From gary.lasker at canonical.com  Wed Nov  2 14:14:11 2011
From: gary.lasker at canonical.com (Gary Lasker)
Date: Wed, 02 Nov 2011 14:14:11 -0000
Subject: [ubuntu/lucid-proposed] tzdata 2011n-0ubuntu0.10.04 (Accepted)
Message-ID: <20111102141411.1230.99831.launchpad@wampee.canonical.com>

tzdata (2011n-0ubuntu0.10.04) lucid-proposed; urgency=low

  * New upstream release 2011n (LP: #884866):
    - Cuba: Change end date of DST in 2011
    - Fiji: Change end date of DST in 2012
    - Pridnestrovian Moldavian Republic: Restore end date
      of DST in 2011

Date: Tue, 01 Nov 2011 17:17:19 -0400
Changed-By: Gary Lasker <gary.lasker at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Martin Pitt <martin.pitt at ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/tzdata/2011n-0ubuntu0.10.04
-------------- next part --------------
Format: 1.8
Date: Tue, 01 Nov 2011 17:17:19 -0400
Source: tzdata
Binary: tzdata tzdata-java
Architecture: source
Version: 2011n-0ubuntu0.10.04
Distribution: lucid-proposed
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Gary Lasker <gary.lasker at canonical.com>
Description: 
 tzdata     - time zone and daylight-saving time data
 tzdata-java - time zone and daylight-saving time data for use by java runtimes
Launchpad-Bugs-Fixed: 884866
Changes: 
 tzdata (2011n-0ubuntu0.10.04) lucid-proposed; urgency=low
 .
   * New upstream release 2011n (LP: #884866):
     - Cuba: Change end date of DST in 2011
     - Fiji: Change end date of DST in 2012
     - Pridnestrovian Moldavian Republic: Restore end date
       of DST in 2011
Checksums-Sha1: 
 26ea846557b5336fae98fcb9a6c79a0e05397121 1909 tzdata_2011n-0ubuntu0.10.04.dsc
 5435fae9844dc89f9d418aa956e161e23d1babdf 204684 tzdata_2011n.orig.tar.gz
 9d44276c62de9da4cafeddb8470c1944ae3e5d6f 253098 tzdata_2011n-0ubuntu0.10.04.debian.tar.gz
Checksums-Sha256: 
 fa1b0a4cf77ca80639af7f2cdc9fe07e842ffff8bbfff1d5477d56b0c0f16059 1909 tzdata_2011n-0ubuntu0.10.04.dsc
 a343e542486b2b8ebdeca474eed79f1c04f69420ca943c2b9bdea1d2385e38cd 204684 tzdata_2011n.orig.tar.gz
 dd94c28ec31cff4412a08a276e093acdbd6845818765de8bfe6e34d4195f6479 253098 tzdata_2011n-0ubuntu0.10.04.debian.tar.gz
Files: 
 ab079e4b3c5ab8646e75d4e0a421bc05 1909 libs required tzdata_2011n-0ubuntu0.10.04.dsc
 20dbfb28efa008ddbf6dd34601ea40fa 204684 libs required tzdata_2011n.orig.tar.gz
 4d0e4fc98cb046b23a166d565925f426 253098 libs required tzdata_2011n-0ubuntu0.10.04.debian.tar.gz
Original-Maintainer: GNU Libc Maintainers <debian-glibc at lists.debian.org>

From adamg at canonical.com  Tue Nov  8 03:26:16 2011
From: adamg at canonical.com (Adam Gandelman)
Date: Tue, 08 Nov 2011 03:26:16 -0000
Subject: [ubuntu/lucid-proposed] facter 1.5.6-2ubuntu2.3 (Accepted)
Message-ID: <20111108032616.23427.11122.launchpad@cocoplum.canonical.com>

facter (1.5.6-2ubuntu2.3) lucid-proposed; urgency=low

  * lib/facter/ec2.rb: Rescue condition in can_connect() when timeout()
    actually has a chance to timeout. (LP: #885998)

Date: Mon, 07 Nov 2011 10:18:18 -0800
Changed-By: Adam Gandelman <adamg at canonical.com>
Maintainer: Ubuntu MOTU Developers <ubuntu-motu at lists.ubuntu.com>
Signed-By: Clint Byrum <clint at fewbar.com>
https://launchpad.net/ubuntu/lucid/+source/facter/1.5.6-2ubuntu2.3
-------------- next part --------------
Format: 1.8
Date: Mon, 07 Nov 2011 10:18:18 -0800
Source: facter
Binary: facter
Architecture: source
Version: 1.5.6-2ubuntu2.3
Distribution: lucid-proposed
Urgency: low
Maintainer: Ubuntu MOTU Developers <ubuntu-motu at lists.ubuntu.com>
Changed-By: Adam Gandelman <adamg at canonical.com>
Description: 
 facter     - a library for retrieving facts from operating systems
Launchpad-Bugs-Fixed: 885998
Changes: 
 facter (1.5.6-2ubuntu2.3) lucid-proposed; urgency=low
 .
   * lib/facter/ec2.rb: Rescue condition in can_connect() when timeout()
     actually has a chance to timeout. (LP: #885998)
Checksums-Sha1: 
 ee7effd7f2f5ca72ce420dc162446882b784000a 1532 facter_1.5.6-2ubuntu2.3.dsc
 560a62e55e2dacf34615598a32f8cfb860ff1d4b 4510 facter_1.5.6-2ubuntu2.3.diff.gz
Checksums-Sha256: 
 b7e96f2f4dc1ff90d2f2d0af5748f71f7b24d4fb43001aa095405dd7b6e7b6e8 1532 facter_1.5.6-2ubuntu2.3.dsc
 bb67085b0bf1ead510f6cfb451562ad9d08f2dca2f5421e3c18a63df6b59603e 4510 facter_1.5.6-2ubuntu2.3.diff.gz
Files: 
 79e75958cff8bb86be59c65f6c42b093 1532 admin optional facter_1.5.6-2ubuntu2.3.dsc
 ea38b86e2a6c6aa4d7181257034c6b73 4510 admin optional facter_1.5.6-2ubuntu2.3.diff.gz
Original-Maintainer: Puppet Package Maintainers <pkg-puppet-devel at lists.alioth.debian.org>

From marc.deslauriers at ubuntu.com  Tue Nov  8 13:03:55 2011
From: marc.deslauriers at ubuntu.com (Marc Deslauriers)
Date: Tue, 08 Nov 2011 13:03:55 -0000
Subject: [ubuntu/lucid-security] tomcat6 6.0.24-2ubuntu1.9 (Accepted)
Message-ID: <20111108130355.22732.36405.launchpad@cocoplum.canonical.com>

tomcat6 (6.0.24-2ubuntu1.9) lucid-security; urgency=low

  * SECURITY UPDATE: information disclosure via log file
    - debian/patches/0015-CVE-2011-2204.patch: fix logging in
      java/org/apache/catalina/mbeans/MemoryUserDatabaseMBean.java,
      java/org/apache/catalina/users/MemoryUserDatabase.java,
      java/org/apache/catalina/users/MemoryUser.java.
    - CVE-2011-2204
  * SECURITY UPDATE: file restriction bypass or denial of service via
    untrusted web application.
    - debian/patches/0016-CVE-2011-2526.patch: check canonical name in
      java/org/apache/catalina/connector/LocalStrings.properties,
      java/org/apache/catalina/connector/Request.java,
      java/org/apache/catalina/servlets/DefaultServlet.java,
      java/org/apache/coyote/http11/Http11AprProcessor.java,
      java/org/apache/coyote/http11/LocalStrings.properties,
      java/org/apache/tomcat/util/net/AprEndpoint.java,
      java/org/apache/tomcat/util/net/NioEndpoint.java.
    - CVE-2011-2526
  * SECURITY UPDATE: AJP request spoofing and authentication bypass
    (LP: #843701)
    - debian/patches/0017-CVE-2011-3190.patch: Properly handle request
      bodies in java/org/apache/coyote/ajp/AjpAprProcessor.java,
      java/org/apache/coyote/ajp/AjpProcessor.java.
    - CVE-2011-3190
  * SECURITY UPDATE: HTTP DIGEST authentication weaknesses
    - debian/patches/0018-CVE-2011-1184.patch: add new nonce options in
      java/org/apache/catalina/authenticator/DigestAuthenticator.java,
      java/org/apache/catalina/authenticator/LocalStrings.properties,
      java/org/apache/catalina/authenticator/mbeans-descriptors.xml,
      java/org/apache/catalina/realm/RealmBase.java,
      webapps/docs/config/valve.xml.
    - CVE-2011-1184

Date: Mon, 26 Sep 2011 11:53:28 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/tomcat6/6.0.24-2ubuntu1.9
-------------- next part --------------
Format: 1.8
Date: Mon, 26 Sep 2011 11:53:28 -0400
Source: tomcat6
Binary: tomcat6-common tomcat6 tomcat6-user libtomcat6-java libservlet2.5-java libservlet2.5-java-doc tomcat6-admin tomcat6-examples tomcat6-docs
Architecture: source
Version: 6.0.24-2ubuntu1.9
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 libservlet2.5-java - Servlet 2.5 and JSP 2.1 Java API classes
 libservlet2.5-java-doc - Servlet 2.5 and JSP 2.1 Java API documentation
 libtomcat6-java - Servlet and JSP engine -- core libraries
 tomcat6    - Servlet and JSP engine
 tomcat6-admin - Servlet and JSP engine -- admin web applications
 tomcat6-common - Servlet and JSP engine -- common files
 tomcat6-docs - Servlet and JSP engine -- documentation
 tomcat6-examples - Servlet and JSP engine -- example web applications
 tomcat6-user - Servlet and JSP engine -- tools to create user instances
Launchpad-Bugs-Fixed: 843701
Changes: 
 tomcat6 (6.0.24-2ubuntu1.9) lucid-security; urgency=low
 .
   * SECURITY UPDATE: information disclosure via log file
     - debian/patches/0015-CVE-2011-2204.patch: fix logging in
       java/org/apache/catalina/mbeans/MemoryUserDatabaseMBean.java,
       java/org/apache/catalina/users/MemoryUserDatabase.java,
       java/org/apache/catalina/users/MemoryUser.java.
     - CVE-2011-2204
   * SECURITY UPDATE: file restriction bypass or denial of service via
     untrusted web application.
     - debian/patches/0016-CVE-2011-2526.patch: check canonical name in
       java/org/apache/catalina/connector/LocalStrings.properties,
       java/org/apache/catalina/connector/Request.java,
       java/org/apache/catalina/servlets/DefaultServlet.java,
       java/org/apache/coyote/http11/Http11AprProcessor.java,
       java/org/apache/coyote/http11/LocalStrings.properties,
       java/org/apache/tomcat/util/net/AprEndpoint.java,
       java/org/apache/tomcat/util/net/NioEndpoint.java.
     - CVE-2011-2526
   * SECURITY UPDATE: AJP request spoofing and authentication bypass
     (LP: #843701)
     - debian/patches/0017-CVE-2011-3190.patch: Properly handle request
       bodies in java/org/apache/coyote/ajp/AjpAprProcessor.java,
       java/org/apache/coyote/ajp/AjpProcessor.java.
     - CVE-2011-3190
   * SECURITY UPDATE: HTTP DIGEST authentication weaknesses
     - debian/patches/0018-CVE-2011-1184.patch: add new nonce options in
       java/org/apache/catalina/authenticator/DigestAuthenticator.java,
       java/org/apache/catalina/authenticator/LocalStrings.properties,
       java/org/apache/catalina/authenticator/mbeans-descriptors.xml,
       java/org/apache/catalina/realm/RealmBase.java,
       webapps/docs/config/valve.xml.
     - CVE-2011-1184
Checksums-Sha1: 
 d55e5828575df23ac34335b84f1c5efee8193dfe 2405 tomcat6_6.0.24-2ubuntu1.9.dsc
 ee0c78d1a2f21c47bcee435798e27bb0b07302d7 46590 tomcat6_6.0.24-2ubuntu1.9.debian.tar.gz
Checksums-Sha256: 
 21c426f79775556eb575c5639786f4aafa6224bb8dfd5c57cb7e49a826904943 2405 tomcat6_6.0.24-2ubuntu1.9.dsc
 02229b83da308549ac6c6ce8d1e67371c0dc2ee134026aa23d9041b77ba23aa5 46590 tomcat6_6.0.24-2ubuntu1.9.debian.tar.gz
Files: 
 af3c53021a8b00373e43817319492be6 2405 java optional tomcat6_6.0.24-2ubuntu1.9.dsc
 b81023c2ffd04e7e84ef925df3ba6416 46590 java optional tomcat6_6.0.24-2ubuntu1.9.debian.tar.gz
Original-Maintainer: Debian Java Maintainers <pkg-java-maintainers at lists.alioth.debian.org>

From foss at rolf.leggewie.biz  Tue Nov  8 23:24:00 2011
From: foss at rolf.leggewie.biz (Rolf Leggewie)
Date: Tue, 08 Nov 2011 23:24:00 -0000
Subject: [ubuntu/lucid-proposed] piuparts 0.38ubuntu3.10.04.1 (Accepted)
Message-ID: <20111108232400.7906.66484.launchpad@gac.canonical.com>

piuparts (0.38ubuntu3.10.04.1) lucid-proposed; urgency=low

  * set default keyring name to ubuntu-archive-keyring.gpg (LP: #807545)
    backported from oneiric

Date: Tue, 08 Nov 2011 12:04:52 +0000
Changed-By: Rolf Leggewie <foss at rolf.leggewie.biz>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Colin Watson <cjwatson at canonical.com>
https://launchpad.net/ubuntu/lucid/+source/piuparts/0.38ubuntu3.10.04.1
-------------- next part --------------
Format: 1.8
Date: Tue, 08 Nov 2011 12:04:52 +0000
Source: piuparts
Binary: piuparts
Architecture: source
Version: 0.38ubuntu3.10.04.1
Distribution: lucid-proposed
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Rolf Leggewie <foss at rolf.leggewie.biz>
Description: 
 piuparts   - .deb package installation, upgrading, and removal testing tool
Launchpad-Bugs-Fixed: 807545
Changes: 
 piuparts (0.38ubuntu3.10.04.1) lucid-proposed; urgency=low
 .
   * set default keyring name to ubuntu-archive-keyring.gpg (LP: #807545)
     backported from oneiric
Checksums-Sha1: 
 cf450002cb95cbb90124759498cffa0cc1e045a6 1915 piuparts_0.38ubuntu3.10.04.1.dsc
 4ab0adf7fa5da5e43003244bf7eabbf69df6557b 82629 piuparts_0.38ubuntu3.10.04.1.tar.gz
Checksums-Sha256: 
 72bd12ee84b7fbefc899edf82581683d2263ea7938953e748faf1c5d2e1c5bf8 1915 piuparts_0.38ubuntu3.10.04.1.dsc
 a2e2ab9980b38b1324149f1295629c52c5721247254bf93addf5c2e33e240f75 82629 piuparts_0.38ubuntu3.10.04.1.tar.gz
Files: 
 a851504aa717ba2a4b0888331ad4faf0 1915 devel extra piuparts_0.38ubuntu3.10.04.1.dsc
 6e39c5036d580e9dfdc11ee3b1de9735 82629 devel extra piuparts_0.38ubuntu3.10.04.1.tar.gz
Original-Maintainer: piuparts developers team <piuparts-devel at lists.alioth.debian.org>

From brian.thomason at canonical.com  Wed Nov  9 14:20:38 2011
From: brian.thomason at canonical.com (Brian Thomason)
Date: Wed, 09 Nov 2011 14:20:38 -0000
Subject: [ubuntu/lucid] acroread 9.4.6-0lucid1 (Accepted)
Message-ID: <20111109142038.17150.43602.launchpad@cocoplum.canonical.com>

acroread (9.4.6-0lucid1) lucid; urgency=low

  * New upstream release

Date: Wed, 09 Nov 2011 08:52:35 -0500
Changed-By: Brian Thomason <brian.thomason at canonical.com>
https://launchpad.net/ubuntu/lucid/+source/acroread/9.4.6-0lucid1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Wed, 09 Nov 2011 08:52:35 -0500
Source: acroread
Binary: acroread
Architecture: source
Version: 9.4.6-0lucid1
Distribution: lucid
Urgency: low
Maintainer: Brian Thomason <brian.thomason at canonical.com>
Changed-By: Brian Thomason <brian.thomason at canonical.com>
Description: 
 acroread   - Adobe Reader
Changes: 
 acroread (9.4.6-0lucid1) lucid; urgency=low
 .
   * New upstream release
Checksums-Sha1: 
 52d1f7354e433bf6270d1f6a5463c7288897b542 1202 acroread_9.4.6-0lucid1.dsc
 943d77e61a2f1b465da37bea3b07dba28f8e7bf4 59411161 acroread_9.4.6.orig.tar.gz
 1ee6f7f8a29b1cf63caca0b292e97129c6c99cf2 15333 acroread_9.4.6-0lucid1.diff.gz
Checksums-Sha256: 
 48e6d95f0e2d74c8c233026c6f21b096cfc8b4aa542da647e43e1b7745b615b6 1202 acroread_9.4.6-0lucid1.dsc
 728ccbb4db3ebb89de60b39fb1662fbb09eaeef448352a96318f9e2305212c6e 59411161 acroread_9.4.6.orig.tar.gz
 9695a82aa832247b314ce6dbae26b9673cf10d5fe40786790f611aa57c025529 15333 acroread_9.4.6-0lucid1.diff.gz
Files: 
 18e5976a7ff2716cded57ba00e812b96 1202 partner/text extra acroread_9.4.6-0lucid1.dsc
 624a6cf945fbb32938322912c5f2a426 59411161 partner/text extra acroread_9.4.6.orig.tar.gz
 165405dd912203009239445c8c354682 15333 partner/text extra acroread_9.4.6-0lucid1.diff.gz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEARECAAYFAk66hy8ACgkQOb4zNfJqN5cL+ACcCWG+zKWYs888u0WdJx/nUSmr
mvUAn2cMhjEKOoGehhd3FX+9oj/yO2i4
=P+6S
-----END PGP SIGNATURE-----

From marc.deslauriers at ubuntu.com  Wed Nov  9 15:03:38 2011
From: marc.deslauriers at ubuntu.com (Marc Deslauriers)
Date: Wed, 09 Nov 2011 15:03:38 -0000
Subject: [ubuntu/lucid-security] libmodplug 1:0.8.7-1ubuntu0.3 (Accepted)
Message-ID: <20111109150338.2322.92794.launchpad@cocoplum.canonical.com>

libmodplug (1:0.8.7-1ubuntu0.3) lucid-security; urgency=low

  * SECURITY UPDATE: integer overflow in CSoundFile::ReadWav()
    - properly calculate length in src/load_wav.cpp.
    - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=2d4c56de314ab13e4437bd8b609f0b751066eee8
    - CVE-2011-2911
  * SECURITY UPDATE: boundary error in CSoundFile::ReadS3M()
    - validate offsets and ignore duplicate samples in src/load_s3m.cpp.
    - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=4e5295658fff000379caa122e75c9200205fe20
    - CVE-2011-2912
  * SECURITY UPDATE: off-by-one in CSoundFile::ReadAMS()
    - fix calculation in src/load_ams.cpp.
    - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=26243ab9fe1171f70053e9aec4b20e9f7de9e4ef
    - CVE-2011-2913
  * SECURITY UPDATE: off-by-one in CSoundFile::ReadDSM()
    - fix calculation in src/load_dsm.cpp.
    - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=26243ab9fe1171f70053e9aec4b20e9f7de9e4ef
    - CVE-2011-2914
  * SECURITY UPDATE: off-by-one in CSoundFile::ReadAMS2()
    - fix calculation in src/load_ams.cpp.
    - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=16d7a78efe14d345a6c5b241f88422ad0ee483ea
    - CVE-2011-2915

Date: Fri, 14 Oct 2011 13:44:03 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/libmodplug/1:0.8.7-1ubuntu0.3
-------------- next part --------------
Format: 1.8
Date: Fri, 14 Oct 2011 13:44:03 -0400
Source: libmodplug
Binary: libmodplug0c2 libmodplug-dev
Architecture: source
Version: 1:0.8.7-1ubuntu0.3
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 libmodplug-dev - development files for mod music based on ModPlug
 libmodplug0c2 - shared libraries for mod music based on ModPlug
Changes: 
 libmodplug (1:0.8.7-1ubuntu0.3) lucid-security; urgency=low
 .
   * SECURITY UPDATE: integer overflow in CSoundFile::ReadWav()
     - properly calculate length in src/load_wav.cpp.
     - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=2d4c56de314ab13e4437bd8b609f0b751066eee8
     - CVE-2011-2911
   * SECURITY UPDATE: boundary error in CSoundFile::ReadS3M()
     - validate offsets and ignore duplicate samples in src/load_s3m.cpp.
     - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=4e5295658fff000379caa122e75c9200205fe20
     - CVE-2011-2912
   * SECURITY UPDATE: off-by-one in CSoundFile::ReadAMS()
     - fix calculation in src/load_ams.cpp.
     - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=26243ab9fe1171f70053e9aec4b20e9f7de9e4ef
     - CVE-2011-2913
   * SECURITY UPDATE: off-by-one in CSoundFile::ReadDSM()
     - fix calculation in src/load_dsm.cpp.
     - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=26243ab9fe1171f70053e9aec4b20e9f7de9e4ef
     - CVE-2011-2914
   * SECURITY UPDATE: off-by-one in CSoundFile::ReadAMS2()
     - fix calculation in src/load_ams.cpp.
     - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=16d7a78efe14d345a6c5b241f88422ad0ee483ea
     - CVE-2011-2915
Checksums-Sha1: 
 ced2f33857328ae7d387b0c602b7bce998a81a9c 1789 libmodplug_0.8.7-1ubuntu0.3.dsc
 5b5e0e7e461898520d58c82a58caec8db89c68e9 14333 libmodplug_0.8.7-1ubuntu0.3.diff.gz
Checksums-Sha256: 
 0eec38bdeef88ea956ef3079829ec74791a09a89f582b211a5785a3cc5b1a9c1 1789 libmodplug_0.8.7-1ubuntu0.3.dsc
 143066d3dd7fe3612fbc82491002fa50150a6bc6ad26d8efb2486ec0b6d319df 14333 libmodplug_0.8.7-1ubuntu0.3.diff.gz
Files: 
 64c4cb68b9104e3cb21afdd6d7f765a7 1789 libs optional libmodplug_0.8.7-1ubuntu0.3.dsc
 7d868178f9356c0bb0a1185c5a6870e3 14333 libs optional libmodplug_0.8.7-1ubuntu0.3.diff.gz
Original-Maintainer: Zed Pobre <zed at debian.org>

From jean-louis at dupond.be  Thu Nov 10 06:13:53 2011
From: jean-louis at dupond.be (Jean-Louis Dupond)
Date: Thu, 10 Nov 2011 06:13:53 -0000
Subject: [ubuntu/lucid-proposed] papyon 0.4.8-0ubuntu2.1 (Accepted)
Message-ID: <20111110061353.8160.58648.launchpad@chaenomeles.canonical.com>

papyon (0.4.8-0ubuntu2.1) lucid-proposed; urgency=low

  * debian/patches/11_lp_887349.patch :
    - Fix login failure due to trying to interact to an obsolete
      server (LP: #887349).

