[Bug 1206200] Re: CVE-2013-1060

This bug was fixed in the package linux-raspi2 - 4.13.0-1004.4 --- linux-raspi2 (4.13.0-1004.4) artful; urgency=low * linux-raspi2: 4.13.0-1004.4 -proposed tracker (LP: #1721562) * Miscellaneous Ubuntu changes - [Config] update configs follwing rebase to Ubuntu-4.13.0-15.16

[Bug 1206200] Re: CVE-2013-1060

This bug was fixed in the package linux - 4.11.0-10.15 --- linux (4.11.0-10.15) artful; urgency=low * linux: 4.11.0-10.15 -proposed tracker (LP: #1701271) * Artful update to v4.11.8 stable release (LP: #1701269) - clk: sunxi-ng: a31: Correct lcd1-ch1 clock register offset

[Bug 1206200] Re: CVE-2013-1060

** Changed in: linux-snapdragon (Ubuntu Precise) Status: New => Invalid ** Changed in: linux-snapdragon (Ubuntu Precise) Importance: Undecided => Medium ** Changed in: linux-snapdragon (Ubuntu Wily) Status: New => Invalid ** Changed in: linux-snapdragon (Ubuntu Wily) Importan

[Bug 1206200] Re: CVE-2013-1060

** Also affects: linux (Ubuntu Yakkety) Importance: Medium Status: Fix Committed ** Also affects: linux-fsl-imx51 (Ubuntu Yakkety) Importance: Medium Status: Invalid ** Also affects: linux-mvl-dove (Ubuntu Yakkety) Importance: Medium Status: Invalid ** Also affects:

[Bug 1206200] Re: CVE-2013-1060

** Description changed: A certain Ubuntu build procedure for perf, as distributed in the Linux kernel packages in Ubuntu 10.04 LTS, 12.04 LTS, 12.10, 13.04, and 13.10, sets the HOME environment variable to the ~buildd directory and consequently reads the system configuration file from the

[Bug 1206200] Re: CVE-2013-1060

** Changed in: linux-manta (Ubuntu Xenial) Status: New => Invalid -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1206200 Title: CVE-2013-1060 To manage notifications about this bug go to: htt

[Bug 1206200] Re: CVE-2013-1060

** Changed in: linux-lts-xenial (Ubuntu Precise) Status: New => Invalid ** Changed in: linux-lts-xenial (Ubuntu Precise) Importance: Undecided => Medium ** Changed in: linux-lts-xenial (Ubuntu Wily) Status: New => Invalid ** Changed in: linux-lts-xenial (Ubuntu Wily) Importan

[Bug 1206200] Re: CVE-2013-1060

** Changed in: linux (Ubuntu Xenial) Status: Invalid => Fix Committed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1206200 Title: CVE-2013-1060 To manage notifications about this bug go to:

[Bug 1206200] Re: CVE-2013-1060

** Changed in: linux (Ubuntu Wily) Status: Fix Committed => Invalid ** Changed in: linux (Ubuntu Xenial) Status: Fix Committed => Invalid -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/12

[Bug 1206200] Re: CVE-2013-1060

** Changed in: linux-raspi2 (Ubuntu Xenial) Status: Invalid => Fix Committed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1206200 Title: CVE-2013-1060 To manage notifications about this bug

[Bug 1206200] Re: CVE-2013-1060

** Changed in: linux-raspi2 (Ubuntu Precise) Status: New => Invalid ** Changed in: linux-raspi2 (Ubuntu Precise) Importance: Undecided => Medium ** Changed in: linux-raspi2 (Ubuntu Wily) Status: New => Invalid ** Changed in: linux-raspi2 (Ubuntu Wily) Importance: Undecided =>

[Bug 1206200] Re: CVE-2013-1060

** Changed in: linux-lts-wily (Ubuntu Precise) Status: New => Invalid ** Changed in: linux-lts-wily (Ubuntu Precise) Importance: Undecided => Medium ** Changed in: linux-lts-wily (Ubuntu Wily) Status: New => Invalid ** Changed in: linux-lts-wily (Ubuntu Wily) Importance: Unde

