From stgraber at ubuntu.com Fri Jun 1 00:17:44 2012 From: stgraber at ubuntu.com (Stephane Graber) Date: Fri, 01 Jun 2012 00:17:44 -0000 Subject: [ubuntu/lucid-proposed] pastebinit 1.1-1ubuntu0.1 (Accepted) Message-ID: <20120601001744.16695.55070.launchpad@wampee.canonical.com> pastebinit (1.1-1ubuntu0.1) lucid-proposed; urgency=low * Cherry-pick new pastebin.com.conf file from pastebinit 1.3.1, this switches to the new pastebin.com API (now mandatory) (LP: #996242) Date: Wed, 30 May 2012 10:14:06 -0400 Changed-By: Stéphane Graber Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/pastebinit/1.1-1ubuntu0.1 -------------- next part -------------- Format: 1.8 Date: Wed, 30 May 2012 10:14:06 -0400 Source: pastebinit Binary: pastebinit Architecture: source Version: 1.1-1ubuntu0.1 Distribution: lucid-proposed Urgency: low Maintainer: Ubuntu Developers Changed-By: Stéphane Graber Description: pastebinit - command-line pastebin client Launchpad-Bugs-Fixed: 996242 Changes: pastebinit (1.1-1ubuntu0.1) lucid-proposed; urgency=low . * Cherry-pick new pastebin.com.conf file from pastebinit 1.3.1, this switches to the new pastebin.com API (now mandatory) (LP: #996242) Checksums-Sha1: 1c81e58983c537c3e7b5db04b80c9fab20883603 2078 pastebinit_1.1-1ubuntu0.1.dsc a4f747a3ca3b3f1d63a9f74b331e7e1703d187e0 4457 pastebinit_1.1-1ubuntu0.1.debian.tar.gz Checksums-Sha256: 034b6d15016b4372b3bc6caf36c2210bf32ae8b27b2cf75fc06ed5005951640f 2078 pastebinit_1.1-1ubuntu0.1.dsc 1bebd7b047f1041377e8afa110b8b7208822567166f867d0b4a95b2e50fe5b2f 4457 pastebinit_1.1-1ubuntu0.1.debian.tar.gz Files: 2980534301837bd3af5e04a90f880cae 2078 misc optional pastebinit_1.1-1ubuntu0.1.dsc 43c642cfec72f62f728b49bc6483bb2a 4457 misc optional pastebinit_1.1-1ubuntu0.1.debian.tar.gz Original-Maintainer: Rolf Leggewie From jamie at ubuntu.com Mon Jun 4 17:34:29 2012 From: jamie at ubuntu.com (Jamie Strandboge) Date: Mon, 04 Jun 2012 17:34:29 -0000 Subject: [ubuntu/lucid-security] arpwatch 2.1a15-1.1+squeeze1build0.10.04.1 (Accepted) Message-ID: <20120604173429.23369.91173.launchpad@cocoplum.canonical.com> arpwatch (2.1a15-1.1+squeeze1build0.10.04.1) lucid-security; urgency=low * fake sync from Debian arpwatch (2.1a15-1.1+squeeze1) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Fix initgroups() adding the gid 0 group to the list. Instead of dropping privileges it was in fact adding it. This is CVE-2012-2653. closes: #674715 Date: Mon, 04 Jun 2012 08:23:28 -0500 Changed-By: Jamie Strandboge Maintainer: KELEMEN Péter https://launchpad.net/ubuntu/lucid/+source/arpwatch/2.1a15-1.1+squeeze1build0.10.04.1 -------------- next part -------------- Format: 1.8 Date: Mon, 04 Jun 2012 08:23:28 -0500 Source: arpwatch Binary: arpwatch Architecture: source Version: 2.1a15-1.1+squeeze1build0.10.04.1 Distribution: lucid-security Urgency: high Maintainer: KELEMEN Péter Changed-By: Jamie Strandboge Description: arpwatch - Ethernet/FDDI station activity monitor Closes: 674715 Changes: arpwatch (2.1a15-1.1+squeeze1build0.10.04.1) lucid-security; urgency=low . * fake sync from Debian . arpwatch (2.1a15-1.1+squeeze1) stable-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix initgroups() adding the gid 0 group to the list. Instead of dropping privileges it was in fact adding it. This is CVE-2012-2653. closes: #674715 Checksums-Sha1: 482121dfc98d9396b793182a4a71f6987bfd8020 1762 arpwatch_2.1a15-1.1+squeeze1build0.10.04.1.dsc c250ba433f7802e07a36c15c3f51626409ac8d29 146523 arpwatch_2.1a15-1.1+squeeze1build0.10.04.1.diff.gz Checksums-Sha256: 61ba677e768bf1b82c5525b5201539bb2a7e31aa09e8334489504aa62fe37410 1762 arpwatch_2.1a15-1.1+squeeze1build0.10.04.1.dsc 4856e30791b9c50026f88f03127a32b91d45c6d9b8b860887ee1922567fdc628 146523 arpwatch_2.1a15-1.1+squeeze1build0.10.04.1.diff.gz Files: 772fbdade664f419c4647264b5378f5e 1762 admin optional arpwatch_2.1a15-1.1+squeeze1build0.10.04.1.dsc 2a933412098ea155886f0b4f3a9d2b0d 146523 admin optional arpwatch_2.1a15-1.1+squeeze1build0.10.04.1.diff.gz From raof at ubuntu.com Mon Jun 4 23:30:20 2012 From: raof at ubuntu.com (Chris Halse Rogers) Date: Mon, 04 Jun 2012 23:30:20 -0000 Subject: [ubuntu/lucid-updates] linux-firmware-nonfree 1.8ubuntu1 (Accepted) Message-ID: <20120604233020.8649.35565.launchpad@ackee.canonical.com> linux-firmware-nonfree (1.8ubuntu1) lucid-proposed; urgency=low * Added Beceem wimax firmware used by kernel versions 3.0 and higher. This firmware will be used by LTS backport kernels. -LP: #953494 Date: 2012-05-16 19:30:12.850407+00:00 Changed-By: Tim Gardner Signed-By: Chris Halse Rogers https://launchpad.net/ubuntu/lucid/+source/linux-firmware-nonfree/1.8ubuntu1 -------------- next part -------------- Sorry, changesfile not available. From martin.pitt at ubuntu.com Tue Jun 5 14:41:36 2012 From: martin.pitt at ubuntu.com (Martin Pitt) Date: Tue, 05 Jun 2012 14:41:36 -0000 Subject: [ubuntu/lucid-security] postgresql-8.4, postgresql-8.4_8.4.12-0ubuntu10.04_powerpc_translations.tar.gz, postgresql-8.4_8.4.12-0ubuntu10.04_amd64_translations.tar.gz, postgresql-8.4_8.4.12-0ubuntu10.04_ia64_translations.tar.gz, postgresql-8.4_8.4.12-0ubuntu10.04_i386_translations.tar.gz, postgresql-8.4_8.4.12-0ubuntu10.04_armel_translations.tar.gz, postgresql-8.4_8.4.12-0ubuntu10.04_sparc_translations.tar.gz 8.4.12-0ubuntu10.04 (Accepted) Message-ID: <20120605144136.8153.40806.launchpad@cocoplum.canonical.com> postgresql-8.4 (8.4.12-0ubuntu10.04) lucid-security; urgency=low * New upstream security/bug fix release: (LP: #1008317) - Fix incorrect password transformation in "contrib/pgcrypto"'s DES crypt() function. If a password string contained the byte value 0x80, the remainder of the password was ignored, causing the password to be much weaker than it appeared. With this fix, the rest of the string is properly included in the DES hash. Any stored password values that are affected by this bug will thus no longer match, so the stored values may need to be updated. (CVE-2012-2143) - Ignore SECURITY DEFINER and SET attributes for a procedural language's call handler. Applying such attributes to a call handler could crash the server. (CVE-2012-2655) - Allow numeric timezone offsets in timestamp input to be up to 16 hours away from UTC. Some historical time zones have offsets larger than 15 hours, the previous limit. This could result in dumped data values being rejected during reload. - Fix timestamp conversion to cope when the given time is exactly the last DST transition time for the current timezone. This oversight has been there a long time, but was not noticed previously because most DST-using zones are presumed to have an indefinite sequence of future DST transitions. - Fix text to name and char to name casts to perform string truncation correctly in multibyte encodings. - Fix memory copying bug in to_tsquery(). - Fix planner's handling of outer PlaceHolderVars within subqueries. This bug concerns sub-SELECTs that reference variables coming from the nullable side of an outer join of the surrounding query. In 9.1, queries affected by this bug would fail with "ERROR: Upper-level PlaceHolderVar found where not expected". But in 9.0 and 8.4, you'd silently get possibly-wrong answers, since the value transmitted into the subquery wouldn't go to null when it should. - Fix slow session startup when pg_attribute is very large. If pg_attribute exceeds one-fourth of shared_buffers, cache rebuilding code that is sometimes needed during session start would trigger the synchronized-scan logic, causing it to take many times longer than normal. The problem was particularly acute if many new sessions were starting at once. - Ensure sequential scans check for query cancel reasonably often. A scan encountering many consecutive pages that contain no live tuples would not respond to interrupts meanwhile. - Ensure the Windows implementation of PGSemaphoreLock() clears ImmediateInterruptOK before returning. This oversight meant that a query-cancel interrupt received later in the same query could be accepted at an unsafe time, with unpredictable but not good consequences. - Show whole-row variables safely when printing views or rules. Corner cases involving ambiguous names (that is, the name could be either a table or column name of the query) were printed in an ambiguous way, risking that the view or rule would be interpreted differently after dump and reload. Avoid the ambiguous case by attaching a no-op cast. - Fix "COPY FROM" to properly handle null marker strings that correspond to invalid encoding. A null marker string such as E'\\0' should work, and did work in the past, but the case got broken in 8.4. - Ensure autovacuum worker processes perform stack depth checking properly. Previously, infinite recursion in a function invoked by auto-"ANALYZE" could crash worker processes. - Fix logging collector to not lose log coherency under high load. The collector previously could fail to reassemble large messages if it got too busy. - Fix logging collector to ensure it will restart file rotation after receiving SIGHUP. - Fix WAL replay logic for GIN indexes to not fail if the index was subsequently dropped> - Fix memory leak in PL/pgSQL's "RETURN NEXT" command. - Fix PL/pgSQL's "GET DIAGNOSTICS" command when the target is the function's first variable. - Fix potential access off the end of memory in psql's expanded display ("\x") mode. - Fix several performance problems in pg_dump when the database contains many objects. pg_dump could get very slow if the database contained many schemas, or if many objects are in dependency loops, or if there are many owned sequences. - Fix "contrib/dblink"'s dblink_exec() to not leak temporary database connections upon error. - Fix "contrib/dblink" to report the correct connection name in error messages. Date: Mon, 04 Jun 2012 09:03:09 +0200 Changed-By: Martin Pitt Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/postgresql-8.4/8.4.12-0ubuntu10.04 -------------- next part -------------- Format: 1.8 Date: Mon, 04 Jun 2012 09:03:09 +0200 Source: postgresql-8.4 Binary: libpq-dev libpq5 libecpg6 libecpg-dev libecpg-compat3 libpgtypes3 postgresql-8.4 postgresql-client-8.4 postgresql-server-dev-8.4 postgresql-doc-8.4 postgresql-contrib-8.4 postgresql-plperl-8.4 postgresql-plpython-8.4 postgresql-pltcl-8.4 postgresql postgresql-client postgresql-doc postgresql-contrib Architecture: source Version: 8.4.12-0ubuntu10.04 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Martin Pitt Description: libecpg-compat3 - older version of run-time library for ECPG programs libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg6 - run-time library for ECPG programs libpgtypes3 - shared library libpgtypes for PostgreSQL 8.4 libpq-dev - header files for libpq5 (PostgreSQL library) libpq5 - PostgreSQL C client library postgresql - object-relational SQL database (supported version) postgresql-8.4 - object-relational SQL database, version 8.4 server postgresql-client - front-end programs for PostgreSQL (supported version) postgresql-client-8.4 - front-end programs for PostgreSQL 8.4 postgresql-contrib - additional facilities for PostgreSQL (supported version) postgresql-contrib-8.4 - additional facilities for PostgreSQL postgresql-doc - documentation for the PostgreSQL database management system postgresql-doc-8.4 - documentation for the PostgreSQL database management system postgresql-plperl-8.4 - PL/Perl procedural language for PostgreSQL 8.4 postgresql-plpython-8.4 - PL/Python procedural language for PostgreSQL 8.4 postgresql-pltcl-8.4 - PL/Tcl procedural language for PostgreSQL 8.4 postgresql-server-dev-8.4 - development files for PostgreSQL 8.4 server-side programming Launchpad-Bugs-Fixed: 1008317 Changes: postgresql-8.4 (8.4.12-0ubuntu10.04) lucid-security; urgency=low . * New upstream security/bug fix release: (LP: #1008317) - Fix incorrect password transformation in "contrib/pgcrypto"'s DES crypt() function. If a password string contained the byte value 0x80, the remainder of the password was ignored, causing the password to be much weaker than it appeared. With this fix, the rest of the string is properly included in the DES hash. Any stored password values that are affected by this bug will thus no longer match, so the stored values may need to be updated. (CVE-2012-2143) - Ignore SECURITY DEFINER and SET attributes for a procedural language's call handler. Applying such attributes to a call handler could crash the server. (CVE-2012-2655) - Allow numeric timezone offsets in timestamp input to be up to 16 hours away from UTC. Some historical time zones have offsets larger than 15 hours, the previous limit. This could result in dumped data values being rejected during reload. - Fix timestamp conversion to cope when the given time is exactly the last DST transition time for the current timezone. This oversight has been there a long time, but was not noticed previously because most DST-using zones are presumed to have an indefinite sequence of future DST transitions. - Fix text to name and char to name casts to perform string truncation correctly in multibyte encodings. - Fix memory copying bug in to_tsquery(). - Fix planner's handling of outer PlaceHolderVars within subqueries. This bug concerns sub-SELECTs that reference variables coming from the nullable side of an outer join of the surrounding query. In 9.1, queries affected by this bug would fail with "ERROR: Upper-level PlaceHolderVar found where not expected". But in 9.0 and 8.4, you'd silently get possibly-wrong answers, since the value transmitted into the subquery wouldn't go to null when it should. - Fix slow session startup when pg_attribute is very large. If pg_attribute exceeds one-fourth of shared_buffers, cache rebuilding code that is sometimes needed during session start would trigger the synchronized-scan logic, causing it to take many times longer than normal. The problem was particularly acute if many new sessions were starting at once. - Ensure sequential scans check for query cancel reasonably often. A scan encountering many consecutive pages that contain no live tuples would not respond to interrupts meanwhile. - Ensure the Windows implementation of PGSemaphoreLock() clears ImmediateInterruptOK before returning. This oversight meant that a query-cancel interrupt received later in the same query could be accepted at an unsafe time, with unpredictable but not good consequences. - Show whole-row variables safely when printing views or rules. Corner cases involving ambiguous names (that is, the name could be either a table or column name of the query) were printed in an ambiguous way, risking that the view or rule would be interpreted differently after dump and reload. Avoid the ambiguous case by attaching a no-op cast. - Fix "COPY FROM" to properly handle null marker strings that correspond to invalid encoding. A null marker string such as E'\\0' should work, and did work in the past, but the case got broken in 8.4. - Ensure autovacuum worker processes perform stack depth checking properly. Previously, infinite recursion in a function invoked by auto-"ANALYZE" could crash worker processes. - Fix logging collector to not lose log coherency under high load. The collector previously could fail to reassemble large messages if it got too busy. - Fix logging collector to ensure it will restart file rotation after receiving SIGHUP. - Fix WAL replay logic for GIN indexes to not fail if the index was subsequently dropped> - Fix memory leak in PL/pgSQL's "RETURN NEXT" command. - Fix PL/pgSQL's "GET DIAGNOSTICS" command when the target is the function's first variable. - Fix potential access off the end of memory in psql's expanded display ("\x") mode. - Fix several performance problems in pg_dump when the database contains many objects. pg_dump could get very slow if the database contained many schemas, or if many objects are in dependency loops, or if there are many owned sequences. - Fix "contrib/dblink"'s dblink_exec() to not leak temporary database connections upon error. - Fix "contrib/dblink" to report the correct connection name in error messages. Checksums-Sha1: 8f95755b4462bd972f73e4025d21de6754b6e504 2620 postgresql-8.4_8.4.12-0ubuntu10.04.dsc 53a17cd0f104bcad112925d3c6fc2e29e1f89c8e 18193373 postgresql-8.4_8.4.12.orig.tar.gz 61d2b5029f67ac096289a41126464671af12eac2 50157 postgresql-8.4_8.4.12-0ubuntu10.04.diff.gz Checksums-Sha256: 