[ubuntu/xenial-updates] sudo 1.8.16-0ubuntu1.4 (Accepted)

sudo (1.8.16-0ubuntu1.4) xenial-security; urgency=medium * SECURITY UPDATE: /proc/self/stat parsing confusion - debian/patches/CVE-2017-1000367.patch: adjust parsing to find ttyname - CVE-2017-1000367 Date: 2017-05-29 10:24:14.090640+00:00 Changed-By: Steve Beattie

[ubuntu/xenial-security] sudo 1.8.16-0ubuntu1.4 (Accepted)

sudo (1.8.16-0ubuntu1.4) xenial-security; urgency=medium * SECURITY UPDATE: /proc/self/stat parsing confusion - debian/patches/CVE-2017-1000367.patch: adjust parsing to find ttyname - CVE-2017-1000367 Date: 2017-05-29 10:24:14.090640+00:00 Changed-By: Steve Beattie

[ubuntu/xenial-updates] tiff 4.0.6-1ubuntu0.2 (Accepted)

tiff (4.0.6-1ubuntu0.2) xenial-security; urgency=medium * SECURITY REGRESSION: JPEG tiff read and write issue due to misapplied patches (LP: #1670036) - debian/patches/CVE-2016-9297_and_CVE-2016-9448_correct.patch: replace two previous patches with one that applies fix to correct

[ubuntu/xenial-updates] webkit2gtk 2.16.3-0ubuntu0.16.04.1 (Accepted)

webkit2gtk (2.16.3-0ubuntu0.16.04.1) xenial-security; urgency=medium * Updated to 2.16.3 to fix multiple security issues. - CVE-2017-2496 - CVE-2017-2510 - CVE-2017-2539 Date: 2017-05-26 10:56:13.494626+00:00 Changed-By: Marc Deslauriers Signed-By:

[ubuntu/xenial-updates] strongswan 5.3.5-1ubuntu3.3 (Accepted)

strongswan (5.3.5-1ubuntu3.3) xenial-security; urgency=medium * SECURITY UPDATE: Insufficient Input Validation in gmp Plugin - debian/patches/CVE-2017-9022.patch: make sure the modulus is odd and the exponent not zero in src/libstrongswan/plugins/gmp/gmp_rsa_public_key.c. -

[ubuntu/xenial-updates] imagemagick 8:6.8.9.9-7ubuntu5.7 (Accepted)

imagemagick (8:6.8.9.9-7ubuntu5.7) xenial-security; urgency=medium * SECURITY UPDATE: multiple security issues - debian/patches/*: synchronize security fixes with Debian's 8:6.8.9.9-5+deb8u9 release. Once again, thanks to Bastien Roucariès for the excellent work this update is

[ubuntu/xenial-security] tiff 4.0.6-1ubuntu0.2 (Accepted)

tiff (4.0.6-1ubuntu0.2) xenial-security; urgency=medium * SECURITY REGRESSION: JPEG tiff read and write issue due to misapplied patches (LP: #1670036) - debian/patches/CVE-2016-9297_and_CVE-2016-9448_correct.patch: replace two previous patches with one that applies fix to correct

[ubuntu/xenial-security] webkit2gtk 2.16.3-0ubuntu0.16.04.1 (Accepted)

webkit2gtk (2.16.3-0ubuntu0.16.04.1) xenial-security; urgency=medium * Updated to 2.16.3 to fix multiple security issues. - CVE-2017-2496 - CVE-2017-2510 - CVE-2017-2539 webkit2gtk (2.16.2-0ubuntu0.16.04.1) xenial; urgency=medium * New upstream release (LP: #1690536) * Drop

[ubuntu/xenial-security] imagemagick 8:6.8.9.9-7ubuntu5.7 (Accepted)

imagemagick (8:6.8.9.9-7ubuntu5.7) xenial-security; urgency=medium * SECURITY UPDATE: multiple security issues - debian/patches/*: synchronize security fixes with Debian's 8:6.8.9.9-5+deb8u9 release. Once again, thanks to Bastien Roucariès for the excellent work this update is

[ubuntu/xenial-security] strongswan 5.3.5-1ubuntu3.3 (Accepted)

strongswan (5.3.5-1ubuntu3.3) xenial-security; urgency=medium * SECURITY UPDATE: Insufficient Input Validation in gmp Plugin - debian/patches/CVE-2017-9022.patch: make sure the modulus is odd and the exponent not zero in src/libstrongswan/plugins/gmp/gmp_rsa_public_key.c. -