
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/trusty-changes

[ubuntu/trusty-updates] apparmor 2.10.95-0ubuntu2.5~14.04.1 (Accepted)

[Robie Basak]

apparmor (2.10.95-0ubuntu2.5~14.04.1) trusty; urgency=medium

  * Bring apparmor 2.10.95-0ubuntu2.5, from Ubuntu 16.04, to Ubuntu 14.04.
- This allows for proper snap confinement on Ubuntu 14.04 when using the
  hardware enablement kernel (LP: #1641243)
  * Changes made on top of 2.10.95-0ubuntu2.5:
- debian/apparmor.upstart: Remove the upstart job and continue using the
  init script in 14.04
- debian/apparmor.postinst, debian/apparmor-profiles.postinst,
  debian/apparmor-profiles.postrm, debian/rules: Revert to using
  invoke-rc.d to load the profiles, rather than reloading them directly,
  since 14.04 will continue using the init script rather than the upstart
  job.
- debian/apparmor.init, debian/lib/apparmor/functions,
  debian/apparmor.postinst, debian/apparmor.postrm: Remove functionality
  dealing with AppArmor policy in system image based environments since
  this 14.04 package will not need to handle such environments. This
  removes the handle_system_policy_package_updates(),
  compare_previous_version(), compare_and_save_debsums() functions and
  their callers.
- debian/apparmor.init: Continue using running-in-container since
  systemd-detect-virt doesn't exist on 14.04
- debian/lib/apparmor/functions, debian/apparmor.init: Remove the
  is_container_with_internal_policy() function and adjust its call sites
  in apparmor.init so that AppArmor policy is not loaded inside of 14.04
  LXD containers (avoids bug #1641236)
- debian/lib/apparmor/profile-load, debian/apparmor.install: Remove
  profile-load as upstart's apparmor-profile-load is used in 14.04
- debian/patches/libapparmor-mention-dbus-method-in-getcon-man.patch:
  Continue applying this patch since the dbus version in 14.04 isn't new
  enough to support fetching the AppArmor context from
  org.freedesktop.DBus.GetConnectionCredentials().
- debian/patches/libapparmor-force-libtoolize-replacement.patch: Force
  libtoolize to replace existing files to fix a libapparmor FTBFS issue on
  14.04.
- debian/control: Retain the original 14.04 Breaks and ignore the new
  Breaks from 2.10.95-0ubuntu2.5 since they were put in place as part of
  the enablement of UNIX domain socket mediation. They're not needed in
  this upload since UNIX domain socket mediation is disabled by default so
  updates to the profiles included in those packages are not needed.
- Preserve the profiles and abstractions from 14.04's
  2.8.95~2430-0ubuntu5.3 apparmor package by recreating them in the
  top-level profiles-14.04/ directory of the source. They'll be installed
  to debian/tmp/etc/apparmor.d/ during the build process and then to
  /etc/apparmor.d/ on package install so that there are no changes to the
  shipped profiles or abstractions. The abstractions from
  2.10.95-0ubuntu2.5 will be installed into
  debian/tmp/snap/etc/apparmor.d/ during the build process and then into
  /etc/apparmor.d/snap/abstractions/ on package install for use with snap
  confinement. Snap confinement profiles, which includes AppArmor profiles
  loaded by snapd and profiles loaded by snaps that are allowed to manage
  AppArmor policy, will use the snap abstractions. All other AppArmor
  profiles will continue to use the 14.04 abstractions.
  - debian/rules: Adjust for new profiles-14.04/ directory
  - debian/apparmor-profiles.install: Adjust to install the profiles that
were installed in the 2.8.95~2430-0ubuntu5.3 package
  - debian/apparmor.install: Install the abstractions from the
2.10.95-0ubuntu2.5 package into /etc/apparmor.d/snap/abstractions/
  - debian/patches/14.04-profiles.patch: Preserve the 14.04 profiles and
abstractions from the 2.8.95~2430-0ubuntu5.3 apparmor package.
  - debian/patches/conditionalize-post-release-features.patch: Disable new
mediation features, implemented after the Ubuntu 14.04 release, unless
the profile is for snap confinement. If the profile is for snap
confinement, the abstractions from /etc/apparmor.d/snap/abstractions
will be used and all of the mediation features will be enabled.
- 14.04-add-chromium-browser.patch,
  14.04-add-debian-integration-to-lighttpd.patch,
  14.04-etc-writable.patch,
  14.04-update-base-abstraction-for-signals-and-ptrace.patch,
  14.04-dnsmasq-libvirtd-signal-ptrace.patch,
  14.04-update-chromium-browser.patch,
  14.04-php5-Zend_semaphore-lp1401084.patch,
  14.04-dnsmasq-lxc_networking-lp1403468.patch,
  14.04-profiles-texlive_font_generation-lp1010909.patch,
  14.04-profiles-dovecot-updates-lp1296667.patch,
  14.04-profiles-adjust_X_for_lightdm-lp1339727.patch: Import all of the
  patches, from 14.04's 2.8.95~2430-0ubuntu5.3 apparmor package, which
  patched profiles/ and adjust them to patch profiles-14.04/ 