Date: Tue, 08 Nov 2011 16:32:16 +0100
Changed-By: Jean-Louis Dupond <jean-louis at dupond.be>
Maintainer: Devid Antonio Filoni <d.filoni at ubuntu.com>
Signed-By: Ken VanDine <ken.vandine at canonical.com>
https://launchpad.net/ubuntu/lucid/+source/papyon/0.4.8-0ubuntu2.1
-------------- next part --------------
Format: 1.8
Date: Tue, 08 Nov 2011 16:32:16 +0100
Source: papyon
Binary: python-papyon
Architecture: source
Version: 0.4.8-0ubuntu2.1
Distribution: lucid-proposed
Urgency: low
Maintainer: Devid Antonio Filoni <d.filoni at ubuntu.com>
Changed-By: Jean-Louis Dupond <jean-louis at dupond.be>
Description: 
 python-papyon - MSN client library written in Python
Launchpad-Bugs-Fixed: 887349
Changes: 
 papyon (0.4.8-0ubuntu2.1) lucid-proposed; urgency=low
 .
   * debian/patches/11_lp_887349.patch :
     - Fix login failure due to trying to interact to an obsolete
       server (LP: #887349).
Checksums-Sha1: 
 b2dbed4f9b79da9d7d3283df10e40cbe28a3210a 1451 papyon_0.4.8-0ubuntu2.1.dsc
 361e600f725e110d67ca53af51eebf700cb5b15b 5711 papyon_0.4.8-0ubuntu2.1.diff.gz
Checksums-Sha256: 
 08f5722e15785acb744faae02b4004130ae522e2f1066e8a8805bf9cb07e137c 1451 papyon_0.4.8-0ubuntu2.1.dsc
 7bede6ba2ea7e1bb781edb4837c59a40b756a9e44f0d376db2cff042fc2ac281 5711 papyon_0.4.8-0ubuntu2.1.diff.gz
Files: 
 e64108d335f8aa96c1606850ffcdfada 1451 python optional papyon_0.4.8-0ubuntu2.1.dsc
 229a5d7e9a725aa23a87a47fe2e00867 5711 python optional papyon_0.4.8-0ubuntu2.1.diff.gz

From marc.deslauriers at ubuntu.com  Thu Nov 10 17:03:40 2011
From: marc.deslauriers at ubuntu.com (Marc Deslauriers)
Date: Thu, 10 Nov 2011 17:03:40 -0000
Subject: [ubuntu/lucid-security] radvd 1:1.3-1.1ubuntu0.1 (Accepted)
Message-ID: <20111110170340.3673.79057.launchpad@cocoplum.canonical.com>

radvd (1:1.3-1.1ubuntu0.1) lucid-security; urgency=low

  * SECURITY UPDATE: arbitrary file overwrite via interface name
    - debian/patches/CVE-2011-3602.patch: check for path traversal in
      device-linux.c.
    - CVE-2011-3602
  * SECURITY UPDATE: incorrect privilege dropping handling
    - debian/patches/CVE-2011-3603.patch: fail on errors in
      privsep-linux.c, radvd.c.
    - CVE-2011-3603
  * SECURITY UPDATE: denial or service via buffer overreads
    - debian/patches/CVE-2011-3604.patch: properly check length in
      process.c.
    - CVE-2011-3604
  * SECURITY UPDATE: temporary denial of service via delay
    - debian/patches/CVE-2011-3605.patch: remove delay in process.c.
    - CVE-2011-3605

Date: Wed, 12 Oct 2011 10:08:43 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/radvd/1:1.3-1.1ubuntu0.1
-------------- next part --------------
Format: 1.8
Date: Wed, 12 Oct 2011 10:08:43 -0400
Source: radvd
Binary: radvd
Architecture: source
Version: 1:1.3-1.1ubuntu0.1
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 radvd      - Router Advertisement Daemon
Changes: 
 radvd (1:1.3-1.1ubuntu0.1) lucid-security; urgency=low
 .
   * SECURITY UPDATE: arbitrary file overwrite via interface name
     - debian/patches/CVE-2011-3602.patch: check for path traversal in
       device-linux.c.
     - CVE-2011-3602
   * SECURITY UPDATE: incorrect privilege dropping handling
     - debian/patches/CVE-2011-3603.patch: fail on errors in
       privsep-linux.c, radvd.c.
     - CVE-2011-3603
   * SECURITY UPDATE: denial or service via buffer overreads
     - debian/patches/CVE-2011-3604.patch: properly check length in
       process.c.
     - CVE-2011-3604
   * SECURITY UPDATE: temporary denial of service via delay
     - debian/patches/CVE-2011-3605.patch: remove delay in process.c.
     - CVE-2011-3605
Checksums-Sha1: 
 97215baac9b9dc7d48390bd23225d5578b0b5eed 1705 radvd_1.3-1.1ubuntu0.1.dsc
 f5991ed2c9d162fb05e129c3e84010a1fa737a9e 9311 radvd_1.3-1.1ubuntu0.1.diff.gz
Checksums-Sha256: 
 478035aedb478f83186de2c38ca974e899857541e56fab8a4040c7eeb2d5dd90 1705 radvd_1.3-1.1ubuntu0.1.dsc
 60bb993304f0964f2b537aad9ac75561ab31ede72b295d7adff0cfd4cea84976 9311 radvd_1.3-1.1ubuntu0.1.diff.gz
Files: 
 c6a1ad3fad150b637184a6939ea50cc6 1705 net optional radvd_1.3-1.1ubuntu0.1.dsc
 8d9d6eb8e717948a9ab00c1cc2506b99 9311 net optional radvd_1.3-1.1ubuntu0.1.diff.gz
Original-Maintainer: Ghe Rivero <ghe at debian.org>

From jamie at ubuntu.com  Thu Nov 10 18:05:13 2011
From: jamie at ubuntu.com (Jamie Strandboge)
Date: Thu, 10 Nov 2011 18:05:13 -0000
Subject: [ubuntu/lucid-security]
	clamav_0.96.5+dfsg-1ubuntu1.10.04.3_armel_translations.tar.gz,
	clamav_0.96.5+dfsg-1ubuntu1.10.04.3_sparc_translations.tar.gz, clamav, 
	clamav_0.96.5+dfsg-1ubuntu1.10.04.3_powerpc_translations.tar.gz,
	clamav_0.96.5+dfsg-1ubuntu1.10.04.3_amd64_translations.tar.gz,
	clamav_0.96.5+dfsg-1ubuntu1.10.04.3_i386_translations.tar.gz,
	clamav_0.96.5+dfsg-1ubuntu1.10.04.3_ia64_translations.tar.gz
	0.96.5+dfsg-1ubuntu1.10.04.3 (Accepted)
Message-ID: <20111110180513.26059.3555.launchpad@cocoplum.canonical.com>

clamav (0.96.5+dfsg-1ubuntu1.10.04.3) lucid-security; urgency=low

  * SECURITY UPDATE: fix recursion level crash
    - libclamav/bytecode.c, libclamav/bytecode_api.c:adjust recursion level
      before and after calling cli_magic_scandesc()
    - http://git.clamav.net/gitweb?p=clamav-devel.git;a=patch;h=3d664817f6ef833a17414a4ecea42004c35cc42f
    - CVE-2011-3627

Date: Fri, 28 Oct 2011 08:43:28 -0500
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/clamav/0.96.5+dfsg-1ubuntu1.10.04.3
-------------- next part --------------
Format: 1.8
Date: Fri, 28 Oct 2011 08:43:28 -0500
Source: clamav
Binary: clamav-base clamav-docs clamav-dbg clamav libclamav-dev libclamav6 clamav-daemon clamav-testfiles clamav-freshclam clamav-milter
Architecture: source
Version: 0.96.5+dfsg-1ubuntu1.10.04.3
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 clamav     - anti-virus utility for Unix - command-line interface
 clamav-base - anti-virus utility for Unix - base package
 clamav-daemon - anti-virus utility for Unix - scanner daemon
 clamav-dbg - debug symbols for ClamAV
 clamav-docs - anti-virus utility for Unix - documentation
 clamav-freshclam - anti-virus utility for Unix - virus database update utility
 clamav-milter - anti-virus utility for Unix - sendmail integration
 clamav-testfiles - anti-virus utility for Unix - test files
 libclamav-dev - anti-virus utility for Unix - development files
 libclamav6 - anti-virus utility for Unix - library
Changes: 
 clamav (0.96.5+dfsg-1ubuntu1.10.04.3) lucid-security; urgency=low
 .
   * SECURITY UPDATE: fix recursion level crash
     - libclamav/bytecode.c, libclamav/bytecode_api.c:adjust recursion level
       before and after calling cli_magic_scandesc()
     - http://git.clamav.net/gitweb?p=clamav-devel.git;a=patch;h=3d664817f6ef833a17414a4ecea42004c35cc42f
     - CVE-2011-3627
Checksums-Sha1: 
 f1516e45334e4b01047573f91abb454287381e73 2316 clamav_0.96.5+dfsg-1ubuntu1.10.04.3.dsc
 009116ee4ff7019f36dc69a74cefba85885a09dc 284047 clamav_0.96.5+dfsg-1ubuntu1.10.04.3.diff.gz
Checksums-Sha256: 
 f9f2dc66662332923b51bf25ac06e85b01f4b09c7c8046064002e1f8451f910d 2316 clamav_0.96.5+dfsg-1ubuntu1.10.04.3.dsc
 f00caf72579074bd8b2a7290bdd4d124ce5d8134382fc53b0249ee719b0c328c 284047 clamav_0.96.5+dfsg-1ubuntu1.10.04.3.diff.gz
Files: 
 e0c3f980795412ae8d5956ede5ef53c3 2316 utils optional clamav_0.96.5+dfsg-1ubuntu1.10.04.3.dsc
 af8fb30256bf8191704b73056f86cfd8 284047 utils optional clamav_0.96.5+dfsg-1ubuntu1.10.04.3.diff.gz
Original-Maintainer: ClamAV Team <pkg-clamav-devel at lists.alioth.debian.org>

From brian.thomason at canonical.com  Thu Nov 10 22:00:20 2011
From: brian.thomason at canonical.com (Brian Thomason)
Date: Thu, 10 Nov 2011 22:00:20 -0000
Subject: [ubuntu/lucid] adobe-flashplugin 11.1.102.55-0lucid1 (Accepted)
Message-ID: <20111110220020.14442.22054.launchpad@cocoplum.canonical.com>

adobe-flashplugin (11.1.102.55-0lucid1) lucid; urgency=low

  * New upstream release

Date: Thu, 10 Nov 2011 11:48:08 -0500
Changed-By: Brian Thomason <brian.thomason at canonical.com>
Maintainer: DL-Flash Player Ubuntu <FlashPlayerUbuntu at adobe.com>
https://launchpad.net/ubuntu/lucid/+source/adobe-flashplugin/11.1.102.55-0lucid1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 10 Nov 2011 11:48:08 -0500
Source: adobe-flashplugin
Binary: adobe-flashplugin adobe-flash-properties-gtk adobe-flash-properties-kde
Architecture: source
Version: 11.1.102.55-0lucid1
Distribution: lucid
Urgency: low
Maintainer: DL-Flash Player Ubuntu <FlashPlayerUbuntu at adobe.com>
Changed-By: Brian Thomason <brian.thomason at canonical.com>
Description: 
 adobe-flash-properties-gtk - GTK+ control panel for Adobe Flash Player plugin version 11
 adobe-flash-properties-kde - KDE control panel Adobe Flash Player plugin version 11
 adobe-flashplugin - Adobe Flash Player plugin version 11
Changes: 
 adobe-flashplugin (11.1.102.55-0lucid1) lucid; urgency=low
 .
   * New upstream release
Checksums-Sha1: 
 cfbee55d7b856bf7abae53e0ad0b4a5d0140f386 1267 adobe-flashplugin_11.1.102.55-0lucid1.dsc
 f12b215ce1d24b3c059edae0509bb398be581d05 13927681 adobe-flashplugin_11.1.102.55.orig.tar.gz
 22c54f7240933663e11391fb9ed41e1ca44382b3 4747 adobe-flashplugin_11.1.102.55-0lucid1.diff.gz
Checksums-Sha256: 
 321a457fbe6651fb035b52c21c5a8f2ae79236589ef1f7fb847d45e9bc068573 1267 adobe-flashplugin_11.1.102.55-0lucid1.dsc
 b92636ea0204415ee9de77fff930614bbb1112d3d041d98d6c689b47184b2c18 13927681 adobe-flashplugin_11.1.102.55.orig.tar.gz
 e4ab37fbe58011705de396ecd68890c2cf8dadd3e5a7ff90087a3b93ddbec831 4747 adobe-flashplugin_11.1.102.55-0lucid1.diff.gz
Files: 
 ca6fa66132c028e3ada3f927c5821c9a 1267 partner/web optional adobe-flashplugin_11.1.102.55-0lucid1.dsc
 7de4f379dc7c7c9806a14a78de84bd6f 13927681 partner/web optional adobe-flashplugin_11.1.102.55.orig.tar.gz
 aaf8e6beab8603b800aad17258aa8339 4747 partner/web optional adobe-flashplugin_11.1.102.55-0lucid1.diff.gz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEARECAAYFAk68RY4ACgkQOb4zNfJqN5fYxgCdFauP9Y9ynWQJ+IIUysDch3U0
rO8AnjeUFx2VCqEcr3uYQii6qPs4A/J+
=tcYv
-----END PGP SIGNATURE-----

From sbeattie at ubuntu.com  Thu Nov 10 22:04:09 2011
From: sbeattie at ubuntu.com (Steve Beattie)
Date: Thu, 10 Nov 2011 22:04:09 -0000
Subject: [ubuntu/lucid-security] apache2 2.2.14-5ubuntu8.7 (Accepted)
Message-ID: <20111110220409.15026.43811.launchpad@cocoplum.canonical.com>

apache2 (2.2.14-5ubuntu8.7) lucid-security; urgency=low

  [ Michael Jeanson ]
  * SECURITY UPDATE: mod_proxy reverse proxy exposure (LP: #877740)
    - debian/patches/212_CVE-2011-3368.dpatch: return 400
      on invalid requests.
    - debian/patches/214_CVE-2011-3368_part2.dpatch: fix same for http
      0.9 protocol
    - CVE-2011-3368

  [ Steve Beattie ]
  * SECURITY UPDATE: mod_proxy_ajp denial of service (LP: #871674)
    - debian/patches/213_CVE-2011-3348.dpatch: return
      HTTP_NOT_IMPLEMENTED when AJP_EBAD_METHOD is requested
    - CVE-2011-3348
  * SECURITY UPDATE: mpm-itk failure to drop privileges in certain
    configurations
    - debian/mpm-itk/patches/11-CVE-2011-1176.patch: merge
      configurations correctly
    - CVE-2011-1176
  * Include additional fixes for regressions introduced by
    CVE-2011-3192 fixes
    - debian/patches/215_CVE-2011-3192_regression_part2.dpatch:
      take upstream fixes for byterange_filter.c through the 2.2.21
      release except for the added MaxRanges configuration option along
      with a fix staged for 2.2.22.

Date: Wed, 02 Nov 2011 17:27:07 -0700
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/apache2/2.2.14-5ubuntu8.7
-------------- next part --------------
Format: 1.8
Date: Wed, 02 Nov 2011 17:27:07 -0700
Source: apache2
Binary: apache2.2-common apache2.2-bin apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-mpm-itk apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-dbg
Architecture: source
Version: 2.2.14-5ubuntu8.7
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description: 
 apache2    - Apache HTTP Server metapackage
 apache2-dbg - Apache debugging symbols
 apache2-doc - Apache HTTP Server documentation
 apache2-mpm-event - Apache HTTP Server - event driven model
 apache2-mpm-itk - multiuser MPM for Apache 2.2
 apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model
 apache2-mpm-worker - Apache HTTP Server - high speed threaded model
 apache2-prefork-dev - Apache development headers - non-threaded MPM
 apache2-suexec - Standard suexec program for Apache 2 mod_suexec
 apache2-suexec-custom - Configurable suexec program for Apache 2 mod_suexec
 apache2-threaded-dev - Apache development headers - threaded MPM
 apache2-utils - utility programs for webservers
 apache2.2-bin - Apache HTTP Server common binary files
 apache2.2-common - Apache HTTP Server common files
Launchpad-Bugs-Fixed: 871674 877740
Changes: 
 apache2 (2.2.14-5ubuntu8.7) lucid-security; urgency=low
 .
   [ Michael Jeanson ]
   * SECURITY UPDATE: mod_proxy reverse proxy exposure (LP: #877740)
     - debian/patches/212_CVE-2011-3368.dpatch: return 400
       on invalid requests.
     - debian/patches/214_CVE-2011-3368_part2.dpatch: fix same for http
       0.9 protocol
     - CVE-2011-3368
 .
   [ Steve Beattie ]
   * SECURITY UPDATE: mod_proxy_ajp denial of service (LP: #871674)
     - debian/patches/213_CVE-2011-3348.dpatch: return
       HTTP_NOT_IMPLEMENTED when AJP_EBAD_METHOD is requested
     - CVE-2011-3348
   * SECURITY UPDATE: mpm-itk failure to drop privileges in certain
     configurations
     - debian/mpm-itk/patches/11-CVE-2011-1176.patch: merge
       configurations correctly
     - CVE-2011-1176
   * Include additional fixes for regressions introduced by
     CVE-2011-3192 fixes
     - debian/patches/215_CVE-2011-3192_regression_part2.dpatch:
       take upstream fixes for byterange_filter.c through the 2.2.21
       release except for the added MaxRanges configuration option along
       with a fix staged for 2.2.22.
Checksums-Sha1: 
 c0020f5e31990a9c4e3a876d1f01eb820ed3955f 2697 apache2_2.2.14-5ubuntu8.7.dsc
 d9d87ac9b178f982cdb9be001fe3ede53e7602fd 226121 apache2_2.2.14-5ubuntu8.7.diff.gz
Checksums-Sha256: 
 a77586676563f2815e0359e7312f829f942cb8e603948dffdee3a0ec9eb51f30 2697 apache2_2.2.14-5ubuntu8.7.dsc
 1eb921b6d5af76b4cc3a3fa6339acd91b689404e313f2c7680d544fd54e5d459 226121 apache2_2.2.14-5ubuntu8.7.diff.gz
Files: 
 091a7621038c5f513bda5d5cf490f3f4 2697 httpd optional apache2_2.2.14-5ubuntu8.7.dsc
 f6da86a9b110b736e9ce02d3c95a8441 226121 httpd optional apache2_2.2.14-5ubuntu8.7.diff.gz
Original-Maintainer: Debian Apache Maintainers <debian-apache at lists.debian.org>
Original-Vcs-Browser: http://svn.debian.org/wsvn/pkg-apache/trunk/apache2
Original-Vcs-Svn: svn://svn.debian.org/pkg-apache/trunk/apache2

From marc.deslauriers at ubuntu.com  Fri Nov 11 18:03:49 2011
From: marc.deslauriers at ubuntu.com (Marc Deslauriers)
Date: Fri, 11 Nov 2011 18:03:49 -0000
Subject: [ubuntu/lucid-security] flashplugin-nonfree,
	flashplugin-nonfree_11.1.102.55ubuntu0.10.04.1_amd64_translations.tar.gz,
	flashplugin-nonfree_11.1.102.55ubuntu0.10.04.1_i386_translations.tar.gz
	11.1.102.55ubuntu0.10.04.1 (Accepted)
Message-ID: <20111111180349.21598.8923.launchpad@cocoplum.canonical.com>

flashplugin-nonfree (11.1.102.55ubuntu0.10.04.1) lucid-security; urgency=low

  * New upstream release 11.1.102.55
    - debian/config, debian/postinst: Updated sha256sums and version.
    - CVE-2011-2445
    - CVE-2011-2450
    - CVE-2011-2451
    - CVE-2011-2452
    - CVE-2011-2453
    - CVE-2011-2454
    - CVE-2011-2455
    - CVE-2011-2456
    - CVE-2011-2457
    - CVE-2011-2458
    - CVE-2011-2459
    - CVE-2011-2460

Date: Fri, 11 Nov 2011 08:54:07 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/flashplugin-nonfree/11.1.102.55ubuntu0.10.04.1
-------------- next part --------------
Format: 1.8
Date: Fri, 11 Nov 2011 08:54:07 -0500
Source: flashplugin-nonfree
Binary: flashplugin-installer flashplugin-nonfree
Architecture: source
Version: 11.1.102.55ubuntu0.10.04.1
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 flashplugin-installer - Adobe Flash Player plugin installer
 flashplugin-nonfree - Adobe Flash Player plugin installer (transitional package)
Changes: 
 flashplugin-nonfree (11.1.102.55ubuntu0.10.04.1) lucid-security; urgency=low
 .
   * New upstream release 11.1.102.55
     - debian/config, debian/postinst: Updated sha256sums and version.
     - CVE-2011-2445
     - CVE-2011-2450
     - CVE-2011-2451
     - CVE-2011-2452
     - CVE-2011-2453
     - CVE-2011-2454
     - CVE-2011-2455
     - CVE-2011-2456
     - CVE-2011-2457
     - CVE-2011-2458
     - CVE-2011-2459
     - CVE-2011-2460
Checksums-Sha1: 
 c3c759e97478e64e312f8ec19c4ca55096541781 1639 flashplugin-nonfree_11.1.102.55ubuntu0.10.04.1.dsc
 fc6a6250e3d28af90a60c2094ef0a226feb03d7f 27417 flashplugin-nonfree_11.1.102.55ubuntu0.10.04.1.tar.gz
Checksums-Sha256: 
 fbf2c2c4b43206150eb0e37f3861f6bc1d79d49e4235e7e3271a36ab50df9de8 1639 flashplugin-nonfree_11.1.102.55ubuntu0.10.04.1.dsc
 ffc7151db278eeec95b1eb5ca68785d93866db47afb53df394a0b21392597685 27417 flashplugin-nonfree_11.1.102.55ubuntu0.10.04.1.tar.gz
Files: 
 7457a2884db79f43ad9845da35346492 1639 contrib/web optional flashplugin-nonfree_11.1.102.55ubuntu0.10.04.1.dsc
 85a8dbfe538a36d146d1571dc5d68bd4 27417 contrib/web optional flashplugin-nonfree_11.1.102.55ubuntu0.10.04.1.tar.gz
Original-Maintainer: Bart Martens <bartm at knars.be>

