[ubuntu/xenial-proposed] unattended-upgrades 0.90ubuntu0.7 (Accepted)

2017-07-31 Thread Steve Langasek
unattended-upgrades (0.90ubuntu0.7) xenial; urgency=medium * Cherry-pick 2e5deed, f26edb4 from upstream to add support for a --download-only option, enabling us to download updates at a random time of day by default but apply them predictably in the 6am-7am window. LP: #1686470.

[ubuntu/xenial-updates] openjdk-8 8u131-b11-2ubuntu1.16.04.3 (Accepted)

2017-07-31 Thread Ubuntu Archive Robot
openjdk-8 (8u131-b11-2ubuntu1.16.04.3) xenial-security; urgency=medium * Fix regression introduced by security fix S8169392. LP: #1707082. - debian/rules: apply jdk-S8184993-fix-S8169392-regression.patch. - debian/patches/jdk-S8184993-fix-S8169392-regression.patch: upstream fix

[ubuntu/xenial-security] openjdk-8 8u131-b11-2ubuntu1.16.04.3 (Accepted)

2017-07-31 Thread Steve Beattie
openjdk-8 (8u131-b11-2ubuntu1.16.04.3) xenial-security; urgency=medium * Fix regression introduced by security fix S8169392. LP: #1707082. - debian/rules: apply jdk-S8184993-fix-S8169392-regression.patch. - debian/patches/jdk-S8184993-fix-S8169392-regression.patch: upstream fix

[ubuntu/xenial-updates] imagemagick 8:6.8.9.9-7ubuntu5.9 (Accepted)

2017-07-31 Thread Ubuntu Archive Robot
imagemagick (8:6.8.9.9-7ubuntu5.9) xenial-security; urgency=medium * SECURITY REGRESSION: image composite function regression (LP: #1707015) - disabled the following patches which cause issue: 0224-Ensure-token-does-not-overflow.patch,

[ubuntu/xenial-updates] rabbitmq-server 3.5.7-1ubuntu0.16.04.2 (Accepted)

2017-07-31 Thread Ubuntu Archive Robot
rabbitmq-server (3.5.7-1ubuntu0.16.04.2) xenial-security; urgency=medium * SECURITY UPDATE: authentication bypass (LP: #1706900) - debian/patches/CVE-2016-9877.patch: fix password check in plugins-src/rabbitmq-mqtt/src/rabbit_mqtt_processor.erl, add test to

[ubuntu/xenial-security] rabbitmq-server 3.5.7-1ubuntu0.16.04.2 (Accepted)

2017-07-31 Thread Marc Deslauriers
rabbitmq-server (3.5.7-1ubuntu0.16.04.2) xenial-security; urgency=medium * SECURITY UPDATE: authentication bypass (LP: #1706900) - debian/patches/CVE-2016-9877.patch: fix password check in plugins-src/rabbitmq-mqtt/src/rabbit_mqtt_processor.erl, add test to

[ubuntu/xenial-security] imagemagick 8:6.8.9.9-7ubuntu5.9 (Accepted)

2017-07-31 Thread Marc Deslauriers
imagemagick (8:6.8.9.9-7ubuntu5.9) xenial-security; urgency=medium * SECURITY REGRESSION: image composite function regression (LP: #1707015) - disabled the following patches which cause issue: 0224-Ensure-token-does-not-overflow.patch,

[ubuntu/xenial-updates] apt 1.2.24 (Accepted)

2017-07-31 Thread Adam Conrad
apt (1.2.24) xenial; urgency=medium * Microrelease covering fixes of 1.4.6 * Fix parsing of or groups in build-deps with ignored packages (LP: #1694697) * apt.systemd.daily: Use unattended-ugrade --download-only if available. Instead of passing -d, which enables a debugging mode; check

[ubuntu/xenial-updates] whoopsie 0.2.52.5 (Accepted)

2017-07-31 Thread Adam Conrad
whoopsie (0.2.52.5) xenial-proposed; urgency=medium * Modify the whoopsie service file to wants=networking-online.target too. (LP: #1706195) Date: 2017-07-25 20:13:09.945842+00:00 Changed-By: Brian Murray Maintainer: Evan Signed-By: Adam

[ubuntu/xenial-proposed] base-files 9.4ubuntu4.5 (Accepted)

2017-07-31 Thread Adam Conrad
base-files (9.4ubuntu4.5) xenial; urgency=medium * /etc/issue, /etc/issue.net, /etc/lsb-release, /etc/os-release: Bump version number to 16.04.3 in preparation for the point release. Date: Mon, 31 Jul 2017 07:36:56 -0600 Changed-By: Adam Conrad Maintainer: Ubuntu