[ubuntu/trusty-updates] libseccomp 2.1.1-1ubuntu1~trusty3 (Accepted)

[Robie Basak]

libseccomp (2.1.1-1ubuntu1~trusty3) trusty-proposed; urgency=medium

  * Cherrypick various bpf fixes to support argument filtering on 64-bit
(LP: #1653487)
- debian/patches/bpf-use-state-arch.patch: use state->arch instead of
  db->arch in _gen_bpf_arch()
- debian/patches/db-require-filters-to-share-endianess.patch: require all
  filters in a collection to share the same endianess
- debian/patches/resolve-issues-caused-by-be.patch: resolve issues caused
  by big endian systems
- debian/patches/bpf-accumulator-check.patch: test the bpf accumulator
  checking logic
- debian/patches/bpf-track-accumulator-state.patch: track accumulator
  state and reload it when necessary. This is the fix for LP: #1653487. The
  previous patches are required by this patch.
- debian/patches/ensure-simulator-has-valid-arch.patch: ensure the
  simulator always has a valid architecture value. This fixes a regression
  in the testsuite introduced by resolve-issues-caused-by-be.patch
- debian/patches/bpf-accumulator-check-indep.patch: fix a regression in the
  testsuite introduced by bpf-accumulator-check.patch
- debian/patches/fix-audit-arch-i386.patch: fix arch token for 32-bit x86
  not being defined correctly for the tools

Date: 2017-01-05 21:33:10.879712+00:00
Changed-By: Jamie Strandboge 
Signed-By: Robie Basak 
https://launchpad.net/ubuntu/+source/libseccomp/2.1.1-1ubuntu1~trusty3
Sorry, changesfile not available.-- 
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/trusty-changes

[ubuntu/trusty-proposed] pollinate 4.23-0ubuntu1~14.04.1 (Accepted)

[Stefano Rivera]

pollinate (4.23-0ubuntu1~14.04.1) trusty; urgency=medium

  * Add missing dependency on vim-common, for xxd. (LP: #1456484)

Date: Sat, 14 Jan 2017 14:52:03 +1100
Changed-By: Stefano Rivera 
Maintainer: Dustin Kirkland 
https://launchpad.net/ubuntu/+source/pollinate/4.23-0ubuntu1~14.04.1
Format: 1.8
Date: Sat, 14 Jan 2017 14:52:03 +1100
Source: pollinate
Binary: pollinate
Architecture: source
Version: 4.23-0ubuntu1~14.04.1
Distribution: trusty
Urgency: medium
Maintainer: Dustin Kirkland 
Changed-By: Stefano Rivera 
Description:
 pollinate  - seed the pseudo random number generator
Launchpad-Bugs-Fixed: 1456484
Changes:
 pollinate (4.23-0ubuntu1~14.04.1) trusty; urgency=medium
 .
   * Add missing dependency on vim-common, for xxd. (LP: #1456484)
Checksums-Sha1:
 7ef526ae7a4a0a51b9048df2e72bcffaea750c5e 1519 
pollinate_4.23-0ubuntu1~14.04.1.dsc
 04668364839049d2787bd4d42db8b195491cdee3 12972 
pollinate_4.23-0ubuntu1~14.04.1.debian.tar.xz
Checksums-Sha256:
 717bbdd01ae996792ea91de96058fa398482d7c50099e4e568ea9328c55b025b 1519 
pollinate_4.23-0ubuntu1~14.04.1.dsc
 7560d7e28fc7f0574ad2754276f9659419d202e85bf64d5d1d9cb34370ac48af 12972 
pollinate_4.23-0ubuntu1~14.04.1.debian.tar.xz
Files:
 f9948eb45c1fa386851d3605ff34ef5e 1519 admin optional 
pollinate_4.23-0ubuntu1~14.04.1.dsc
 380a9690d511191dd7f35e5693194d31 12972 admin optional 
pollinate_4.23-0ubuntu1~14.04.1.debian.tar.xz
-- 
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/trusty-changes