From jean-louis at dupond.be  Mon Nov 14 05:59:35 2011
From: jean-louis at dupond.be (Jean-Louis Dupond)
Date: Mon, 14 Nov 2011 05:59:35 -0000
Subject: [ubuntu/lucid-proposed] papyon 0.4.8-0ubuntu2.2 (Accepted)
Message-ID: <20111114055935.27336.69091.launchpad@gac.canonical.com>

papyon (0.4.8-0ubuntu2.2) lucid-proposed; urgency=low

  * debian/patches/11_lp_887349.patch:
    - Allow HTTP redirection and use correct AB server. (LP: #887349)

Date: Thu, 10 Nov 2011 18:21:13 +0100
Changed-By: Jean-Louis Dupond <jean-louis at dupond.be>
Maintainer: Devid Antonio Filoni <d.filoni at ubuntu.com>
Signed-By: Martin Pitt <martin.pitt at ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/papyon/0.4.8-0ubuntu2.2
-------------- next part --------------
Format: 1.8
Date: Thu, 10 Nov 2011 18:21:13 +0100
Source: papyon
Binary: python-papyon
Architecture: source
Version: 0.4.8-0ubuntu2.2
Distribution: lucid-proposed
Urgency: low
Maintainer: Devid Antonio Filoni <d.filoni at ubuntu.com>
Changed-By: Jean-Louis Dupond <jean-louis at dupond.be>
Description: 
 python-papyon - MSN client library written in Python
Launchpad-Bugs-Fixed: 887349
Changes: 
 papyon (0.4.8-0ubuntu2.2) lucid-proposed; urgency=low
 .
   * debian/patches/11_lp_887349.patch:
     - Allow HTTP redirection and use correct AB server. (LP: #887349)
Checksums-Sha1: 
 c7efca02a1efee4b51beeb20cefef798483eeb3b 2141 papyon_0.4.8-0ubuntu2.2.dsc
 29289f8aa3450e12fcf599328018baeb5e1a7ede 6476 papyon_0.4.8-0ubuntu2.2.diff.gz
Checksums-Sha256: 
 59392a9dab2f0b99fc3f049eb5179950e5225e1d7436db092c917aa81f5e0d62 2141 papyon_0.4.8-0ubuntu2.2.dsc
 b2eccf44c884f48a246eeeea8ecdef32bf09ed1c64ea6d2c8aea2ac3649c8874 6476 papyon_0.4.8-0ubuntu2.2.diff.gz
Files: 
 1e10007c9f27f0990745683090f7a667 2141 python optional papyon_0.4.8-0ubuntu2.2.dsc
 3fc3aea585b17dcb7e2844d7e762e83d 6476 python optional papyon_0.4.8-0ubuntu2.2.diff.gz

From foss at rolf.leggewie.biz  Mon Nov 14 06:24:07 2011
From: foss at rolf.leggewie.biz (Rolf Leggewie)
Date: Mon, 14 Nov 2011 06:24:07 -0000
Subject: [ubuntu/lucid-proposed] icecc 0.9.4-2ubuntu2 (Accepted)
Message-ID: <20111114062407.26321.48259.launchpad@soybean.canonical.com>

icecc (0.9.4-2ubuntu2) lucid-proposed; urgency=low

  * backport r18378 of the Debian packaging to allow for proper removal of
    the package. LP: #881806

icecc (0.9.4-2ubuntu1) lucid-proposed; urgency=low

  * backport patch from Aloisio Almeida Jr to fix logging. LP: #697788

Date: Thu, 27 Oct 2011 02:25:35 +0800
Changed-By: Rolf Leggewie <foss at rolf.leggewie.biz>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Felix Geyer <debfx at fobos.de>
https://launchpad.net/ubuntu/lucid/+source/icecc/0.9.4-2ubuntu2
-------------- next part --------------
Format: 1.8
Date: Thu, 27 Oct 2011 02:25:35 +0800
Source: icecc
Binary: icecc libicecc-dev
Architecture: source
Version: 0.9.4-2ubuntu2
Distribution: lucid-proposed
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Rolf Leggewie <foss at rolf.leggewie.biz>
Description: 
 icecc      - distributed compiler (client and server)
 libicecc-dev - development files for icecc (distributed compiler)
Launchpad-Bugs-Fixed: 697788 881806
Changes: 
 icecc (0.9.4-2ubuntu2) lucid-proposed; urgency=low
 .
   * backport r18378 of the Debian packaging to allow for proper removal of
     the package. LP: #881806
 .
 icecc (0.9.4-2ubuntu1) lucid-proposed; urgency=low
 .
   * backport patch from Aloisio Almeida Jr to fix logging. LP: #697788
Checksums-Sha1: 
 8f431a1781c00410cf145bfba6b26f55591f4b50 2070 icecc_0.9.4-2ubuntu2.dsc
 836e42397dcb16b6262393b5a375ea51ecfb8da6 16754 icecc_0.9.4-2ubuntu2.diff.gz
Checksums-Sha256: 
 2c77070fb781869253f22281adfd119ff6ab3c01ccb87ca73c910e71db61897a 2070 icecc_0.9.4-2ubuntu2.dsc
 ef4d74a53fa108c831cfa22c7541bbfaf566a15b47ff2ac782b2b5861adea412 16754 icecc_0.9.4-2ubuntu2.diff.gz
Files: 
 e05e75a069bfb900597c2739f95c2bac 2070 devel optional icecc_0.9.4-2ubuntu2.dsc
 245a3bf4f351a193fd16cafc59596a50 16754 devel optional icecc_0.9.4-2ubuntu2.diff.gz
Original-Maintainer: Debian KDE Extras Team <pkg-kde-extras at lists.alioth.debian.org>

From tim.gardner at canonical.com  Mon Nov 14 06:25:35 2011
From: tim.gardner at canonical.com (Tim Gardner)
Date: Mon, 14 Nov 2011 06:25:35 -0000
Subject: [ubuntu/lucid-proposed] linux-firmware 1.34.13 (Accepted)
Message-ID: <20111114062535.5961.55486.launchpad@wampee.canonical.com>

linux-firmware (1.34.13) lucid-proposed; urgency=low

  * ath3k-fw: Fix EEPROM radio table issue.
    LP: #882685

linux-firmware (1.34.12) lucid-proposed; urgency=low

  * Added firmware files to support Oneiric LTS backport
    linux-firmware: Add a new FW 7.0.20.0
    bnx2x: Adding FW 7.0.23.0
    -LP: #808884

linux-firmware (1.34.11) lucid-proposed; urgency=low

  * Added firmware files to support compat-wireless
    linux-firmware: add new firmware for RTL8168E-VL
    linux-firmware: update firmware for RTL8111E
    linux-firmware: Add firmware for RTL8168/8111E
    linux-firmware: Add firmware for RTL8105E
    rtl_nic: Add firmware for RTL8111D(L)
    -LP: #804671

linux-firmware (1.34.10) lucid-proposed; urgency=low

  * Added carl9170.fw for Atheros wireless AR9170 based devices.
    -LP: #713987

linux-firmware (1.34.9) lucid-proposed; urgency=low

  * Add Firmware for Atheros HTC devices (ath9k)
    -LP: #653854

linux-firmware (1.34.8) lucid-proposed; urgency=low

  * Added iwlwifi-1000-5.ucode
    -LP: #752829

Date: Fri, 28 Oct 2011 10:06:36 -0600
Changed-By: Tim Gardner <tim.gardner at canonical.com>
Maintainer: Ubuntu Kernel Team <kernel-team at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/linux-firmware/1.34.13
-------------- next part --------------
Format: 1.8
Date: Fri, 28 Oct 2011 10:06:36 -0600
Source: linux-firmware
Binary: linux-firmware nic-firmware scsi-firmware
Architecture: source
Version: 1.34.13
Distribution: lucid-proposed
Urgency: low
Maintainer: Ubuntu Kernel Team <kernel-team at lists.ubuntu.com>
Changed-By: Tim Gardner <tim.gardner at canonical.com>
Description: 
 linux-firmware - Firmware for Linux kernel drivers
 nic-firmware - Firmware for NICs (udeb)
 scsi-firmware - Firmware for SCSI controllers (udeb)
Launchpad-Bugs-Fixed: 653854 713987 752829 804671 808884 882685
Changes: 
 linux-firmware (1.34.13) lucid-proposed; urgency=low
 .
   * ath3k-fw: Fix EEPROM radio table issue.
     LP: #882685
 .
 linux-firmware (1.34.12) lucid-proposed; urgency=low
 .
   * Added firmware files to support Oneiric LTS backport
     linux-firmware: Add a new FW 7.0.20.0
     bnx2x: Adding FW 7.0.23.0
     -LP: #808884
 .
 linux-firmware (1.34.11) lucid-proposed; urgency=low
 .
   * Added firmware files to support compat-wireless
     linux-firmware: add new firmware for RTL8168E-VL
     linux-firmware: update firmware for RTL8111E
     linux-firmware: Add firmware for RTL8168/8111E
     linux-firmware: Add firmware for RTL8105E
     rtl_nic: Add firmware for RTL8111D(L)
     -LP: #804671
 .
 linux-firmware (1.34.10) lucid-proposed; urgency=low
 .
   * Added carl9170.fw for Atheros wireless AR9170 based devices.
     -LP: #713987
 .
 linux-firmware (1.34.9) lucid-proposed; urgency=low
 .
   * Add Firmware for Atheros HTC devices (ath9k)
     -LP: #653854
 .
 linux-firmware (1.34.8) lucid-proposed; urgency=low
 .
   * Added iwlwifi-1000-5.ucode
     -LP: #752829
Checksums-Sha1: 
 4391d1c22d1dc8e7c253625673baccefbe83a72f 1505 linux-firmware_1.34.13.dsc
 d2f8b02c67bf327ced1ba54e462c35a3de49eaac 12261161 linux-firmware_1.34.13.tar.gz
Checksums-Sha256: 
 29e484ad07e868a991bade083b9ef2b0b46a8cd07498f3b1dd968361e468f26f 1505 linux-firmware_1.34.13.dsc
 2ceb8e05874cb5b4fcd75127a69acf6c66a08839b35c78728254e2ae7e82a5b8 12261161 linux-firmware_1.34.13.tar.gz
Files: 
 8f56586d804d0abc029bafd8d5fff3b1 1505 misc optional linux-firmware_1.34.13.dsc
 4e06744da6b71c75e98cabc476d8aa89 12261161 misc optional linux-firmware_1.34.13.tar.gz

From serge.hallyn at ubuntu.com  Mon Nov 14 06:28:38 2011
From: serge.hallyn at ubuntu.com (Serge Hallyn)
Date: Mon, 14 Nov 2011 06:28:38 -0000
Subject: [ubuntu/lucid-proposed] libvirt 0.7.5-5ubuntu27.18 (Accepted)
Message-ID: <20111114062838.27435.41213.launchpad@gac.canonical.com>

libvirt (0.7.5-5ubuntu27.18) lucid-proposed; urgency=low

  * lxc_controller: use our own unlocpt+grantpt rather than glibc's, which
    can't handle opening a pty in a devpts not mounted at /dev/pts.
    (LP: #863629)

Date: Tue, 01 Nov 2011 18:10:42 +0000
Changed-By: Serge Hallyn <serge.hallyn at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/libvirt/0.7.5-5ubuntu27.18
-------------- next part --------------
Format: 1.8
Date: Tue, 01 Nov 2011 18:10:42 +0000
Source: libvirt
Binary: libvirt-bin libvirt0 libvirt0-dbg libvirt-doc libvirt-dev python-libvirt
Architecture: source
Version: 0.7.5-5ubuntu27.18
Distribution: lucid-proposed
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Serge Hallyn <serge.hallyn at ubuntu.com>
Description: 
 libvirt-bin - the programs for the libvirt library
 libvirt-dev - development files for the libvirt library
 libvirt-doc - documentation for the libvirt library
 libvirt0   - library for interfacing with different virtualization systems
 libvirt0-dbg - library for interfacing with different virtualization systems
 python-libvirt - libvirt Python bindings
Launchpad-Bugs-Fixed: 863629
Changes: 
 libvirt (0.7.5-5ubuntu27.18) lucid-proposed; urgency=low
 .
   * lxc_controller: use our own unlocpt+grantpt rather than glibc's, which
     can't handle opening a pty in a devpts not mounted at /dev/pts.
     (LP: #863629)
Checksums-Sha1: 
 da0bd91f76e23c039ca30301d38e74614335e0b6 2292 libvirt_0.7.5-5ubuntu27.18.dsc
 08194838aec6c43cb3b26f54fc9450f147149367 91807 libvirt_0.7.5-5ubuntu27.18.diff.gz
Checksums-Sha256: 
 061a18cb29838aa53b0dea8d9bf180746dd2fb400e9d71fa13412c23ebc389e2 2292 libvirt_0.7.5-5ubuntu27.18.dsc
 7d21347ba08780f569df398a378da287d2c82065f9a3bcfde16e9ec5238a39ab 91807 libvirt_0.7.5-5ubuntu27.18.diff.gz
Files: 
 e000cb4526dd93568072fac56aa62209 2292 libs optional libvirt_0.7.5-5ubuntu27.18.dsc
 00fd25fa3a003b9c52cbb9891e198fe2 91807 libs optional libvirt_0.7.5-5ubuntu27.18.diff.gz
Original-Maintainer: Debian Libvirt Maintainers <pkg-libvirt-maintainers at lists.alioth.debian.org>

From micahg at ubuntu.com  Mon Nov 14 06:29:23 2011
From: micahg at ubuntu.com (Micah Gersten)
Date: Mon, 14 Nov 2011 06:29:23 -0000
Subject: [ubuntu/lucid-proposed] yaml-mode 0.0.4-2ubuntu0.1 (Accepted)
Message-ID: <20111114062923.27140.29449.launchpad@soybean.canonical.com>

yaml-mode (0.0.4-2ubuntu0.1) lucid-proposed; urgency=low

  * fix LP: #533549 - Emacsen installation scripts now make sure the target
    file do not exist before symlinking; Thanks to Vincent Fourmond from Debian;
    Original fix from 0.0.5-2; Modified based on #595451 to leave symlinks
    - update debian/yaml-mode.emacsen-install

Date: Wed, 02 Nov 2011 22:56:52 -0400
Changed-By: Micah Gersten <micahg at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/yaml-mode/0.0.4-2ubuntu0.1
-------------- next part --------------
Format: 1.8
Date: Wed, 02 Nov 2011 22:56:52 -0400
Source: yaml-mode
Binary: yaml-mode
Architecture: source
Version: 0.0.4-2ubuntu0.1
Distribution: lucid-proposed
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Micah Gersten <micahg at ubuntu.com>
Description: 
 yaml-mode  - emacs mode for YAML files
Launchpad-Bugs-Fixed: 533549
Changes: 
 yaml-mode (0.0.4-2ubuntu0.1) lucid-proposed; urgency=low
 .
   * fix LP: #533549 - Emacsen installation scripts now make sure the target
     file do not exist before symlinking; Thanks to Vincent Fourmond from Debian;
     Original fix from 0.0.5-2; Modified based on #595451 to leave symlinks
     - update debian/yaml-mode.emacsen-install
Checksums-Sha1: 
 0318d8a6892daf493024fb13f35252cc52294404 1273 yaml-mode_0.0.4-2ubuntu0.1.dsc
 b45891eb001be0a0e232de1e9ea11c7096fe5a49 4549 yaml-mode_0.0.4-2ubuntu0.1.diff.gz
Checksums-Sha256: 
 666aa79a5cbfa4f2f6914fcdd6c37e39ac9bc207b0126660f0d8882bf39abab7 1273 yaml-mode_0.0.4-2ubuntu0.1.dsc
 dbd624fa49b075e7c76fcd6ec0c49e8e64a3851bd2b3147519e9702da3525564 4549 yaml-mode_0.0.4-2ubuntu0.1.diff.gz
Files: 
 6fafd989e09fe66b2bb363daf0664183 1273 editors optional yaml-mode_0.0.4-2ubuntu0.1.dsc
 c3ca85a8a029e83213b9010547fd4f84 4549 editors optional yaml-mode_0.0.4-2ubuntu0.1.diff.gz
Original-Maintainer: Vincent Fourmond <fourmond at debian.org>

From serge.hallyn at ubuntu.com  Mon Nov 14 06:30:05 2011
From: serge.hallyn at ubuntu.com (Serge Hallyn)
Date: Mon, 14 Nov 2011 06:30:05 -0000
Subject: [ubuntu/lucid-proposed] libcap2 1:2.17-2ubuntu1.1 (Accepted)
Message-ID: <20111114063005.16008.24166.launchpad@chaenomeles.canonical.com>

libcap2 (1:2.17-2ubuntu1.1) lucid-proposed; urgency=low

  * debian/patches/0002-link-pam.patch: link pam_cap against -lpam.
    (Closes: #591410) (LP: #582769)

Date: Tue, 08 Nov 2011 12:39:56 -0600
Changed-By: Serge Hallyn <serge.hallyn at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/libcap2/1:2.17-2ubuntu1.1
-------------- next part --------------
Format: 1.8
Date: Tue, 08 Nov 2011 12:39:56 -0600
Source: libcap2
Binary: libcap2-bin libcap2 libcap-dev
Architecture: source
Version: 1:2.17-2ubuntu1.1
Distribution: lucid-proposed
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Serge Hallyn <serge.hallyn at ubuntu.com>
Description: 
 libcap-dev - development libraries and header files for libcap2
 libcap2    - support for getting/setting POSIX.1e capabilities
 libcap2-bin - basic utility programs for using capabilities
Closes: 591410
Launchpad-Bugs-Fixed: 582769
Changes: 
 libcap2 (1:2.17-2ubuntu1.1) lucid-proposed; urgency=low
 .
   * debian/patches/0002-link-pam.patch: link pam_cap against -lpam.
     (Closes: #591410) (LP: #582769)
Checksums-Sha1: 
 1042fe3041a41999e61c07ec60e8480db154abc4 1582 libcap2_2.17-2ubuntu1.1.dsc
 e2d6aa598f2ae832193a8acffee5db2e0dc98b50 7356 libcap2_2.17-2ubuntu1.1.diff.gz
Checksums-Sha256: 
 6919f7422bfcaf5d65c4bbef198707026221064371982f448a9e17833ed83aa1 1582 libcap2_2.17-2ubuntu1.1.dsc
 2ffcea0cd7d9a42e83b081011700cfbd3a6796b3a4d19fe4181908a69a00423d 7356 libcap2_2.17-2ubuntu1.1.diff.gz
Files: 
 ccc2179d63e1d9e70004011045c4466f 1582 libs optional libcap2_2.17-2ubuntu1.1.dsc
 14123a79a56688dae59dcadbfc336c16 7356 libs optional libcap2_2.17-2ubuntu1.1.diff.gz
Original-Maintainer: Torsten Werner <twerner at debian.org>

From rex.tsai at ubuntu.com  Mon Nov 14 06:30:42 2011
From: rex.tsai at ubuntu.com (Rex Tsai ())
Date: Mon, 14 Nov 2011 06:30:42 -0000
Subject: [ubuntu/lucid-proposed] libchewing 0.3.2-2ubuntu0.1 (Accepted)
Message-ID: <20111114063042.4527.85310.launchpad@wampee.canonical.com>

libchewing (0.3.2-2ubuntu0.1) lucid-proposed; urgency=low

  * Fix aligement issue in amd64. (LP: #842115)

Date: Tue, 06 Sep 2011 16:16:57 +0800
Changed-By: Rex Tsai (蔡志展) <rex.tsai at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Daniel Holbach <daniel.holbach at ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/libchewing/0.3.2-2ubuntu0.1
-------------- next part --------------
Format: 1.8
Date: Tue, 06 Sep 2011 16:16:57 +0800
Source: libchewing
Binary: libchewing3-dev libchewing3 libchewing3-data
Architecture: source
Version: 0.3.2-2ubuntu0.1
Distribution: lucid-proposed
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Rex Tsai (蔡志展) <rex.tsai at ubuntu.com>
Description: 
 libchewing3 - intelligent phonetic input method library
 libchewing3-data - intelligent phonetic input method library - data files
 libchewing3-dev - intelligent phonetic input method library (developer version)
Launchpad-Bugs-Fixed: 842115
Changes: 
 libchewing (0.3.2-2ubuntu0.1) lucid-proposed; urgency=low
 .
   * Fix aligement issue in amd64. (LP: #842115)
Checksums-Sha1: 
 12c092acb0b8625c7c0cc3e9c25447f8336a5448 1544 libchewing_0.3.2-2ubuntu0.1.dsc
 30aeaaa94b2cb65a9c5cd7e2a16cba066cdbee07 4366 libchewing_0.3.2-2ubuntu0.1.diff.gz
Checksums-Sha256: 
 f37b98ee231658e3f85259f3858a5f103ea8e53943d7a8b81450c2e68ae7bf69 1544 libchewing_0.3.2-2ubuntu0.1.dsc
 6066611e8deccf6966c0cb66393f06cf35935b74d0c6dab2d8e11ae1cfd3a517 4366 libchewing_0.3.2-2ubuntu0.1.diff.gz
Files: 
 36557a9fd0aa67ddcb65cd0793cdd6f4 1544 libs optional libchewing_0.3.2-2ubuntu0.1.dsc
 8abc4625082d9fc5aee885cfc11376d0 4366 libs optional libchewing_0.3.2-2ubuntu0.1.diff.gz
Original-Maintainer: Kanru Chen <koster at debian.org.tw>

From jriddell at ubuntu.com  Mon Nov 14 06:31:04 2011
From: jriddell at ubuntu.com (Jonathan Riddell)
Date: Mon, 14 Nov 2011 06:31:04 -0000
Subject: [ubuntu/lucid-proposed] libmsn 4.1-0ubuntu1.1 (Accepted)
Message-ID: <20111114063104.16973.4267.launchpad@chaenomeles.canonical.com>

libmsn (4.1-0ubuntu1.1) lucid-proposed; urgency=low

  * Add kubuntu_01_msn_update.diff from upstream to fix connection to MSN
    LP: #887104