40a8eaf423273ec8dbc615c89eac2d6d6f59057b4eef0ebf62516122c6bc036e 2620 postgresql-8.4_8.4.12-0ubuntu10.04.dsc 0cd614f0f0f149d683aa1fbdefd7d873282cfdefada5a687d2644457c855d4f2 18193373 postgresql-8.4_8.4.12.orig.tar.gz 3c512aa6ccda39454aff1b37d2c6efb2f8f5d7b28e4dff54bc2acaa66694abc1 50157 postgresql-8.4_8.4.12-0ubuntu10.04.diff.gz Files: b24a20bcd2bb65fca3e49ce1671d7654 2620 database optional postgresql-8.4_8.4.12-0ubuntu10.04.dsc 2e7c6e16fe19e9597e2882fe47c7d3fd 18193373 database optional postgresql-8.4_8.4.12.orig.tar.gz dd3992c097e70c4ae74b3aa3d487f535 50157 database optional postgresql-8.4_8.4.12-0ubuntu10.04.diff.gz Original-Maintainer: Martin Pitt From marc.deslauriers at ubuntu.com Tue Jun 5 18:34:17 2012 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Tue, 05 Jun 2012 18:34:17 -0000 Subject: [ubuntu/lucid-security] bind9_9.7.0.dfsg.P1-1ubuntu0.5_amd64_translations.tar.gz, bind9_9.7.0.dfsg.P1-1ubuntu0.5_armel_translations.tar.gz, bind9_9.7.0.dfsg.P1-1ubuntu0.5_ia64_translations.tar.gz, bind9_9.7.0.dfsg.P1-1ubuntu0.5_powerpc_translations.tar.gz, bind9_9.7.0.dfsg.P1-1ubuntu0.5_i386_translations.tar.gz, bind9, bind9_9.7.0.dfsg.P1-1ubuntu0.5_sparc_translations.tar.gz 1:9.7.0.dfsg.P1-1ubuntu0.5 (Accepted) Message-ID: <20120605183417.15091.71666.launchpad@cocoplum.canonical.com> bind9 (1:9.7.0.dfsg.P1-1ubuntu0.5) lucid-security; urgency=low * SECURITY UPDATE: ghost domain names attack - lib/dns/rbtdb.c: Restrict the TTL of NS RRset to no more than that of the old NS RRset when replacing it. - Patch backported from 9.7.5. - CVE-2012-1033 * SECURITY UPDATE: denial of service via zero length rdata handling - lib/dns/rdata.c,lib/dns/rdataslab.c: use sentinel pointer for duplicate rdata. - Patch backported from 9.7.6-P1. - CVE-2012-1667 Date: Mon, 04 Jun 2012 13:47:38 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/bind9/1:9.7.0.dfsg.P1-1ubuntu0.5 -------------- next part -------------- Format: 1.8 Date: Mon, 04 Jun 2012 13:47:38 -0400 Source: bind9 Binary: bind9 bind9utils bind9-doc bind9-host libbind-dev libbind9-60 libdns64 libisc60 liblwres60 libisccc60 libisccfg60 dnsutils lwresd Architecture: source Version: 1:9.7.0.dfsg.P1-1ubuntu0.5 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: bind9 - Internet Domain Name Server bind9-doc - Documentation for BIND bind9-host - Version of 'host' bundled with BIND 9.X bind9utils - Utilities for BIND dnsutils - Clients provided with BIND libbind-dev - Static Libraries and Headers used by BIND libbind9-60 - BIND9 Shared Library used by BIND libdns64 - DNS Shared Library used by BIND libisc60 - ISC Shared Library used by BIND libisccc60 - Command Channel Library used by BIND libisccfg60 - Config File Handling Library used by BIND liblwres60 - Lightweight Resolver Library used by BIND lwresd - Lightweight Resolver Daemon Changes: bind9 (1:9.7.0.dfsg.P1-1ubuntu0.5) lucid-security; urgency=low . * SECURITY UPDATE: ghost domain names attack - lib/dns/rbtdb.c: Restrict the TTL of NS RRset to no more than that of the old NS RRset when replacing it. - Patch backported from 9.7.5. - CVE-2012-1033 * SECURITY UPDATE: denial of service via zero length rdata handling - lib/dns/rdata.c,lib/dns/rdataslab.c: use sentinel pointer for duplicate rdata. - Patch backported from 9.7.6-P1. - CVE-2012-1667 Checksums-Sha1: 7e2415f8ea00c7faf60703f4b7ac48b87574d714 2260 bind9_9.7.0.dfsg.P1-1ubuntu0.5.dsc 340b5c354c549d7806407b057f7320550b01dc5e 604524 bind9_9.7.0.dfsg.P1-1ubuntu0.5.diff.gz Checksums-Sha256: 4545dbc95297a2f8c5efc00688a2d7aec2b07988fe78755cf14c64a0bcdd7b46 2260 bind9_9.7.0.dfsg.P1-1ubuntu0.5.dsc 8ada20428b00aa2400886748f233999d8c53210569126f4c9bcd07fe4163f964 604524 bind9_9.7.0.dfsg.P1-1ubuntu0.5.diff.gz Files: ca79c2f159acdf98ddbe6f1fa85a61cb 2260 net optional bind9_9.7.0.dfsg.P1-1ubuntu0.5.dsc 3e55910459ac27d3ddee7e0fc910377c 604524 net optional bind9_9.7.0.dfsg.P1-1ubuntu0.5.diff.gz Original-Maintainer: LaMont Jones From launchpad at micahscomputing.com Wed Jun 6 08:41:16 2012 From: launchpad at micahscomputing.com (Micah Gersten) Date: Wed, 06 Jun 2012 08:41:16 -0000 Subject: [ubuntu/lucid-security] firefox 13.0+build1-0ubuntu0.10.04.1 (Accepted) Message-ID: <20120606084116.21377.36945.launchpad@ackee.canonical.com> firefox (13.0+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (FIREFOX_13_0_BUILD1) - see LP: #1007495 for USN information [ Chris Coulson ] * Refresh build-depends: - Bump minimum GTK version to 2.14 as we build with GIO support - Add minimum requirement for glib (2.18) - Drop libidl-dev, this doesn't appear to be needed now - Bump minimum NSPR version to 4.9.0 for --enable-system-nspr builds - Bump minimum sqlite version to 3.7.10 for --enable-system-sqlite builds - Bump minimum NSS version to 3.13.2 for --enable-system-nss builds * Refresh patches: - update debian/patches/ubuntu-ua-string-changes.patch - update debian/patches/ubuntu-codes-google.patch - update debian/patches/use-new-yasm-in-lucid.patch - update debian/patches/firefox-kde.patch - update debian/patches/mozilla-kde.patch - update debian/patches/dont-include-hyphenation-patterns.patch * Clean up the file exclude list and add comments for excluded files - update debian/build/create-tarball.py * Make it easy to run Firefox in valgrind for builds that are compiled with explicit valgrind support - update debian/firefox.sh.in * Don't build with gnomevfs anymore - update debian/firefox-gnome-support.install.in - update debian/config/mozconfig.in - update debian/control.in - update debian/rules * Bump debhelper compat to 7 - update debian/apport/blacklist.in - update debian/apport/source_firefox.py.in - update debian/compat - update debian/config/mozconfig.in - update debian/control.in - update debian/firefox-dev.install.in - update debian/firefox-dev.links.in - update debian/firefox-gnome-support.install.in - update debian/firefox.dirs.in - update debian/firefox.install.in - update debian/firefox.links.in - update debian/firefox.postinst.in - update debian/firefox.preinst.in - update debian/firefox.sh.in - update debian/pkgconfig/libxul.pc.in - update debian/pkgconfig/mozilla-nspr.pc.in - update debian/pkgconfig/mozilla-plugin.pc.in - update debian/rules - update debian/usr.bin.firefox.apparmor.10.04 - update debian/usr.bin.firefox.apparmor.9.10 * Override 2 embedded-library lintian errors - update debian/firefox.lintian-overrides.in * Drop debian/patches/distro-locale-searchplugins after landing of bmo: #515232 * Don't hardcode general.useragent.locale to en-US, now that it's used for searchplugin localization. This means we can drop this pref from ubufox - add debian/patches/dont-override-general-useragent-locale.patch - update debian/patches/series * Drop patches fixed upstream - remove debian/patches/no-sps-profiler-on-unsupported-archs.patch - remove debian/patches/avoid-dbus-roundtrip-for-httpchannel.patch - update debian/patches/series * Apport hook improvements: - Add support for reporting preference defaults that are set by extensions - When reporting preferences, record the source of each preference - Report plugin packages for plugins that are installed with the package manager - Add some addon manager related prefs to the whitelist - Display additional metadata in the extensions report - Take "default-to-compatible" in to account when determining whether the user is running incompatible addons - Attach submitted crash ID's to bug reports - Report if files in the profile folder have broken permissions * Update compare-locales to 0.9.5 * Fix make-makefile test failure when the build directory contains perl regexp control characters - add debian/patches/make-makefile-test-fix.patch - update debian/patches/series * Fix for NSS libs not being signed, breaking FIPS - update debian/rules [ Jamie Strandboge ] * adjust apparmor profile to deny reads to @{PROC}/[0-9]*/net/dev. Patch thanks to James Troup (LP: #955066) * adjust apparmor profile to deny reads to @{PROC}/[0-9]*/net/wireless. Patch thanks to James Troup (LP: #974141) Date: 2012-06-01 17:52:48.738975+00:00 Changed-By: Chris Coulson Signed-By: Micah Gersten https://launchpad.net/ubuntu/lucid/+source/firefox/13.0+build1-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From marc.deslauriers at ubuntu.com Wed Jun 6 13:34:45 2012 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Wed, 06 Jun 2012 13:34:45 -0000 Subject: [ubuntu/lucid-security] ubuntuone-storage-protocol 1.2.0-0ubuntu1.1 (Accepted) Message-ID: <20120606133445.24813.37683.launchpad@cocoplum.canonical.com> ubuntuone-storage-protocol (1.2.0-0ubuntu1.1) lucid-security; urgency=low * SECURITY UPDATE: MITM via incorrect ssl cert validation (LP: #882062) - debian/patches/CVE-2011-4409.patch: validate hostname in ubuntuone/storageprotocol/context.py, add test to tests/test_context.py. - CVE-2011-4409 Date: Tue, 29 May 2012 15:46:00 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/ubuntuone-storage-protocol/1.2.0-0ubuntu1.1 -------------- next part -------------- Format: 1.8 Date: Tue, 29 May 2012 15:46:00 -0400 Source: ubuntuone-storage-protocol Binary: python-ubuntuone-storageprotocol Architecture: source Version: 1.2.0-0ubuntu1.1 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: python-ubuntuone-storageprotocol - Python library for Ubuntu One file storage and sharing service Launchpad-Bugs-Fixed: 882062 Changes: ubuntuone-storage-protocol (1.2.0-0ubuntu1.1) lucid-security; urgency=low . * SECURITY UPDATE: MITM via incorrect ssl cert validation (LP: #882062) - debian/patches/CVE-2011-4409.patch: validate hostname in ubuntuone/storageprotocol/context.py, add test to tests/test_context.py. - CVE-2011-4409 Checksums-Sha1: 858ebe618e0840927d9b9cd65b10098c67cfa842 2112 ubuntuone-storage-protocol_1.2.0-0ubuntu1.1.dsc 60355e58c35093b3c54f58fe30908c62070f2bf2 6152 ubuntuone-storage-protocol_1.2.0-0ubuntu1.1.debian.tar.gz Checksums-Sha256: ec9ae2426ab19ae3874761c855362e85c355a0f03e3c4258cbf20b92063da282 2112 ubuntuone-storage-protocol_1.2.0-0ubuntu1.1.dsc 0b5800034e36532cd1be4806fc7a67e02bbf0a4b6d1579a14da7c755a40e460b 6152 ubuntuone-storage-protocol_1.2.0-0ubuntu1.1.debian.tar.gz Files: 35d1e7671da49159717979079779c52f 2112 python optional ubuntuone-storage-protocol_1.2.0-0ubuntu1.1.dsc 6184ddc8dbcf7d5c608ea130177d27c9 6152 python optional ubuntuone-storage-protocol_1.2.0-0ubuntu1.1.debian.tar.gz Original-Maintainer: Rick McBride From marc.deslauriers at ubuntu.com Wed Jun 6 13:34:57 2012 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Wed, 06 Jun 2012 13:34:57 -0000 Subject: [ubuntu/lucid-security] ubuntuone-client_1.2.2-0ubuntu2.2_ia64_translations.tar.gz, ubuntuone-client_1.2.2-0ubuntu2.2_armel_translations.tar.gz, ubuntuone-client_1.2.2-0ubuntu2.2_powerpc_translations.tar.gz, ubuntuone-client, ubuntuone-client_1.2.2-0ubuntu2.2_sparc_translations.tar.gz, ubuntuone-client_1.2.2-0ubuntu2.2_amd64_translations.tar.gz, ubuntuone-client_1.2.2-0ubuntu2.2_i386_translations.tar.gz 1.2.2-0ubuntu2.2 (Accepted) Message-ID: <20120606133457.24813.87817.launchpad@cocoplum.canonical.com> ubuntuone-client (1.2.2-0ubuntu2.2) lucid-security; urgency=low * SECURITY UPDATE: MITM via incorrect ssl cert validation (LP: #882062) - debian/patches/CVE-2011-4409.patch: use pycurl instead of urllib2 in bin/ubuntuone-preferences, tests/syncdaemon/test_action_queue.py, use pycurl instead of urllib2 and send hostname for validation in ubuntuone/syncdaemon/action_queue.py, use correct URL in data/syncdaemon.conf, correctly verify hostname in ubuntuone/oauthdesktop/auth.py, send hostname for validation in ubuntuone/u1sync/client.py, use pycurl instead of urllib2 in ubuntuone/utils/*, ship utils directory in Makefile.*. - debian/python-ubuntuone-client.install: also ship new utils directory. - debian/control: bump python-ubuntuone-storageprotocol dependency to security update. - debian/control: add python-pycurl dependency. - debian/rules: remove simple-patchsys.mk as this is a quilt package. - CVE-2011-4409 Date: Thu, 31 May 2012 10:47:06 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/ubuntuone-client/1.2.2-0ubuntu2.2 -------------- next part -------------- Format: 1.8 Date: Thu, 31 May 2012 10:47:06 -0400 Source: ubuntuone-client Binary: ubuntuone-client ubuntuone-client-gnome ubuntuone-client-tools python-ubuntuone-client Architecture: source Version: 1.2.2-0ubuntu2.2 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: python-ubuntuone-client - Ubuntu One client Python libraries ubuntuone-client - Ubuntu One client ubuntuone-client-gnome - Ubuntu One client GNOME integration ubuntuone-client-tools - Ubuntu One client tools Launchpad-Bugs-Fixed: 882062 Changes: ubuntuone-client (1.2.2-0ubuntu2.2) lucid-security; urgency=low . * SECURITY UPDATE: MITM via incorrect ssl cert validation (LP: #882062) - debian/patches/CVE-2011-4409.patch: use pycurl instead of urllib2 in bin/ubuntuone-preferences, tests/syncdaemon/test_action_queue.py, use pycurl instead of urllib2 and send hostname for validation in ubuntuone/syncdaemon/action_queue.py, use correct URL in data/syncdaemon.conf, correctly verify hostname in ubuntuone/oauthdesktop/auth.py, send hostname for validation in ubuntuone/u1sync/client.py, use pycurl instead of urllib2 in ubuntuone/utils/*, ship utils directory in Makefile.*. - debian/python-ubuntuone-client.install: also ship new utils directory. - debian/control: bump python-ubuntuone-storageprotocol dependency to security update. - debian/control: add python-pycurl dependency. - debian/rules: remove simple-patchsys.mk as this is a quilt package. - CVE-2011-4409 Checksums-Sha1: 99b0c001ee396c439167cdb64a528ab40e15cbaf 2174 ubuntuone-client_1.2.2-0ubuntu2.2.dsc ea4cd51d405c2ebabf6fa15ec9fef031eadbee6c 19383 ubuntuone-client_1.2.2-0ubuntu2.2.debian.tar.gz Checksums-Sha256: 7b365637a6c70aeabadaa3a58b363801bf7a8f81232fa6ea4df9448402981cc4 2174 ubuntuone-client_1.2.2-0ubuntu2.2.dsc ed97074dadffc7b82d6c5922a3f9565011368a7b5e35002c4d0d139eafc79bc5 19383 ubuntuone-client_1.2.2-0ubuntu2.2.debian.tar.gz Files: 48a1e8c231688b658624ba844a410979 2174 net optional ubuntuone-client_1.2.2-0ubuntu2.2.dsc 17f005993669dcdf4ac22b8e8bc1f381 19383 net optional ubuntuone-client_1.2.2-0ubuntu2.2.debian.tar.gz Original-Maintainer: Rick McBride From marc.deslauriers at ubuntu.com Wed Jun 6 19:33:27 2012 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Wed, 06 Jun 2012 19:33:27 -0000 Subject: [ubuntu/lucid-security] ubuntuone-client_1.2.2-0ubuntu2.3_armel_translations.tar.gz, ubuntuone-client_1.2.2-0ubuntu2.3_i386_translations.tar.gz, ubuntuone-client_1.2.2-0ubuntu2.3_amd64_translations.tar.gz, ubuntuone-client_1.2.2-0ubuntu2.3_sparc_translations.tar.gz, ubuntuone-client, ubuntuone-client_1.2.2-0ubuntu2.3_ia64_translations.tar.gz, ubuntuone-client_1.2.2-0ubuntu2.3_powerpc_translations.tar.gz 1.2.2-0ubuntu2.3 (Accepted) Message-ID: <20120606193327.2334.79541.launchpad@cocoplum.canonical.com> ubuntuone-client (1.2.2-0ubuntu2.3) lucid-security; urgency=low * REGRESSION FIX: Python 2.5 compatibility issue (LP: #1009573) - debian/patches/CVE-2011-4409.patch: use "Exception, e" instead of "Exception as e" for Python 2.5 compatibility. Date: Wed, 06 Jun 2012 13:12:48 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/ubuntuone-client/1.2.2-0ubuntu2.3 -------------- next part -------------- Format: 1.8 Date: Wed, 06 Jun 2012 13:12:48 -0400 Source: ubuntuone-client Binary: ubuntuone-client ubuntuone-client-gnome ubuntuone-client-tools python-ubuntuone-client Architecture: source Version: 1.2.2-0ubuntu2.3 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: python-ubuntuone-client - Ubuntu One client Python libraries ubuntuone-client - Ubuntu One client ubuntuone-client-gnome - Ubuntu One client GNOME integration ubuntuone-client-tools - Ubuntu One client tools Launchpad-Bugs-Fixed: 1009573 Changes: ubuntuone-client (1.2.2-0ubuntu2.3) lucid-security; urgency=low . * REGRESSION FIX: Python 2.5 compatibility issue (LP: #1009573) - debian/patches/CVE-2011-4409.patch: use "Exception, e" instead of "Exception as e" for Python 2.5 compatibility. Checksums-Sha1: cb107622b4c36c9f113342d5758587f78ba765a1 2174 ubuntuone-client_1.2.2-0ubuntu2.3.dsc 3858f368af57d1ad40751fe3250086654172d904 19462 ubuntuone-client_1.2.2-0ubuntu2.3.debian.tar.gz Checksums-Sha256: 4b9b0767ad0fc9020a3f912689f18e0917aa4e5f05fd3923a65969f10d767df6 2174 ubuntuone-client_1.2.2-0ubuntu2.3.dsc 