vim (2:7.4.1689-3ubuntu1.2) xenial-security; urgency=medium
* SECURITY UPDATE: arbitrary shell execution via modelines
- debian/patches/upstream/CVE-2016-1248.patch: Only allow valid
characters in 'filetype', 'syntax' and 'keymap'. Tests adapted
back to vim 7.4 by James McCoy of
linux (4.4.0-51.72) xenial; urgency=low
[ Luis Henriques ]
* Release Tracking Bug
- LP: #1644611
* 4.4.0-1037-snapdragon #41: kernel panic on boot (LP: #1644596)
- Revert "dma-mapping: introduce the DMA_ATTR_NO_WARN attribute"
- Revert "powerpc: implement the DMA_ATTR_NO_WARN
bind9 (1:9.10.3.dfsg.P4-8ubuntu1.3) xenial; urgency=medium
* Add RemainAfterExit to bind9-resolvconf unit configuration file
(LP: #1536181).
Date: 2016-11-15 16:32:10.300555+00:00
Changed-By: Nish Aravamudan
Signed-By: Brian Murray
python-os-brick (1.2.0-2ubuntu0.1) xenial; urgency=medium
* d/p/fix-wrong-path-used-in-iscsi-multipath-l.patch: Backport
fix for ERROR "can't get udev device" when iscsi multipath enabled (LP:
#1585940).
Date: 2016-11-07 15:52:11.002718+00:00
Changed-By: Edward Hope-Morley
dovecot (1:2.2.22-1ubuntu2.2) xenial; urgency=medium
* d/p/fix-sieve-pigeonhole-crash-on-huge-mails.patch: Fix sieve-pigeonhole
crash when filtering too much data (LP: #1633220)
Date: 2016-11-09 13:36:10.729768+00:00
Changed-By: ChristianEhrhardt
linux-meta-snapdragon (4.4.0.1038.30) xenial; urgency=medium
* linux-image-snapdragon ABI 1038
linux-meta-snapdragon (4.4.0.1037.29) xenial; urgency=medium
* linux-image-snapdragon ABI 1037
Date: 2016-11-24 18:56:31.584268+00:00
Changed-By: Luis Henriques
linux-snapdragon (4.4.0-1038.42) xenial; urgency=low
[ Luis Henriques ]
* Release Tracking Bug
- LP: #1644615
[ Ubuntu: 4.4.0-51.72 ]
* Release Tracking Bug
- LP: #1644611
* 4.4.0-1037-snapdragon #41: kernel panic on boot (LP: #1644596)
- Revert "dma-mapping: introduce
linux-meta (4.4.0.51.54) xenial; urgency=medium
* linux ABI 4.4.0-51
linux-meta (4.4.0.50.53) xenial; urgency=medium
* linux ABI 4.4.0-50
Date: 2016-11-24 18:26:05.254544+00:00
Changed-By: Luis Henriques
Signed-By: Steve Langasek
linux-signed (4.4.0-51.72) xenial; urgency=medium
* Version 4.4.0-51.72
linux-signed (4.4.0-50.71) xenial; urgency=medium
* Version 4.4.0-50.71
Date: 2016-11-24 18:26:02.464566+00:00
Changed-By: Luis Henriques
Signed-By: Steve Langasek
linux (4.4.0-51.72) xenial; urgency=low
[ Luis Henriques ]
* Release Tracking Bug
- LP: #1644611
* 4.4.0-1037-snapdragon #41: kernel panic on boot (LP: #1644596)
- Revert "dma-mapping: introduce the DMA_ATTR_NO_WARN attribute"
- Revert "powerpc: implement the DMA_ATTR_NO_WARN
muse (2.1.2-1ubuntu0.16.04.1) xenial; urgency=medium
* Force muse modules to be installed under /usr/lib/muse. (LP: #1596486)
Date: 2016-11-15 15:47:16.064887+00:00
Changed-By: James Cowgill
Signed-By: Brian Murray
python-cryptography (1.2.3-1ubuntu0.1) xenial-security; urgency=medium
* SECURITY UPDATE: HKDF might return an empty byte-string
- debian/patches/CVE-2016-9243.patch: fix short length handling in
src/cryptography/hazmat/primitives/kdf/hkdf.py, added test to
python-cryptography (1.2.3-1ubuntu0.1) xenial-security; urgency=medium
* SECURITY UPDATE: HKDF might return an empty byte-string
- debian/patches/CVE-2016-9243.patch: fix short length handling in
src/cryptography/hazmat/primitives/kdf/hkdf.py, added test to
gst-plugins-good0.10 (0.10.31-3+nmu4ubuntu2.16.04.2) xenial-security;
urgency=medium
* SECURITY UPDATE: incomplete fix for flx decoder security issue
- debian/gstreamer-plugins-good.install: remove FLX decoder plugin.
- No CVE number
Date: 2016-11-25 19:36:20.770302+00:00
Changed-By:
gst-plugins-good1.0 (1.8.2-1ubuntu0.3) xenial-security; urgency=medium
* SECURITY UPDATE: incomplete fix for flx decoder
- debian/patches/flxdec-bounds3.patch: don't unref() parent in the
chain function in gst/flx/gstflxdec.c.
- debian/patches/flxdec-bounds4.patch: rewrite logic
gst-plugins-good1.0 (1.8.2-1ubuntu0.3) xenial-security; urgency=medium
* SECURITY UPDATE: incomplete fix for flx decoder
- debian/patches/flxdec-bounds3.patch: don't unref() parent in the
chain function in gst/flx/gstflxdec.c.
- debian/patches/flxdec-bounds4.patch: rewrite logic
16 matches
Mail list logo