Date: Thu, 10 Nov 2011 22:12:22 +0000
Changed-By: Jonathan Riddell <jriddell at ubuntu.com>
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/libmsn/4.1-0ubuntu1.1
-------------- next part --------------
Format: 1.8
Date: Thu, 10 Nov 2011 22:12:22 +0000
Source: libmsn
Binary: libmsn0.3 libmsn0.3-dbg libmsn-dev
Architecture: source
Version: 4.1-0ubuntu1.1
Distribution: lucid-proposed
Urgency: low
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
Changed-By: Jonathan Riddell <jriddell at ubuntu.com>
Description: 
 libmsn-dev - high-level C++ library for MSN Messenger [devel]
 libmsn0.3  - high-level C++ library for MSN Messenger [runtime]
 libmsn0.3-dbg - high-level C++ library for MSN Messenger [debug]
Launchpad-Bugs-Fixed: 887104
Changes: 
 libmsn (4.1-0ubuntu1.1) lucid-proposed; urgency=low
 .
   * Add kubuntu_01_msn_update.diff from upstream to fix connection to MSN
     LP: #887104
Checksums-Sha1: 
 86b57deed07435a9c7e0f7a80b48b9307cdc9a41 1131 libmsn_4.1-0ubuntu1.1.dsc
 76c85136f7b3e3e63a24a6b4b6c74f3a9f573f3d 8135 libmsn_4.1-0ubuntu1.1.diff.gz
Checksums-Sha256: 
 284cf351f3499ce87de0df0fb890ba2fa4ee17ce3540c60b8917b9b6d7e8cc33 1131 libmsn_4.1-0ubuntu1.1.dsc
 60a27ff39b91cb8e28a97983330bdbe24c6dd09e1f318e34f515474b3cdbc392 8135 libmsn_4.1-0ubuntu1.1.diff.gz
Files: 
 222479d05005cfb234cddb5a1c34f0af 1131 libs optional libmsn_4.1-0ubuntu1.1.dsc
 1fbf48cec39055ffb4fcdf3ccb2ecd2c 8135 libs optional libmsn_4.1-0ubuntu1.1.diff.gz
Original-Maintainer: Pau Garcia i Quiles <pgquiles at elpauer.org>

From stefanor at ubuntu.com  Mon Nov 14 06:31:34 2011
From: stefanor at ubuntu.com (Stefano Rivera)
Date: Mon, 14 Nov 2011 06:31:34 -0000
Subject: [ubuntu/lucid-proposed] dovecot-antispam
	1.2+20090702-1ubuntu0.10.04.1 (Accepted)
Message-ID: <20111114063134.27657.28811.launchpad@soybean.canonical.com>

dovecot-antispam (1.2+20090702-1ubuntu0.10.04.1) lucid-proposed; urgency=low

  * No-change rebuild against newer dovecot (LP: #494162)

Date: Sun, 13 Nov 2011 23:25:55 +0200
Changed-By: Stefano Rivera <stefanor at ubuntu.com>
Maintainer: Ron Lee <ron at debian.org>
https://launchpad.net/ubuntu/lucid/+source/dovecot-antispam/1.2+20090702-1ubuntu0.10.04.1
-------------- next part --------------
Format: 1.8
Date: Sun, 13 Nov 2011 23:25:55 +0200
Source: dovecot-antispam
Binary: dovecot-antispam
Architecture: source
Version: 1.2+20090702-1ubuntu0.10.04.1
Distribution: lucid-proposed
Urgency: low
Maintainer: Ron Lee <ron at debian.org>
Changed-By: Stefano Rivera <stefanor at ubuntu.com>
Description: 
 dovecot-antispam - a Dovecot plugin that helps train spam filters
Launchpad-Bugs-Fixed: 494162
Changes: 
 dovecot-antispam (1.2+20090702-1ubuntu0.10.04.1) lucid-proposed; urgency=low
 .
   * No-change rebuild against newer dovecot (LP: #494162)
Checksums-Sha1: 
 b4f00db1d3e1bfaacb8ba8cff22f4eae87d2833d 2024 dovecot-antispam_1.2+20090702-1ubuntu0.10.04.1.dsc
 9c1295dce2827be50822d131e8340624b1a7ad4d 3426 dovecot-antispam_1.2+20090702-1ubuntu0.10.04.1.diff.gz
Checksums-Sha256: 
 34914004748f81c1c5882266ea9d523707a3a02a9fe8e61767034bdc82107403 2024 dovecot-antispam_1.2+20090702-1ubuntu0.10.04.1.dsc
 8b74825c0c4e1eb25fd4ed9a1d8693e7a47534f2242d2a6555b40fd7e8513fc7 3426 dovecot-antispam_1.2+20090702-1ubuntu0.10.04.1.diff.gz
Files: 
 a270112af96967650a42e869cb482ab0 2024 mail optional dovecot-antispam_1.2+20090702-1ubuntu0.10.04.1.dsc
 af3edda807395f5e35a30a6dd091cc9c 3426 mail optional dovecot-antispam_1.2+20090702-1ubuntu0.10.04.1.diff.gz

From marc.deslauriers at ubuntu.com  Mon Nov 14 19:03:42 2011
From: marc.deslauriers at ubuntu.com (Marc Deslauriers)
Date: Mon, 14 Nov 2011 19:03:42 -0000
Subject: [ubuntu/lucid-security]
	quagga_0.99.15-1ubuntu0.3_amd64_translations.tar.gz,
	quagga_0.99.15-1ubuntu0.3_powerpc_translations.tar.gz,
	quagga_0.99.15-1ubuntu0.3_sparc_translations.tar.gz,
	quagga_0.99.15-1ubuntu0.3_ia64_translations.tar.gz, quagga,
	quagga_0.99.15-1ubuntu0.3_armel_translations.tar.gz,
	quagga_0.99.15-1ubuntu0.3_i386_translations.tar.gz 0.99.15-1ubuntu0.3
	(Accepted)
Message-ID: <20111114190342.29949.91151.launchpad@cocoplum.canonical.com>

quagga (0.99.15-1ubuntu0.3) lucid-security; urgency=low

  * SECURITY UPDATE: arbitrary code execution via malformed Inter Area
    Prefix LSA
    - debian/patches/99_CVE-2011-3323.dpatch: check lengths in
      ospf6d/{ospf6_abr.h,ospf6_asbr.h,ospf6_intra.h,ospf6_lsa.h,
      ospf6_message.c,ospf6_message.h,ospf6_proto.h}
    - CVE-2011-3323
  * SECURITY UPDATE: denial of sevice via crafted Link-State-Advertisement
    - debian/patches/99_CVE-2011-3324.dpatch: change assert to warning in
      ospf6d/ospf6_lsa.c.
    - CVE-2011-3324
  * SECURITY UPDATE: denial of service via crafted Hello packet
    - debian/patches/99_CVE-2011-3325.dpatch: add extra checks to
      ospfd/ospf_packet.c.
    - CVE-2011-3325
  * SECURITY UPDATE: denial of service via unknown Link-State-Advertisements
    types
    - debian/patches/99_CVE-2011-3326.dpatch: exit if LSA type is unknown
      in ospfd/ospf_flood.c.
    - CVE-2011-3326
  * SECURITY UPDATE: arbitrary code execution via Extended Communities path
    attribute
    - debian/patches/99_CVE-2011-3327.dpatch: properly check size in
      bgpd/bgp_ecommunity.c.
    - CVE-2011-3327

Date: Fri, 07 Oct 2011 12:38:37 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/quagga/0.99.15-1ubuntu0.3
-------------- next part --------------
Format: 1.8
Date: Fri, 07 Oct 2011 12:38:37 -0400
Source: quagga
Binary: quagga quagga-doc
Architecture: source
Version: 0.99.15-1ubuntu0.3
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 quagga     - BGP/OSPF/RIP routing daemon
 quagga-doc - documentation files for quagga
Changes: 
 quagga (0.99.15-1ubuntu0.3) lucid-security; urgency=low
 .
   * SECURITY UPDATE: arbitrary code execution via malformed Inter Area
     Prefix LSA
     - debian/patches/99_CVE-2011-3323.dpatch: check lengths in
       ospf6d/{ospf6_abr.h,ospf6_asbr.h,ospf6_intra.h,ospf6_lsa.h,
       ospf6_message.c,ospf6_message.h,ospf6_proto.h}
     - CVE-2011-3323
   * SECURITY UPDATE: denial of sevice via crafted Link-State-Advertisement
     - debian/patches/99_CVE-2011-3324.dpatch: change assert to warning in
       ospf6d/ospf6_lsa.c.
     - CVE-2011-3324
   * SECURITY UPDATE: denial of service via crafted Hello packet
     - debian/patches/99_CVE-2011-3325.dpatch: add extra checks to
       ospfd/ospf_packet.c.
     - CVE-2011-3325
   * SECURITY UPDATE: denial of service via unknown Link-State-Advertisements
     types
     - debian/patches/99_CVE-2011-3326.dpatch: exit if LSA type is unknown
       in ospfd/ospf_flood.c.
     - CVE-2011-3326
   * SECURITY UPDATE: arbitrary code execution via Extended Communities path
     attribute
     - debian/patches/99_CVE-2011-3327.dpatch: properly check size in
       bgpd/bgp_ecommunity.c.
     - CVE-2011-3327
Checksums-Sha1: 
 717c790d4107874cad8ff009d10dfaecf345a66a 2043 quagga_0.99.15-1ubuntu0.3.dsc
 c6a7af1c63f5a14f465fea3ceb321bf334f13aee 46327 quagga_0.99.15-1ubuntu0.3.diff.gz
Checksums-Sha256: 
 bd4aadfcf969babb8f5b42171b0c3baef5abde27562201aaa5272179b1babcd3 2043 quagga_0.99.15-1ubuntu0.3.dsc
 3fb742fdc00978c001276a185df4fc155b6cf3d3e82c74650a421730b14d0772 46327 quagga_0.99.15-1ubuntu0.3.diff.gz
Files: 
 0014057a105046026d1414978ed9e65b 2043 net optional quagga_0.99.15-1ubuntu0.3.dsc
 a93e8a9d2a6558ace647f955a146c58d 46327 net optional quagga_0.99.15-1ubuntu0.3.diff.gz
Original-Maintainer: Christian Hammers <ch at debian.org>

From serge.hallyn at ubuntu.com  Tue Nov 15 06:08:24 2011
From: serge.hallyn at ubuntu.com (Serge Hallyn)
Date: Tue, 15 Nov 2011 06:08:24 -0000
Subject: [ubuntu/lucid-proposed] libvirt 0.7.5-5ubuntu27.19 (Accepted)
Message-ID: <20111115060824.3183.10226.launchpad@gac.canonical.com>

libvirt (0.7.5-5ubuntu27.19) lucid-proposed; urgency=low

  * New version of debian/patches/lxc-use-own-ptyfns.patch.  Previous version
    failed to build.

libvirt (0.7.5-5ubuntu27.18) lucid-proposed; urgency=low

  * lxc_controller: use our own unlocpt+grantpt rather than glibc's, which
    can't handle opening a pty in a devpts not mounted at /dev/pts.
    (LP: #863629)

Date: Mon, 14 Nov 2011 15:11:24 -0600
Changed-By: Serge Hallyn <serge.hallyn at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/libvirt/0.7.5-5ubuntu27.19
-------------- next part --------------
Format: 1.8
Date: Mon, 14 Nov 2011 15:11:24 -0600
Source: libvirt
Binary: libvirt-bin libvirt0 libvirt0-dbg libvirt-doc libvirt-dev python-libvirt
Architecture: source
Version: 0.7.5-5ubuntu27.19
Distribution: lucid-proposed
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Serge Hallyn <serge.hallyn at ubuntu.com>
Description: 
 libvirt-bin - the programs for the libvirt library
 libvirt-dev - development files for the libvirt library
 libvirt-doc - documentation for the libvirt library
 libvirt0   - library for interfacing with different virtualization systems
 libvirt0-dbg - library for interfacing with different virtualization systems
 python-libvirt - libvirt Python bindings
Launchpad-Bugs-Fixed: 863629
Changes: 
 libvirt (0.7.5-5ubuntu27.19) lucid-proposed; urgency=low
 .
   * New version of debian/patches/lxc-use-own-ptyfns.patch.  Previous version
     failed to build.
 .
 libvirt (0.7.5-5ubuntu27.18) lucid-proposed; urgency=low
 .
   * lxc_controller: use our own unlocpt+grantpt rather than glibc's, which
     can't handle opening a pty in a devpts not mounted at /dev/pts.
     (LP: #863629)
Checksums-Sha1: 
 7e57dbb6754a4a7a249bff766956141bb851cdb5 2292 libvirt_0.7.5-5ubuntu27.19.dsc
 3bf22944d41c69a3f56164ba43c65e1f97860275 91953 libvirt_0.7.5-5ubuntu27.19.diff.gz
Checksums-Sha256: 
 af9889515ee20598306852910c9789196a3030f3b9020f6f6e81f37f56188863 2292 libvirt_0.7.5-5ubuntu27.19.dsc
 d592f1843bfd926057359f20ab1ba32a3cf9f2e0e79bff502535d068224351bd 91953 libvirt_0.7.5-5ubuntu27.19.diff.gz
Files: 
 770c9241bdc8601f599ce4c1f2129ce4 2292 libs optional libvirt_0.7.5-5ubuntu27.19.dsc
 29e46a882f768170156bd170792da0e7 91953 libs optional libvirt_0.7.5-5ubuntu27.19.diff.gz
Original-Maintainer: Debian Libvirt Maintainers <pkg-libvirt-maintainers at lists.alioth.debian.org>

From melissa at catalyst.net.nz  Wed Nov 16 00:10:25 2011
From: melissa at catalyst.net.nz (Melissa Draper)
Date: Wed, 16 Nov 2011 00:10:25 -0000
Subject: [ubuntu/lucid-security] mahara,
	mahara_1.2.4-1ubuntu0.4_i386_translations.tar.gz 1.2.4-1ubuntu0.4
	(Accepted)
Message-ID: <20111116001025.20383.71524.launchpad@cocoplum.canonical.com>

mahara (1.2.4-1ubuntu0.4) lucid-security; urgency=low

  * SECURITY UPDATE: XSS in unvalidated URI attributes
    - Added a filter to sanitise user input urls (LP: #888358)
    - debian/patches/CVE-2011-2771.patch: upstream patch
    - CVE-2011-2771

  * SECURITY UPDATE: DoS attack via invalid or excessively large images
    - Added a check to evaluate available memory before processing
      (LP: #888358)
    - debian/patches/CVE-2011-2772.patch: upstream patch
    - CVE-2011-2772

  * SECURITY UPDATE: XSRF allowing attackers to trick an admin into adding
    them to an institution
    - Session check added (LP: #888358)
    - debian/patches/CVE-2011-2773.patch: upstream patch
    - CVE-2011-2773

  * SECURITY UPDATE: Prevent masquerading users from jumping as others
    - Added a check to prevent jumping as other users. (LP: #888358)
    - debian/patches/mnet_masquerading.patch: upstream patch

Date: Wed, 02 Nov 2011 21:26:46 +0000
Changed-By: Melissa Draper <melissa at catalyst.net.nz>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/mahara/1.2.4-1ubuntu0.4
-------------- next part --------------
Format: 1.8
Date: Wed, 02 Nov 2011 21:26:46 +0000
Source: mahara
Binary: mahara mahara-apache2
Architecture: source
Version: 1.2.4-1ubuntu0.4
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Melissa Draper <melissa at catalyst.net.nz>
Description: 
 mahara     - Electronic portfolio, weblog, and resume builder
 mahara-apache2 - Electronic portfolio, weblog, and resume builder - apache2 config
Launchpad-Bugs-Fixed: 888358 888358 888358 888358
Changes: 
 mahara (1.2.4-1ubuntu0.4) lucid-security; urgency=low
 .
   * SECURITY UPDATE: XSS in unvalidated URI attributes
     - Added a filter to sanitise user input urls (LP: #888358)
     - debian/patches/CVE-2011-2771.patch: upstream patch
     - CVE-2011-2771
 .
   * SECURITY UPDATE: DoS attack via invalid or excessively large images
     - Added a check to evaluate available memory before processing
       (LP: #888358)
     - debian/patches/CVE-2011-2772.patch: upstream patch
     - CVE-2011-2772
 .
   * SECURITY UPDATE: XSRF allowing attackers to trick an admin into adding
     them to an institution
     - Session check added (LP: #888358)
     - debian/patches/CVE-2011-2773.patch: upstream patch
     - CVE-2011-2773
 .
   * SECURITY UPDATE: Prevent masquerading users from jumping as others
     - Added a check to prevent jumping as other users. (LP: #888358)
     - debian/patches/mnet_masquerading.patch: upstream patch
Checksums-Sha1: 
 0f80b97059dad6ce0c9dcdc54e04d6ddf2ed82b8 2021 mahara_1.2.4-1ubuntu0.4.dsc
 b26a67d57a8baecaec83669a3b61dabeb90c0332 33691 mahara_1.2.4-1ubuntu0.4.debian.tar.gz
Checksums-Sha256: 
 b93634a0036cad625d7149b870a7f1616211091684bb7abced68610b435bc43e 2021 mahara_1.2.4-1ubuntu0.4.dsc
 8bff4be087a60805f6dec46ebd9fc146dc724890736cb1a7a37b2662d4eebe87 33691 mahara_1.2.4-1ubuntu0.4.debian.tar.gz
Files: 
 fcf3d1c47721c9f1f7723af77b58c346 2021 web optional mahara_1.2.4-1ubuntu0.4.dsc
 3742c2a2b56ec2ccbcca290339c87d58 33691 web optional mahara_1.2.4-1ubuntu0.4.debian.tar.gz
Original-Maintainer: Mahara Packaging Team <mahara-packaging at lists.launchpad.net>

From sbeattie at ubuntu.com  Wed Nov 16 00:10:43 2011
From: sbeattie at ubuntu.com (Steve Beattie)
Date: Wed, 16 Nov 2011 00:10:43 -0000
Subject: [ubuntu/lucid-security] openjdk-6 6b20-1.9.10-0ubuntu1~10.04.2
	(Accepted)
Message-ID: <20111116001043.20383.12565.launchpad@cocoplum.canonical.com>

openjdk-6 (6b20-1.9.10-0ubuntu1~10.04.2) lucid-security; urgency=low

  * SECURITY UPDATE: Same Origin Policy (SOP) bypass flaw
    - debian/patches/SOP-bypass-icedtea6-1.9.patch: Remove special
      case for SocketPermission.
    - CVE-2011-3377
    - Applied inline due to needing to apply patches only once for netx,
      not for every vm

openjdk-6 (6b20-1.9.10-0ubuntu1~10.04.1) lucid-security; urgency=low

  * SECURITY UPDATE: IcedTea6 1.9.10 Release:
    - Security fixes:
      - S7000600, CVE-2011-3547: InputStream skip() information leak.
      - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor.
      - S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow.
      - S7032417, CVE-2011-3552: excessive default UDP socket limit under
        SecurityManager.
      - S7046794, CVE-2011-3553: JAX-WS stack-traces information leak.
      - S7046823, CVE-2011-3544: missing SecurityManager checks in scripting
        engine.
      - S7055902, CVE-2011-3521: IIOP deserialization code execution.
      - S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress
        error checks.
      - S7064341, CVE-2011-3389: HTTPS: block-wise chosen-plaintext attack
        against SSL/TLS (BEAST).
      - S7070134, CVE-2011-3558: HotSpot crashes with sigsegv from
        PorterStemmer.
      - S7077466, CVE-2011-3556: RMI DGC server remote code execution.
      - S7083012, CVE-2011-3557: RMI registry privileged code execution.
      - S7096936, CVE-2011-3560: missing checkSetFactory calls in
        HttpsURLConnection.