47012c169d7ce529926601859ceeb35770c822bd7d0ea3c92c4203f63f6597cb 19462 ubuntuone-client_1.2.2-0ubuntu2.3.debian.tar.gz Files: e7b3711a83c7922325d40488db4fca51 2174 net optional ubuntuone-client_1.2.2-0ubuntu2.3.dsc 23e1312b1991e178dc5f9b15bc28b5be 19462 net optional ubuntuone-client_1.2.2-0ubuntu2.3.debian.tar.gz Original-Maintainer: Rick McBride From cjwatson at canonical.com Thu Jun 7 10:11:21 2012 From: cjwatson at canonical.com (Colin Watson) Date: Thu, 07 Jun 2012 10:11:21 -0000 Subject: [ubuntu/lucid-updates] drbd8 2:8.3.7-1ubuntu2.3 (Accepted) Message-ID: <20120607101121.13538.97378.launchpad@ackee.canonical.com> drbd8 (2:8.3.7-1ubuntu2.3) lucid-proposed; urgency=low * debian/patches/usermodehelper-consistently.dpatch: - upstream commit e6cbc43 - usermodehelper: use UMH_WAIT_PROC consistently - (LP: #1000355) Date: 2012-05-17 15:35:12.818189+00:00 Changed-By: Ante Karamatić Signed-By: Colin Watson https://launchpad.net/ubuntu/lucid/+source/drbd8/2:8.3.7-1ubuntu2.3 -------------- next part -------------- Sorry, changesfile not available. From cjwatson at canonical.com Fri Jun 8 11:13:14 2012 From: cjwatson at canonical.com (Colin Watson) Date: Fri, 08 Jun 2012 11:13:14 -0000 Subject: [ubuntu/lucid-updates] pastebinit 1.1-1ubuntu0.1 (Accepted) Message-ID: <20120608111314.1672.29819.launchpad@ackee.canonical.com> pastebinit (1.1-1ubuntu0.1) lucid-proposed; urgency=low * Cherry-pick new pastebin.com.conf file from pastebinit 1.3.1, this switches to the new pastebin.com API (now mandatory) (LP: #996242) Date: 2012-05-30 14:20:13.045656+00:00 Changed-By: Stéphane Graber Signed-By: Colin Watson https://launchpad.net/ubuntu/lucid/+source/pastebinit/1.1-1ubuntu0.1 -------------- next part -------------- Sorry, changesfile not available. From jamie at ubuntu.com Fri Jun 8 21:33:35 2012 From: jamie at ubuntu.com (Jamie Strandboge) Date: Fri, 08 Jun 2012 21:33:35 -0000 Subject: [ubuntu/lucid-security] flashplugin-nonfree, flashplugin-nonfree_11.2.202.236ubuntu0.10.04.1_amd64_translations.tar.gz, flashplugin-nonfree_11.2.202.236ubuntu0.10.04.1_i386_translations.tar.gz 11.2.202.236ubuntu0.10.04.1 (Accepted) Message-ID: <20120608213335.29868.7266.launchpad@cocoplum.canonical.com> flashplugin-nonfree (11.2.202.236ubuntu0.10.04.1) lucid-security; urgency=low * New upstream release 11.2.202.236 - debian/{config,postinst.in}: Updated version and sha256sum. Date: Fri, 08 Jun 2012 14:42:51 -0500 Changed-By: Jamie Strandboge Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/flashplugin-nonfree/11.2.202.236ubuntu0.10.04.1 -------------- next part -------------- Format: 1.8 Date: Fri, 08 Jun 2012 14:42:51 -0500 Source: flashplugin-nonfree Binary: flashplugin-installer flashplugin-nonfree Architecture: source Version: 11.2.202.236ubuntu0.10.04.1 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Jamie Strandboge Description: flashplugin-installer - Adobe Flash Player plugin installer flashplugin-nonfree - Adobe Flash Player plugin installer (transitional package) Changes: flashplugin-nonfree (11.2.202.236ubuntu0.10.04.1) lucid-security; urgency=low . * New upstream release 11.2.202.236 - debian/{config,postinst.in}: Updated version and sha256sum. Checksums-Sha1: b61bb20fa49084746cf3f9ac56fbf89a18f75cb3 1649 flashplugin-nonfree_11.2.202.236ubuntu0.10.04.1.dsc a2919ff51734c74c7b4f29938b6a520092c83950 27201 flashplugin-nonfree_11.2.202.236ubuntu0.10.04.1.tar.gz Checksums-Sha256: 8d484845fd5aff8f240961f0ccf8fc1d5198de7fc7370b38c0b03d817399776d 1649 flashplugin-nonfree_11.2.202.236ubuntu0.10.04.1.dsc a70d3227b8d9e6a38f5e609cb718a66bc1210a76937e09a53d075c828cdf1ac4 27201 flashplugin-nonfree_11.2.202.236ubuntu0.10.04.1.tar.gz Files: 93fecf3a86d6d6dd8221aacfc4ed2b84 1649 contrib/web optional flashplugin-nonfree_11.2.202.236ubuntu0.10.04.1.dsc a79255917fc6fb6c04c84f73dbe4f125 27201 contrib/web optional flashplugin-nonfree_11.2.202.236ubuntu0.10.04.1.tar.gz Original-Maintainer: Bart Martens From chris.coulson at canonical.com Mon Jun 11 19:43:23 2012 From: chris.coulson at canonical.com (Chris Coulson) Date: Mon, 11 Jun 2012 19:43:23 -0000 Subject: [ubuntu/lucid] adobe-flashplugin 11.2.202.236-0lucid1 (Accepted) Message-ID: <20120611194323.28135.18974.launchpad@cocoplum.canonical.com> adobe-flashplugin (11.2.202.236-0lucid1) lucid; urgency=low * New upstream release Date: Fri, 08 Jun 2012 19:48:30 +0100 Changed-By: Chris Coulson Maintainer: DL-Flash Player Ubuntu https://launchpad.net/ubuntu/lucid/+source/adobe-flashplugin/11.2.202.236-0lucid1 -------------- next part -------------- Format: 1.8 Date: Fri, 08 Jun 2012 19:48:30 +0100 Source: adobe-flashplugin Binary: adobe-flashplugin adobe-flash-properties-gtk adobe-flash-properties-kde Architecture: source Version: 11.2.202.236-0lucid1 Distribution: lucid Urgency: low Maintainer: DL-Flash Player Ubuntu Changed-By: Chris Coulson Description: adobe-flash-properties-gtk - GTK+ control panel for Adobe Flash Player plugin version 11 adobe-flash-properties-kde - KDE control panel Adobe Flash Player plugin version 11 adobe-flashplugin - Adobe Flash Player plugin version 11 Changes: adobe-flashplugin (11.2.202.236-0lucid1) lucid; urgency=low . * New upstream release Checksums-Sha1: 743e7bf9602339ba337ca1b4bd315f647f242697 1731 adobe-flashplugin_11.2.202.236-0lucid1.dsc 9345e32f6c80f839b1e56ef29a0f97e44cab9297 5096 adobe-flashplugin_11.2.202.236-0lucid1.diff.gz Checksums-Sha256: df52dcaba6d1d9425e0241d16eda895eaf7099b3beb3b774bdebd1d37c7d1eb2 1731 adobe-flashplugin_11.2.202.236-0lucid1.dsc 6badc4ff4b66dcb6dffa3f47ebf432736e68427b00880278cf38b993b537f11a 5096 adobe-flashplugin_11.2.202.236-0lucid1.diff.gz Files: 9088a943c1904f6e0a32aabd8c80050d 1731 partner/web optional adobe-flashplugin_11.2.202.236-0lucid1.dsc a49a27fec480a5e58a96695c1bd6bb29 5096 partner/web optional adobe-flashplugin_11.2.202.236-0lucid1.diff.gz From marc.deslauriers at ubuntu.com Mon Jun 11 21:06:28 2012 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Mon, 11 Jun 2012 21:06:28 -0000 Subject: [ubuntu/lucid-security] mysql-dfsg-5.1_5.1.63-0ubuntu0.10.04.1_i386_translations.tar.gz, mysql-dfsg-5.1, mysql-dfsg-5.1_5.1.63-0ubuntu0.10.04.1_amd64_translations.tar.gz, mysql-dfsg-5.1_5.1.63-0ubuntu0.10.04.1_armel_translations.tar.gz, mysql-dfsg-5.1_5.1.63-0ubuntu0.10.04.1_powerpc_translations.tar.gz, mysql-dfsg-5.1_5.1.63-0ubuntu0.10.04.1_sparc_translations.tar.gz 5.1.63-0ubuntu0.10.04.1 (Accepted) Message-ID: <20120611210628.17318.80808.launchpad@cocoplum.canonical.com> mysql-dfsg-5.1 (5.1.63-0ubuntu0.10.04.1) lucid-security; urgency=low * SECURITY UPDATE: Update to 5.1.63 to fix security issues (LP: #1011371) - http://dev.mysql.com/doc/refman/5.1/en/news-5-1-63.html Date: Mon, 11 Jun 2012 07:27:41 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/mysql-dfsg-5.1/5.1.63-0ubuntu0.10.04.1 -------------- next part -------------- Format: 1.8 Date: Mon, 11 Jun 2012 07:27:41 -0400 Source: mysql-dfsg-5.1 Binary: libmysqlclient16 libmysqlclient16-dev libmysqld-pic libmysqld-dev libmysqlclient-dev mysql-common mysql-client-core-5.1 mysql-client-5.1 mysql-server-core-5.1 mysql-server-5.1 mysql-server mysql-client mysql-testsuite Architecture: source Version: 5.1.63-0ubuntu0.10.04.1 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: libmysqlclient-dev - MySQL database development files libmysqlclient16 - MySQL database client library libmysqlclient16-dev - MySQL database development files - empty transitional package libmysqld-dev - MySQL embedded database development files libmysqld-pic - MySQL database development files mysql-client - MySQL database client (metapackage depending on the latest versio mysql-client-5.1 - MySQL database client binaries mysql-client-core-5.1 - MySQL database core client binaries mysql-common - MySQL database common files (e.g. /etc/mysql/my.cnf) mysql-server - MySQL database server (metapackage depending on the latest versio mysql-server-5.1 - MySQL database server binaries mysql-server-core-5.1 - MySQL database core server files mysql-testsuite - MySQL testsuite Launchpad-Bugs-Fixed: 1011371 Changes: mysql-dfsg-5.1 (5.1.63-0ubuntu0.10.04.1) lucid-security; urgency=low . * SECURITY UPDATE: Update to 5.1.63 to fix security issues (LP: #1011371) - http://dev.mysql.com/doc/refman/5.1/en/news-5-1-63.html Checksums-Sha1: 03ece24cc455095eb756ca79ddcda9f977e189e9 2597 mysql-dfsg-5.1_5.1.63-0ubuntu0.10.04.1.dsc fd6f794d715cf07c6e0253b6980f46855fcc3582 21490526 mysql-dfsg-5.1_5.1.63.orig.tar.gz a62172af8e1e6f79de428da1967ef96313adc662 294655 mysql-dfsg-5.1_5.1.63-0ubuntu0.10.04.1.diff.gz Checksums-Sha256: 0a895b18f94655d0aa72682f812776e5a9d93a90b137ddf28036332f95cc8e12 2597 mysql-dfsg-5.1_5.1.63-0ubuntu0.10.04.1.dsc e2291de29610e1157414fe2d3e3f93b227744780899f3539c84d883851248807 21490526 mysql-dfsg-5.1_5.1.63.orig.tar.gz f963d35bc76977ec280033713466c4133bd015f3bb2e64c2062dadf038d7a212 294655 mysql-dfsg-5.1_5.1.63-0ubuntu0.10.04.1.diff.gz Files: 349c3f76c84f0d769eaa93be18fa8610 2597 database optional mysql-dfsg-5.1_5.1.63-0ubuntu0.10.04.1.dsc c9c33160853a8f8e3d11d144ff9de646 21490526 database optional mysql-dfsg-5.1_5.1.63.orig.tar.gz 9f141fa9dc81d1f9166363a50ee5ccc5 294655 database optional mysql-dfsg-5.1_5.1.63-0ubuntu0.10.04.1.diff.gz Original-Maintainer: Debian MySQL Maintainers From adconrad at 0c3.net Tue Jun 12 14:45:44 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 12 Jun 2012 14:45:44 -0000 Subject: [ubuntu/lucid-updates] linux-lts-backport-oneiric 3.0.0-21.35~lucid1 (Accepted) Message-ID: <20120612144544.19467.80916.launchpad@ackee.canonical.com> linux-lts-backport-oneiric (3.0.0-21.35~lucid1) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1005456 [ Andy Whitcroft ] * [Config] control.stub is an intermediate product not a dependancy - LP: #992414 [ Herton Ronaldo Krzesinski ] * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 [ Tim Gardner ] * Revert "SAUCE: ite-cir: postpone ISR registration" - LP: #1002880 * [Config] perarch and indep tools builds need separate build directories [ Upstream Kernel Changes ] * Revert "autofs: work around unhappy compat problem on x86-64" - LP: #996109 * Revert "usb: Fix build error due to dma_mask is not at pdev_archdata at ARM" - LP: #996109 * KVM: unmap pages from the iommu when slots are removed - LP: #987569 - CVE-2012-2121 * NFSv4: include bitmap in nfsv4 get acl data - LP: #893147 - CVE-2011-4131 * hugepages: fix use after free bug in "quota" handling - LP: #990368 - CVE-2012-2133 * nfs: Enclose hostname in brackets when needed in nfs_do_root_mount - LP: #996109 * NFSv4: Ensure that the LOCK code sets exception->inode - LP: #996109 * NFSv4: Ensure that we check lock exclusive/shared type against open modes - LP: #996109 * x86, apic: APIC code touches invalid MSR on P5 class machines - LP: #996109 * xen: correctly check for pending events when restoring irq flags - LP: #996109 * xen/smp: Fix crash when booting with ACPI hotplug CPUs. - LP: #996109 * ASoC: dapm: Ensure power gets managed for line widgets - LP: #996109 * dmaengine: at_hdmac: remove clear-on-read in atc_dostart() - LP: #996109 * hwmon: fam15h_power: fix bogus values with current BIOSes - LP: #996109 * hwmon: (fam15h_power) Fix pci_device_id array - LP: #996109 * drm/i915: handle input/output sdvo timings separately in mode_set - LP: #996109 * drm/i915: fix integer overflow in i915_gem_execbuffer2() - LP: #996109 * drm/i915: fix integer overflow in i915_gem_do_execbuffer() - LP: #996109 * nl80211: ensure interface is up in various APIs - LP: #996109 * EHCI: fix criterion for resuming the root hub - LP: #996109 * brcm80211: smac: resume transmit fifo upon receiving frames - LP: #996109 * Fix modpost failures in fedora 17 - LP: #996109 * mmc: unbreak sdhci-esdhc-imx on i.MX25 - LP: #996109 * nfsd: fix b0rken error value for setattr on read-only mount - LP: #996109 * nfsd: fix error values returned by nfsd4_lockt() when nfsd_open() fails - LP: #996109 * USB: cdc-wdm: fix race leading leading to memory corruption - LP: #996109 * USB: EHCI: fix crash during suspend on ASUS computers - LP: #996109 * USB: gadget: storage gadgets send wrong error code for unknown commands - LP: #996109 * usb gadget: uvc: uvc_request_data::length field must be signed - LP: #996109 * pipes: add a "packetized pipe" mode for writing - LP: #996109 * autofs: make the autofsv5 packet file descriptor use a packetized pipe - LP: #996109 * ARM: 7403/1: tls: remove covert channel via TPIDRURW - LP: #996109 * SCSI: libsas: fix sas_find_bcast_phy() in the presence of 'vacant' phys - LP: #996109 * SCSI: libsas: fix false positive 'device attached' conditions - LP: #996109 * efi: Add new variable attributes - LP: #996109 * efivars: String functions - LP: #996109 * efivars: fix warnings when CONFIG_PSTORE=n - LP: #996109 * efi: Validate UEFI boot variables - LP: #996109 * efivars: Improve variable validation - LP: #996109 * hwmon: (coretemp) Increase CPU core limit - LP: #996109 * hwmon: (coretemp) fix oops on cpu unplug - LP: #996109 * libata: skip old error history when counting probe trials - LP: #996109 * i2c: pnx: Disable clk in suspend - LP: #996109 * ipw2200: Fix race condition in the command completion acknowledge - LP: #996109 * mac80211: fix AP mode EAP tx for VLAN stations - LP: #996109 * rtlwifi: Fix oops on unload - LP: #996109 * wl1251: fix crash on remove due to premature kfree - LP: #996109 * wl1251: fix crash on remove due to leftover work item - LP: #996109 * sched: Fix nohz load accounting -- again! - LP: #996109 * hfsplus: Fix potential buffer overflows - LP: #996109 * Linux 3.0.31 - LP: #996109 * smsc95xx: mark link down on startup and let PHY interrupt deal with carrier changes - LP: #1002880 * xen/pte: Fix crashes when trying to see non-existent PGD/PMD/PUD/PTEs - LP: #1002880 * xen/pci: don't use PCI BIOS service for configuration space accesses - LP: #1002880 * percpu, x86: don't use PMD_SIZE as embedded atom_size on 32bit - LP: #1002880 * asm-generic: Use __BITS_PER_LONG in statfs.h - LP: #1002880 * Fix __read_seqcount_begin() to use ACCESS_ONCE for sequence value read - LP: #1002880 * ARM: 7410/1: Add extra clobber registers for assembly in kernel_execve - LP: #1002880 * ARM: 7414/1: SMP: prevent use of the console when using idmap_pgd - LP: #1002880 * regulator: Fix the logic to ensure new voltage setting in valid range - LP: #1002880 * ARM: orion5x: Fix GPIO enable bits for MPP9 - LP: #1002880 * asix: Fix tx transfer padding for full-speed USB - LP: #1002880 * netem: fix possible skb leak - LP: #1002880 * net: In unregister_netdevice_notifier unregister the netdevices. - LP: #1002880 * net: l2tp: unlock socket lock before returning from l2tp_ip_sendmsg - LP: #1002880 * sky2: propogate rx hash when packet is copied - LP: #1002880 * sky2: fix receive length error in mixed non-VLAN/VLAN traffic - LP: #1002880 * tg3: Avoid panic from reserved statblk field access - LP: #1002880 * sungem: Fix WakeOnLan - LP: #1002880 * tcp: change tcp_adv_win_scale and tcp_rmem[2] - LP: #1002880 * sony-laptop: Enable keyboard backlight by default - LP: #1002880 * ALSA: echoaudio: Remove incorrect part of assertion - LP: #1002880 * ALSA: HDA: Lessen CPU usage when waiting for chip to respond - LP: #1002880 * usbnet: fix skb traversing races during unlink(v2) - LP: #1002880 * namespaces, pid_ns: fix leakage on fork() failure - LP: #1002880 * sparc64: Do not clobber %g2 in xcall_fetch_glob_regs(). - LP: #1002880 * ARM: prevent VM_GROWSDOWN mmaps extending below FIRST_USER_ADDRESS - LP: #1002880 * media: rc: Postpone ISR registration - LP: #1002880 * cdc_ether: Ignore bogus union descriptor for RNDIS devices - LP: #1002880 * cdc_ether: add Novatel USB551L device IDs for FLAG_WWAN - LP: #1002880 * percpu: pcpu_embed_first_chunk() should free unused parts after all allocs are complete - LP: #1002880 * hugetlb: prevent BUG_ON in hugetlb_fault() -> hugetlb_cow() - LP: #1002880 * mm: nobootmem: fix sign extend problem in __free_pages_memory() - LP: #1002880 * jffs2: Fix lock acquisition order bug in gc path - LP: #1002880 * arch/tile: apply commit 74fca9da0 to the compat signal handling as well - LP: #1002880 * crypto: mv_cesa requires on CRYPTO_HASH to build - LP: #1002880 * MD: Add del_timer_sync to mddev_suspend (fix nasty panic) - LP: #1002880 * tcp: do_tcp_sendpages() must try to push data out on oom conditions - LP: #1002880 * init: don't try mounting device as nfs root unless type fully