[ubuntu/focal-proposed] apport 2.20.11-0ubuntu16 (Accepted)
Tiago Stürmer Daitx
tiago.daitx at ubuntu.com
Mon Jan 13 18:07:10 UTC 2020
apport (2.20.11-0ubuntu16) focal; urgency=medium
* SECURITY REGRESSION: 'module' object has no attribute 'O_PATH'
(LP: #1851806)
- apport/report.py, apport/ui.py: use file descriptors for /proc/pid
directory access only when running under python 3; prevent reading /proc
maps under python 2 as it does not provide a secure way to do so; use
io.open for better compatibility between python 2 and 3.
* data/apport: fix number of arguments passed through socks into a container.
* test/test_report.py: test login session with both pid and proc_pid_fd.
Date: Mon, 06 Jan 2020 13:28:40 +0000
Changed-By: Tiago Stürmer Daitx <tiago.daitx at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/apport/2.20.11-0ubuntu16
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 06 Jan 2020 13:28:40 +0000
Source: apport
Architecture: source
Version: 2.20.11-0ubuntu16
Distribution: focal
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Tiago Stürmer Daitx <tiago.daitx at ubuntu.com>
Launchpad-Bugs-Fixed: 1851806
Changes:
apport (2.20.11-0ubuntu16) focal; urgency=medium
.
* SECURITY REGRESSION: 'module' object has no attribute 'O_PATH'
(LP: #1851806)
- apport/report.py, apport/ui.py: use file descriptors for /proc/pid
directory access only when running under python 3; prevent reading /proc
maps under python 2 as it does not provide a secure way to do so; use
io.open for better compatibility between python 2 and 3.
* data/apport: fix number of arguments passed through socks into a container.
* test/test_report.py: test login session with both pid and proc_pid_fd.
Checksums-Sha1:
5176c26e0ff6fbd5b001a55c83a292088b62d442 2656 apport_2.20.11-0ubuntu16.dsc
99f5c1be83b4065e519af1fb7ee290374c0be0d6 1394592 apport_2.20.11-0ubuntu16.tar.gz
8c18e6376f4448171383d8f51be6f80dfd5da290 8240 apport_2.20.11-0ubuntu16_source.buildinfo
Checksums-Sha256:
29e1cdf9cc7cd626eeeec72048405d905665cb4b04230f858b32a19e82c112b1 2656 apport_2.20.11-0ubuntu16.dsc
d2a699e0b1e1e579556a54c99fb380dae858dc051def44e0ce9f1927a39dbba7 1394592 apport_2.20.11-0ubuntu16.tar.gz
0bf32be6548cad07e55ecddce93292cf4d6b165896a2b2aaee1aa12dcc18020a 8240 apport_2.20.11-0ubuntu16_source.buildinfo
Files:
872f808675b08fd75c3dbfcfcff9ddf9 2656 utils optional apport_2.20.11-0ubuntu16.dsc
06a7618ce05bc45a5e3b36d12f3bb76d 1394592 utils optional apport_2.20.11-0ubuntu16.tar.gz
c29cb453b1e42993d0ee7b95e84a98c9 8240 utils optional apport_2.20.11-0ubuntu16_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=4MzJ
-----END PGP SIGNATURE-----
More information about the Focal-changes
mailing list