Date: Tue, 08 Nov 2011 02:54:46 -0800
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/openjdk-6/6b20-1.9.10-0ubuntu1~10.04.2
-------------- next part --------------
Format: 1.8
Date: Tue, 08 Nov 2011 02:54:46 -0800
Source: openjdk-6
Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-jre-lib openjdk-6-demo openjdk-6-source openjdk-6-doc openjdk-6-dbg icedtea6-plugin icedtea-6-jre-cacao openjdk-6-jre-zero
Architecture: source
Version: 6b20-1.9.10-0ubuntu1~10.04.2
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description: 
 icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao
 icedtea6-plugin - web browser plugin based on OpenJDK and IcedTea to execute Java a
 openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols)
 openjdk-6-demo - Java runtime based on OpenJDK (demos and examples)
 openjdk-6-doc - OpenJDK Development Kit (JDK) documentation
 openjdk-6-jdk - OpenJDK Development Kit (JDK)
 openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name}
 openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
 openjdk-6-jre-lib - OpenJDK Java runtime (architecture independent libraries)
 openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
 openjdk-6-source - OpenJDK Development Kit (JDK) source files
Changes: 
 openjdk-6 (6b20-1.9.10-0ubuntu1~10.04.2) lucid-security; urgency=low
 .
   * SECURITY UPDATE: Same Origin Policy (SOP) bypass flaw
     - debian/patches/SOP-bypass-icedtea6-1.9.patch: Remove special
       case for SocketPermission.
     - CVE-2011-3377
     - Applied inline due to needing to apply patches only once for netx,
       not for every vm
 .
 openjdk-6 (6b20-1.9.10-0ubuntu1~10.04.1) lucid-security; urgency=low
 .
   * SECURITY UPDATE: IcedTea6 1.9.10 Release:
     - Security fixes:
       - S7000600, CVE-2011-3547: InputStream skip() information leak.
       - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor.
       - S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow.
       - S7032417, CVE-2011-3552: excessive default UDP socket limit under
         SecurityManager.
       - S7046794, CVE-2011-3553: JAX-WS stack-traces information leak.
       - S7046823, CVE-2011-3544: missing SecurityManager checks in scripting
         engine.
       - S7055902, CVE-2011-3521: IIOP deserialization code execution.
       - S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress
         error checks.
       - S7064341, CVE-2011-3389: HTTPS: block-wise chosen-plaintext attack
         against SSL/TLS (BEAST).
       - S7070134, CVE-2011-3558: HotSpot crashes with sigsegv from
         PorterStemmer.
       - S7077466, CVE-2011-3556: RMI DGC server remote code execution.
       - S7083012, CVE-2011-3557: RMI registry privileged code execution.
       - S7096936, CVE-2011-3560: missing checkSetFactory calls in
         HttpsURLConnection.
Checksums-Sha1: 
 9f9c948caedfb88b12450ef568245f7722e43f94 3163 openjdk-6_6b20-1.9.10-0ubuntu1~10.04.2.dsc
 78ede6f4dc829677d41dae5f208f78e06caa9bbe 135961 openjdk-6_6b20-1.9.10-0ubuntu1~10.04.2.diff.gz
Checksums-Sha256: 
 d4e080154cf9f7f28877c5c7d715664f632c630c8e1e5591ef8dd654dd51471a 3163 openjdk-6_6b20-1.9.10-0ubuntu1~10.04.2.dsc
 4f546d18cf735c129fd5f605bb00fa019d973fe2a634229c975c2f9ed95ebbc9 135961 openjdk-6_6b20-1.9.10-0ubuntu1~10.04.2.diff.gz
Files: 
 9defc43d58d18375e7324f8d57c5f07d 3163 java optional openjdk-6_6b20-1.9.10-0ubuntu1~10.04.2.dsc
 9e4dc9d06a85f775c313dcf0533db8b9 135961 java optional openjdk-6_6b20-1.9.10-0ubuntu1~10.04.2.diff.gz
Original-Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>

From sbeattie at ubuntu.com  Wed Nov 16 00:12:41 2011
From: sbeattie at ubuntu.com (Steve Beattie)
Date: Wed, 16 Nov 2011 00:12:41 -0000
Subject: [ubuntu/lucid-security] openjdk-6b18 6b18-1.8.10-0ubuntu1~10.04.2
	(Accepted)
Message-ID: <20111116001241.20383.36941.launchpad@cocoplum.canonical.com>

openjdk-6b18 (6b18-1.8.10-0ubuntu1~10.04.2) lucid-security; urgency=low

  * SECURITY UPDATE: Same Origin Policy (SOP) bypass flaw
    - debian/patches/SOP-bypass-icedtea6-1.8.patch: Remove special
      case for SocketPermission.
    - CVE-2011-3377
    - Applied inline due to needing to apply patches only once for netx,
      not for every vm

openjdk-6b18 (6b18-1.8.10-0ubuntu1~10.04.1) lucid-security; urgency=low

  * SECURITY UPDATE: IcedTea6 1.8.10 release (LP: #878684)
    - security fixes:
      - S7000600, CVE-2011-3547: InputStream skip() information leak
      - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor
      - S7023640, CVE-2011-3551: Java2D TransformHelper integer
        overflow
      - S7032417, CVE-2011-3552: excessive default UDP socket limit
        under SecurityManager
      - S7046794, CVE-2011-3553: JAX-WS stack-traces information leak
      - S7046823, CVE-2011-3544: missing SecurityManager checks in
        scripting engine
      - S7055902, CVE-2011-3521: IIOP deserialization code execution
      - S7057857, CVE-2011-3554: insufficient pack200 JAR files
        uncompress error checks
      - S7064341, CVE-2011-3389: HTTPS: block-wise chosen-plaintext
        attack against SSL/TLS (BEAST)
      - S7077466, CVE-2011-3556: RMI DGC server remote code execution
      - S7083012, CVE-2011-3557: RMI registry privileged code execution
      - S7096936, CVE-2011-3560: missing checkSetFactory calls in
        HttpsURLConnection
    - unapplied previous updates inline changes as they were
      incorporated upstream; remaining changes in Makefile.{in,am} and
      ports/hotspot/make/linux/makefiles/zeroshark.make

Date: Tue, 08 Nov 2011 14:08:52 -0800
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/openjdk-6b18/6b18-1.8.10-0ubuntu1~10.04.2
-------------- next part --------------
Format: 1.8
Date: Tue, 08 Nov 2011 14:08:52 -0800
Source: openjdk-6b18
Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-demo openjdk-6-dbg icedtea6-plugin icedtea-6-jre-cacao openjdk-6-jre-zero
Architecture: source
Version: 6b18-1.8.10-0ubuntu1~10.04.2
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description: 
 icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao
 icedtea6-plugin - web browser plugin based on OpenJDK and IcedTea to execute Java a
 openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols)
 openjdk-6-demo - Java runtime based on OpenJDK (demos and examples)
 openjdk-6-jdk - OpenJDK Development Kit (JDK)
 openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name}
 openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
 openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
Launchpad-Bugs-Fixed: 878684
Changes: 
 openjdk-6b18 (6b18-1.8.10-0ubuntu1~10.04.2) lucid-security; urgency=low
 .
   * SECURITY UPDATE: Same Origin Policy (SOP) bypass flaw
     - debian/patches/SOP-bypass-icedtea6-1.8.patch: Remove special
       case for SocketPermission.
     - CVE-2011-3377
     - Applied inline due to needing to apply patches only once for netx,
       not for every vm
 .
 openjdk-6b18 (6b18-1.8.10-0ubuntu1~10.04.1) lucid-security; urgency=low
 .
   * SECURITY UPDATE: IcedTea6 1.8.10 release (LP: #878684)
     - security fixes:
       - S7000600, CVE-2011-3547: InputStream skip() information leak
       - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor
       - S7023640, CVE-2011-3551: Java2D TransformHelper integer
         overflow
       - S7032417, CVE-2011-3552: excessive default UDP socket limit
         under SecurityManager
       - S7046794, CVE-2011-3553: JAX-WS stack-traces information leak
       - S7046823, CVE-2011-3544: missing SecurityManager checks in
         scripting engine
       - S7055902, CVE-2011-3521: IIOP deserialization code execution
       - S7057857, CVE-2011-3554: insufficient pack200 JAR files
         uncompress error checks
       - S7064341, CVE-2011-3389: HTTPS: block-wise chosen-plaintext
         attack against SSL/TLS (BEAST)
       - S7077466, CVE-2011-3556: RMI DGC server remote code execution
       - S7083012, CVE-2011-3557: RMI registry privileged code execution
       - S7096936, CVE-2011-3560: missing checkSetFactory calls in
         HttpsURLConnection
     - unapplied previous updates inline changes as they were
       incorporated upstream; remaining changes in Makefile.{in,am} and
       ports/hotspot/make/linux/makefiles/zeroshark.make
Checksums-Sha1: 
 9d12661f9e6616c42af82a8f39ef93c5eb99ffc3 3148 openjdk-6b18_6b18-1.8.10-0ubuntu1~10.04.2.dsc
 9238d670c5a5f0aa2b387ddec312c0ac6b3771f7 138725 openjdk-6b18_6b18-1.8.10-0ubuntu1~10.04.2.diff.gz
Checksums-Sha256: 
 1c6f2833be0872685569af94949aa7aef5273f38d15b8d03d4d5a01e00312b5a 3148 openjdk-6b18_6b18-1.8.10-0ubuntu1~10.04.2.dsc
 465e979473406576d601c984a27f25c19fdaa3139caaf538536704cc1f4b4763 138725 openjdk-6b18_6b18-1.8.10-0ubuntu1~10.04.2.diff.gz
Files: 
 b88ac51af6b1b7b1e8bb3326cf1a7cde 3148 java optional openjdk-6b18_6b18-1.8.10-0ubuntu1~10.04.2.dsc
 03f1389eae08d0c0737b5f189eaac36a 138725 java optional openjdk-6b18_6b18-1.8.10-0ubuntu1~10.04.2.diff.gz
Original-Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>

From sbeattie at ubuntu.com  Wed Nov 16 06:03:35 2011
From: sbeattie at ubuntu.com (Steve Beattie)
Date: Wed, 16 Nov 2011 06:03:35 -0000
Subject: [ubuntu/lucid-security] musica 1.11-0ubuntu1.1 (Accepted)
Message-ID: <20111116060335.30663.6730.launchpad@cocoplum.canonical.com>

musica (1.11-0ubuntu1.1) lucid-security; urgency=low

  * SECURITY UPDATE: information disclosure (LP: #888218)
    - debian/cron.hourly: bail out if the expected directory doesn't
      exist yet instead of indexing from the root of the filesystem
    - patch thanks to Dustin Kirkland, musica upstream.

Date: Tue, 15 Nov 2011 00:21:30 -0800
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Dustin Kirkland <kirkland at ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/musica/1.11-0ubuntu1.1
-------------- next part --------------
Format: 1.8
Date: Tue, 15 Nov 2011 00:21:30 -0800
Source: musica
Binary: musica
Architecture: source
Version: 1.11-0ubuntu1.1
Distribution: lucid-security
Urgency: low
Maintainer: Dustin Kirkland <kirkland at ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description: 
 musica     - a web application for browsing and listening to your music
Launchpad-Bugs-Fixed: 888218
Changes: 
 musica (1.11-0ubuntu1.1) lucid-security; urgency=low
 .
   * SECURITY UPDATE: information disclosure (LP: #888218)
     - debian/cron.hourly: bail out if the expected directory doesn't
       exist yet instead of indexing from the root of the filesystem
     - patch thanks to Dustin Kirkland, musica upstream.
Checksums-Sha1: 
 8081a9ca8b9fb5fd5831b98889b274c5f24df45c 1706 musica_1.11-0ubuntu1.1.dsc
 568edeb6541758b5bf4fffe7e54d784bc4c6c967 3578 musica_1.11-0ubuntu1.1.diff.gz
Checksums-Sha256: 
 d2ab69f3b7e76de2bcf4e80ee5cfc07e6d519451a4227bc6d5d2d7939b75e16c 1706 musica_1.11-0ubuntu1.1.dsc
 cfe59a65aa1aa1ece377862cd735e68027af44d1003814c1fe8609df7073585d 3578 musica_1.11-0ubuntu1.1.diff.gz
Files: 
 77f678ad643eabd813138e7cc603f09c 1706 web optional musica_1.11-0ubuntu1.1.dsc
 a4d4fed9b350a11a3fa6435bb7556c30 3578 web optional musica_1.11-0ubuntu1.1.diff.gz

From seb128 at ubuntu.com  Wed Nov 16 06:10:18 2011
From: seb128 at ubuntu.com (Sebastien Bacher)
Date: Wed, 16 Nov 2011 06:10:18 -0000
Subject: [ubuntu/lucid-proposed] gcalctool 5.30.0.is.5.28.2-0ubuntu3 (Accepted)
Message-ID: <20111116061018.3810.4220.launchpad@wampee.canonical.com>

gcalctool (5.30.0.is.5.28.2-0ubuntu3) lucid-proposed; urgency=low

  * 03_correct_tanh.patch: git patch to fix tanh calculation (lp: #871988)

Date: Tue, 15 Nov 2011 18:36:47 +0100
Changed-By: Sebastien Bacher <seb128 at ubuntu.com>
Maintainer: Ubuntu Desktop Team <ubuntu-desktop at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/gcalctool/5.30.0.is.5.28.2-0ubuntu3
-------------- next part --------------
Format: 1.8
Date: Tue, 15 Nov 2011 18:36:47 +0100
Source: gcalctool
Binary: gcalctool
Architecture: source
Version: 5.30.0.is.5.28.2-0ubuntu3
Distribution: lucid-proposed
Urgency: low
Maintainer: Ubuntu Desktop Team <ubuntu-desktop at lists.ubuntu.com>
Changed-By: Sebastien Bacher <seb128 at ubuntu.com>
Description: 
 gcalctool  - GNOME desktop calculator
Launchpad-Bugs-Fixed: 871988
Changes: 
 gcalctool (5.30.0.is.5.28.2-0ubuntu3) lucid-proposed; urgency=low
 .
   * 03_correct_tanh.patch: git patch to fix tanh calculation (lp: #871988)
Checksums-Sha1: 
 2d8f20abf57838be144a7bb7fe288b7cb9f252fb 1509 gcalctool_5.30.0.is.5.28.2-0ubuntu3.dsc
 e2673088addbedbdd5a36e44a9011c5352b06bce 15715 gcalctool_5.30.0.is.5.28.2-0ubuntu3.diff.gz
Checksums-Sha256: 
 2eb7da6a456e4abe5921476bdebd9efe815068180134ae611b4098a38ee1a221 1509 gcalctool_5.30.0.is.5.28.2-0ubuntu3.dsc
 eba0b213a5d66eabe920d7c205bed75deeb89fb5161a0c9191fd60234ab2ab35 15715 gcalctool_5.30.0.is.5.28.2-0ubuntu3.diff.gz
Files: 
 420795d3c3cce89e0ab523c20722a0a8 1509 math optional gcalctool_5.30.0.is.5.28.2-0ubuntu3.dsc
 ff74026a4dabf2841483dc7827adb0d0 15715 math optional gcalctool_5.30.0.is.5.28.2-0ubuntu3.diff.gz
Original-Maintainer: Sebastien Bacher <seb128 at debian.org>

From sbeattie at ubuntu.com  Wed Nov 16 17:06:01 2011
From: sbeattie at ubuntu.com (Steve Beattie)
Date: Wed, 16 Nov 2011 17:06:01 -0000
Subject: [ubuntu/lucid-security]
	man2html_1.6f-3+lenny1build0.10.04.1_armel_translations.tar.gz,
	man2html_1.6f-3+lenny1build0.10.04.1_amd64_translations.tar.gz,
	man2html_1.6f-3+lenny1build0.10.04.1_ia64_translations.tar.gz,
	man2html_1.6f-3+lenny1build0.10.04.1_i386_translations.tar.gz,
	man2html_1.6f-3+lenny1build0.10.04.1_sparc_translations.tar.gz,
	man2html,
	man2html_1.6f-3+lenny1build0.10.04.1_powerpc_translations.tar.gz
	1.6f-3+lenny1build0.10.04.1 (Accepted)
Message-ID: <20111116170601.25668.44855.launchpad@cocoplum.canonical.com>

man2html (1.6f-3+lenny1build0.10.04.1) lucid-security; urgency=low

  * fake sync from Debian

man2html (1.6f-3+lenny1) oldstable-security; urgency=high

  * man2html.cgi.c: Validate user input and make some error messages less
    verbose to prevent XSS attacks (CVE-2011-2770).

Date: Tue, 15 Nov 2011 22:57:06 -0800
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Robert Luberda <robert at debian.org>
https://launchpad.net/ubuntu/lucid/+source/man2html/1.6f-3+lenny1build0.10.04.1
-------------- next part --------------
Format: 1.8
Date: Tue, 15 Nov 2011 22:57:06 -0800
Source: man2html
Binary: man2html
Architecture: source
Version: 1.6f-3+lenny1build0.10.04.1
Distribution: lucid-security
Urgency: high
Maintainer: Robert Luberda <robert at debian.org>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description: 
 man2html   - browse man pages in your web browser
Changes: 
 man2html (1.6f-3+lenny1build0.10.04.1) lucid-security; urgency=low
 .
   * fake sync from Debian
 .
 man2html (1.6f-3+lenny1) oldstable-security; urgency=high
 .
   * man2html.cgi.c: Validate user input and make some error messages less
     verbose to prevent XSS attacks (CVE-2011-2770).
Checksums-Sha1: 
 7b2ada3c472917cc625fcc224946653e33aecd9c 1686 man2html_1.6f-3+lenny1build0.10.04.1.dsc
 a5077b525937d68e96e0fc9f731f455cfaf1550b 255165 man2html_1.6f.orig.tar.gz
 20fe5cc3ed82086db2b476f34993c977e5059ea8 58678 man2html_1.6f-3+lenny1build0.10.04.1.diff.gz
Checksums-Sha256: 
 55bc37e1869bf1c6f84ff4b5a2687c65eeca3ad3ddede9f6206ab106fc10ed93 1686 man2html_1.6f-3+lenny1build0.10.04.1.dsc
 005ec0883c073c5be8bb134c6caf8e8061c0e2d8502607d4890cbf7909389e74 255165 man2html_1.6f.orig.tar.gz
 8ef34241e646d83dce3a7d6e2d48fb1ed3e58c19846b5cf1c96b06206284f56a 58678 man2html_1.6f-3+lenny1build0.10.04.1.diff.gz
Files: 
 a068e3f672e865cadf746441853d4094 1686 doc optional man2html_1.6f-3+lenny1build0.10.04.1.dsc
 b7a26b0762e96bb774cb8051199ab458 255165 doc optional man2html_1.6f.orig.tar.gz
 57b480d1022686d861d70c76ede2e197 58678 doc optional man2html_1.6f-3+lenny1build0.10.04.1.diff.gz

From steve.langasek at ubuntu.com  Wed Nov 16 22:35:54 2011
From: steve.langasek at ubuntu.com (Steve Langasek)
Date: Wed, 16 Nov 2011 22:35:54 -0000
Subject: [ubuntu/lucid-proposed] grub 0.97-29ubuntu60.10.04.2 (Accepted)
Message-ID: <20111116223554.4275.49898.launchpad@wampee.canonical.com>

grub (0.97-29ubuntu60.10.04.2) lucid-proposed; urgency=low

  * Backport from natty for compatibility with backported kernels:
    - Refine detection of Xen-only kernels: kernels with both CONFIG_XEN=y
      and CONFIG_PARAVIRT=y are now given both Xen entries (if a hypervisor
      is present) and non-Xen entries (LP: #692691).

Date: Tue, 15 Nov 2011 23:31:57 -0800
Changed-By: Steve Langasek <steve.langasek at ubuntu.com>
Maintainer: Ubuntu Kernel Team <kernel-team at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/grub/0.97-29ubuntu60.10.04.2
-------------- next part --------------
Format: 1.8
Date: Tue, 15 Nov 2011 23:31:57 -0800
Source: grub
Binary: grub grub-disk grub-doc grub-legacy-doc multiboot-doc
Architecture: source
Version: 0.97-29ubuntu60.10.04.2
Distribution: lucid-proposed
Urgency: low
Maintainer: Ubuntu Kernel Team <kernel-team at lists.ubuntu.com>
Changed-By: Steve Langasek <steve.langasek at ubuntu.com>
Description: 
 grub       - GRand Unified Bootloader (Legacy version)
 grub-disk  - GRUB bootable disk image (dummy package)
 grub-doc   - Documentation for GRand Unified Bootloader (dummy package)
 grub-legacy-doc - Documentation for GRUB Legacy
 multiboot-doc - The Multiboot specification
Launchpad-Bugs-Fixed: 692691
Changes: 
 grub (0.97-29ubuntu60.10.04.2) lucid-proposed; urgency=low
 .
   * Backport from natty for compatibility with backported kernels:
     - Refine detection of Xen-only kernels: kernels with both CONFIG_XEN=y
       and CONFIG_PARAVIRT=y are now given both Xen entries (if a hypervisor
       is present) and non-Xen entries (LP: #692691).
Checksums-Sha1: 
 1fbd0614e9eda725d76dda92c79d67fe03c820e9 2366 grub_0.97-29ubuntu60.10.04.2.dsc
 d489ffb54b4490df7be8cacd4146b7571e8f7fce 148150 grub_0.97-29ubuntu60.10.04.2.diff.gz
Checksums-Sha256: 
 5f39ea9dfaaca834c943a1196b6eb092141173d7888a4993b6b3d60a14fac3e4 2366 grub_0.97-29ubuntu60.10.04.2.dsc
 3e035cad9d2031d4912e23bed3c11dad67553c8b92e33766498f7c599fce95b1 148150 grub_0.97-29ubuntu60.10.04.2.diff.gz
Files: 
 df59961d67bc0dafe3d4988fc074525f 2366 admin optional grub_0.97-29ubuntu60.10.04.2.dsc
 2e6880a5b49402fd0ba3af9d5adf0675 148150 admin optional grub_0.97-29ubuntu60.10.04.2.diff.gz
Original-Maintainer: Grub Maintainers <pkg-grub-devel at lists.alioth.debian.org>

From martin.pitt at ubuntu.com  Wed Nov 16 22:37:43 2011
From: martin.pitt at ubuntu.com (Martin Pitt)
Date: Wed, 16 Nov 2011 22:37:43 -0000
Subject: [ubuntu/lucid-proposed] apport 1.13.3-0ubuntu2.1 (Accepted)
Message-ID: <20111116223743.2742.2326.launchpad@wampee.canonical.com>

apport (1.13.3-0ubuntu2.1) lucid-proposed; urgency=low

  * backends/packaging-apt-dpkg.py: Fix crash when
    /etc/apport/native-origins.d contains any files. Fix backported from
    upstream r1973. (LP: #865199)

Date: Wed, 16 Nov 2011 08:10:17 +0100
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/apport/1.13.3-0ubuntu2.1
-------------- next part --------------
Format: 1.8
Date: Wed, 16 Nov 2011 08:10:17 +0100
Source: apport
Binary: apport python-problem-report python-apport apport-retrace apport-gtk apport-kde apport-qt dh-apport
Architecture: source
Version: 1.13.3-0ubuntu2.1
Distribution: lucid-proposed
Urgency: low
Maintainer: Martin Pitt <martin.pitt at ubuntu.com>
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
Description: 
 apport     - automatically generate crash reports for debugging
 apport-gtk - GTK+ frontend for the apport crash report system
 apport-kde - KDE frontend for the apport crash report system
 apport-qt  - transitional package to apport-kde
 apport-retrace - tools for reprocessing Apport crash reports
 dh-apport  - debhelper extension for the apport crash report system
 python-apport - apport crash report handling library
 python-problem-report - Python library to handle problem reports
Launchpad-Bugs-Fixed: 865199
Changes: 
 apport (1.13.3-0ubuntu2.1) lucid-proposed; urgency=low
 .
   * backends/packaging-apt-dpkg.py: Fix crash when
     /etc/apport/native-origins.d contains any files. Fix backported from
     upstream r1973. (LP: #865199)
Checksums-Sha1: 
 6705784aa0820b41e2e35d8e7de3fa993849544c 2296 apport_1.13.3-0ubuntu2.1.dsc
 fb5db72bccfe4f23b50bddfe8d79042dd0a53253 92374 apport_1.13.3-0ubuntu2.1.diff.gz
Checksums-Sha256: 
 fb620586f526a0fec3a0b55cb5cfdfb8905b5c904dd337bc19b1ac524172d9d0 2296 apport_1.13.3-0ubuntu2.1.dsc
 31bc370eee3299ffbbab82e701327ba589ac8e6594c4deeeae07f12f4ede6f27 92374 apport_1.13.3-0ubuntu2.1.diff.gz
Files: 
 cf57a679a7c3ba8812e7c9a9a07cd248 2296 utils optional apport_1.13.3-0ubuntu2.1.dsc
 038a1c0d750a304e3a9690a126271f34 92374 utils optional apport_1.13.3-0ubuntu2.1.diff.gz

