[ubuntu/xenial-updates] vim 2:7.4.1689-3ubuntu1.2 (Accepted)

vim (2:7.4.1689-3ubuntu1.2) xenial-security; urgency=medium * SECURITY UPDATE: arbitrary shell execution via modelines - debian/patches/upstream/CVE-2016-1248.patch: Only allow valid characters in 'filetype', 'syntax' and 'keymap'. Tests adapted back to vim 7.4 by James McCoy of

[ubuntu/xenial-proposed] linux_4.4.0-51.72_amd64.tar.gz - (Accepted)

linux (4.4.0-51.72) xenial; urgency=low [ Luis Henriques ] * Release Tracking Bug - LP: #1644611 * 4.4.0-1037-snapdragon #41: kernel panic on boot (LP: #1644596) - Revert "dma-mapping: introduce the DMA_ATTR_NO_WARN attribute" - Revert "powerpc: implement the DMA_ATTR_NO_WARN

[ubuntu/xenial-updates] bind9 1:9.10.3.dfsg.P4-8ubuntu1.3 (Accepted)

bind9 (1:9.10.3.dfsg.P4-8ubuntu1.3) xenial; urgency=medium * Add RemainAfterExit to bind9-resolvconf unit configuration file (LP: #1536181). Date: 2016-11-15 16:32:10.300555+00:00 Changed-By: Nish Aravamudan Signed-By: Brian Murray

[ubuntu/xenial-updates] python-os-brick 1.2.0-2ubuntu0.1 (Accepted)

python-os-brick (1.2.0-2ubuntu0.1) xenial; urgency=medium * d/p/fix-wrong-path-used-in-iscsi-multipath-l.patch: Backport fix for ERROR "can't get udev device" when iscsi multipath enabled (LP: #1585940). Date: 2016-11-07 15:52:11.002718+00:00 Changed-By: Edward Hope-Morley

[ubuntu/xenial-updates] dovecot 1:2.2.22-1ubuntu2.2 (Accepted)

dovecot (1:2.2.22-1ubuntu2.2) xenial; urgency=medium * d/p/fix-sieve-pigeonhole-crash-on-huge-mails.patch: Fix sieve-pigeonhole crash when filtering too much data (LP: #1633220) Date: 2016-11-09 13:36:10.729768+00:00 Changed-By: ChristianEhrhardt

[ubuntu/xenial-proposed] linux-meta-snapdragon 4.4.0.1038.30 (Accepted)

linux-meta-snapdragon (4.4.0.1038.30) xenial; urgency=medium * linux-image-snapdragon ABI 1038 linux-meta-snapdragon (4.4.0.1037.29) xenial; urgency=medium * linux-image-snapdragon ABI 1037 Date: 2016-11-24 18:56:31.584268+00:00 Changed-By: Luis Henriques

[ubuntu/xenial-proposed] linux-snapdragon 4.4.0-1038.42 (Accepted)

linux-snapdragon (4.4.0-1038.42) xenial; urgency=low [ Luis Henriques ] * Release Tracking Bug - LP: #1644615 [ Ubuntu: 4.4.0-51.72 ] * Release Tracking Bug - LP: #1644611 * 4.4.0-1037-snapdragon #41: kernel panic on boot (LP: #1644596) - Revert "dma-mapping: introduce

[ubuntu/xenial-proposed] linux-meta 4.4.0.51.54 (Accepted)

linux-meta (4.4.0.51.54) xenial; urgency=medium * linux ABI 4.4.0-51 linux-meta (4.4.0.50.53) xenial; urgency=medium * linux ABI 4.4.0-50 Date: 2016-11-24 18:26:05.254544+00:00 Changed-By: Luis Henriques Signed-By: Steve Langasek

[ubuntu/xenial-proposed] linux-signed 4.4.0-51.72 (Accepted)

linux-signed (4.4.0-51.72) xenial; urgency=medium * Version 4.4.0-51.72 linux-signed (4.4.0-50.71) xenial; urgency=medium * Version 4.4.0-50.71 Date: 2016-11-24 18:26:02.464566+00:00 Changed-By: Luis Henriques Signed-By: Steve Langasek

[ubuntu/xenial-proposed] linux 4.4.0-51.72 (Accepted)

linux (4.4.0-51.72) xenial; urgency=low [ Luis Henriques ] * Release Tracking Bug - LP: #1644611 * 4.4.0-1037-snapdragon #41: kernel panic on boot (LP: #1644596) - Revert "dma-mapping: introduce the DMA_ATTR_NO_WARN attribute" - Revert "powerpc: implement the DMA_ATTR_NO_WARN

[ubuntu/xenial-updates] muse 2.1.2-1ubuntu0.16.04.1 (Accepted)

muse (2.1.2-1ubuntu0.16.04.1) xenial; urgency=medium * Force muse modules to be installed under /usr/lib/muse. (LP: #1596486) Date: 2016-11-15 15:47:16.064887+00:00 Changed-By: James Cowgill Signed-By: Brian Murray

[ubuntu/xenial-updates] python-cryptography 1.2.3-1ubuntu0.1 (Accepted)

python-cryptography (1.2.3-1ubuntu0.1) xenial-security; urgency=medium * SECURITY UPDATE: HKDF might return an empty byte-string - debian/patches/CVE-2016-9243.patch: fix short length handling in src/cryptography/hazmat/primitives/kdf/hkdf.py, added test to

[ubuntu/xenial-security] python-cryptography 1.2.3-1ubuntu0.1 (Accepted)

python-cryptography (1.2.3-1ubuntu0.1) xenial-security; urgency=medium * SECURITY UPDATE: HKDF might return an empty byte-string - debian/patches/CVE-2016-9243.patch: fix short length handling in src/cryptography/hazmat/primitives/kdf/hkdf.py, added test to

[ubuntu/xenial-updates] gst-plugins-good0.10 0.10.31-3+nmu4ubuntu2.16.04.2 (Accepted)

gst-plugins-good0.10 (0.10.31-3+nmu4ubuntu2.16.04.2) xenial-security; urgency=medium * SECURITY UPDATE: incomplete fix for flx decoder security issue - debian/gstreamer-plugins-good.install: remove FLX decoder plugin. - No CVE number Date: 2016-11-25 19:36:20.770302+00:00 Changed-By:

[ubuntu/xenial-updates] gst-plugins-good1.0 1.8.2-1ubuntu0.3 (Accepted)

gst-plugins-good1.0 (1.8.2-1ubuntu0.3) xenial-security; urgency=medium * SECURITY UPDATE: incomplete fix for flx decoder - debian/patches/flxdec-bounds3.patch: don't unref() parent in the chain function in gst/flx/gstflxdec.c. - debian/patches/flxdec-bounds4.patch: rewrite logic

[ubuntu/xenial-security] gst-plugins-good1.0 1.8.2-1ubuntu0.3 (Accepted)

gst-plugins-good1.0 (1.8.2-1ubuntu0.3) xenial-security; urgency=medium * SECURITY UPDATE: incomplete fix for flx decoder - debian/patches/flxdec-bounds3.patch: don't unref() parent in the chain function in gst/flx/gstflxdec.c. - debian/patches/flxdec-bounds4.patch: rewrite logic