matches - LP: #1002880 * ext4: avoid deadlock on sync-mounted FS w/o journal - LP: #1002880 * NFSv4: Revalidate uid/gid after open - LP: #1002880 * memcg: free spare array to avoid memory leak - LP: #1002880 * compat: Fix RT signal mask corruption via sigprocmask - LP: #1002880 * ext3: Fix error handling on inode bitmap corruption - LP: #1002880 * ext4: fix error handling on inode bitmap corruption - LP: #1002880 * ACPI / PM: Add Sony Vaio VPCCW29FX to nonvs blacklist. - LP: #1002880 * SCSI: hpsa: Add IRQF_SHARED back in for the non-MSI(X) interrupt handler - LP: #1002880 * wake up s_wait_unfrozen when ->freeze_fs fails - LP: #1002880 * pch_gpio: Support new device LAPIS Semiconductor ML7831 IOH - LP: #1002880 * pch_gbe: fixed the issue which receives an unnecessary packet. - LP: #1002880 * pch_gbe: support ML7831 IOH - LP: #1002880 * pch_gbe: Fixed the issue on which PC was frozen when link was downed. - LP: #1002880 * pch_gbe: Do not abort probe on bad MAC - LP: #1002880 * pch_gbe: memory corruption calling pch_gbe_validate_option() - LP: #1002880 * ia64: Add accept4() syscall - LP: #1002880 * Linux 3.0.32 - LP: #1002880 * dl2k: Clean up rio_ioctl - CVE-2012-2313 linux (3.0.0-20.34) oneiric-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #992497 [ Herton Ronaldo Krzesinski ] * linux: add Build-Depends for libnewt-dev, to enable perf TUI support - LP: #981717 [ Manoj Iyer ] * SAUCE: Bluetooth: btusb: Add vendor specific ID (0489 e042) for BCM20702A0 - LP: #980965 [ Tim Gardner ] * [Config] Fix invalid linux-headers link - LP: #974403 * Remove headers asm symlink entirely - LP: #974403 [ Upstream Kernel Changes ] * Revert "x86/ioapic: Add register level checks to detect bogus io-apic entries" - LP: #983326 * drm/i915: Fixes distorted external screen image on HP 2730p - LP: #796030 * x86 bpf_jit: fix a bug in emitting the 16-bit immediate operand of AND - LP: #983326 * rose_dev: fix memcpy-bug in rose_set_mac_address - LP: #983326 * net: usb: cdc_eem: fix mtu - LP: #983326 * mtd: sst25l: initialize writebufsize - LP: #983326 * mtd: block2mtd: initialize writebufsize - LP: #983326 * mtd: lart: initialize writebufsize - LP: #983326 * mtd: m25p80: set writebufsize - LP: #983326 * ACPI: Do cpufreq clamping for throttling per package v2 - LP: #983326 * PNPACPI: Fix device ref leaking in acpi_pnp_match - LP: #983326 * modpost: fix ALL_INIT_DATA_SECTIONS - LP: #983326 * genirq: Adjust irq thread affinity on IRQ_SET_MASK_OK_NOCOPY return value - LP: #983326 * tracing: Fix ftrace stack trace entries - LP: #983326 * m68k/mac: Add missing platform check before registering platform devices - LP: #983326 * mac80211: fix possible tid_rx->reorder_timer use after free - LP: #983326 * drm: Validate requested virtual size against allocated fb size - LP: #983326 * drm/radeon/kms: fix fans after resume - LP: #983326 * drm/i915: no-lvds quirk on MSI DC500 - LP: #983326 * drm/i915: Sanitize BIOS debugging bits from PIPECONF - LP: #983326 * drm/i915: Add lock on drm_helper_resume_force_mode - LP: #983326 * drm/i915: quirk away broken OpRegion VBT - LP: #983326 * kgdb,debug_core: pass the breakpoint struct instead of address and memory - LP: #983326 * kgdbts: Fix kernel oops with CONFIG_DEBUG_RODATA - LP: #983326 * kgdbts: (1 of 2) fix single step awareness to work correctly with SMP - LP: #983326 * kgdbts: (2 of 2) fix single step awareness to work correctly with SMP - LP: #983326 * x86,kgdb: Fix DEBUG_RODATA limitation using text_poke() - LP: #983326 * mmc: atmel-mci: correct data timeout computation - LP: #983326 * sysctl: fix write access to dmesg_restrict/kptr_restrict - LP: #983326 * modpost: Fix modpost's license checking V3 - LP: #983326 * modpost: Fix modpost license checking of vmlinux.o - LP: #983326 * x86/PCI: use host bridge _CRS info on MSI MS-7253 - LP: #983326 * x86/PCI: do not tie MSI MS-7253 use_crs quirk to BIOS version - LP: #983326 * acer-wmi: No wifi rfkill on Sony machines - LP: #983326 * sched/x86: Fix overflow in cyc2ns_offset - LP: #983326 * mfd: Clear twl6030 IRQ status register only once - LP: #983326 * USB: Add Motorola Rokr E6 Id to the USBNet driver "zaurus" - LP: #983326 * ASoC: ak4642: fixup: mute needs +1 step - LP: #983326 * cred: copy_process() should clear child->replacement_session_keyring - LP: #983326 * iommu/amd: Make sure IOMMU interrupts are re-enabled on resume - LP: #983326 * TOMOYO: Fix mount flags checking order. - LP: #983326 * Linux 3.0.28 - LP: #983326 * drm/i915/ringbuffer: Exclude last 2 cachlines of ring on 845g - LP: #987283 * drm/radeon: only add the mm i2c bus if the hw_i2c module param is set - LP: #987283 * rtlwifi: Add missing DMA buffer unmapping for PCI drivers - LP: #987283 * ARM: 7384/1: ThumbEE: Disable userspace TEEHBR access for !CONFIG_ARM_THUMBEE - LP: #987283 * Bluetooth: uart-ldisc: Fix memory leak - LP: #987283 * Bluetooth: hci_ldisc: fix NULL-pointer dereference on tty_close - LP: #987283 * ia64: fix futex_atomic_cmpxchg_inatomic() - LP: #987283 * drivers/rtc/rtc-pl031.c: enable clock on all ST variants - LP: #987283 * hugetlb: fix race condition in hugetlb_fault() - LP: #987283 * staging: iio: hmc5843: Fix crash in probe function. - LP: #987283 * tty: serial: altera_uart: Check for NULL platform_data in probe. - LP: #987283 * sparc64: Eliminate obsolete __handle_softirq() function - LP: #987283 * sparc64: Fix bootup crash on sun4v. - LP: #987283 * cciss: Initialize scsi host max_sectors for tape drive support - LP: #987283 * cciss: Fix scsi tape io with more than 255 scatter gather elements - LP: #987283 * perf hists: Catch and handle out-of-date hist entry maps. - LP: #987283 * video:uvesafb: Fix oops that uvesafb try to execute NX-protected page - LP: #987283 * nohz: Fix stale jiffies update in tick_nohz_restart() - LP: #987283 * USB: serial: fix race between probe and open - LP: #987283 * USB: pl2303: fix DTR/RTS being raised on baud rate change - LP: #987283 * USB: option: re-add NOVATELWIRELESS_PRODUCT_HSPA_HIGHSPEED to option_id array - LP: #987283 * USB: sierra: add support for Sierra Wireless MC7710 - LP: #987283 * USB: don't clear urb->dev in scatter-gather library - LP: #987283 * xhci: don't re-enable IE constantly - LP: #987283 * xhci: Don't write zeroed pointers to xHC registers. - LP: #987283 * xhci: Restore event ring dequeue pointer on resume. - LP: #987283 * xHCI: Correct the #define XHCI_LEGACY_DISABLE_SMI - LP: #987283 * xHCI: add XHCI_RESET_ON_RESUME quirk for VIA xHCI host - LP: #987283 * serial: PL011: clear pending interrupts - LP: #987283 * serial: PL011: move interrupt clearing - LP: #987283 * fcaps: clear the same personality flags as suid when fcaps are used - LP: #987283 * ath9k: fix max noise floor threshold - LP: #987283 * xhci: Fix register save/restore order. - LP: #987283 * Bluetooth: hci_core: fix NULL-pointer dereference at unregister - LP: #987283 * pch_phub: Fix register miss-setting issue - LP: #987283 * pch_phub: Care FUNCSEL register in PM - LP: #987283 * pch_phub: Improve ADE(Address Decode Enable) control - LP: #987283 * usb: gadget: pch_udc: Fix disconnect issue - LP: #987283 * usb: gadget: pch_udc: Fix wrong return value - LP: #987283 * usb: gadget: pch_udc: Fix USB suspend issue - LP: #987283 * usb: gadget: pch_udc: Fix usb/gadget/pch_udc: Fix ether gadget connect/disconnect issue - LP: #987283 * usb: gadget: pch_udc: Reduce redundant interrupt - LP: #987283 * USB: pch_udc: Support new device LAPIS Semiconductor ML7831 IOH - LP: #987283 * ACPICA: Fix to allow region arguments to reference other scopes - LP: #987283 * security: fix compile error in commoncap.c - LP: #987283 * pch_uart: Set PCIe bus number using probe parameter - LP: #987283 * 8250_pci: Fix kernel panic when pch_uart is disabled - LP: #987283 * pch_dma: fix DMA issue(ch8-ch11) - LP: #987283 * pch_dma: Fix channel locking - LP: #987283 * pch_dma: Fix CTL register access issue - LP: #987283 * pch_dma: Fix suspend issue - LP: #987283 * pch_dma: Support new device LAPIS Semiconductor ML7831 IOH - LP: #987283 * md/bitmap: prevent bitmap_daemon_work running while initialising bitmap - LP: #987283 * Bluetooth: Adding USB device 13d3:3375 as an Atheros AR3012. - LP: #987283 * Bluetooth: Add Atheros maryann PIDVID support - LP: #987283 * futex: Do not leak robust list to unprivileged process - LP: #987283 * drm/radeon/kms: fix the regression of DVI connector check - LP: #987283 * drm/radeon: disable MSI on RV515 - LP: #987283 * drm/radeon: fix load detect on rn50 with hardcoded EDIDs. - LP: #987283 * S390: fix tlb flushing for page table pages - LP: #987283 * Linux 3.0.29 - LP: #987283 * KVM: Clean up error handling during VCPU creation - LP: #971685 - CVE-2012-1601 * KVM: Ensure all vcpus are consistent with in-kernel irqchip settings - LP: #971685 - CVE-2012-1601 * UAS: Re-add workqueue items if submission fails. - LP: #901215 * UAS: Use unique tags on non-streams devices. - LP: #901215 * UAS: Free status URB when we can't find the SCSI tag. - LP: #901215 * usb/uas: use unique tags for all LUNs - LP: #901215 * usb/uas: use scsi_host_find_tag() to find command from a tag - LP: #901215 * usb/uas: one only one status URB/host on stream-less connection - LP: #901215 * usb/uas: only bind if the hcd supports SG - LP: #901215 * usb/uas: move UAS structs / defines into a header file - LP: #901215 * usb/uas: add usb_pipe_usage_descriptor - LP: #901215 * usb/uas: make sure data urb is gone if we receive status before that - LP: #901215 * crypto: sha512 - Fix byte counter overflow in SHA-512 - LP: #990544 * ALSA: hda/conexant - Don't set HP pin-control bit unconditionally - LP: #990544 * ARM: clps711x: serial driver hungs are a result of call disable_irq within ISR - LP: #990544 * xen/gntdev: do not set VM_PFNMAP - LP: #990544 * xen/xenbus: Add quirk to deal with misconfigured backends. - LP: #990544 * USB: yurex: Remove allocation of coherent buffer for setup-packet buffer - LP: #990544 * USB: yurex: Fix missing URB_NO_TRANSFER_DMA_MAP flag in urb - LP: #990544 * uwb: fix use of del_timer_sync() in interrupt - LP: #990544 * uwb: fix error handling - LP: #990544 * davinci_mdio: Fix MDIO timeout check - LP: #990544 * media: rc-core: set mode for winbond-cir - LP: #990544 * cfg80211: fix interface combinations check. - LP: #990544 * mm: fix s390 BUG by __set_page_dirty_no_writeback on swap - LP: #990544 * jbd2: use GFP_NOFS for blkdev_issue_flush - LP: #990544 * USB: serial: cp210x: Fixed usb_control_msg timeout values - LP: #990544 * pch_uart: Fix dma channel unallocated issue - LP: #990544 * drivers/tty/amiserial.c: add missing tty_unlock - LP: #990544 * USB: sierra: avoid QMI/wwan interface on MC77xx - LP: #990544 * EHCI: always clear the STS_FLR status bit - LP: #990544 * USB: fix deadlock in bConfigurationValue attribute method - LP: #990544 * usb: gadget: eliminate NULL pointer dereference (bugfix) - LP: #990544 * usb: musb: omap: fix crash when musb glue (omap) gets initialized - LP: #990544 * usb: musb: omap: fix the error check for pm_runtime_get_sync - LP: #990544 * PCI: Add quirk for still enabled interrupts on Intel Sandy Bridge GPUs - LP: #990544 * ext4: fix endianness breakage in ext4_split_extent_at() - LP: #990544 * Bluetooth: Add support for Atheros [04ca:3005] - LP: #990544 * Don't limit non-nested epoll paths - LP: #990544 * spi: Fix device unregistration when unregistering the bus master - LP: #990544 * rt2x00: Properly identify rt2800usb devices. - LP: #990544 * rt2800usb: Add new device ID for Belkin - LP: #990544 * rt2x00: Add USB device ID of Buffalo WLI-UC-GNHP. - LP: #990544 * rt2800: Add support for the Fujitsu Stylistic Q550 - LP: #990544 * rt2x00: Identify rt2800usb chipsets. - LP: #990544 * nfsd: fix compose_entry_fh() failure exits - LP: #990544 * btrfs: btrfs_root_readonly() broken on big-endian - LP: #990544 * ocfs2: ->l_next_free_req breakage on big-endian - LP: #990544 * ocfs: ->rl_used breakage on big-endian - LP: #990544 * ocfs2: ->rl_count endianness breakage - LP: #990544 * ocfs2: ->e_leaf_clusters endianness breakage - LP: #990544 * lockd: fix the endianness bug - LP: #990544 * ppp: Don't stop and restart queue on every TX packet - LP: #990544 * tcp: allow splice() to build full TSO packets - LP: #990544 * sctp: Allow struct sctp_event_subscribe to grow without breaking binaries - LP: #990544 * bridge: Do not send queries on multicast group leaves - LP: #990544 * ipv6: fix array index in ip6_mc_add_src() - LP: #990544 * phonet: Check input from user before allocating - LP: #990544 * bonding: properly unset current_arp_slave on slave link up - LP: #990544 * wimax: i2400m - prevent a possible kernel bug due to missing fw_name string - LP: #990544 * netlink: fix races after skb queueing - LP: #990544 * net: fix a race in sock_queue_err_skb() - LP: #990544 * tcp: fix tcp_rcv_rtt_update() use of an unscaled RTT sample - LP: #990544 * atl1: fix kernel panic in case of DMA errors - LP: #990544 * 8139cp: set intr mask after its handler is registered - LP: #990544 * net: smsc911x: fix skb handling in receive path - LP: #990544 * net/ethernet: ks8851_mll fix rx frame buffer overflow - LP: #990544 * net_sched: gred: Fix oops in gred_dump() in WRED mode - LP: #990544 * net: usb: smsc75xx: fix mtu - LP: #990544 * dummy: Add ndo_uninit(). - LP: #990544 * tcp: fix tcp_grow_window() for large incoming frames - LP: #990544 * netns: do not leak net_generic data on failed init - LP: #990544 * ksz884x: don't copy too much in netdev_set_mac_address() - LP: #990544 * net ax25: Reorder ax25_exit to remove races. - LP: #990544 * tcp: fix TCP_MAXSEG for established IPv6 passive sockets - LP: #990544 * Linux 3.0.30 - LP: #990544 Date: 2012-05-28 13:31:02.709245+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-lts-backport-oneiric/3.0.0-21.35~lucid1 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Tue Jun 12 14:45:56 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 12 Jun 2012 14:45:56 -0000 Subject: [ubuntu/lucid-security] linux-lts-backport-oneiric 3.0.0-21.35~lucid1 (Accepted) Message-ID: <20120612144556.19467.53056.launchpad@ackee.canonical.com> linux-lts-backport-oneiric (3.0.0-21.35~lucid1) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1005456 [ Andy Whitcroft ] * [Config] control.stub is an intermediate product not a dependancy - LP: #992414 [ Herton Ronaldo Krzesinski ] * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 [ Tim Gardner ] * Revert "SAUCE: ite-cir: postpone ISR registration" - LP: #1002880 * [Config] perarch and indep tools builds need separate build directories [ Upstream Kernel Changes ] * Revert "autofs: work around unhappy compat problem on x86-64" - LP: #996109 * Revert "usb: Fix build error due to dma_mask is not at pdev_archdata at ARM" - LP: #996109 * KVM: unmap pages from the iommu when slots are removed - LP: #987569 - CVE-2012-2121 * NFSv4: include bitmap in nfsv4 get acl data - LP: #893147 - CVE-2011-4131 * hugepages: fix use after free bug in "quota" handling - LP: #990368 - CVE-2012-2133 * nfs: Enclose hostname in brackets when needed in nfs_do_root_mount - LP: #996109 * NFSv4: Ensure that the LOCK code sets exception->inode - LP: #996109 * NFSv4: Ensure that we check lock exclusive/shared type against open modes - LP: #996109 * x86, apic: APIC code touches invalid MSR on P5 class machines - LP: #996109 * xen: correctly check for pending events when restoring irq flags - LP: #996109 * xen/smp: Fix crash when booting with ACPI hotplug CPUs. - LP: #996109 * ASoC: dapm: Ensure power gets managed for line widgets - LP: #996109 * dmaengine: at_hdmac: remove clear-on-read in atc_dostart() - LP: #996109 * hwmon: fam15h_power: fix bogus values with current BIOSes - LP: #996109 * hwmon: (fam15h_power) Fix pci_device_id array - LP: #996109 * drm/i915: handle input/output sdvo timings separately in mode_set - LP: #996109 * drm/i915: fix integer overflow in i915_gem_execbuffer2() - LP: #996109 * drm/i915: fix integer overflow in i915_gem_do_execbuffer() - LP: #996109 * nl80211: ensure interface is up in various APIs - LP: #996109 * EHCI: fix criterion for resuming the root hub - LP: #996109 * brcm80211: smac: resume transmit fifo upon receiving frames - LP: #996109 * Fix modpost failures in fedora 17 - LP: #996109 * mmc: unbreak sdhci-esdhc-imx on i.MX25 - LP: #996109 * nfsd: fix b0rken error value for setattr on read-only mount - LP: #996109 * nfsd: fix error values