From marc.deslauriers at ubuntu.com  Wed Nov 16 23:04:23 2011
From: marc.deslauriers at ubuntu.com (Marc Deslauriers)
Date: Wed, 16 Nov 2011 23:04:23 -0000
Subject: [ubuntu/lucid-security]
	bind9_9.7.0.dfsg.P1-1ubuntu0.4_ia64_translations.tar.gz,
	bind9_9.7.0.dfsg.P1-1ubuntu0.4_powerpc_translations.tar.gz,
	bind9_9.7.0.dfsg.P1-1ubuntu0.4_armel_translations.tar.gz,
	bind9_9.7.0.dfsg.P1-1ubuntu0.4_amd64_translations.tar.gz, bind9,
	bind9_9.7.0.dfsg.P1-1ubuntu0.4_sparc_translations.tar.gz,
	bind9_9.7.0.dfsg.P1-1ubuntu0.4_i386_translations.tar.gz
	1:9.7.0.dfsg.P1-1ubuntu0.4 (Accepted)
Message-ID: <20111116230423.1743.20295.launchpad@cocoplum.canonical.com>

bind9 (1:9.7.0.dfsg.P1-1ubuntu0.4) lucid-security; urgency=low

  * SECURITY UPDATE: denial of service via specially crafted packet
    - bin/named/query.c,lib/dns/rbtdb.c: correctly handle cache lookups
      that return RRSIG data associated with nonexistent records.
    - Patch backported from 9.7.4-P1.
    - CVE-2011-4313

Date: Wed, 16 Nov 2011 14:29:38 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/bind9/1:9.7.0.dfsg.P1-1ubuntu0.4
-------------- next part --------------
Format: 1.8
Date: Wed, 16 Nov 2011 14:29:38 -0500
Source: bind9
Binary: bind9 bind9utils bind9-doc bind9-host libbind-dev libbind9-60 libdns64 libisc60 liblwres60 libisccc60 libisccfg60 dnsutils lwresd
Architecture: source
Version: 1:9.7.0.dfsg.P1-1ubuntu0.4
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 bind9      - Internet Domain Name Server
 bind9-doc  - Documentation for BIND
 bind9-host - Version of 'host' bundled with BIND 9.X
 bind9utils - Utilities for BIND
 dnsutils   - Clients provided with BIND
 libbind-dev - Static Libraries and Headers used by BIND
 libbind9-60 - BIND9 Shared Library used by BIND
 libdns64   - DNS Shared Library used by BIND
 libisc60   - ISC Shared Library used by BIND
 libisccc60 - Command Channel Library used by BIND
 libisccfg60 - Config File Handling Library used by BIND
 liblwres60 - Lightweight Resolver Library used by BIND
 lwresd     - Lightweight Resolver Daemon
Changes: 
 bind9 (1:9.7.0.dfsg.P1-1ubuntu0.4) lucid-security; urgency=low
 .
   * SECURITY UPDATE: denial of service via specially crafted packet
     - bin/named/query.c,lib/dns/rbtdb.c: correctly handle cache lookups
       that return RRSIG data associated with nonexistent records.
     - Patch backported from 9.7.4-P1.
     - CVE-2011-4313
Checksums-Sha1: 
 8d13d280093127a5183d371959e7a13de4b657b3 2260 bind9_9.7.0.dfsg.P1-1ubuntu0.4.dsc
 5c5fe6ba07e8ab9cfd7a55510ded098a241cd88a 603709 bind9_9.7.0.dfsg.P1-1ubuntu0.4.diff.gz
Checksums-Sha256: 
 01fd9f98b08b8fd426a0881869fed0d8e6d830167c757c6c1f64230a05a76019 2260 bind9_9.7.0.dfsg.P1-1ubuntu0.4.dsc
 b18990e80a102b9df5ed4200818198b7f1ea11176959a27d5aa79effe4e1fb8b 603709 bind9_9.7.0.dfsg.P1-1ubuntu0.4.diff.gz
Files: 
 a86936d682fe689de71b2c9d99d20f35 2260 net optional bind9_9.7.0.dfsg.P1-1ubuntu0.4.dsc
 b31e503568968246ef17fd41145dda79 603709 net optional bind9_9.7.0.dfsg.P1-1ubuntu0.4.diff.gz
Original-Maintainer: LaMont Jones <lamont at debian.org>

From jamie at ubuntu.com  Thu Nov 17 15:04:47 2011
From: jamie at ubuntu.com (Jamie Strandboge)
Date: Thu, 17 Nov 2011 15:04:47 -0000
Subject: [ubuntu/lucid-security]
	openldap_2.4.21-0ubuntu5.6_ia64_translations.tar.gz,
	openldap_2.4.21-0ubuntu5.6_i386_translations.tar.gz,
	openldap_2.4.21-0ubuntu5.6_amd64_translations.tar.gz,
	openldap_2.4.21-0ubuntu5.6_armel_translations.tar.gz,
	openldap_2.4.21-0ubuntu5.6_powerpc_translations.tar.gz, openldap,
	openldap_2.4.21-0ubuntu5.6_sparc_translations.tar.gz 2.4.21-0ubuntu5.6
	(Accepted)
Message-ID: <20111117150447.17615.20141.launchpad@cocoplum.canonical.com>

openldap (2.4.21-0ubuntu5.6) lucid-security; urgency=low

  * SECURITY UPDATE: potential denial of service (LP: #884163)
    - debian/patches/CVE-2011-4079: fix off by one error in
      postalAddressNormalize()
    - CVE-2011-4079

Date: Mon, 14 Nov 2011 13:32:11 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/openldap/2.4.21-0ubuntu5.6
-------------- next part --------------
Format: 1.8
Date: Mon, 14 Nov 2011 13:32:11 -0600
Source: openldap
Binary: slapd ldap-utils libldap-2.4-2 libldap-2.4-2-dbg libldap2-dev slapd-dbg
Architecture: source
Version: 2.4.21-0ubuntu5.6
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 ldap-utils - OpenLDAP utilities
 libldap-2.4-2 - OpenLDAP libraries
 libldap-2.4-2-dbg - Debugging information for OpenLDAP libraries
 libldap2-dev - OpenLDAP development libraries
 slapd      - OpenLDAP server (slapd)
 slapd-dbg  - Debugging information for the OpenLDAP server (slapd)
Launchpad-Bugs-Fixed: 884163
Changes: 
 openldap (2.4.21-0ubuntu5.6) lucid-security; urgency=low
 .
   * SECURITY UPDATE: potential denial of service (LP: #884163)
     - debian/patches/CVE-2011-4079: fix off by one error in
       postalAddressNormalize()
     - CVE-2011-4079
Checksums-Sha1: 
 2c2e70e771df474d2ee2a3380895b18d2c012123 2604 openldap_2.4.21-0ubuntu5.6.dsc
 796f0cc619515eab424c2915bf9dd27ef0ef1004 155875 openldap_2.4.21-0ubuntu5.6.diff.gz
Checksums-Sha256: 
 b30695f7482e36b58017fabf22f5d137fcdbcfce6ed82516c712f7fa7e4be09f 2604 openldap_2.4.21-0ubuntu5.6.dsc
 baeb20969512722c19ac712e1a4a7f4515e07ba7e466864f413075699e012a82 155875 openldap_2.4.21-0ubuntu5.6.diff.gz
Files: 
 6ce3ed0d008f724c98a6f4344152755a 2604 net optional openldap_2.4.21-0ubuntu5.6.dsc
 0f0626d6c0918f26e298674eac7814c3 155875 net optional openldap_2.4.21-0ubuntu5.6.diff.gz
Original-Maintainer: Debian OpenLDAP Maintainers <pkg-openldap-devel at lists.alioth.debian.org>

From tyhicks at canonical.com  Fri Nov 18 04:03:51 2011
From: tyhicks at canonical.com (Tyler Hicks)
Date: Fri, 18 Nov 2011 04:03:51 -0000
Subject: [ubuntu/lucid-security] freetype 2.3.11-1ubuntu2.5 (Accepted)
Message-ID: <20111118040351.29609.33064.launchpad@cocoplum.canonical.com>

freetype (2.3.11-1ubuntu2.5) lucid-security; urgency=low

  * SECURITY UPDATE: Arbitrary code execution via crafted Type 1 font
    - debian/patches-freetype/CVE-2011-3256.patch: Sanitize Type 1 font inputs
      in src/base/ftbitmap.c, src/psaux/t1decode.c, src/raster/ftrend1.c, and
      src/truetype/ttgxvar.c. Based on upstream patch.
    - CVE-2011-3256
  * SECURITY UPDATE: Arbitrary code execution via crafted CID-keyed PS font
    - debian/patches-freetype/CVE-2011-3439.patch: Sanitize CID-keyed
      PostScript font inputs in src/cid/cidload.c. Based on upstream patch.
    - CVE-2011-3439

Date: Thu, 17 Nov 2011 13:59:33 -0600
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/freetype/2.3.11-1ubuntu2.5
-------------- next part --------------
Format: 1.8
Date: Thu, 17 Nov 2011 13:59:33 -0600
Source: freetype
Binary: libfreetype6 libfreetype6-dev freetype2-demos libfreetype6-udeb
Architecture: source
Version: 2.3.11-1ubuntu2.5
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Description: 
 freetype2-demos - FreeType 2 demonstration programs
 libfreetype6 - FreeType 2 font engine, shared library files
 libfreetype6-dev - FreeType 2 font engine, development files
 libfreetype6-udeb - FreeType 2 font engine for the debian-installer (udeb)
Changes: 
 freetype (2.3.11-1ubuntu2.5) lucid-security; urgency=low
 .
   * SECURITY UPDATE: Arbitrary code execution via crafted Type 1 font
     - debian/patches-freetype/CVE-2011-3256.patch: Sanitize Type 1 font inputs
       in src/base/ftbitmap.c, src/psaux/t1decode.c, src/raster/ftrend1.c, and
       src/truetype/ttgxvar.c. Based on upstream patch.
     - CVE-2011-3256
   * SECURITY UPDATE: Arbitrary code execution via crafted CID-keyed PS font
     - debian/patches-freetype/CVE-2011-3439.patch: Sanitize CID-keyed
       PostScript font inputs in src/cid/cidload.c. Based on upstream patch.
     - CVE-2011-3439
Checksums-Sha1: 
 20c23eaab8825f4c5417738510ae1be4d9c70d2c 1953 freetype_2.3.11-1ubuntu2.5.dsc
 4aaaabcfcf1affe12369c7b74f443272901993a9 44290 freetype_2.3.11-1ubuntu2.5.diff.gz
Checksums-Sha256: 
 1fe5b7489ab819d20964c2301e51a04b2e883bc1dca46701453d9e31e7dc2508 1953 freetype_2.3.11-1ubuntu2.5.dsc
 2f86164212f3cd499479ceffa8890c5b074cdb9b5487ee2311afa8d56ab36eb5 44290 freetype_2.3.11-1ubuntu2.5.diff.gz
Files: 
 c08c173eac79579f7c202b9e14621f8a 1953 libs optional freetype_2.3.11-1ubuntu2.5.dsc
 06704e51e6ce75a23276509d7d1d49a9 44290 libs optional freetype_2.3.11-1ubuntu2.5.diff.gz
Original-Maintainer: Steve Langasek <vorlon at debian.org>

From marc.deslauriers at ubuntu.com  Mon Nov 21 20:06:23 2011
From: marc.deslauriers at ubuntu.com (Marc Deslauriers)
Date: Mon, 21 Nov 2011 20:06:23 -0000
Subject: [ubuntu/lucid-security]
	pidgin_2.6.6-1ubuntu4.4_i386_translations.tar.gz,
	pidgin_2.6.6-1ubuntu4.4_amd64_translations.tar.gz, pidgin,
	pidgin_2.6.6-1ubuntu4.4_sparc_translations.tar.gz,
	pidgin_2.6.6-1ubuntu4.4_powerpc_translations.tar.gz,
	pidgin_2.6.6-1ubuntu4.4_ia64_translations.tar.gz,
	pidgin_2.6.6-1ubuntu4.4_armel_translations.tar.gz 1:2.6.6-1ubuntu4.4
	(Accepted)
Message-ID: <20111121200623.15679.29602.launchpad@cocoplum.canonical.com>

pidgin (1:2.6.6-1ubuntu4.4) lucid-security; urgency=low

  * SECURITY UPDATE: denial of service in Yahoo! protocol via malormed
    YMSG message
    - debian/patches/97_CVE-2011-1091.patch: validate messages in
      libpurple/protocols/yahoo/libymsg.c.
    - CVE-2011-1091
  * SECURITY UPDATE: denial of service in MSN protocol via HTTP 100
    response size
    - debian/patches/97_CVE-2011-3184.patch: properly calculate size in
      libpurple/protocols/msn/httpconn.c.
    - CVE-2011-3184
  * SECURITY UPDATE: denial of service in SILC protocol via invalid UTF-8
    sequence
    - debian/patches/97_CVE-2011-3594.patch: properly handle utf-8 in
      libpurple/protocols/silc/ops.c.
    - CVE-2011-3594

Date: Fri, 18 Nov 2011 14:48:36 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Desktop Team <ubuntu-desktop at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/pidgin/1:2.6.6-1ubuntu4.4
-------------- next part --------------
Format: 1.8
Date: Fri, 18 Nov 2011 14:48:36 -0500
Source: pidgin
Binary: libpurple0 pidgin pidgin-data pidgin-dev pidgin-dbg finch finch-dev libpurple-dev libpurple-bin
Architecture: source
Version: 1:2.6.6-1ubuntu4.4
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Desktop Team <ubuntu-desktop at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 finch      - text-based multi-protocol instant messaging client
 finch-dev  - text-based multi-protocol instant messaging client - development
 libpurple-bin - multi-protocol instant messaging library - extra utilities
 libpurple-dev - multi-protocol instant messaging library - development files
 libpurple0 - multi-protocol instant messaging library
 pidgin     - graphical multi-protocol instant messaging client for X
 pidgin-data - multi-protocol instant messaging client - data files
 pidgin-dbg - Debugging symbols for Pidgin
 pidgin-dev - multi-protocol instant messaging client - development files
Changes: 
 pidgin (1:2.6.6-1ubuntu4.4) lucid-security; urgency=low
 .
   * SECURITY UPDATE: denial of service in Yahoo! protocol via malormed
     YMSG message
     - debian/patches/97_CVE-2011-1091.patch: validate messages in
       libpurple/protocols/yahoo/libymsg.c.
     - CVE-2011-1091
   * SECURITY UPDATE: denial of service in MSN protocol via HTTP 100
     response size
     - debian/patches/97_CVE-2011-3184.patch: properly calculate size in
       libpurple/protocols/msn/httpconn.c.
     - CVE-2011-3184
   * SECURITY UPDATE: denial of service in SILC protocol via invalid UTF-8
     sequence
     - debian/patches/97_CVE-2011-3594.patch: properly handle utf-8 in
       libpurple/protocols/silc/ops.c.
     - CVE-2011-3594
Checksums-Sha1: 
 90794e6c5a16a32798c33ede6afa5373345156d5 2727 pidgin_2.6.6-1ubuntu4.4.dsc
 1f413669a54e1733c00b9cf4af3ef37fa2f0769c 78411 pidgin_2.6.6-1ubuntu4.4.debian.tar.gz
Checksums-Sha256: 
 50ff123ce0b2a248f5084e68d161dbf238089cbba26d7f84f07ee83b5f4a77df 2727 pidgin_2.6.6-1ubuntu4.4.dsc
 85b07def2f4189e003304d6fdd166b1a3edf0cecf3cd8018614525348428fd60 78411 pidgin_2.6.6-1ubuntu4.4.debian.tar.gz
Files: 
 9a6351442d1fdc29629ecec92ec5871e 2727 net optional pidgin_2.6.6-1ubuntu4.4.dsc
 573bbd31d9e0971cf304ffefe561f07a 78411 net optional pidgin_2.6.6-1ubuntu4.4.debian.tar.gz
Original-Maintainer: Ari Pollak <ari at debian.org>

From jamie at ubuntu.com  Mon Nov 21 23:11:36 2011
From: jamie at ubuntu.com (Jamie Strandboge)
Date: Mon, 21 Nov 2011 23:11:36 -0000
Subject: [ubuntu/lucid-security]
	kdeutils_4.4.5-0ubuntu1.2_i386_translations.tar.gz,
	kdeutils_4.4.5-0ubuntu1.2_ia64_translations.tar.gz,
	kdeutils_4.4.5-0ubuntu1.2_powerpc_translations.tar.gz,
	kdeutils_4.4.5-0ubuntu1.2_armel_translations.tar.gz, kdeutils,
	kdeutils_4.4.5-0ubuntu1.2_amd64_translations.tar.gz 4:4.4.5-0ubuntu1.2
	(Accepted)
Message-ID: <20111121231136.15759.70609.launchpad@cocoplum.canonical.com>

kdeutils (4:4.4.5-0ubuntu1.2) lucid-security; urgency=low

  * SECURITY UPDATE: fix directory traversal in Ark
    - debian/patches/CVE-2011-2725.patch: filter out '../' when previewing
      archives
    - CVE-2011-2725
    - LP: #878619

Date: Tue, 08 Nov 2011 16:13:53 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/kdeutils/4:4.4.5-0ubuntu1.2
-------------- next part --------------
Format: 1.8
Date: Tue, 08 Nov 2011 16:13:53 -0600
Source: kdeutils
Binary: kdeutils kdeutils-dbg ark kcalc kcharselect kdelirc kdf kfloppy kgpg ktimer kwalletmanager okteta plasma-scriptengine-superkaramba superkaramba sweeper printer-applet kde-printer-applet
Architecture: source
Version: 4:4.4.5-0ubuntu1.2
Distribution: lucid-security
Urgency: low
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 ark        - archive utility for KDE 4
 kcalc      - calculator for KDE 4
 kcharselect - special character utility for KDE 4
 kde-printer-applet - printer status applet - transitional package
 kdelirc    - infrared remote control for KDE 4
 kdeutils   - general-purpose utilities from the official KDE 4 release
 kdeutils-dbg - debugging symbols for the KDE 4 utilities module
 kdf        - disk information utility for KDE 4
 kfloppy    - floppy formatter for KDE 4
 kgpg       - encryption utility for KDE 4
 ktimer     - countdown timer for KDE 4
 kwalletmanager - secure password wallet manager for KDE 4
 okteta     - hexeditor for binary files for KDE 4
 plasma-scriptengine-superkaramba - SuperKaramba theme support for the KDE 4 Plasma desktop
 printer-applet - printer status applet
 superkaramba - Transitional package
 sweeper    - history and temporary file cleaner for KDE 4
Launchpad-Bugs-Fixed: 878619
Changes: 
 kdeutils (4:4.4.5-0ubuntu1.2) lucid-security; urgency=low
 .
   * SECURITY UPDATE: fix directory traversal in Ark
     - debian/patches/CVE-2011-2725.patch: filter out '../' when previewing
       archives
     - CVE-2011-2725
     - LP: #878619
Checksums-Sha1: 
 147af48c63a10da82008eba160b402b51def1319 2712 kdeutils_4.4.5-0ubuntu1.2.dsc
 b9cf43ae414a3f3ac8b4d23cd76b91461affd282 34712 kdeutils_4.4.5-0ubuntu1.2.diff.gz
Checksums-Sha256: 
 c7c545c362e81aba90bfb7d622fbafa0e9513a2b94c9d7ac50c0bed42cac6052 2712 kdeutils_4.4.5-0ubuntu1.2.dsc
 6b9e7e7a0f5a38b846edbe1e47aa0ffec382b2c0b5d53233cea7bb3f2ea6fa91 34712 kdeutils_4.4.5-0ubuntu1.2.diff.gz
Files: 
 927e2c5b5e13a0bc0f851e0f4bc7e8a6 2712 kde optional kdeutils_4.4.5-0ubuntu1.2.dsc
 8e0648b5d4dc5cca808a65e663d7a6fa 34712 kde optional kdeutils_4.4.5-0ubuntu1.2.diff.gz
Original-Maintainer: Debian Qt/KDE Maintainers <debian-qt-kde at lists.debian.org>

From jamie at ubuntu.com  Mon Nov 21 23:13:07 2011
From: jamie at ubuntu.com (Jamie Strandboge)
Date: Mon, 21 Nov 2011 23:13:07 -0000
Subject: [ubuntu/lucid-security]
	kdebase-workspace_4.4.5-0ubuntu1.2_amd64_translations.tar.gz,
	kdebase-workspace_4.4.5-0ubuntu1.2_sparc_translations.tar.gz,
	kdebase-workspace_4.4.5-0ubuntu1.2_armel_translations.tar.gz,
	kdebase-workspace,
	kdebase-workspace_4.4.5-0ubuntu1.2_i386_translations.tar.gz,
	kdebase-workspace_4.4.5-0ubuntu1.2_ia64_translations.tar.gz,
	kdebase-workspace_4.4.5-0ubuntu1.2_powerpc_translations.tar.gz
	4:4.4.5-0ubuntu1.2 (Accepted)
Message-ID: <20111121231307.15759.21930.launchpad@cocoplum.canonical.com>

kdebase-workspace (4:4.4.5-0ubuntu1.2) lucid-security; urgency=low

  * No change rebuild for security. This is needed to build kdeutils in
    the security pocket.