[Bug 1206200] Re: CVE-2013-1060

** Also affects: linux (Ubuntu Xenial) Importance: Medium Status: Fix Committed ** Also affects: linux-fsl-imx51 (Ubuntu Xenial) Importance: Medium Status: Invalid ** Also affects: linux-mvl-dove (Ubuntu Xenial) Importance: Medium Status: Invalid ** Also affects: li

[Bug 1206200] Re: CVE-2013-1060

** Changed in: linux (Ubuntu Wily) Status: Invalid => Fix Committed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1206200 Title: CVE-2013-1060 To manage notifications about this bug go to: h

[Bug 1206200] Re: CVE-2013-1060

** Changed in: linux (Ubuntu Vivid) Status: Fix Released => Invalid ** Changed in: linux (Ubuntu Wily) Status: Fix Released => Invalid ** Changed in: linux (Ubuntu Vivid) Assignee: Andy Whitcroft (apw) => (unassigned) ** Changed in: linux (Ubuntu Wily) Assignee: Andy Whit

[Bug 1206200] Re: CVE-2013-1060

** No longer affects: linux-lts-trusty (Ubuntu Utopic) ** No longer affects: linux-armadaxp (Ubuntu Utopic) ** No longer affects: linux-ec2 (Ubuntu Utopic) ** No longer affects: linux-goldfish (Ubuntu Utopic) ** No longer affects: linux-lts-saucy (Ubuntu Utopic) ** No longer affects: linux-lts

[Bug 1206200] Re: CVE-2013-1060

** Changed in: linux-lts-vivid (Ubuntu Trusty) Status: Fix Committed => Invalid ** Changed in: linux-lts-trusty (Ubuntu Precise) Status: Fix Committed => Invalid ** Changed in: linux-lts-utopic (Ubuntu Trusty) Status: Fix Committed => Invalid -- You received this bug notifi

[Bug 1206200] Re: CVE-2013-1060

** Changed in: linux (Ubuntu Trusty) Status: Fix Committed => Invalid ** Changed in: linux (Ubuntu Utopic) Status: Fix Committed => Invalid -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/

[Bug 1206200] Re: CVE-2013-1060

Trusty, Utopic, Vivid, and Wily are not affected according to http://people.canonical.com/~ubuntu-security/cve/2012/CVE-2012-2372.html I think those tasks should be changed to Invalid. ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2012-2372 -- You received this bug notificati

[Bug 1206200] Re: CVE-2013-1060

I meant to link http://people.canonical.com/~ubuntu- security/cve/2013/CVE-2013-1060.html Trusty, Utopic, Vivid, and Wily are not affected according to http://people.canonical.com/~ubuntu-security/cve/2013/CVE-2013-1060.html I think those tasks should be changed to Invalid. -- You received this

[Bug 1206200] Re: CVE-2013-1060

** Changed in: linux-lts-utopic (Ubuntu Trusty) Status: Invalid => Fix Committed ** Changed in: linux (Ubuntu Utopic) Status: Invalid => Fix Committed ** Changed in: linux-lts-trusty (Ubuntu Precise) Status: Invalid => Fix Committed ** Changed in: linux (Ubuntu Trusty)

[Bug 1206200] Re: CVE-2013-1060

** Also affects: linux (Ubuntu Wily) Importance: Medium Assignee: Andy Whitcroft (apw) Status: Fix Released ** Also affects: linux-fsl-imx51 (Ubuntu Wily) Importance: Medium Status: Invalid ** Also affects: linux-mvl-dove (Ubuntu Wily) Importance: Medium Status:

[Bug 1206200] Re: CVE-2013-1060

** No longer affects: linux-lts-trusty (Ubuntu Lucid) ** No longer affects: linux-armadaxp (Ubuntu Lucid) ** No longer affects: linux-ec2 (Ubuntu Lucid) ** No longer affects: linux-goldfish (Ubuntu Lucid) ** No longer affects: linux-lts-saucy (Ubuntu Lucid) ** No longer affects: linux-lts-quan

[Bug 1206200] Re: CVE-2013-1060

** Summary changed: - Perf allows buildd user to run arbitrary code as another user + CVE-2013-1060 ** Changed in: linux-lts-saucy (Ubuntu Lucid) Status: New => Invalid ** Changed in: linux-lts-saucy (Ubuntu Precise) Status: New => Invalid ** Changed in: linux-lts-saucy (Ubuntu Tr