returned by nfsd4_lockt() when nfsd_open() fails - LP: #996109 * USB: cdc-wdm: fix race leading leading to memory corruption - LP: #996109 * USB: EHCI: fix crash during suspend on ASUS computers - LP: #996109 * USB: gadget: storage gadgets send wrong error code for unknown commands - LP: #996109 * usb gadget: uvc: uvc_request_data::length field must be signed - LP: #996109 * pipes: add a "packetized pipe" mode for writing - LP: #996109 * autofs: make the autofsv5 packet file descriptor use a packetized pipe - LP: #996109 * ARM: 7403/1: tls: remove covert channel via TPIDRURW - LP: #996109 * SCSI: libsas: fix sas_find_bcast_phy() in the presence of 'vacant' phys - LP: #996109 * SCSI: libsas: fix false positive 'device attached' conditions - LP: #996109 * efi: Add new variable attributes - LP: #996109 * efivars: String functions - LP: #996109 * efivars: fix warnings when CONFIG_PSTORE=n - LP: #996109 * efi: Validate UEFI boot variables - LP: #996109 * efivars: Improve variable validation - LP: #996109 * hwmon: (coretemp) Increase CPU core limit - LP: #996109 * hwmon: (coretemp) fix oops on cpu unplug - LP: #996109 * libata: skip old error history when counting probe trials - LP: #996109 * i2c: pnx: Disable clk in suspend - LP: #996109 * ipw2200: Fix race condition in the command completion acknowledge - LP: #996109 * mac80211: fix AP mode EAP tx for VLAN stations - LP: #996109 * rtlwifi: Fix oops on unload - LP: #996109 * wl1251: fix crash on remove due to premature kfree - LP: #996109 * wl1251: fix crash on remove due to leftover work item - LP: #996109 * sched: Fix nohz load accounting -- again! - LP: #996109 * hfsplus: Fix potential buffer overflows - LP: #996109 * Linux 3.0.31 - LP: #996109 * smsc95xx: mark link down on startup and let PHY interrupt deal with carrier changes - LP: #1002880 * xen/pte: Fix crashes when trying to see non-existent PGD/PMD/PUD/PTEs - LP: #1002880 * xen/pci: don't use PCI BIOS service for configuration space accesses - LP: #1002880 * percpu, x86: don't use PMD_SIZE as embedded atom_size on 32bit - LP: #1002880 * asm-generic: Use __BITS_PER_LONG in statfs.h - LP: #1002880 * Fix __read_seqcount_begin() to use ACCESS_ONCE for sequence value read - LP: #1002880 * ARM: 7410/1: Add extra clobber registers for assembly in kernel_execve - LP: #1002880 * ARM: 7414/1: SMP: prevent use of the console when using idmap_pgd - LP: #1002880 * regulator: Fix the logic to ensure new voltage setting in valid range - LP: #1002880 * ARM: orion5x: Fix GPIO enable bits for MPP9 - LP: #1002880 * asix: Fix tx transfer padding for full-speed USB - LP: #1002880 * netem: fix possible skb leak - LP: #1002880 * net: In unregister_netdevice_notifier unregister the netdevices. - LP: #1002880 * net: l2tp: unlock socket lock before returning from l2tp_ip_sendmsg - LP: #1002880 * sky2: propogate rx hash when packet is copied - LP: #1002880 * sky2: fix receive length error in mixed non-VLAN/VLAN traffic - LP: #1002880 * tg3: Avoid panic from reserved statblk field access - LP: #1002880 * sungem: Fix WakeOnLan - LP: #1002880 * tcp: change tcp_adv_win_scale and tcp_rmem[2] - LP: #1002880 * sony-laptop: Enable keyboard backlight by default - LP: #1002880 * ALSA: echoaudio: Remove incorrect part of assertion - LP: #1002880 * ALSA: HDA: Lessen CPU usage when waiting for chip to respond - LP: #1002880 * usbnet: fix skb traversing races during unlink(v2) - LP: #1002880 * namespaces, pid_ns: fix leakage on fork() failure - LP: #1002880 * sparc64: Do not clobber %g2 in xcall_fetch_glob_regs(). - LP: #1002880 * ARM: prevent VM_GROWSDOWN mmaps extending below FIRST_USER_ADDRESS - LP: #1002880 * media: rc: Postpone ISR registration - LP: #1002880 * cdc_ether: Ignore bogus union descriptor for RNDIS devices - LP: #1002880 * cdc_ether: add Novatel USB551L device IDs for FLAG_WWAN - LP: #1002880 * percpu: pcpu_embed_first_chunk() should free unused parts after all allocs are complete - LP: #1002880 * hugetlb: prevent BUG_ON in hugetlb_fault() -> hugetlb_cow() - LP: #1002880 * mm: nobootmem: fix sign extend problem in __free_pages_memory() - LP: #1002880 * jffs2: Fix lock acquisition order bug in gc path - LP: #1002880 * arch/tile: apply commit 74fca9da0 to the compat signal handling as well - LP: #1002880 * crypto: mv_cesa requires on CRYPTO_HASH to build - LP: #1002880 * MD: Add del_timer_sync to mddev_suspend (fix nasty panic) - LP: #1002880 * tcp: do_tcp_sendpages() must try to push data out on oom conditions - LP: #1002880 * init: don't try mounting device as nfs root unless type fully matches - LP: #1002880 * ext4: avoid deadlock on sync-mounted FS w/o journal - LP: #1002880 * NFSv4: Revalidate uid/gid after open - LP: #1002880 * memcg: free spare array to avoid memory leak - LP: #1002880 * compat: Fix RT signal mask corruption via sigprocmask - LP: #1002880 * ext3: Fix error handling on inode bitmap corruption - LP: #1002880 * ext4: fix error handling on inode bitmap corruption - LP: #1002880 * ACPI / PM: Add Sony Vaio VPCCW29FX to nonvs blacklist. - LP: #1002880 * SCSI: hpsa: Add IRQF_SHARED back in for the non-MSI(X) interrupt handler - LP: #1002880 * wake up s_wait_unfrozen when ->freeze_fs fails - LP: #1002880 * pch_gpio: Support new device LAPIS Semiconductor ML7831 IOH - LP: #1002880 * pch_gbe: fixed the issue which receives an unnecessary packet. - LP: #1002880 * pch_gbe: support ML7831 IOH - LP: #1002880 * pch_gbe: Fixed the issue on which PC was frozen when link was downed. - LP: #1002880 * pch_gbe: Do not abort probe on bad MAC - LP: #1002880 * pch_gbe: memory corruption calling pch_gbe_validate_option() - LP: #1002880 * ia64: Add accept4() syscall - LP: #1002880 * Linux 3.0.32 - LP: #1002880 * dl2k: Clean up rio_ioctl - CVE-2012-2313 linux (3.0.0-20.34) oneiric-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #992497 [ Herton Ronaldo Krzesinski ] * linux: add Build-Depends for libnewt-dev, to enable perf TUI support - LP: #981717 [ Manoj Iyer ] * SAUCE: Bluetooth: btusb: Add vendor specific ID (0489 e042) for BCM20702A0 - LP: #980965 [ Tim Gardner ] * [Config] Fix invalid linux-headers link - LP: #974403 * Remove headers asm symlink entirely - LP: #974403 [ Upstream Kernel Changes ] * Revert "x86/ioapic: Add register level checks to detect bogus io-apic entries" - LP: #983326 * drm/i915: Fixes distorted external screen image on HP 2730p - LP: #796030 * x86 bpf_jit: fix a bug in emitting the 16-bit immediate operand of AND - LP: #983326 * rose_dev: fix memcpy-bug in rose_set_mac_address - LP: #983326 * net: usb: cdc_eem: fix mtu - LP: #983326 * mtd: sst25l: initialize writebufsize - LP: #983326 * mtd: block2mtd: initialize writebufsize - LP: #983326 * mtd: lart: initialize writebufsize - LP: #983326 * mtd: m25p80: set writebufsize - LP: #983326 * ACPI: Do cpufreq clamping for throttling per package v2 - LP: #983326 * PNPACPI: Fix device ref leaking in acpi_pnp_match - LP: #983326 * modpost: fix ALL_INIT_DATA_SECTIONS - LP: #983326 * genirq: Adjust irq thread affinity on IRQ_SET_MASK_OK_NOCOPY return value - LP: #983326 * tracing: Fix ftrace stack trace entries - LP: #983326 * m68k/mac: Add missing platform check before registering platform devices - LP: #983326 * mac80211: fix possible tid_rx->reorder_timer use after free - LP: #983326 * drm: Validate requested virtual size against allocated fb size - LP: #983326 * drm/radeon/kms: fix fans after resume - LP: #983326 * drm/i915: no-lvds quirk on MSI DC500 - LP: #983326 * drm/i915: Sanitize BIOS debugging bits from PIPECONF - LP: #983326 * drm/i915: Add lock on drm_helper_resume_force_mode - LP: #983326 * drm/i915: quirk away broken OpRegion VBT - LP: #983326 * kgdb,debug_core: pass the breakpoint struct instead of address and memory - LP: #983326 * kgdbts: Fix kernel oops with CONFIG_DEBUG_RODATA - LP: #983326 * kgdbts: (1 of 2) fix single step awareness to work correctly with SMP - LP: #983326 * kgdbts: (2 of 2) fix single step awareness to work correctly with SMP - LP: #983326 * x86,kgdb: Fix DEBUG_RODATA limitation using text_poke() - LP: #983326 * mmc: atmel-mci: correct data timeout computation - LP: #983326 * sysctl: fix write access to dmesg_restrict/kptr_restrict - LP: #983326 * modpost: Fix modpost's license checking V3 - LP: #983326 * modpost: Fix modpost license checking of vmlinux.o - LP: #983326 * x86/PCI: use host bridge _CRS info on MSI MS-7253 - LP: #983326 * x86/PCI: do not tie MSI MS-7253 use_crs quirk to BIOS version - LP: #983326 * acer-wmi: No wifi rfkill on Sony machines - LP: #983326 * sched/x86: Fix overflow in cyc2ns_offset - LP: #983326 * mfd: Clear twl6030 IRQ status register only once - LP: #983326 * USB: Add Motorola Rokr E6 Id to the USBNet driver "zaurus" - LP: #983326 * ASoC: ak4642: fixup: mute needs +1 step - LP: #983326 * cred: copy_process() should clear child->replacement_session_keyring - LP: #983326 * iommu/amd: Make sure IOMMU interrupts are re-enabled on resume - LP: #983326 * TOMOYO: Fix mount flags checking order. - LP: #983326 * Linux 3.0.28 - LP: #983326 * drm/i915/ringbuffer: Exclude last 2 cachlines of ring on 845g - LP: #987283 * drm/radeon: only add the mm i2c bus if the hw_i2c module param is set - LP: #987283 * rtlwifi: Add missing DMA buffer unmapping for PCI drivers - LP: #987283 * ARM: 7384/1: ThumbEE: Disable userspace TEEHBR access for !CONFIG_ARM_THUMBEE - LP: #987283 * Bluetooth: uart-ldisc: Fix memory leak - LP: #987283 * Bluetooth: hci_ldisc: fix NULL-pointer dereference on tty_close - LP: #987283 * ia64: fix futex_atomic_cmpxchg_inatomic() - LP: #987283 * drivers/rtc/rtc-pl031.c: enable clock on all ST variants - LP: #987283 * hugetlb: fix race condition in hugetlb_fault() - LP: #987283 * staging: iio: hmc5843: Fix crash in probe function. - LP: #987283 * tty: serial: altera_uart: Check for NULL platform_data in probe. - LP: #987283 * sparc64: Eliminate obsolete __handle_softirq() function - LP: #987283 * sparc64: Fix bootup crash on sun4v. - LP: #987283 * cciss: Initialize scsi host max_sectors for tape drive support - LP: #987283 * cciss: Fix scsi tape io with more than 255 scatter gather elements - LP: #987283 * perf hists: Catch and handle out-of-date hist entry maps. - LP: #987283 * video:uvesafb: Fix oops that uvesafb try to execute NX-protected page - LP: #987283 * nohz: Fix stale jiffies update in tick_nohz_restart() - LP: #987283 * USB: serial: fix race between probe and open - LP: #987283 * USB: pl2303: fix DTR/RTS being raised on baud rate change - LP: #987283 * USB: option: re-add NOVATELWIRELESS_PRODUCT_HSPA_HIGHSPEED to option_id array - LP: #987283 * USB: sierra: add support for Sierra Wireless MC7710 - LP: #987283 * USB: don't clear urb->dev in scatter-gather library - LP: #987283 * xhci: don't re-enable IE constantly - LP: #987283 * xhci: Don't write zeroed pointers to xHC registers. - LP: #987283 * xhci: Restore event ring dequeue pointer on resume. - LP: #987283 * xHCI: Correct the #define XHCI_LEGACY_DISABLE_SMI - LP: #987283 * xHCI: add XHCI_RESET_ON_RESUME quirk for VIA xHCI host - LP: #987283 * serial: PL011: clear pending interrupts - LP: #987283 * serial: PL011: move interrupt clearing - LP: #987283 * fcaps: clear the same personality flags as suid when fcaps are used - LP: #987283 * ath9k: fix max noise floor threshold - LP: #987283 * xhci: Fix register save/restore order. - LP: #987283 * Bluetooth: hci_core: fix NULL-pointer dereference at unregister - LP: #987283 * pch_phub: Fix register miss-setting issue - LP: #987283 * pch_phub: Care FUNCSEL register in PM - LP: #987283 * pch_phub: Improve ADE(Address Decode Enable) control - LP: #987283 * usb: gadget: pch_udc: Fix disconnect issue - LP: #987283 * usb: gadget: pch_udc: Fix wrong return value - LP: #987283 * usb: gadget: pch_udc: Fix USB suspend issue - LP: #987283 * usb: gadget: pch_udc: Fix usb/gadget/pch_udc: Fix ether gadget connect/disconnect issue - LP: #987283 * usb: gadget: pch_udc: Reduce redundant interrupt - LP: #987283 * USB: pch_udc: Support new device LAPIS Semiconductor ML7831 IOH - LP: #987283 * ACPICA: Fix to allow region arguments to reference other scopes - LP: #987283 * security: fix compile error in commoncap.c - LP: #987283 * pch_uart: Set PCIe bus number using probe parameter - LP: #987283 * 8250_pci: Fix kernel panic when pch_uart is disabled - LP: #987283 * pch_dma: fix DMA issue(ch8-ch11) - LP: #987283 * pch_dma: Fix channel locking - LP: #987283 * pch_dma: Fix CTL register access issue - LP: #987283 * pch_dma: Fix suspend issue - LP: #987283 * pch_dma: Support new device LAPIS Semiconductor ML7831 IOH - LP: #987283 * md/bitmap: prevent bitmap_daemon_work running while initialising bitmap - LP: #987283 * Bluetooth: Adding USB device 13d3:3375 as an Atheros AR3012. - LP: #987283 * Bluetooth: Add Atheros maryann PIDVID support - LP: #987283 * futex: Do not leak robust list to unprivileged process - LP: #987283 * drm/radeon/kms: fix the regression of DVI connector check - LP: #987283 * drm/radeon: disable MSI on RV515 - LP: #987283 * drm/radeon: fix load detect on rn50 with hardcoded EDIDs. - LP: #987283 * S390: fix tlb flushing for page table pages - LP: #987283 * Linux 3.0.29 - LP: #987283 * KVM: Clean up error handling during VCPU creation - LP: #971685 - CVE-2012-1601 * KVM: Ensure all vcpus are consistent with in-kernel irqchip settings - LP: #971685 - CVE-2012-1601 * UAS: Re-add workqueue items if submission fails. - LP: #901215 * UAS: Use unique tags on non-streams devices. - LP: #901215 * UAS: Free status URB when we can't find the SCSI tag. - LP: #901215 * usb/uas: use unique tags for all LUNs - LP: #901215 * usb/uas: use scsi_host_find_tag() to find command from a tag - LP: #901215 * usb/uas: one only one status URB/host on stream-less connection - LP: #901215 * usb/uas: only bind if the hcd supports SG - LP: #901215 * usb/uas: move UAS structs / defines into a header file - LP: #901215 * usb/uas: add usb_pipe_usage_descriptor - LP: #901215 * usb/uas: make sure data urb is gone if we receive status before that - LP: #901215 * crypto: sha512 - Fix byte counter overflow in SHA-512 - LP: #990544 * ALSA: hda/conexant - Don't set HP pin-control bit unconditionally - LP: #990544 * ARM: clps711x: serial driver hungs are a result of call disable_irq within ISR - LP: #990544 * xen/gntdev: do not set VM_PFNMAP - LP: #990544 * xen/xenbus: Add quirk to deal with misconfigured backends. - LP: #990544 * USB: yurex: Remove allocation of coherent buffer for setup-packet buffer - LP: #990544 * USB: yurex: Fix missing URB_NO_TRANSFER_DMA_MAP flag in urb - LP: #990544 * uwb: fix use of del_timer_sync() in interrupt - LP: #990544 * uwb: fix error handling - LP: #990544 * davinci_mdio: Fix MDIO timeout check - LP: #990544 * media: rc-core: set mode for winbond-cir - LP: #990544 * cfg80211: fix interface combinations check. - LP: #990544 * mm: fix s390 BUG by __set_page_dirty_no_writeback on swap - LP: #990544 * jbd2: use GFP_NOFS for blkdev_issue_flush - LP: #990544 * USB: serial: cp210x: Fixed usb_control_msg timeout values - LP: #990544 * pch_uart: Fix dma channel unallocated issue - LP: #990544 * drivers/tty/amiserial.c: add missing tty_unlock - LP: #990544 * USB: sierra: avoid QMI/wwan interface on MC77xx - LP: #990544 * EHCI: always clear the STS_FLR status bit - LP: #990544 * USB: fix deadlock in bConfigurationValue attribute method - LP: #990544 * usb: gadget: eliminate NULL pointer dereference (bugfix) - LP: #990544 * usb: musb: omap: fix crash when musb glue (omap) gets initialized - LP: #990544 * usb: musb: omap: fix the error check for pm_runtime_get_sync - LP: #990544 * PCI: Add quirk for still enabled interrupts on Intel Sandy Bridge GPUs - LP: #990544 * ext4: fix endianness breakage in ext4_split_extent_at() - LP: #990544 * Bluetooth: Add support for Atheros [04ca:3005] - LP: #990544 * Don't limit non-nested epoll paths - LP: #990544 * spi: Fix device unregistration when unregistering the bus master - LP: #990544 * rt2x00: Properly identify rt2800usb devices. - LP: #990544 * rt2800usb: Add new device ID for Belkin - LP: #990544 * rt2x00: Add USB device ID of Buffalo WLI-UC-GNHP. - LP: #990544 * rt2800: Add support for the Fujitsu Stylistic Q550 - LP: #990544 * rt2x00: Identify rt2800usb chipsets. - LP: #990544 * nfsd: fix compose_entry_fh() failure exits - LP: #990544 * btrfs: btrfs_root_readonly() broken on big-endian - LP: #990544 * ocfs2: ->l_next_free_req