Date: Tue, 08 Nov 2011 16:22:30 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/kdebase-workspace/4:4.4.5-0ubuntu1.2
-------------- next part --------------
Format: 1.8
Date: Tue, 08 Nov 2011 16:22:30 -0600
Source: kdebase-workspace
Binary: kdebase-workspace plasma-desktop plasma-netbook kdebase-workspace-bin kdebase-workspace-libs4+5 kdebase-workspace-data kdebase-workspace-wallpapers kdebase-workspace-dev plasma-dataengines-workspace plasma-widgets-workspace plasma-scriptengines plasma-scriptengine-qedje plasma-scriptengine-ruby plasma-scriptengine-python plasma-scriptengine-webkit kdm klipper ksysguardd ksysguard kde-window-manager libkdecorations4 libkwineffects1 systemsettings kdebase-workspace-dbg kwin kdebase-workspace-kgreet-plugins libkephal4 libkfontinst4 libkscreensaver5 libksgrd4 libkworkspace4 liblsofui4 libplasma-applet-system-monitor4 libplasmaclock4 libplasma-geolocation-interface4 libplasmagenericshell4 libprocesscore4 libksignalplotter4 libprocessui4 libsolidcontrol4 libsolidcontrolifaces4 libtaskmanager4 libweather-ion4
Architecture: source
Version: 4:4.4.5-0ubuntu1.2
Distribution: lucid-security
Urgency: low
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 kde-window-manager - the KDE 4 window manager (KWin)
 kdebase-workspace - base workspace components from the official KDE 4 release
 kdebase-workspace-bin - core binaries for the KDE 4 base workspace module
 kdebase-workspace-data - shared scripts and data files for the KDE 4 base workspace module
 kdebase-workspace-dbg - debugging symbols for the KDE 4 base workspace module
 kdebase-workspace-dev - development files for the KDE 4 base workspace module
 kdebase-workspace-kgreet-plugins - KDE greet libraries for authentication
 kdebase-workspace-libs4+5 - Transitional package for kdebase-workspace-libs4+5.
 kdebase-workspace-wallpapers - extra wallpapers from the KDE 4 base module
 kdm        - KDE Display Manager for X11
 klipper    - clipboard utility for KDE 4
 ksysguard  - System Guard for KDE 4
 ksysguardd - System Guard Daemon for KDE 4
 kwin       - the KDE 4 window manager (KWin)
 libkdecorations4 - library used by decorations for the KDE 4 window manager
 libkephal4 - API for easier handling of multihead systems
 libkfontinst4 - Libraries for font installation in kcontrol
 libkscreensaver5 - Library of the KDE Screensaver system
 libksgrd4  - Library for the ksysguard gui
 libksignalplotter4 - Library for ksysguard signal views
 libkwineffects1 - library used by effects for the KDE 4 window manager
 libkworkspace4 - Library for the kdebase workspace
 liblsofui4 - Library for ksysguard based priority scheduling
 libplasma-applet-system-monitor4 - Library for the plasma system monitor
 libplasma-geolocation-interface4 - Library for the plasma geolocation
 libplasmaclock4 - Library for the plasma clock
 libplasmagenericshell4 - shared elements for all the plasma shells
 libprocesscore4 - Library for ksysguard based process view
 libprocessui4 - Library for ksysguard process user interface
 libsolidcontrol4 - Library for solid based network management
 libsolidcontrolifaces4 - Library for solid based network interface management
 libtaskmanager4 - Library which provides task management facilities
 libweather-ion4 - Library which provides an interface for weather information servi
 plasma-dataengines-workspace - KDE 4 base workspace Plasma data engines
 plasma-desktop - The KDE plasma workspace for desktop and laptop computers
 plasma-netbook - The KDE plasma workspace for netbook computers
 plasma-scriptengine-python - Python script engine for Plasma
 plasma-scriptengine-qedje - QEdje script engine for Plasma
 plasma-scriptengine-ruby - Ruby script engine for Plasma
 plasma-scriptengine-webkit - Web and MacOS X dashboard widget support for Plasma
 plasma-scriptengines - a metapackage to install all Plasma script engines
 plasma-widgets-workspace - KDE 4 base workspace Plasma widgets and containments
 systemsettings - KDE 4 System Settings
Changes: 
 kdebase-workspace (4:4.4.5-0ubuntu1.2) lucid-security; urgency=low
 .
   * No change rebuild for security. This is needed to build kdeutils in
     the security pocket.
Checksums-Sha1: 
 1e109e48073aa91132b162124ea64963c67b20f9 4211 kdebase-workspace_4.4.5-0ubuntu1.2.dsc
 c90231f33e5719fbb736aa35785cb366505f826f 12022398 kdebase-workspace_4.4.5-0ubuntu1.2.diff.gz
Checksums-Sha256: 
 88fc6da011423b54f53aaa17d4697f65fb3d4a2909509e40734ce31999b5835a 4211 kdebase-workspace_4.4.5-0ubuntu1.2.dsc
 2571c89b07ce323899a1ec51c241e7db9e6f6249c0d97106b7f623c3afc5d754 12022398 kdebase-workspace_4.4.5-0ubuntu1.2.diff.gz
Files: 
 e324c71c4331d07927f48e29f94b6276 4211 kde optional kdebase-workspace_4.4.5-0ubuntu1.2.dsc
 1133954550f4b2d38f9c87050ddea737 12022398 kde optional kdebase-workspace_4.4.5-0ubuntu1.2.diff.gz
Original-Maintainer: Debian Qt/KDE Maintainers <debian-qt-kde at lists.debian.org>

From jamie at ubuntu.com  Mon Nov 21 23:14:42 2011
From: jamie at ubuntu.com (Jamie Strandboge)
Date: Mon, 21 Nov 2011 23:14:42 -0000
Subject: [ubuntu/lucid-security]
	kdepimlibs_4.4.5-0ubuntu1.2_armel_translations.tar.gz,
	kdepimlibs_4.4.5-0ubuntu1.2_i386_translations.tar.gz,
	kdepimlibs_4.4.5-0ubuntu1.2_amd64_translations.tar.gz,
	kdepimlibs, kdepimlibs_4.4.5-0ubuntu1.2_ia64_translations.tar.gz,
	kdepimlibs_4.4.5-0ubuntu1.2_powerpc_translations.tar.gz,
	kdepimlibs_4.4.5-0ubuntu1.2_sparc_translations.tar.gz
	4:4.4.5-0ubuntu1.2 (Accepted)
Message-ID: <20111121231442.15759.40026.launchpad@cocoplum.canonical.com>

kdepimlibs (4:4.4.5-0ubuntu1.2) lucid-security; urgency=low

  * No change rebuild for security. This is needed to build kdeutils in
    the security pocket.

Date: Tue, 08 Nov 2011 17:03:44 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/kdepimlibs/4:4.4.5-0ubuntu1.2
-------------- next part --------------
Format: 1.8
Date: Tue, 08 Nov 2011 17:03:44 -0600
Source: kdepimlibs
Binary: kdepimlibs5 kdepimlibs-data kdepimlibs5-dev kdepimlibs-dbg
Architecture: source
Version: 4:4.4.5-0ubuntu1.2
Distribution: lucid-security
Urgency: low
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 kdepimlibs-data - core shared data for KDE PIM 4 applications
 kdepimlibs-dbg - debugging symbols for the KDE 4 PIM libraries
 kdepimlibs5 - core libraries for KDE PIM 4 applications
 kdepimlibs5-dev - development files for the KDE 4 PIM libraries
Changes: 
 kdepimlibs (4:4.4.5-0ubuntu1.2) lucid-security; urgency=low
 .
   * No change rebuild for security. This is needed to build kdeutils in
     the security pocket.
Checksums-Sha1: 
 58cc9bd10be0c1ef5a6bbaa9e1dddc373ca02092 2479 kdepimlibs_4.4.5-0ubuntu1.2.dsc
 3114aad36436fb7acc381c41fdd01a658d110a25 28207 kdepimlibs_4.4.5-0ubuntu1.2.diff.gz
Checksums-Sha256: 
 9bb5efade094ab19a1d121a9ac91630a198acd8d40d447deee20ffe6c4541842 2479 kdepimlibs_4.4.5-0ubuntu1.2.dsc
 4395926dfe6e88ea1aea61292666a5dfae9f3c0918c8485c70cf3c8484c8e95f 28207 kdepimlibs_4.4.5-0ubuntu1.2.diff.gz
Files: 
 a43374637f5cd1c13bb63164cd1a9d19 2479 libs optional kdepimlibs_4.4.5-0ubuntu1.2.dsc
 c86c0d79daf4004a8a2f86a60271140d 28207 libs optional kdepimlibs_4.4.5-0ubuntu1.2.diff.gz
Original-Maintainer: Debian Qt/KDE Maintainers <debian-qt-kde at lists.debian.org>

From jamie at ubuntu.com  Mon Nov 21 23:15:16 2011
From: jamie at ubuntu.com (Jamie Strandboge)
Date: Mon, 21 Nov 2011 23:15:16 -0000
Subject: [ubuntu/lucid-security]
	kdegraphics_4.4.5-0ubuntu1.1_i386_translations.tar.gz,
	kdegraphics_4.4.5-0ubuntu1.1_amd64_translations.tar.gz,
	kdegraphics_4.4.5-0ubuntu1.1_sparc_translations.tar.gz, kdegraphics,
	kdegraphics_4.4.5-0ubuntu1.1_armel_translations.tar.gz,
	kdegraphics_4.4.5-0ubuntu1.1_ia64_translations.tar.gz,
	kdegraphics_4.4.5-0ubuntu1.1_powerpc_translations.tar.gz
	4:4.4.5-0ubuntu1.1 (Accepted)
Message-ID: <20111121231516.15759.38554.launchpad@cocoplum.canonical.com>

kdegraphics (4:4.4.5-0ubuntu1.1) lucid-security; urgency=low

  * No change rebuild for security. This is needed to build kdeutils in
    the security pocket.

Date: Tue, 08 Nov 2011 17:08:21 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/kdegraphics/4:4.4.5-0ubuntu1.1
-------------- next part --------------
Format: 1.8
Date: Tue, 08 Nov 2011 17:08:21 -0600
Source: kdegraphics
Binary: kdegraphics kdegraphics-dbg kdegraphics-strigi-plugins gwenview kamera kcolorchooser kgamma kolourpaint4 kruler libksane0 libksane-dev ksnapshot libokularcore1 okular okular-dev okular-extra-backends libkdcraw8-dev libkdcraw8 libkexiv2-8-dev libkexiv2-8 libkipi7-dev libkipi7
Architecture: source
Version: 4:4.4.5-0ubuntu1.1
Distribution: lucid-security
Urgency: low
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 gwenview   - image viewer for KDE 4
 kamera     - digital camera support for KDE 4 applications
 kcolorchooser - color chooser and palette editor for KDE 4
 kdegraphics - graphics applications from the official KDE 4 release
 kdegraphics-dbg - debugging symbols for the KDE 4 graphics module
 kdegraphics-strigi-plugins - graphics file format plugins for Strigi Desktop Search
 kgamma     - monitor calibration panel for KDE 4
 kolourpaint4 - simple image editor for KDE 4
 kruler     - screen ruler for KDE 4
 ksnapshot  - screen capture tool for KDE 4
 libkdcraw8 - RAW picture decoding C++ library (runtime)
 libkdcraw8-dev - RAW picture decoding C++ library (development)
 libkexiv2-8 - Qt like interface for the libexiv2 library (runtime)
 libkexiv2-8-dev - Qt-like interface for the libexiv2 library (development)
 libkipi7   - library for apps that want to use kipi-plugins (runtime version)
 libkipi7-dev - library for apps that want to use kipi-plugins (development versi
 libksane-dev - scanner library for KDE 4 (development)
 libksane0  - scanner library for KDE 4 (runtime)
 libokularcore1 - libraries for the Okular document viewer
 okular     - document viewer for KDE 4
 okular-dev - development files for the Okular libraries
 okular-extra-backends - additional document format support for Okular
Changes: 
 kdegraphics (4:4.4.5-0ubuntu1.1) lucid-security; urgency=low
 .
   * No change rebuild for security. This is needed to build kdeutils in
     the security pocket.
Checksums-Sha1: 
 bc2f21a6e5fb4dada1c6de99302e6b5095d3c228 2808 kdegraphics_4.4.5-0ubuntu1.1.dsc
 7cbc4eb642f1f32ab04c83b879a4a49ab62ffb91 35802 kdegraphics_4.4.5-0ubuntu1.1.diff.gz
Checksums-Sha256: 
 48e07d293a087ce0839936dad9b0d080af83b6c98ec6aef134e88df9316b22df 2808 kdegraphics_4.4.5-0ubuntu1.1.dsc
 98238a93fcae6da3ad93155b85d2307b4e68ed9b479a540d0141f2d31f607ff8 35802 kdegraphics_4.4.5-0ubuntu1.1.diff.gz
Files: 
 2f2fa6f03733fe67eb29c9d3533bf432 2808 kde extra kdegraphics_4.4.5-0ubuntu1.1.dsc
 c165560c1abd0d10604322a643965d29 35802 kde extra kdegraphics_4.4.5-0ubuntu1.1.diff.gz
Original-Maintainer: Debian Qt/KDE Maintainers <debian-qt-kde at lists.debian.org>

From jamie at ubuntu.com  Mon Nov 21 23:15:56 2011
From: jamie at ubuntu.com (Jamie Strandboge)
Date: Mon, 21 Nov 2011 23:15:56 -0000
Subject: [ubuntu/lucid-security] kdebindings 4:4.4.5-0ubuntu1.2 (Accepted)
Message-ID: <20111121231556.15759.52201.launchpad@cocoplum.canonical.com>

kdebindings (4:4.4.5-0ubuntu1.2) lucid-security; urgency=low

  * No change rebuild for security. This is needed to build kdeutils in
    the security pocket.

Date: Tue, 08 Nov 2011 17:12:35 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/kdebindings/4:4.4.5-0ubuntu1.2
-------------- next part --------------
Format: 1.8
Date: Tue, 08 Nov 2011 17:12:35 -0600
Source: kdebindings
Binary: kdebindings-dbg libsmokeqt4-3 libsmokeqt4-dev libsmokeqimageblitz3 libsmokekde4-3 libsmokeokular3 libsmokeplasma3 libsmokeakonadi3 libsmokesoprano3 korundum4 libqtruby4shared2 libqt4-ruby libqt4-ruby1.8 libkde4-ruby libkde4-ruby1.8 libokular-ruby libokular-ruby1.8 libplasma-ruby libplasma-ruby1.8 libakonadi-ruby libakonadi-ruby1.8 libsoprano-ruby libsoprano-ruby1.8 python-kde4 python-kde4-dev python-kde4-doc libqyoto4.5-cil qyoto-dev libkimono4.1-cil plasma-scriptengine-kimono libkhtml2.0-cil libakonadi2.2-cil libktexteditor4.1-cil libnepomuk2.2-cil libplasma2.0-cil libqtscript2.2-cil libqttest2.2-cil libqtuitools2.2-cil libqtwebkit2.2-cil libsoprano2.0-cil libqyotoshared1 libqimageblitz0.0-cil krossruby krosspython libkrosspython0 kio-monodoc smoke-dev-tools
Architecture: source
Version: 4:4.4.5-0ubuntu1.2
Distribution: lucid-security
Urgency: low
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 kdebindings-dbg - debugging symbols for the KDE 4 bindings module
 kio-monodoc - Monodoc kio slave
 korundum4  - KDE Ruby bindings
 krosspython - Python module for Kross
 krossruby  - Ruby module for Kross
 libakonadi-ruby - Akonadi Ruby bindings
 libakonadi-ruby1.8 - Akonadi Ruby 1.8 bindings
 libakonadi2.2-cil - Akonadi bindings for CLI
 libkde4-ruby - KDE 4 bindings for Ruby
 libkde4-ruby1.8 - KDE 4 bindings for Ruby 1.8
 libkhtml2.0-cil - KDE 4 bindings for CLI, KHTML edition
 libkimono4.1-cil - KDE 4 bindings for CLI
 libkrosspython0 - Python module for Kross
 libktexteditor4.1-cil - KDE 4 bindings for CLI, KTextEditor edition
 libnepomuk2.2-cil - KDE 4 bindings for CLI, Nepomuk-edition
 libokular-ruby - Okular Ruby bindings
 libokular-ruby1.8 - Okular Ruby 1.8 bindings
 libplasma-ruby - KDE Plasma Ruby bindings
 libplasma-ruby1.8 - KDE Plasma Ruby 1.8 bindings
 libplasma2.0-cil - LDE 4 bindings for CLI, Plasma-edition
 libqimageblitz0.0-cil - QImageBlitz bindings for CLI
 libqt4-ruby - Qt 4 Ruby bindings
 libqt4-ruby1.8 - Qt 4 bindings for Ruby
 libqtruby4shared2 - internal library for Qt 4 Ruby bindings
 libqtscript2.2-cil - Qt 4 bindings for CLI, QtScript edition
 libqttest2.2-cil - Qt 4 bindings for CLI, QtTest edition
 libqtuitools2.2-cil - Qt 4 bindings for CLI, QtUiTools edition
 libqtwebkit2.2-cil - Qt 4 bindings for CLI, QtWebkit edition
 libqyoto4.5-cil - Qt 4 bindings for CLI
 libqyotoshared1 - shared library for Qt 4 CLI bindings
 libsmokeakonadi3 - Akonadi Smoke library
 libsmokekde4-3 - KDE Smoke libraries
 libsmokeokular3 - Okular Smoke bindings
 libsmokeplasma3 - KDE Plasma Smoke library
 libsmokeqimageblitz3 - QImageBlitz Smoke libraries
 libsmokeqt4-3 - Qt 4 Smoke libraries
 libsmokeqt4-dev - development files for Qt 4 Smoke library
 libsmokesoprano3 - Soprano Smoke library
 libsoprano-ruby - Soprano Ruby bindings
 libsoprano-ruby1.8 - Soprano Ruby 1.8 bindings
 libsoprano2.0-cil - Soprano bindings for CLI
 plasma-scriptengine-kimono - Kimono Plasma script engine
 python-kde4 - Python bindings for the KDE 4 libraries
 python-kde4-dev - UIC compiler and SIP files for PyKDE
 python-kde4-doc - documentation and examples for PyKDE
 qyoto-dev  - development tools for Qt CLI bindings
 smoke-dev-tools - smoke development tools
Changes: 
 kdebindings (4:4.4.5-0ubuntu1.2) lucid-security; urgency=low
 .
   * No change rebuild for security. This is needed to build kdeutils in
     the security pocket.
Checksums-Sha1: 
 2efbaa702a96fd0a23a57705c9ac3355008409f0 3659 kdebindings_4.4.5-0ubuntu1.2.dsc
 d051cfc7355d8f784414b6fe89339f84a525beb6 38870 kdebindings_4.4.5-0ubuntu1.2.diff.gz
Checksums-Sha256: 
 7ea9ecd19a5b18c8b539919f4e4a03de55bbb7d5899a18c86a60e89c270e8082 3659 kdebindings_4.4.5-0ubuntu1.2.dsc
 9fe843382fa729981037db0aace04addfb47f36e78b3855e1e16e64d765b62b6 38870 kdebindings_4.4.5-0ubuntu1.2.diff.gz
Files: 
 4e1fb060d527fa4edf7d576b15e7b8ab 3659 kde optional kdebindings_4.4.5-0ubuntu1.2.dsc
 df75b5aeefd9df79219ba641321469fa 38870 kde optional kdebindings_4.4.5-0ubuntu1.2.diff.gz
Original-Maintainer: Debian Qt/KDE Maintainers <debian-qt-kde at lists.debian.org>

From jamie at ubuntu.com  Mon Nov 21 23:17:41 2011
From: jamie at ubuntu.com (Jamie Strandboge)
Date: Mon, 21 Nov 2011 23:17:41 -0000
Subject: [ubuntu/lucid-security]
	kdebase-runtime_4.4.5-0ubuntu1.1_sparc_translations.tar.gz,
	kdebase-runtime_4.4.5-0ubuntu1.1_armel_translations.tar.gz,
	kdebase-runtime_4.4.5-0ubuntu1.1_powerpc_translations.tar.gz,
	kdebase-runtime_4.4.5-0ubuntu1.1_ia64_translations.tar.gz,
	kdebase-runtime_4.4.5-0ubuntu1.1_amd64_translations.tar.gz,
	kdebase-runtime,
	kdebase-runtime_4.4.5-0ubuntu1.1_i386_translations.tar.gz
	4:4.4.5-0ubuntu1.1 (Accepted)
Message-ID: <20111121231741.15759.27595.launchpad@cocoplum.canonical.com>

kdebase-runtime (4:4.4.5-0ubuntu1.1) lucid-security; urgency=low

  * no change rebuild for security. This is needed to build kdeutils in
    the security pocket.

Date: Thu, 10 Nov 2011 16:51:37 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/kdebase-runtime/4:4.4.5-0ubuntu1.1
-------------- next part --------------
Format: 1.8
Date: Thu, 10 Nov 2011 16:51:37 -0600
Source: kdebase-runtime
Binary: kdebase-runtime kdebase-runtime-data khelpcenter4 khelpcenter kcm-phonon-xine plasma-scriptengine-javascript kdebase-runtime-dbg kdebase-runtime-bin-kde4 kdebase-runtime-data-common
Architecture: source
Version: 4:4.4.5-0ubuntu1.1
Distribution: lucid-security
Urgency: low
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 kcm-phonon-xine - Advanced Phonon Xine configuration
 kdebase-runtime - runtime components from the official KDE 4 release
 kdebase-runtime-bin-kde4 - transitional package for kdebase-runtime
 kdebase-runtime-data - shared data files for the KDE 4 base runtime module
 kdebase-runtime-data-common - transitional package for kdebase-runtime-data
 kdebase-runtime-dbg - debugging symbols for KDE 4 base runtime module
 khelpcenter - metapackage for the help center for KDE4
 khelpcenter4 - Help Center for KDE 4
 plasma-scriptengine-javascript - javascript script engine for Plasma
Changes: 
 kdebase-runtime (4:4.4.5-0ubuntu1.1) lucid-security; urgency=low
 .
   * no change rebuild for security. This is needed to build kdeutils in
     the security pocket.
Checksums-Sha1: 
 98cf80a240db0a17bc9f83a9d30631b7890d56e7 2945 kdebase-runtime_4.4.5-0ubuntu1.1.dsc
 898382d671848f90676741c68ee49569628a6ee1 42295 kdebase-runtime_4.4.5-0ubuntu1.1.diff.gz
Checksums-Sha256: 
 c6799306a74083350eae6a5311126ea897f86ad98c1cc130e16e9e18023de880 2945 kdebase-runtime_4.4.5-0ubuntu1.1.dsc
 8ada9917436bf57d211942631c078b1559dd9f854d398dc0edea8e3967b4eb92 42295 kdebase-runtime_4.4.5-0ubuntu1.1.diff.gz
Files: 
 de2e61dd0d7ab59b2b271cc001f99f53 2945 kde optional kdebase-runtime_4.4.5-0ubuntu1.1.dsc
 768e9eb72717b9ad073c9c50182880db 42295 kde optional kdebase-runtime_4.4.5-0ubuntu1.1.diff.gz
Original-Maintainer: Debian Qt/KDE Maintainers <debian-qt-kde at lists.debian.org>

From jamie at ubuntu.com  Mon Nov 21 23:18:17 2011
From: jamie at ubuntu.com (Jamie Strandboge)
Date: Mon, 21 Nov 2011 23:18:17 -0000
Subject: [ubuntu/lucid-security]
	kdebase_4.4.5-0ubuntu1.2_armel_translations.tar.gz, kdebase,
	kdebase_4.4.5-0ubuntu1.2_i386_translations.tar.gz,
	kdebase_4.4.5-0ubuntu1.2_powerpc_translations.tar.gz,
	kdebase_4.4.5-0ubuntu1.2_amd64_translations.tar.gz,
	kdebase_4.4.5-0ubuntu1.2_ia64_translations.tar.gz 4:4.4.5-0ubuntu1.2
	(Accepted)
Message-ID: <20111121231817.15759.21020.launchpad@cocoplum.canonical.com>

kdebase (4:4.4.5-0ubuntu1.2) lucid-security; urgency=low

  * No change rebuild for security. This is needed to build kdeutils in
    the security pocket.