breakage on big-endian - LP: #990544 * ocfs: ->rl_used breakage on big-endian - LP: #990544 * ocfs2: ->rl_count endianness breakage - LP: #990544 * ocfs2: ->e_leaf_clusters endianness breakage - LP: #990544 * lockd: fix the endianness bug - LP: #990544 * ppp: Don't stop and restart queue on every TX packet - LP: #990544 * tcp: allow splice() to build full TSO packets - LP: #990544 * sctp: Allow struct sctp_event_subscribe to grow without breaking binaries - LP: #990544 * bridge: Do not send queries on multicast group leaves - LP: #990544 * ipv6: fix array index in ip6_mc_add_src() - LP: #990544 * phonet: Check input from user before allocating - LP: #990544 * bonding: properly unset current_arp_slave on slave link up - LP: #990544 * wimax: i2400m - prevent a possible kernel bug due to missing fw_name string - LP: #990544 * netlink: fix races after skb queueing - LP: #990544 * net: fix a race in sock_queue_err_skb() - LP: #990544 * tcp: fix tcp_rcv_rtt_update() use of an unscaled RTT sample - LP: #990544 * atl1: fix kernel panic in case of DMA errors - LP: #990544 * 8139cp: set intr mask after its handler is registered - LP: #990544 * net: smsc911x: fix skb handling in receive path - LP: #990544 * net/ethernet: ks8851_mll fix rx frame buffer overflow - LP: #990544 * net_sched: gred: Fix oops in gred_dump() in WRED mode - LP: #990544 * net: usb: smsc75xx: fix mtu - LP: #990544 * dummy: Add ndo_uninit(). - LP: #990544 * tcp: fix tcp_grow_window() for large incoming frames - LP: #990544 * netns: do not leak net_generic data on failed init - LP: #990544 * ksz884x: don't copy too much in netdev_set_mac_address() - LP: #990544 * net ax25: Reorder ax25_exit to remove races. - LP: #990544 * tcp: fix TCP_MAXSEG for established IPv6 passive sockets - LP: #990544 * Linux 3.0.30 - LP: #990544 Date: 2012-05-28 13:31:02.709245+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-lts-backport-oneiric/3.0.0-21.35~lucid1 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Tue Jun 12 14:45:58 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 12 Jun 2012 14:45:58 -0000 Subject: [ubuntu/lucid-updates] linux-meta-lts-backport-oneiric 3.0.0.21.9 (Accepted) Message-ID: <20120612144558.19467.36007.launchpad@ackee.canonical.com> linux-meta-lts-backport-oneiric (3.0.0.21.9) lucid-proposed; urgency=low * linux-oneiric 3.0.0-21.35 Date: 2012-05-28 13:31:41.919109+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-meta-lts-backport-oneiric/3.0.0.21.9 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Tue Jun 12 14:45:59 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 12 Jun 2012 14:45:59 -0000 Subject: [ubuntu/lucid-security] linux-meta-lts-backport-oneiric 3.0.0.21.9 (Accepted) Message-ID: <20120612144559.19467.78849.launchpad@ackee.canonical.com> linux-meta-lts-backport-oneiric (3.0.0.21.9) lucid-proposed; urgency=low * linux-oneiric 3.0.0-21.35 Date: 2012-05-28 13:31:41.919109+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-meta-lts-backport-oneiric/3.0.0.21.9 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Tue Jun 12 14:46:36 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 12 Jun 2012 14:46:36 -0000 Subject: [ubuntu/lucid-updates] linux-lts-backport-natty 2.6.38-15.60~lucid1 (Accepted) Message-ID: <20120612144636.19467.95895.launchpad@ackee.canonical.com> linux-lts-backport-natty (2.6.38-15.60~lucid1) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1003079 [ Andy Whitcroft ] * [Config] control.stub is an intermediate product not a dependancy - LP: #992414 [ Herton Ronaldo Krzesinski ] * linux: add Build-Depends for libnewt-dev, to enable perf TUI support - LP: #981717 [ Tim Gardner ] * [Config] perarch and indep tools builds need separate build directories [ Upstream Kernel Changes ] * fcaps: clear the same personality flags as suid when fcaps are used - LP: #987571 - CVE-2012-2123 * natty security: fix compile error in commoncap.c - LP: #987571 - CVE-2012-2123 * KVM: Clean up error handling during VCPU creation - LP: #971685 - CVE-2012-1601 * KVM: Ensure all vcpus are consistent with in-kernel irqchip settings - LP: #971685 - CVE-2012-1601 * KVM: unmap pages from the iommu when slots are removed - LP: #987569 - CVE-2012-2121 * NFSv4: include bitmap in nfsv4 get acl data - LP: #893147 - CVE-2011-4131 * hugepages: fix use after free bug in "quota" handling - LP: #990368 - CVE-2012-2133 linux (2.6.38-15.59) natty-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #987281 [ Brad Figg ] * SAUCE (no-up) Provide a param for allowing the BIOS to handle changing the brightness on AC/battery status changes. - LP: #949311 [ Tim Gardner ] * SAUCE: ubuntu drivers: use UMH_WAIT_PROC consistently - LP: #963685 * SAUCE: disable_nx should not be in __cpuinitdata section for X86_32 - LP: #968233 * SAUCE: (no-up) remove __initdata from vesafb_fix - LP: #969309 [ Upstream Kernel Changes ] * usermodehelper: use UMH_WAIT_PROC consistently - LP: #963685 * usermodehelper: introduce umh_complete(sub_info) - LP: #963685 * usermodehelper: implement UMH_KILLABLE - LP: #963685 * usermodehelper: kill umh_wait, renumber UMH_* constants - LP: #963685 * usermodehelper: ____call_usermodehelper() doesn't need do_exit() - LP: #963685 * kmod: introduce call_modprobe() helper - LP: #963685 * kmod: make __request_module() killable - LP: #963685 * drm/i915: Fixes distorted external screen image on HP 2730p - LP: #796030 * ext4: fix undefined behavior in ext4_fill_flex_info() - LP: #984757 - CVE-2012-2100 * jbd2: clear BH_Delay & BH_Unwritten in journal_unmap_buffer - LP: #929781 - CVE-2011-4086 * cifs: fix dentry refcount leak when opening a FIFO on lookup - LP: #947997 - CVE-2012-1090 Date: 2012-05-23 15:01:05.048191+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-lts-backport-natty/2.6.38-15.60~lucid1 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Tue Jun 12 14:46:46 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 12 Jun 2012 14:46:46 -0000 Subject: [ubuntu/lucid-security] linux-lts-backport-natty 2.6.38-15.60~lucid1 (Accepted) Message-ID: <20120612144646.19467.30430.launchpad@ackee.canonical.com> linux-lts-backport-natty (2.6.38-15.60~lucid1) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1003079 [ Andy Whitcroft ] * [Config] control.stub is an intermediate product not a dependancy - LP: #992414 [ Herton Ronaldo Krzesinski ] * linux: add Build-Depends for libnewt-dev, to enable perf TUI support - LP: #981717 [ Tim Gardner ] * [Config] perarch and indep tools builds need separate build directories [ Upstream Kernel Changes ] * fcaps: clear the same personality flags as suid when fcaps are used - LP: #987571 - CVE-2012-2123 * natty security: fix compile error in commoncap.c - LP: #987571 - CVE-2012-2123 * KVM: Clean up error handling during VCPU creation - LP: #971685 - CVE-2012-1601 * KVM: Ensure all vcpus are consistent with in-kernel irqchip settings - LP: #971685 - CVE-2012-1601 * KVM: unmap pages from the iommu when slots are removed - LP: #987569 - CVE-2012-2121 * NFSv4: include bitmap in nfsv4 get acl data - LP: #893147 - CVE-2011-4131 * hugepages: fix use after free bug in "quota" handling - LP: #990368 - CVE-2012-2133 linux (2.6.38-15.59) natty-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #987281 [ Brad Figg ] * SAUCE (no-up) Provide a param for allowing the BIOS to handle changing the brightness on AC/battery status changes. - LP: #949311 [ Tim Gardner ] * SAUCE: ubuntu drivers: use UMH_WAIT_PROC consistently - LP: #963685 * SAUCE: disable_nx should not be in __cpuinitdata section for X86_32 - LP: #968233 * SAUCE: (no-up) remove __initdata from vesafb_fix - LP: #969309 [ Upstream Kernel Changes ] * usermodehelper: use UMH_WAIT_PROC consistently - LP: #963685 * usermodehelper: introduce umh_complete(sub_info) - LP: #963685 * usermodehelper: implement UMH_KILLABLE - LP: #963685 * usermodehelper: kill umh_wait, renumber UMH_* constants - LP: #963685 * usermodehelper: ____call_usermodehelper() doesn't need do_exit() - LP: #963685 * kmod: introduce call_modprobe() helper - LP: #963685 * kmod: make __request_module() killable - LP: #963685 * drm/i915: Fixes distorted external screen image on HP 2730p - LP: #796030 * ext4: fix undefined behavior in ext4_fill_flex_info() - LP: #984757 - CVE-2012-2100 * jbd2: clear BH_Delay & BH_Unwritten in journal_unmap_buffer - LP: #929781 - CVE-2011-4086 * cifs: fix dentry refcount leak when opening a FIFO on lookup - LP: #947997 - CVE-2012-1090 Date: 2012-05-23 15:01:05.048191+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-lts-backport-natty/2.6.38-15.60~lucid1 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Tue Jun 12 14:47:31 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 12 Jun 2012 14:47:31 -0000 Subject: [ubuntu/lucid-updates] linux 2.6.32-41.90 (Accepted) Message-ID: <20120612144731.19467.12664.launchpad@ackee.canonical.com> linux (2.6.32-41.90) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1002389 [ Andy Whitcroft ] * [Config] control.stub is an intermediate product not a dependancy - LP: #992414 [ Tim Gardner ] * [Config] perarch and indep tools builds need separate build directories [ Upstream Kernel Changes ] * hugepages: fix use after free bug in "quota" handling - LP: #990368 - CVE-2012-2133 Date: 2012-05-22 11:26:02.643468+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux/2.6.32-41.90 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Tue Jun 12 14:47:45 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 12 Jun 2012 14:47:45 -0000 Subject: [ubuntu/lucid-security] linux 2.6.32-41.90 (Accepted) Message-ID: <20120612144745.19467.74657.launchpad@ackee.canonical.com> linux (2.6.32-41.90) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1002389 [ Andy Whitcroft ] * [Config] control.stub is an intermediate product not a dependancy - LP: #992414 [ Tim Gardner ] * [Config] perarch and indep tools builds need separate build directories [ Upstream Kernel Changes ] * hugepages: fix use after free bug in "quota" handling - LP: #990368 - CVE-2012-2133 Date: 2012-05-22 11:26:02.643468+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux/2.6.32-41.90 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Tue Jun 12 14:47:53 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 12 Jun 2012 14:47:53 -0000 Subject: [ubuntu/lucid-updates] linux-ec2 2.6.32-345.49 (Accepted) Message-ID: <20120612144753.19467.93818.launchpad@ackee.canonical.com> linux-ec2 (2.6.32-345.49) lucid-proposed; urgency=low [ Stefan Bader ] * Rebased to Ubuntu-2.6.32-41.90 * Release Tracking Bug - LP: #1003061 [ Ubuntu: 2.6.32-41.90 ] * [Config] control.stub is an intermediate product not a dependancy - LP: #992414 * [Config] perarch and indep tools builds need separate build directories * hugepages: fix use after free bug in "quota" handling - LP: #990368 - CVE-2012-2133 Date: 2012-05-25 09:45:29.022491+00:00 Changed-By: Stefan Bader Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-ec2/2.6.32-345.49 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Tue Jun 12 14:47:55 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 12 Jun 2012 14:47:55 -0000 Subject: [ubuntu/lucid-security] linux-ec2 2.6.32-345.49 (Accepted) Message-ID: <20120612144755.19467.83751.launchpad@ackee.canonical.com> linux-ec2 (2.6.32-345.49) lucid-proposed; urgency=low [ Stefan Bader ] * Rebased to Ubuntu-2.6.32-41.90 * Release Tracking Bug - LP: #1003061 [ Ubuntu: 2.6.32-41.90 ] * [Config] control.stub is an intermediate product not a dependancy - LP: #992414 * [Config] perarch and indep tools builds need separate build directories * hugepages: fix use after free bug in "quota" handling - LP: #990368 - CVE-2012-2133 Date: 2012-05-25 09:45:29.022491+00:00 Changed-By: Stefan Bader Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-ec2/2.6.32-345.49 -------------- next part -------------- Sorry, changesfile not available. From launchpad at micahscomputing.com Tue Jun 12 23:10:34 2012 From: launchpad at micahscomputing.com (Micah Gersten) Date: Tue, 12 Jun 2012 23:10:34 -0000 Subject: [ubuntu/lucid-security] apparmor 2.5.1-0ubuntu0.10.04.4 (Accepted) Message-ID: <20120612231034.6446.82912.launchpad@ackee.canonical.com> apparmor (2.5.1-0ubuntu0.10.04.4) lucid-security; urgency=low * fix LP: #989184 - Firefox 12's launcher script is not allowed in abstractions/ubuntu-browsers; This was a regression from the firefox path changing to a non-versioned path in the Firefox 12 packaging - add debian/patches/0016-lp989184.patch - update debian/patches/series * fix LP: #990931 - Thunderbird is being blocked by apparmor from Firefox; This was a regression from the Thunderbird path changing to a non-versioned path in the Thunderbird 12 packaging - add debian/patches/0015-lp990931.patch - update debian/patches/series apparmor (2.5.1-0ubuntu0.10.04.3) lucid-proposed; urgency=low * debian/patches/0014-lp698194.patch: explicitly deny access to autostart directories, chromium, some popular email clients and kwallet - LP: #698194 Date: 2012-06-04 19:06:07.354121+00:00 Changed-By: Micah Gersten https://launchpad.net/ubuntu/lucid/+source/apparmor/2.5.1-0ubuntu0.10.04.4 -------------- next part -------------- Sorry, changesfile not available. From trekcaptainusa-tw at ubuntu.com Wed Jun 13 17:33:54 2012 From: trekcaptainusa-tw at ubuntu.com (Thomas Ward) Date: Wed, 13 Jun 2012 17:33:54 -0000 Subject: [ubuntu/lucid-security] nginx 0.7.65-1ubuntu2.3 (Accepted) Message-ID: <20120613173354.14862.3773.launchpad@cocoplum.canonical.com> nginx (0.7.65-1ubuntu2.3) lucid-security; urgency=low * Security update (closes LP: #956150): * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180). * Patch to fix 'Heap-based buffer overflow in compression-pointer processing in core/ngx_resolver.c' (CVE-2011-4315). Date: Tue, 12 Jun 2012 12:37:49 -0400 Changed-By: Thomas Ward Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/nginx/0.7.65-1ubuntu2.3 -------------- next part -------------- Format: 1.8 Date: Tue, 12 Jun 2012 12:37:49 -0400 Source: nginx Binary: nginx nginx-dbg Architecture: source Version: 0.7.65-1ubuntu2.3 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Thomas Ward Description: nginx - small, but very powerful and efficient web server and mail proxy nginx-dbg - Debugging symbols for nginx Launchpad-Bugs-Fixed: 956150 Changes: nginx (0.7.65-1ubuntu2.3) lucid-security; urgency=low . * Security update (closes LP: #956150): * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180). * Patch to fix 'Heap-based buffer overflow in compression-pointer processing in core/ngx_resolver.c' (CVE-2011-4315). Checksums-Sha1: adeeaa5315cdfba615d068247f842672ad6af0b6 2038 nginx_0.7.65-1ubuntu2.3.dsc 04403a1e88e15f98b406e22d4aa15fe2f65fa8c8 28107 nginx_0.7.65-1ubuntu2.3.debian.tar.gz Checksums-Sha256: af275dab74f53614256b04be91121dc7cd2afeaff3cb9cd097f05e05524dbdd6 2038 nginx_0.7.65-1ubuntu2.3.dsc 6f3d5d98e3641a16962504d80adaa6f057b2bcfd85c5937be5cd556739968eed 28107 nginx_0.7.65-1ubuntu2.3.debian.tar.gz Files: 687f5b0f27d427ff59fae127da011838 2038 httpd optional nginx_0.7.65-1ubuntu2.3.dsc 93382beea49b322e2989623c612dae30 28107 httpd optional nginx_0.7.65-1ubuntu2.3.debian.tar.gz Original-Maintainer: Jose Parrella From clint at fewbar.com Wed Jun 13 23:13:13 2012 From: clint at fewbar.com (Clint Byrum) Date: Wed, 13 Jun 2012 23:13:13 -0000 Subject: [ubuntu/lucid-updates] evolution-data-server 2.28.3.1-0ubuntu6 (Accepted) Message-ID: <20120613231313.9207.8604.launchpad@ackee.canonical.com> evolution-data-server (2.28.3.1-0ubuntu6) lucid-proposed; urgency=low * debian/patches/93_git_dont_crash_in_imap_parse_body.patch - Don't crash when opening html email in an imap folder (LP: #554367) Date: 2011-04-08 15:10:11.386535+00:00 Changed-By: Ken VanDine Maintainer: Ubuntu Desktop Signed-By: Clint Byrum https://launchpad.net/ubuntu/lucid/+source/evolution-data-server/2.28.3.1-0ubuntu6 -------------- next part -------------- Sorry, changesfile not available. From jamie at ubuntu.com Fri Jun 15 02:36:52 2012 From: jamie at ubuntu.com (Jamie Strandboge) Date: Fri, 15 Jun 2012 02:36:52 -0000 Subject: [ubuntu/lucid-security] apt_0.7.25.3ubuntu9.12_sparc_translations.tar.gz, apt_0.7.25.3ubuntu9.12_i386_translations.tar.gz, apt, apt_0.7.25.3ubuntu9.12_ia64_translations.tar.gz, apt_0.7.25.3ubuntu9.12_amd64_translations.tar.gz, apt_0.7.25.3ubuntu9.12_powerpc_translations.tar.gz, apt_0.7.25.3ubuntu9.12_armel_translations.tar.gz 0.7.25.3ubuntu9.12 (Accepted) Message-ID: <20120615023652.31809.95167.launchpad@cocoplum.canonical.com> apt (0.7.25.3ubuntu9.12) lucid-security; urgency=low * adjust apt-key to ensure no collisions on subkeys too. Patch thanks to Marc Deslauriers. (LP: #1013128) Date: Thu, 14 Jun 2012 10:57:16 -0500 Changed-By: Jamie Strandboge Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/apt/0.7.25.3ubuntu9.12 -------------- next part -------------- Format: 1.8 Date: Thu, 14 Jun 2012 10:57:16 -0500 Source: apt Binary: apt apt-doc libapt-pkg-dev libapt-pkg-doc apt-utils apt-transport-https Architecture: source Version: 0.7.25.3ubuntu9.12 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Jamie Strandboge Description: apt - Advanced front-end for dpkg apt-doc - Documentation for APT apt-transport-https - APT https transport apt-utils - APT utility programs libapt-pkg-dev - Development files for APT's libapt-pkg and libapt-inst libapt-pkg-doc - Documentation for APT development Launchpad-Bugs-Fixed: 1013128 Changes: apt (0.7.25.3ubuntu9.12) lucid-security; urgency=low . * adjust apt-key to ensure no collisions on subkeys too. Patch thanks to Marc Deslauriers. (LP: #1013128) Checksums-Sha1: 3e1a2741ef0ca8f2f26f7c65787603db2ecc9704 1998 apt_0.7.25.3ubuntu9.12.dsc 25b7de42d5b962279c3bbe81bf1ce850cff58b8a 2751212 apt_0.7.25.3ubuntu9.12.tar.gz Checksums-Sha256: 9ffeec9cf463319576c7ea5dce7979035db2f6b284544fd5eecf718b3ba0a8c8 1998 apt_0.7.25.3ubuntu9.12.dsc 6502c7a68c7e054d13492cd1347ac989154b9a98ad14ee8c9ab1c923e33bd83f 2751212 apt_0.7.25.3ubuntu9.12.tar.gz Files: b689029982b5c7742e195f86a785e271 1998 admin important apt_0.7.25.3ubuntu9.12.dsc ace37ab6a97c92fc5c235610a70c99e6 2751212 admin important apt_0.7.25.3ubuntu9.12.tar.gz Original-Maintainer: APT Development Team From brad.figg at canonical.com Fri Jun 15 17:49:28 2012 From: brad.figg at canonical.com (Brad Figg) Date: Fri, 15 Jun 2012 17:49:28 -0000 Subject: [ubuntu/lucid-proposed] linux 2.6.32-41.91 (Accepted) Message-ID: <20120615174928.21680.58936.launchpad@ackee.canonical.com> linux (2.6.32-41.91) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1012014 [ Tim Gardner ] * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 [ Upstream Kernel Changes ] * dl2k: Clean up rio_ioctl - CVE-2012-2313 * hfsplus: Fix potential buffer overflows - CVE-2012-2319 Date: 2012-06-13 11:37:35.865088+00:00 Changed-By: Luis Henriques Signed-By: Brad Figg https://launchpad.net/ubuntu/lucid/+source/linux/2.6.32-41.91 -------------- next part -------------- Sorry, changesfile not available. From brad.figg at canonical.com Fri Jun 15 17:49:30 2012 From: brad.figg at canonical.com (Brad Figg) Date: Fri, 15 Jun 2012 17:49:30 -0000 Subject: [ubuntu/lucid-proposed] linux-ec2 2.6.32-345.50 (Accepted) Message-ID: <20120615174930.21680.58578.launchpad@ackee.canonical.com> linux-ec2 (2.6.32-345.50) lucid-proposed; urgency=low [ Stefan Bader ] * Rebased to Ubuntu-2.6.32-41.91 * Release Tracking Bug - LP: #1012812 [ Ubuntu: 2.6.32-41.91 ] * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 * dl2k: Clean up rio_ioctl - CVE-2012-2313 * hfsplus: Fix potential buffer overflows - CVE-2012-2319 Date: 2012-06-15 10:06:21.811022+00:00 Changed-By: Stefan Bader Signed-By: Brad Figg https://launchpad.net/ubuntu/lucid/+source/linux-ec2/2.6.32-345.50 -------------- next part -------------- Sorry, changesfile not available. From brad.figg at canonical.com Fri Jun 15 17:49:36 2012 From: brad.figg at canonical.com (Brad Figg) Date: Fri, 15 Jun 2012 17:49:36 -0000 Subject: [ubuntu/lucid-proposed] linux-lts-backport-natty 2.6.38-15.61~lucid1 (Accepted) Message-ID: <20120615174936.21680.52271.launchpad@ackee.canonical.com> linux-lts-backport-natty (2.6.38-15.61~lucid1) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1012532 [ Herton Ronaldo Krzesinski ] * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 [ Upstream Kernel Changes ] * dl2k: Clean up rio_ioctl - CVE-2012-2313 * hfsplus: Fix potential buffer overflows - CVE-2012-2319 * Avoid reading past buffer when calling GETACL - LP: #1002505 - CVE-2012-2375 * Avoid beyond bounds copy while caching ACL - LP: #1002505 - CVE-2012-2375 * Fix length of buffer copied in __nfs4_get_acl_uncached - LP: #1002505 - CVE-2012-2375 Date: 2012-06-13 13:23:28.432649+00:00 Changed-By: Luis Henriques Signed-By: Brad Figg https://launchpad.net/ubuntu/lucid/+source/linux-lts-backport-natty/2.6.38-15.61~lucid1 -------------- next part -------------- Sorry, changesfile not available. From brad.figg at canonical.com Fri Jun 15 17:49:53 2012 From: brad.figg at canonical.com (Brad Figg) Date: Fri, 15 Jun 2012 17:49:53 -0000 Subject: [ubuntu/lucid-proposed] linux-lts-backport-oneiric 3.0.0-22.36~lucid1 (Accepted) Message-ID: <20120615174953.21680.77102.launchpad@ackee.canonical.com> linux-lts-backport-oneiric (3.0.0-22.36~lucid1) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1012483 [ Herton Ronaldo Krzesinski ] * SAUCE: fix get_gate_vma call in i386 NX emulation code - LP: #1009200 [ Upstream Kernel Changes ] * Avoid reading past buffer when calling GETACL - LP: #1002505 - CVE-2012-2375 * Avoid beyond bounds copy while caching ACL - LP: #1002505 - CVE-2012-2375 * Fix length of buffer copied in __nfs4_get_acl_uncached - LP: #1002505 - CVE-2012-2375 * tilegx: enable SYSCALL_WRAPPERS support - LP: #1008697 * block: fix buffer overflow when printing partition UUIDs - LP: #1008697 * block: don't mark buffers beyond end of disk as mapped - LP: #1008697 * PARISC: fix PA1.1 oops on boot - LP: #1008697 * PARISC: fix crash in flush_icache_page_asm on PA1.1 - LP: #1008697 * PARISC: fix panic on prefetch(NULL) on PA7300LC - LP: #1008697 * isdn/gigaset: ratelimit CAPI message dumps - LP: #1008697 * vfs: make AIO use the proper rw_verify_area() area helpers - LP: #1008697 * cfg80211: warn if db.txt is empty with CONFIG_CFG80211_INTERNAL_REGDB - LP: #1008697 * Fix blocking allocations called very early during bootup - LP: #1008697 * s390/pfault: fix task state race - LP: #1008697 * SCSI: mpt2sas: Fix for panic happening because of improper memory allocation - LP: #1008697 * RDMA/cxgb4: Drop peer_abort when no endpoint found - LP: #1008697 * KEYS: Use the compat keyctl() syscall wrapper on Sparc64 for Sparc32 compat - LP: #1008697 * SELinux: if sel_make_bools errors don't leave inconsistent state - LP: #1008697 * drivers/staging/comedi/comedi_fops.c: add missing vfree - LP: #1008697 * perf/x86: Update event scheduling constraints for AMD family 15h models - LP: #1008697 * mtd: sm_ftl: fix typo in major number. - LP: #1008697 * ahci: Detect Marvell 88SE9172 SATA controller - LP: #1008697 * um: Fix __swp_type() - LP: #1008697 * um: Implement a custom pte_same() function - LP: #1008697 * docs: update HOWTO for 2.6.x -> 3.x versioning - LP: #1008697 * USB: cdc-wdm: poll must return POLLHUP if device is gone - LP: #1008697 * workqueue: skip nr_running sanity check in worker_enter_idle() if trustee is active - LP: #1008697 * mm: mempolicy: Let vma_merge and vma_split handle vma->vm_policy linkages - LP: #1008697 * md: using GFP_NOIO to allocate bio for flush request - LP: #1008697 * Add missing call to uart_update_timeout() - LP: #1008697 * tty: Allow uart_register/unregister/register - LP: #1008697 * USB: ftdi-sio: add support for Physik Instrumente E-861 - LP: #1008697 * usb-storage: unusual_devs entry for Yarvik PMP400 MP4 player - LP: #1008697 * USB: ffs-test: fix length argument of out function call - LP: #1008697 * drivers/rtc/rtc-pl031.c: configure correct wday for 2000-01-01 - LP: #1008697 * SCSI: hpsa: Fix problem with MSA2xxx devices - LP: #1008697 * usb: usbtest: two super speed fixes for usbtest - LP: #1008697 * USB: Remove races in devio.c - LP: #1008697 * USB: serial: ti_usb_3410_5052: Add support for the FRI2 serial console - LP: #1008697 * usb: gadget: fsl_udc_core: dTD's next dtd pointer need to be updated once written - LP: #1008697 * usb: add USB_QUIRK_RESET_RESUME for M-Audio 88es - LP: #1008697 * xhci: Add Lynx Point to list of Intel switchable hosts. - LP: #1008697 * usb-xhci: Handle COMP_TX_ERR for isoc tds - LP: #1008697 * xhci: Reset reserved command ring TRBs on cleanup. - LP: #1008697 * xhci: Add new short TX quirk for Fresco Logic host. - LP: #1008697 * drm/i915: Avoid a double-read of PCH_IIR during interrupt handling - LP: #1008697 * drm/i915: [GEN7] Use HW scheduler for fixed function shaders - LP: #1008697 * drm/i915: don't clobber the pipe param in sanitize_modesetting - LP: #1008697 * nouveau: nouveau_set_bo_placement takes TTM flags - LP: #1008697 * smsusb: add autodetection support for USB ID 2040:c0a0 - LP: #1008697 * media: uvcvideo: Fix ENUMINPUT handling - LP: #1008697 * x86/mce: Fix check for processor context when machine check was taken. - LP: #1008697 * mmc: sdio: avoid spurious calls to interrupt handlers - LP: #1008697 * tile: fix bug where fls(0) was not returning 0 - LP: #1008697 * isci: fix oem parameter validation on single controller skus - LP: #1008697 * ARM: 7365/1: drop unused parameter from flush_cache_user_range - LP: #1008697 * ARM: 7409/1: Do not call flush_cache_user_range with mmap_sem held - LP: #1008697 * i2c: davinci: Free requested IRQ in remove - LP: #1008697 * Linux 3.0.33 - LP: #1008697 Date: 2012-06-13 15:37:21.813456+00:00 Changed-By: Luis Henriques Signed-By: Brad Figg https://launchpad.net/ubuntu/lucid/+source/linux-lts-backport-oneiric/3.0.0-22.36~lucid1 -------------- next part -------------- Sorry, changesfile not available. From brad.figg at canonical.com Fri Jun 15 17:49:54 2012 From: brad.figg at canonical.com (Brad Figg) Date: Fri, 15 Jun 2012 17:49:54 -0000 Subject: [ubuntu/lucid-proposed] linux-meta-lts-backport-oneiric 3.0.0.22.10 (Accepted) Message-ID: <20120615174954.21680.38616.launchpad@ackee.canonical.com> linux-meta-lts-backport-oneiric (3.0.0.22.10) lucid-proposed; urgency=low * linux-oneiric 3.0.0-22.36 Date: 2012-06-13 16:26:07.132221+00:00 Changed-By: Luis Henriques Signed-By: Brad Figg https://launchpad.net/ubuntu/lucid/+source/linux-meta-lts-backport-oneiric/3.0.0.22.10 -------------- next part -------------- Sorry, changesfile not available. From jamie at ubuntu.com Fri Jun 15 21:08:40 2012 From: jamie at ubuntu.com (Jamie Strandboge) Date: Fri, 15 Jun 2012 21:08:40 -0000 Subject: [ubuntu/lucid-security] apt_0.7.25.3ubuntu9.13_i386_translations.tar.gz, apt_0.7.25.3ubuntu9.13_sparc_translations.tar.gz, apt_0.7.25.3ubuntu9.13_powerpc_translations.tar.gz, apt, apt_0.7.25.3ubuntu9.13_ia64_translations.tar.gz, apt_0.7.25.3ubuntu9.13_armel_translations.tar.gz, apt_0.7.25.3ubuntu9.13_amd64_translations.tar.gz 0.7.25.3ubuntu9.13 (Accepted) Message-ID: <20120615210840.26340.14259.launchpad@cocoplum.canonical.com> apt (0.7.25.3ubuntu9.13) lucid-security; urgency=low * SECURITY UPDATE: Disable apt-key net-update for now, as validation code is still insecure - cmdline/apt-key: exit 1 immediately in net_update() - CVE-2012-0954 - LP: #1013639 Date: Fri, 15 Jun 2012 07:58:02 -0500 Changed-By: Jamie Strandboge Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/apt/0.7.25.3ubuntu9.13 -------------- next part -------------- Format: 1.8 Date: Fri, 15 Jun 2012 07:58:02 -0500 Source: apt Binary: apt apt-doc libapt-pkg-dev libapt-pkg-doc apt-utils apt-transport-https Architecture: source Version: 0.7.25.3ubuntu9.13 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Jamie Strandboge Description: apt - Advanced front-end for dpkg apt-doc - Documentation for APT apt-transport-https - APT https transport apt-utils - APT utility programs libapt-pkg-dev - Development files for APT's libapt-pkg and libapt-inst libapt-pkg-doc - Documentation for APT development Launchpad-Bugs-Fixed: 1013639 Changes: apt (0.7.25.3ubuntu9.13) lucid-security; urgency=low . * SECURITY UPDATE: Disable apt-key net-update for now, as validation code is still insecure - cmdline/apt-key: exit 1 immediately in net_update() - CVE-2012-0954 - LP: #1013639 Checksums-Sha1: 42d5bd22047e3d5132b46248516e70b66bd876bf 1998 apt_0.7.25.3ubuntu9.13.dsc f1513406caa90dbf66eee050b326f709353545a0 2751327 apt_0.7.25.3ubuntu9.13.tar.gz Checksums-Sha256: c8fd4a7b92e345b3d68db98fb27b5347f68ce4c8d11b0ad72dced94ae9a75a3e 1998 apt_0.7.25.3ubuntu9.13.dsc 58923315e50d233a6f3f243f5a67efce370f0b2e98df38642063ce5cc3b712c0 2751327 apt_0.7.25.3ubuntu9.13.tar.gz Files: be73547b047426ea7deff281b1944fbe 1998 admin important apt_0.7.25.3ubuntu9.13.dsc 8dc310001a5668416c263bc7a709e40b 2751327 admin important apt_0.7.25.3ubuntu9.13.tar.gz Original-Maintainer: APT Development Team From marc.deslauriers at ubuntu.com Mon Jun 18 13:34:02 2012 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Mon, 18 Jun 2012 13:34:02 -0000 Subject: [ubuntu/lucid-security] ffmpeg-extra 4:0.5.9-0ubuntu0.10.04.1 (Accepted) Message-ID: <20120618133402.9151.68617.launchpad@cocoplum.canonical.com> ffmpeg-extra (4:0.5.9-0ubuntu0.10.04.1) lucid-security; urgency=low * SECURITY UPDATE: Updated to libav 0.5.9 to fix multiple security issues. (LP: #1012132) - CVE-2011-3929 - CVE-2011-3936 - CVE-2011-3940 - CVE-2011-3947 - CVE-2011-3951 - CVE-2011-3952 - CVE-2012-0851 - CVE-2012-0852 - CVE-2012-0853 - CVE-2012-0858 - CVE-2012-0859 - CVE-2012-0947 * Removed upstreamed patches: - CVE-2010-3429.patch - CVE-2010-3908.patch - CVE-2010-4704.patch - CVE-2011-0480.patch - CVE-2011-0722.patch - CVE-2011-0723.patch - CVE-2011-2161.patch - CVE-2011-3362.patch - CVE-2011-3504.patch - CVE-2011-4351.patch - CVE-2011-4353.patch - CVE-2011-4364.patch - CVE-2011-4579.patch Date: Tue, 12 Jun 2012 11:45:36 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/ffmpeg-extra/4:0.5.9-0ubuntu0.10.04.1 -------------- next part -------------- Format: 1.8 Date: Tue, 12 Jun 2012 11:45:36 -0400 Source: ffmpeg-extra Binary: libavutil-extra-49 libavutil-unstripped-49 libavcodec-extra-52 libavcodec-unstripped-52 libavdevice-extra-52 libavdevice-unstripped-52 libavfilter-extra-0 libavfilter-unstripped-0 libpostproc-extra-51 libpostproc-unstripped-51 libavformat-extra-52 libavformat-unstripped-52 libswscale-extra-0 libswscale-unstripped-0 Architecture: source Version: 4:0.5.9-0ubuntu0.10.04.1 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: libavcodec-extra-52 - ffmpeg codec library libavcodec-unstripped-52 - ffmpeg utility library - transitional package libavdevice-extra-52 - ffmpeg device handling library libavdevice-unstripped-52 - ffmpeg utility library - transitional package libavfilter-extra-0 - ffmpeg video filtering library libavfilter-unstripped-0 - ffmpeg utility library - transitional package libavformat-extra-52 - ffmpeg file format library libavformat-unstripped-52 - ffmpeg utility library - transitional package libavutil-extra-49 - ffmpeg utility library libavutil-unstripped-49 - ffmpeg utility library - transitional package libpostproc-extra-51 - ffmpeg video postprocessing library libpostproc-unstripped-51 - ffmpeg utility library - transitional package libswscale-extra-0 - ffmpeg video scaling library libswscale-unstripped-0 - ffmpeg utility library - transitional package Launchpad-Bugs-Fixed: 1012132 Changes: ffmpeg-extra (4:0.5.9-0ubuntu0.10.04.1) lucid-security; urgency=low . * SECURITY UPDATE: Updated to libav 0.5.9 to fix multiple security issues. (LP: #1012132) - CVE-2011-3929 - CVE-2011-3936 - CVE-2011-3940 - CVE-2011-3947 - CVE-2011-3951 - CVE-2011-3952 - CVE-2012-0851 - CVE-2012-0852 - CVE-2012-0853 - CVE-2012-0858 - CVE-2012-0859 - CVE-2012-0947 * Removed upstreamed patches: - CVE-2010-3429.patch - CVE-2010-3908.patch - CVE-2010-4704.patch - CVE-2011-0480.patch - CVE-2011-0722.patch - CVE-2011-0723.patch - CVE-2011-2161.patch - CVE-2011-3362.patch - CVE-2011-3504.patch - CVE-2011-4351.patch - CVE-2011-4353.patch - CVE-2011-4364.patch - CVE-2011-4579.patch Checksums-Sha1: fd4622d48fce00a28403faef319da1afd5684cea 3286 ffmpeg-extra_0.5.9-0ubuntu0.10.04.1.dsc f27c2425b0eae0773c4650db02e9facb300f8d58 3335278 ffmpeg-extra_0.5.9.orig.tar.gz cda01647edabf1ce8cf9f8e02a326ac5d3f493c3 62519 ffmpeg-extra_0.5.9-0ubuntu0.10.04.1.diff.gz Checksums-Sha256: 14ea66ad9f25fa99bbd1014bd0733f531ed5d5adfe2fd2a855100d04ec374610 3286 ffmpeg-extra_0.5.9-0ubuntu0.10.04.1.dsc acb9a0693be6cd82e7e4e7928bb4227704cea67e8df67d30963e5dc1604908e4 3335278 ffmpeg-extra_0.5.9.orig.tar.gz b1e1f3c25852d67d61c51ad1b218980f322038c4e03b7309b65a4f82434f7699 62519 ffmpeg-extra_0.5.9-0ubuntu0.10.04.1.diff.gz