Date: Tue, 08 Nov 2011 16:17:32 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/kdebase/4:4.4.5-0ubuntu1.2
-------------- next part --------------
Format: 1.8
Date: Tue, 08 Nov 2011 16:17:32 -0600
Source: kdebase
Binary: kdebase-apps dolphin kappfinder kdebase-bin kdebase-data kdepasswd kfind kinfocenter konqueror konqueror-nsplugins konsole kwrite libkonq5 libkonq5-templates libkonq5-dev libkonqsidebarplugin4 libkonqsidebarplugin4-dev plasma-widget-folderview kdebase-plasma kdebase-dbg
Architecture: source
Version: 4:4.4.5-0ubuntu1.2
Distribution: lucid-security
Urgency: low
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 dolphin    - file manager for KDE 4
 kappfinder - non-KDE application finder for KDE 4
 kdebase-apps - base applications from the official KDE release
 kdebase-bin - core binaries for the KDE 4 base module
 kdebase-data - shared data files for the KDE 4 base module
 kdebase-dbg - debugging symbols for the KDE 4 base applications module
 kdebase-plasma - Transitional package for plasma-widget-folderview.
 kdepasswd  - password changer for KDE 4
 kfind      - file search utility for KDE 4
 kinfocenter - system information viewer for KDE 4
 konqueror  - KDE 4's advanced file manager, web browser and document viewer
 konqueror-nsplugins - Netscape plugin support for Konqueror
 konsole    - X terminal emulator for KDE 4
 kwrite     - text editor for KDE 4
 libkonq5   - core libraries for Konqueror
 libkonq5-dev - development files for the Konqueror libraries
 libkonq5-templates - data files for the Konqueror libraries
 libkonqsidebarplugin4 - Konqueror sidebar plugin library
 libkonqsidebarplugin4-dev - Konqueror sidebar plugin library development files
 plasma-widget-folderview - Folder View Plasma widget
Changes: 
 kdebase (4:4.4.5-0ubuntu1.2) lucid-security; urgency=low
 .
   * No change rebuild for security. This is needed to build kdeutils in
     the security pocket.
Checksums-Sha1: 
 86b835f2f3ce03c758a90397e324b20166f9e6dd 2904 kdebase_4.4.5-0ubuntu1.2.dsc
 a5dbdde7126dee3cada26f742d34077e6153003c 85420 kdebase_4.4.5-0ubuntu1.2.diff.gz
Checksums-Sha256: 
 9fea2456050f0ce8c3d2939d8e5bc57b977f2d4dcea4a5fbd63e40bdbf5828b7 2904 kdebase_4.4.5-0ubuntu1.2.dsc
 1519dbcb79fbfd28f2ae0c0476815c990bd96bb54ec165fbd91f33e8109af145 85420 kdebase_4.4.5-0ubuntu1.2.diff.gz
Files: 
 f4ca2439e7f5042167ac5052bc75ed3a 2904 kde optional kdebase_4.4.5-0ubuntu1.2.dsc
 1ccba91a82145c381600ed76db39b8c2 85420 kde optional kdebase_4.4.5-0ubuntu1.2.diff.gz
Original-Maintainer: Debian Qt/KDE Maintainers <debian-qt-kde at lists.debian.org>

From steve.langasek at ubuntu.com  Tue Nov 22 11:54:33 2011
From: steve.langasek at ubuntu.com (Steve Langasek)
Date: Tue, 22 Nov 2011 11:54:33 -0000
Subject: [ubuntu/lucid-proposed] procps 1:3.2.8-1ubuntu4.1 (Accepted)
Message-ID: <20111122115433.23678.76265.launchpad@chaenomeles.canonical.com>

procps (1:3.2.8-1ubuntu4.1) lucid-proposed; urgency=low

  [ James Hunt ]
  * Make procps job run twice: as early as possible (for kernel
    parameters such as kernel.printk) and then after all network
    interfaces are up (to account for any kernel parameters relating
    to recently loaded networking modules) (LP: #771372).

Date: Thu, 17 Nov 2011 13:07:06 -0800
Changed-By: Steve Langasek <steve.langasek at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/procps/1:3.2.8-1ubuntu4.1
-------------- next part --------------
Format: 1.8
Date: Thu, 17 Nov 2011 13:07:06 -0800
Source: procps
Binary: procps libproc-dev
Architecture: source
Version: 1:3.2.8-1ubuntu4.1
Distribution: lucid-proposed
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Langasek <steve.langasek at ubuntu.com>
Description: 
 libproc-dev - library for accessing process information from /proc
 procps     - /proc file system utilities
Launchpad-Bugs-Fixed: 771372
Changes: 
 procps (1:3.2.8-1ubuntu4.1) lucid-proposed; urgency=low
 .
   [ James Hunt ]
   * Make procps job run twice: as early as possible (for kernel
     parameters such as kernel.printk) and then after all network
     interfaces are up (to account for any kernel parameters relating
     to recently loaded networking modules) (LP: #771372).
Checksums-Sha1: 
 9afdb305953efe7698785290d8567eb8fc122a76 1836 procps_3.2.8-1ubuntu4.1.dsc
 b5b9c8557fd65a38d138a718cdcec33943bf5670 67204 procps_3.2.8-1ubuntu4.1.diff.gz
Checksums-Sha256: 
 47bcdb5f9de77ac9440fa0f0e7619c9d84af0446764924d78a2bffc0d813c754 1836 procps_3.2.8-1ubuntu4.1.dsc
 f2e4c6d568748f559319ddbd0df5dacd5bb4bc2d0932e6d61d18df3848ccf256 67204 procps_3.2.8-1ubuntu4.1.diff.gz
Files: 
 f49b88dac6687c836e4f77ca51194679 1836 admin required procps_3.2.8-1ubuntu4.1.dsc
 74adf9c592a30711014c78ee5ef03f55 67204 admin required procps_3.2.8-1ubuntu4.1.diff.gz
Original-Maintainer: Craig Small <csmall at debian.org>

From jean-louis at dupond.be  Thu Nov 24 06:15:53 2011
From: jean-louis at dupond.be (Jean-Louis Dupond)
Date: Thu, 24 Nov 2011 06:15:53 -0000
Subject: [ubuntu/lucid-proposed] papyon 0.4.8-0ubuntu2.3 (Accepted)
Message-ID: <20111124061553.32664.75928.launchpad@gac.canonical.com>

papyon (0.4.8-0ubuntu2.3) lucid-proposed; urgency=low

  * debian/patches/11_lp_887349.patch:
    - Adjust the patch so it applies cleanly. (LP: #887349)

Date: Mon, 14 Nov 2011 10:35:40 +0100
Changed-By: Jean-Louis Dupond <jean-louis at dupond.be>
Maintainer: Devid Antonio Filoni <d.filoni at ubuntu.com>
Signed-By: Martin Pitt <martin.pitt at ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/papyon/0.4.8-0ubuntu2.3
-------------- next part --------------
Format: 1.8
Date: Mon, 14 Nov 2011 10:35:40 +0100
Source: papyon
Binary: python-papyon
Architecture: source
Version: 0.4.8-0ubuntu2.3
Distribution: lucid-proposed
Urgency: low
Maintainer: Devid Antonio Filoni <d.filoni at ubuntu.com>
Changed-By: Jean-Louis Dupond <jean-louis at dupond.be>
Description: 
 python-papyon - MSN client library written in Python
Launchpad-Bugs-Fixed: 887349
Changes: 
 papyon (0.4.8-0ubuntu2.3) lucid-proposed; urgency=low
 .
   * debian/patches/11_lp_887349.patch:
     - Adjust the patch so it applies cleanly. (LP: #887349)
Checksums-Sha1: 
 7f46589772845297d4feef74070accd3d3f08939 2141 papyon_0.4.8-0ubuntu2.3.dsc
 059733c57e5dd915cd5e8bb17916a27439303e27 6424 papyon_0.4.8-0ubuntu2.3.diff.gz
Checksums-Sha256: 
 1f2603d54e9bd2d227d87d100dca2f6c1ed726770d54ab7158847d91c5eba5b2 2141 papyon_0.4.8-0ubuntu2.3.dsc
 c06c08e70ffa723eabf83455a1eef6231921588fe965335ebdce2948b061a229 6424 papyon_0.4.8-0ubuntu2.3.diff.gz
Files: 
 421bf9b16b5e5cd03e4b34743924c638 2141 python optional papyon_0.4.8-0ubuntu2.3.dsc
 613df4a81fb454bf11dd0c863ed44fc4 6424 python optional papyon_0.4.8-0ubuntu2.3.diff.gz

From marc.deslauriers at ubuntu.com  Mon Nov 28 15:07:20 2011
From: marc.deslauriers at ubuntu.com (Marc Deslauriers)
Date: Mon, 28 Nov 2011 15:07:20 -0000
Subject: [ubuntu/lucid-security]
	apt_0.7.25.3ubuntu9.9_sparc_translations.tar.gz,
	apt_0.7.25.3ubuntu9.9_armel_translations.tar.gz,
	apt_0.7.25.3ubuntu9.9_powerpc_translations.tar.gz,
	apt_0.7.25.3ubuntu9.9_i386_translations.tar.gz, apt,
	apt_0.7.25.3ubuntu9.9_ia64_translations.tar.gz,
	apt_0.7.25.3ubuntu9.9_amd64_translations.tar.gz 0.7.25.3ubuntu9.9
	(Accepted)
Message-ID: <20111128150720.23221.94881.launchpad@cocoplum.canonical.com>

apt (0.7.25.3ubuntu9.9) lucid-security; urgency=low

  * SECURITY UPDATE: sensitive information disclosure via incorrect
    hostname validation (LP: #868353)
    - methods/https.cc: properly set CURLOPT_SSL_VERIFYHOST.
    - CVE-2011-3634
  * SECURITY UPDATE: Restore apt-ket net-update functionality (LP: #857472)
    - cmdline/apt-key: improve key validation.

Date: Tue, 22 Nov 2011 13:56:02 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/apt/0.7.25.3ubuntu9.9
-------------- next part --------------
Format: 1.8
Date: Tue, 22 Nov 2011 13:56:02 -0500
Source: apt
Binary: apt apt-doc libapt-pkg-dev libapt-pkg-doc apt-utils apt-transport-https
Architecture: source
Version: 0.7.25.3ubuntu9.9
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 apt        - Advanced front-end for dpkg
 apt-doc    - Documentation for APT
 apt-transport-https - APT https transport
 apt-utils  - APT utility programs
 libapt-pkg-dev - Development files for APT's libapt-pkg and libapt-inst
 libapt-pkg-doc - Documentation for APT development
Launchpad-Bugs-Fixed: 857472 868353
Changes: 
 apt (0.7.25.3ubuntu9.9) lucid-security; urgency=low
 .
   * SECURITY UPDATE: sensitive information disclosure via incorrect
     hostname validation (LP: #868353)
     - methods/https.cc: properly set CURLOPT_SSL_VERIFYHOST.
     - CVE-2011-3634
   * SECURITY UPDATE: Restore apt-ket net-update functionality (LP: #857472)
     - cmdline/apt-key: improve key validation.
Checksums-Sha1: 
 f9a1472f2fe18e5406252c22722b1dae68352ab7 1994 apt_0.7.25.3ubuntu9.9.dsc
 14a2dcb1a09f86099ab85eb979aac157cecd6767 2747489 apt_0.7.25.3ubuntu9.9.tar.gz
Checksums-Sha256: 
 83ed0a5a883865cd9ed147ad6b838a350e8c538dbf90d4900e1d8ac26aa8ae3f 1994 apt_0.7.25.3ubuntu9.9.dsc
 ae12a3f5ce347667b6c2f870ca9c505f6ba24f864a0b9c3768a0420affad0d07 2747489 apt_0.7.25.3ubuntu9.9.tar.gz
Files: 
 de49ce12a0977c488de0fbc35eac4f7d 1994 admin important apt_0.7.25.3ubuntu9.9.dsc
 4bd688977e0baf427b4d377681629e01 2747489 admin important apt_0.7.25.3ubuntu9.9.tar.gz
Original-Maintainer: APT Development Team <deity at lists.debian.org>

From marc.deslauriers at ubuntu.com  Mon Nov 28 16:05:30 2011
From: marc.deslauriers at ubuntu.com (Marc Deslauriers)
Date: Mon, 28 Nov 2011 16:05:30 -0000
Subject: [ubuntu/lucid-security]
	update-notifier_0.99.3ubuntu0.1_amd64_translations.tar.gz,
	update-notifier_0.99.3ubuntu0.1_powerpc_translations.tar.gz,
	update-notifier_0.99.3ubuntu0.1_ia64_translations.tar.gz,
	update-notifier_0.99.3ubuntu0.1_i386_translations.tar.gz,
	update-notifier,
	update-notifier_0.99.3ubuntu0.1_armel_translations.tar.gz,
	update-notifier_0.99.3ubuntu0.1_sparc_translations.tar.gz
	0.99.3ubuntu0.1 (Accepted)
Message-ID: <20111128160530.13971.98457.launchpad@cocoplum.canonical.com>

update-notifier (0.99.3ubuntu0.1) lucid-security; urgency=low

  * SECURITY UPDATE: hotfix for arbitrary code execution via directory
    traversal in update-manager on iso media (LP: #881548)
    - data/cddistupgrader: patch update-manager that is pulled off an
      upgrade cd.
    - debian/update-manager-downloader-fix2.diff: hotfix to verify
      signature before unpacking the tarball in
      UpdateManager/Core/DistUpgradeFetcherCore.py.
    - debian/update-notifier-common.*: ship new hotfix in package.
    - CVE-2011-3152

Date: Thu, 24 Nov 2011 13:02:45 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Michael Vogt <michael.vogt at ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/update-notifier/0.99.3ubuntu0.1
-------------- next part --------------
Format: 1.8
Date: Thu, 24 Nov 2011 13:02:45 -0500
Source: update-notifier
Binary: update-notifier update-notifier-common
Architecture: source
Version: 0.99.3ubuntu0.1
Distribution: lucid-security
Urgency: low
Maintainer: Michael Vogt <michael.vogt at ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 update-notifier - Daemon which notifies about package updates
 update-notifier-common - Files shared between update-notifier and adept
Launchpad-Bugs-Fixed: 881548
Changes: 
 update-notifier (0.99.3ubuntu0.1) lucid-security; urgency=low
 .
   * SECURITY UPDATE: hotfix for arbitrary code execution via directory
     traversal in update-manager on iso media (LP: #881548)
     - data/cddistupgrader: patch update-manager that is pulled off an
       upgrade cd.
     - debian/update-manager-downloader-fix2.diff: hotfix to verify
       signature before unpacking the tarball in
       UpdateManager/Core/DistUpgradeFetcherCore.py.
     - debian/update-notifier-common.*: ship new hotfix in package.
     - CVE-2011-3152
Checksums-Sha1: 
 7a2b65f020fe8b8021d0a5beb78ad5ecbe8e047b 1701 update-notifier_0.99.3ubuntu0.1.dsc
 79eccfb7bda2f118d979c63d8a5accd975f9c399 245591 update-notifier_0.99.3ubuntu0.1.tar.gz
Checksums-Sha256: 
 30ed221537d629331a520670478ce14f07e17021c10c3abe5b855b3e80e42150 1701 update-notifier_0.99.3ubuntu0.1.dsc
 b8793c4f1a7f1716eaf847d65ea4925c5e4d945b29ef8135404edfc44b4aea4d 245591 update-notifier_0.99.3ubuntu0.1.tar.gz
Files: 
 2d00ab5b0156f721a81ad82a767ec235 1701 gnome optional update-notifier_0.99.3ubuntu0.1.dsc
 a36318bd1bd7a2f91fc79f0a9f8739fc 245591 gnome optional update-notifier_0.99.3ubuntu0.1.tar.gz

From marc.deslauriers at ubuntu.com  Mon Nov 28 16:06:31 2011
From: marc.deslauriers at ubuntu.com (Marc Deslauriers)
Date: Mon, 28 Nov 2011 16:06:31 -0000
Subject: [ubuntu/lucid-security]
	update-manager_0.134.11.1_i386_translations.tar.gz, update-manager,
	update-manager_0.134.11.1_powerpc_translations.tar.gz,
	dist-upgrader_0.134.11.1_all.tar.gz,
	update-manager_0.134.11.1_sparc_translations.tar.gz,
	update-manager_0.134.11.1_armel_translations.tar.gz,
	update-manager_0.134.11.1_amd64_translations.tar.gz,
	update-manager_0.134.11.1_ia64_translations.tar.gz 1:0.134.11.1
	(Accepted)
Message-ID: <20111128160631.13971.91173.launchpad@cocoplum.canonical.com>

update-manager (1:0.134.11.1) lucid-security; urgency=low

  * SECURITY UPDATE: arbitrary code execution via directory traversal
    (LP: #881548)
    - UpdateManager/Core/DistUpgradeFetcherCore.py: verify signature before
      unpacking the tarball.
    - CVE-2011-3152
  * SECURITY UPDATE: information leak via insecure temp file (LP: #881541)
    - DistUpgrade/DistUpgradeViewKDE.py: use mkstemp instead of mktemp.
    - CVE-2011-3154

Date: Wed, 23 Nov 2011 09:31:48 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Michael Vogt <michael.vogt at ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/update-manager/1:0.134.11.1
-------------- next part --------------
Format: 1.8
Date: Wed, 23 Nov 2011 09:31:48 -0500
Source: update-manager
Binary: update-manager-core update-manager update-manager-hildon update-manager-text update-manager-kde auto-upgrade-tester
Architecture: source
Version: 1:0.134.11.1
Distribution: lucid-security
Urgency: low
Maintainer: Michael Vogt <michael.vogt at ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 auto-upgrade-tester - Test release upgrades in a virtual environement
 update-manager - GNOME application that manages apt updates
 update-manager-core - manage release upgrades
 update-manager-hildon - Hildon application that manages apt updates
 update-manager-kde - Support modules for Update Notifier KDE
 update-manager-text - Text application that manages apt updates
Launchpad-Bugs-Fixed: 881541 881548
Changes: 
 update-manager (1:0.134.11.1) lucid-security; urgency=low
 .
   * SECURITY UPDATE: arbitrary code execution via directory traversal
     (LP: #881548)
     - UpdateManager/Core/DistUpgradeFetcherCore.py: verify signature before
       unpacking the tarball.
     - CVE-2011-3152
   * SECURITY UPDATE: information leak via insecure temp file (LP: #881541)
     - DistUpgrade/DistUpgradeViewKDE.py: use mkstemp instead of mktemp.
     - CVE-2011-3154
Checksums-Sha1: 
 9cfb593823446b0f8cba1ecbccbc8c902e3f077c 1855 update-manager_0.134.11.1.dsc
 6a155a459a87c2b93c6295524e3bbfbdae9848ed 2728583 update-manager_0.134.11.1.tar.gz
Checksums-Sha256: 
 5ca2eb3ef6f5798b6bdd8e0e42e2d981cb8217785525b8c8196570ec52c80799 1855 update-manager_0.134.11.1.dsc
 6abf3f1d828a6b65acab896dfcd8fee12da3043ef3a282f9bb8d4125ab640ab2 2728583 update-manager_0.134.11.1.tar.gz
Files: 
 3e58b4dd8a3d45eeff48d7a8dd6ca780 1855 gnome optional update-manager_0.134.11.1.dsc
 8e57a5aaf67a24fd61e258777d4d6043 2728583 gnome optional update-manager_0.134.11.1.tar.gz

From winckler at campogeral.com.br  Wed Nov 30 17:03:38 2011
From: winckler at campogeral.com.br (Gabriel A. von Winckler)
Date: Wed, 30 Nov 2011 17:03:38 -0000
Subject: [ubuntu/lucid-security]
	phpldapadmin_1.2.0.5-1ubuntu1.10.04.2_i386_translations.tar.gz,
	phpldapadmin 1.2.0.5-1ubuntu1.10.04.2 (Accepted)
Message-ID: <20111130170338.6011.27893.launchpad@cocoplum.canonical.com>

phpldapadmin (1.2.0.5-1ubuntu1.10.04.2) lucid-security; urgency=high

  * Merge from debian security updates. (LP: #887290)
    - CVE-2011-4074 Fix XSS vulnerability in debug code
    - CVE-2011-4075 Fix arbitrary code execution by unauthenticated users

Date: Thu, 24 Nov 2011 14:39:09 -0200
Changed-By: Gabriel A. von Winckler <winckler at campogeral.com.br>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/phpldapadmin/1.2.0.5-1ubuntu1.10.04.2
-------------- next part --------------
Format: 1.8
Date: Thu, 24 Nov 2011 14:39:09 -0200
Source: phpldapadmin
Binary: phpldapadmin
Architecture: source
Version: 1.2.0.5-1ubuntu1.10.04.2
Distribution: lucid-security
Urgency: high
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Gabriel A. von Winckler <winckler at campogeral.com.br>
Description: 
 phpldapadmin - web based interface for administering LDAP servers
Launchpad-Bugs-Fixed: 887290
Changes: 
 phpldapadmin (1.2.0.5-1ubuntu1.10.04.2) lucid-security; urgency=high
 .
   * Merge from debian security updates. (LP: #887290)
     - CVE-2011-4074 Fix XSS vulnerability in debug code
     - CVE-2011-4075 Fix arbitrary code execution by unauthenticated users
Checksums-Sha1: 
 630d2a94bacab491382916bdf383a664ef06ea16 1814 phpldapadmin_1.2.0.5-1ubuntu1.10.04.2.dsc
 c380c3ac0e3675137914099d77fa580e87fd81d7 178868 phpldapadmin_1.2.0.5-1ubuntu1.10.04.2.diff.gz
Checksums-Sha256: 
 a47dd58a968cc57017280dc30b62533faf170832dc82522142449e28b39e0224 1814 phpldapadmin_1.2.0.5-1ubuntu1.10.04.2.dsc
 ea18a0938ad7c17d3ce09dcd0182b92f5d8ed7c56a01fb51efb87223abb44201 178868 phpldapadmin_1.2.0.5-1ubuntu1.10.04.2.diff.gz
Files: 
 f8d31c7815e5d75892daac45b107f7dd 1814 admin extra phpldapadmin_1.2.0.5-1ubuntu1.10.04.2.dsc
 43bebc9ba83c4f809d7f3ce68c454267 178868 admin extra phpldapadmin_1.2.0.5-1ubuntu1.10.04.2.diff.gz
Original-Maintainer: Fabio Tranchitella <kobold at debian.org>