Files: 4cfc5cce534d2d549f5970dd00180cc6 3286 libs optional ffmpeg-extra_0.5.9-0ubuntu0.10.04.1.dsc bece0d81795de82bdb06c17eeb27353a 3335278 libs optional ffmpeg-extra_0.5.9.orig.tar.gz 48d2870cf1e2b09bad1e96a35e5ce630 62519 libs optional ffmpeg-extra_0.5.9-0ubuntu0.10.04.1.diff.gz Original-Maintainer: Debian multimedia packages maintainers From marc.deslauriers at ubuntu.com Mon Jun 18 13:34:46 2012 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Mon, 18 Jun 2012 13:34:46 -0000 Subject: [ubuntu/lucid-security] ffmpeg 4:0.5.9-0ubuntu0.10.04.1 (Accepted) Message-ID: <20120618133446.9151.54706.launchpad@cocoplum.canonical.com> ffmpeg (4:0.5.9-0ubuntu0.10.04.1) lucid-security; urgency=low * SECURITY UPDATE: Updated to libav 0.5.9 to fix multiple security issues. (LP: #1012132) - CVE-2011-3929 - CVE-2011-3936 - CVE-2011-3940 - CVE-2011-3947 - CVE-2011-3951 - CVE-2011-3952 - CVE-2012-0851 - CVE-2012-0852 - CVE-2012-0853 - CVE-2012-0858 - CVE-2012-0859 - CVE-2012-0947 * Removed upstreamed patches: - CVE-2010-3429.patch - CVE-2010-3908.patch - CVE-2010-4704.patch - CVE-2011-0480.patch - CVE-2011-0722.patch - CVE-2011-0723.patch - CVE-2011-2161.patch - CVE-2011-3362.patch - CVE-2011-3504.patch - CVE-2011-4351.patch - CVE-2011-4353.patch - CVE-2011-4364.patch - CVE-2011-4579.patch Date: Tue, 12 Jun 2012 09:14:53 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/ffmpeg/4:0.5.9-0ubuntu0.10.04.1 -------------- next part -------------- Format: 1.8 Date: Tue, 12 Jun 2012 09:14:53 -0400 Source: ffmpeg Binary: ffmpeg ffmpeg-dbg ffmpeg-doc libavutil49 libavcodec52 libavdevice52 libavformat52 libavfilter0 libpostproc51 libswscale0 libavutil-dev libavcodec-dev libavdevice-dev libavformat-dev libavfilter-dev libpostproc-dev libswscale-dev Architecture: source Version: 4:0.5.9-0ubuntu0.10.04.1 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: ffmpeg - multimedia player, server and encoder ffmpeg-dbg - Debug symbols for ffmpeg related packages ffmpeg-doc - documentation of the ffmpeg API libavcodec-dev - development files for libavcodec libavcodec52 - ffmpeg codec library libavdevice-dev - development files for libavdevice libavdevice52 - ffmpeg device handling library libavfilter-dev - development files for libavfilter libavfilter0 - ffmpeg video filtering library libavformat-dev - development files for libavformat libavformat52 - ffmpeg file format library libavutil-dev - development files for libavutil libavutil49 - ffmpeg utility library libpostproc-dev - development files for libpostproc libpostproc51 - ffmpeg video postprocessing library libswscale-dev - development files for libswscale libswscale0 - ffmpeg video scaling library Launchpad-Bugs-Fixed: 1012132 Changes: ffmpeg (4:0.5.9-0ubuntu0.10.04.1) lucid-security; urgency=low . * SECURITY UPDATE: Updated to libav 0.5.9 to fix multiple security issues. (LP: #1012132) - CVE-2011-3929 - CVE-2011-3936 - CVE-2011-3940 - CVE-2011-3947 - CVE-2011-3951 - CVE-2011-3952 - CVE-2012-0851 - CVE-2012-0852 - CVE-2012-0853 - CVE-2012-0858 - CVE-2012-0859 - CVE-2012-0947 * Removed upstreamed patches: - CVE-2010-3429.patch - CVE-2010-3908.patch - CVE-2010-4704.patch - CVE-2011-0480.patch - CVE-2011-0722.patch - CVE-2011-0723.patch - CVE-2011-2161.patch - CVE-2011-3362.patch - CVE-2011-3504.patch - CVE-2011-4351.patch - CVE-2011-4353.patch - CVE-2011-4364.patch - CVE-2011-4579.patch Checksums-Sha1: afdbc1f4a573139399b0e72b59ddf7d85f94e9cc 2922 ffmpeg_0.5.9-0ubuntu0.10.04.1.dsc f27c2425b0eae0773c4650db02e9facb300f8d58 3335278 ffmpeg_0.5.9.orig.tar.gz b2682919f0304722f53cb171295bcfc7ab11fcaa 62040 ffmpeg_0.5.9-0ubuntu0.10.04.1.diff.gz Checksums-Sha256: efe60607c04125f1ba69437c69025670c56549827012d9b7e17c4e9d73a03f99 2922 ffmpeg_0.5.9-0ubuntu0.10.04.1.dsc acb9a0693be6cd82e7e4e7928bb4227704cea67e8df67d30963e5dc1604908e4 3335278 ffmpeg_0.5.9.orig.tar.gz 04d9e3aceff4684d6f48a69594b9b7a341fb9e7d789c08e40748840ccd71b429 62040 ffmpeg_0.5.9-0ubuntu0.10.04.1.diff.gz Files: d3f0e149263763b70b0804fb022c8f9d 2922 libs optional ffmpeg_0.5.9-0ubuntu0.10.04.1.dsc bece0d81795de82bdb06c17eeb27353a 3335278 libs optional ffmpeg_0.5.9.orig.tar.gz c751659cd27ed177ef8bdcb461e49803 62040 libs optional ffmpeg_0.5.9-0ubuntu0.10.04.1.diff.gz Original-Maintainer: Debian multimedia packages maintainers From jamie at ubuntu.com Mon Jun 18 15:34:35 2012 From: jamie at ubuntu.com (Jamie Strandboge) Date: Mon, 18 Jun 2012 15:34:35 -0000 Subject: [ubuntu/lucid-security] raptor 1.4.21-1ubuntu1.1 (Accepted) Message-ID: <20120618153435.9075.78429.launchpad@cocoplum.canonical.com> raptor (1.4.21-1ubuntu1.1) lucid-security; urgency=low * SECURITY UPDATE: Fix XML External Entity (XXE) attack - debian/patches/01-CVE-2012-0037.patch: Enforce entity loading policy in raptor_libxml_resolveEntity and raptor_libxml_getEntity by checking for file URIs and network URIs. - CVE-2012-0037 Date: Fri, 08 Jun 2012 11:29:19 -0500 Changed-By: Jamie Strandboge Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/raptor/1.4.21-1ubuntu1.1 -------------- next part -------------- Format: 1.8 Date: Fri, 08 Jun 2012 11:29:19 -0500 Source: raptor Binary: libraptor1-dev libraptor1 raptor-utils libraptor1-doc libraptor1-dbg Architecture: source Version: 1.4.21-1ubuntu1.1 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Jamie Strandboge Description: libraptor1 - Raptor RDF parser and serializer library libraptor1-dbg - Raptor RDF parser and serializer library - debugging symbols libraptor1-dev - Raptor RDF parser and serializer development libraries and header libraptor1-doc - Documentation for the Raptor RDF parser and serializer library raptor-utils - Raptor RDF parser and serializer utilities Changes: raptor (1.4.21-1ubuntu1.1) lucid-security; urgency=low . * SECURITY UPDATE: Fix XML External Entity (XXE) attack - debian/patches/01-CVE-2012-0037.patch: Enforce entity loading policy in raptor_libxml_resolveEntity and raptor_libxml_getEntity by checking for file URIs and network URIs. - CVE-2012-0037 Checksums-Sha1: 270be699aa23488d916bf4b1ef0f569a34f77cfb 1911 raptor_1.4.21-1ubuntu1.1.dsc 5dc18f7a224e29a7a8b7334be42c0f55ff5edd93 8959 raptor_1.4.21-1ubuntu1.1.diff.gz Checksums-Sha256: 59841b9f724ea21602b6f3ba922e51bef91fff36c3d327d7e1e46237770eada8 1911 raptor_1.4.21-1ubuntu1.1.dsc b52b0efdc74eaaf2d3ccbcd412593d93989205c636d93d4283d4e924c931bcb5 8959 raptor_1.4.21-1ubuntu1.1.diff.gz Files: 7e1901f46b9fd5d8d9862d68752e2011 1911 devel optional raptor_1.4.21-1ubuntu1.1.dsc e0d005e78db1cce159478572092ae67c 8959 devel optional raptor_1.4.21-1ubuntu1.1.diff.gz Original-Maintainer: Dave Beckett From marc.deslauriers at ubuntu.com Tue Jun 19 18:05:19 2012 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Tue, 19 Jun 2012 18:05:19 -0000 Subject: [ubuntu/lucid-security] clamav_0.96.5+dfsg-1ubuntu1.10.04.4_sparc_translations.tar.gz, clamav, clamav_0.96.5+dfsg-1ubuntu1.10.04.4_i386_translations.tar.gz, clamav_0.96.5+dfsg-1ubuntu1.10.04.4_amd64_translations.tar.gz, clamav_0.96.5+dfsg-1ubuntu1.10.04.4_armel_translations.tar.gz, clamav_0.96.5+dfsg-1ubuntu1.10.04.4_ia64_translations.tar.gz, clamav_0.96.5+dfsg-1ubuntu1.10.04.4_powerpc_translations.tar.gz 0.96.5+dfsg-1ubuntu1.10.04.4 (Accepted) Message-ID: <20120619180519.27417.38705.launchpad@cocoplum.canonical.com> clamav (0.96.5+dfsg-1ubuntu1.10.04.4) lucid-security; urgency=low * SECURITY UPDATE: fix detection bypass via malformed tar entry with length that exceeds tar size - libclamav/untar.c: scan output at end of truncated tar - http://git.clamav.net/gitweb?p=clamav-devel.git;a=commit;h=8e199ae3cfb2b862b8bc36d9a01c8f8d716169ab - CVE-2012-1457 * SECURITY UPDATE: fix detection bypass via crafted reset interval in CHM file - libclamav/mspack.c: properly scan chm with invalid handling. - http://git.clamav.net/gitweb?p=clamav-devel.git;a=commit;h=a58b68f8adf2466b761ce05f74a4580c1f74fbe6 - http://git.clamav.net/gitweb?p=clamav-devel.git;a=commit;h=9d6be7c56091f012e90074122db4ec12d3516011 - CVE-2012-1458 * SECURITY UPDATE: fix detection bypass via tar archive with invalid length field - libclamav/untar.c: improve logic, look at checksums - http://git.clamav.net/gitweb?p=clamav-devel.git;a=commit;h=c3c807d78b09b3f64630601002fdc7db257d89da - http://git.clamav.net/gitweb?p=clamav-devel.git;a=commit;h=9d6be7c56091f012e90074122db4ec12d3516011 - CVE-2012-1459 Date: Mon, 18 Jun 2012 10:28:54 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/clamav/0.96.5+dfsg-1ubuntu1.10.04.4 -------------- next part -------------- Format: 1.8 Date: Mon, 18 Jun 2012 10:28:54 -0400 Source: clamav Binary: clamav-base clamav-docs clamav-dbg clamav libclamav-dev libclamav6 clamav-daemon clamav-testfiles clamav-freshclam clamav-milter Architecture: source Version: 0.96.5+dfsg-1ubuntu1.10.04.4 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: clamav - anti-virus utility for Unix - command-line interface clamav-base - anti-virus utility for Unix - base package clamav-daemon - anti-virus utility for Unix - scanner daemon clamav-dbg - debug symbols for ClamAV clamav-docs - anti-virus utility for Unix - documentation clamav-freshclam - anti-virus utility for Unix - virus database update utility clamav-milter - anti-virus utility for Unix - sendmail integration clamav-testfiles - anti-virus utility for Unix - test files libclamav-dev - anti-virus utility for Unix - development files libclamav6 - anti-virus utility for Unix - library Changes: clamav (0.96.5+dfsg-1ubuntu1.10.04.4) lucid-security; urgency=low . * SECURITY UPDATE: fix detection bypass via malformed tar entry with length that exceeds tar size - libclamav/untar.c: scan output at end of truncated tar - http://git.clamav.net/gitweb?p=clamav-devel.git;a=commit;h=8e199ae3cfb2b862b8bc36d9a01c8f8d716169ab - CVE-2012-1457 * SECURITY UPDATE: fix detection bypass via crafted reset interval in CHM file - libclamav/mspack.c: properly scan chm with invalid handling. - http://git.clamav.net/gitweb?p=clamav-devel.git;a=commit;h=a58b68f8adf2466b761ce05f74a4580c1f74fbe6 - http://git.clamav.net/gitweb?p=clamav-devel.git;a=commit;h=9d6be7c56091f012e90074122db4ec12d3516011 - CVE-2012-1458 * SECURITY UPDATE: fix detection bypass via tar archive with invalid length field - libclamav/untar.c: improve logic, look at checksums - http://git.clamav.net/gitweb?p=clamav-devel.git;a=commit;h=c3c807d78b09b3f64630601002fdc7db257d89da - http://git.clamav.net/gitweb?p=clamav-devel.git;a=commit;h=9d6be7c56091f012e90074122db4ec12d3516011 - CVE-2012-1459 Checksums-Sha1: ad91bae329f8a1f4be118ac1dbb58fdee789c61f 2316 clamav_0.96.5+dfsg-1ubuntu1.10.04.4.dsc afad6ffc909814de070b2b42521ccf20a3e39acb 287594 clamav_0.96.5+dfsg-1ubuntu1.10.04.4.diff.gz Checksums-Sha256: a5c047af29c5a8766dcb10477375f9a5cba395b392581b55bdf998f247c60ad2 2316 clamav_0.96.5+dfsg-1ubuntu1.10.04.4.dsc dc582c80a6b1173debe9f3348529a254f839dd19109a0641cbd5e822c7e43e91 287594 clamav_0.96.5+dfsg-1ubuntu1.10.04.4.diff.gz Files: 5f3c5be15f0c2eec38a17e2ee9855c1c 2316 utils optional clamav_0.96.5+dfsg-1ubuntu1.10.04.4.dsc 8a067bf012d4d333890509b0c7a51154 287594 utils optional clamav_0.96.5+dfsg-1ubuntu1.10.04.4.diff.gz Original-Maintainer: ClamAV Team From launchpad at micahscomputing.com Wed Jun 20 10:10:18 2012 From: launchpad at micahscomputing.com (Micah Gersten) Date: Wed, 20 Jun 2012 10:10:18 -0000 Subject: [ubuntu/lucid-security] firefox 13.0.1+build1-0ubuntu0.10.04.1 (Accepted) Message-ID: <20120620101018.5340.24169.launchpad@ackee.canonical.com> firefox (13.0.1+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (FIREFOX_13_0_1_BUILD1) - see LP: #1013425 for USN information Date: 2012-06-15 03:56:01.988499+00:00 Changed-By: Micah Gersten https://launchpad.net/ubuntu/lucid/+source/firefox/13.0.1+build1-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From jtaylor at ubuntu.com Thu Jun 21 23:49:30 2012 From: jtaylor at ubuntu.com (Julian Taylor) Date: Thu, 21 Jun 2012 23:49:30 -0000 Subject: [ubuntu/lucid-proposed] pyfits 1:1.3-3ubuntu0.1 (Accepted) Message-ID: <20120621234930.25692.65898.launchpad@chaenomeles.canonical.com> pyfits (1:1.3-3ubuntu0.1) lucid-proposed; urgency=low * fix incompatibility with python2.6 in warnings code (LP: #432459) Date: Mon, 04 Jun 2012 00:46:46 +0200 Changed-By: Julian Taylor Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/pyfits/1:1.3-3ubuntu0.1 -------------- next part -------------- Format: 1.8 Date: Mon, 04 Jun 2012 00:46:46 +0200 Source: pyfits Binary: python-pyfits python-pyfits-doc Architecture: source Version: 1:1.3-3ubuntu0.1 Distribution: lucid-proposed Urgency: low Maintainer: Ubuntu Developers Changed-By: Julian Taylor Description: python-pyfits - Python module for reading, writing, and manipulating FITS files python-pyfits-doc - Documentation for PyFITS Launchpad-Bugs-Fixed: 432459 Changes: pyfits (1:1.3-3ubuntu0.1) lucid-proposed; urgency=low . * fix incompatibility with python2.6 in warnings code (LP: #432459) Checksums-Sha1: a557f342b2f62989c96f5df2ccdde3959a10b3c1 2180 pyfits_1.3-3ubuntu0.1.dsc c9bfe5ad90148e64d637196b4605822e758bed2c 10745 pyfits_1.3-3ubuntu0.1.diff.gz Checksums-Sha256: fcb78c69c4594cfd1412b8bc748ba869cb70c904e3a18b71b452d5ffa4a2c2d9 2180 pyfits_1.3-3ubuntu0.1.dsc 567f066521015f1d619e8f672a3768a96cf7238b8d8f2a3673dc241835d2aa95 10745 pyfits_1.3-3ubuntu0.1.diff.gz Files: 6a76aa1adbb4fcf3f2be9cda1fc72abf 2180 python optional pyfits_1.3-3ubuntu0.1.dsc cf266381434ca74c13f00e95a429caa7 10745 python optional pyfits_1.3-3ubuntu0.1.diff.gz Original-Maintainer: Debian Python Modules Team From launchpad at micahscomputing.com Fri Jun 22 01:44:18 2012 From: launchpad at micahscomputing.com (Micah Gersten) Date: Fri, 22 Jun 2012 01:44:18 -0000 Subject: [ubuntu/lucid-security] thunderbird 13.0.1+build1-0ubuntu0.10.04.1 (Accepted) Message-ID: <20120622014418.6655.55061.launchpad@ackee.canonical.com> thunderbird (13.0.1+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (THUNDERBIRD_13_0_1_BUILD1) - see LP: #1007556 for USN information * Refresh build-depends: - Bump minimum GTK version to 2.14 as we build with GIO support - Add minimum requirement for glib (2.18) - Drop libidl-dev, this doesn't appear to be needed now - Bump minimum NSPR version to 4.9.0 for --enable-system-nspr builds - Bump minimum sqlite version to 3.7.10 for --enable-system-sqlite builds - Bump minimum NSS version to 3.13.2 for --enable-system-nss builds * Clean up the file exclude list and add comments for excluded files - update debian/build/create-tarball.py * Make it easy to run Thunderbird in valgrind for builds that are compiled with explicit valgrind support - update debian/thunderbird.sh.in * Refresh patches: - update debian/patches/revert-bmo621446-investigation.patch - update debian/patches/dont-include-hyphenation-patterns.patch - update debian/patches/use-new-yasm-in-lucid.patch * Drop patches fixed upstream: - remove debian/patches/use-menubar-text-colour-on-tabbar.patch - remove debian/patches/no-sps-profiler-on-unsupported-archs.patch - remove debian/patches/distro-locale-searchplugins.patch - update debian/patches/series * Don't build with gnomevfs anymore - update debian/config/mozconfig.in - update debian/control.in - update debian/rules * Bump debhelper compat to 7 - update debian/apport/blacklist.in - update debian/appoty/source_thunderbird.py.in - update debian/compat - update debian/config/mozconfig.in - update debian/control.in - update debian/rules - update debian/thunderbird-dev.install.in - update debian/thunderbird-dev.links.in - update debian/thunderbird-globalmenu.dirs.in - update debian/thunderbird-gnome-support.install.in - update debian/thunderbird.dirs.in - update debian/thunderbird.install.in - update debian/thunderbird.links.in - update debian/thunderbird.lintian-overrides.in - update debian/thunderbird.sh.in * Use "general.useragent.locale" to select the searchengine locale - update debian/patches/distro-locale-searchplugins.patch - add debian/patches/dont-override-general-useragent-locale.patch - update debian/patches/series * Drop no-dynamic-nss-softokn.patch. This patch has no documentation and it doesn't look like it's actually useful for anything * Apport hook improvements: - Add support for reporting preference defaults that are set by extensions - When reporting preferences, record the source of each preference - Report plugin packages for plugins that are installed with the package manager - Add some addon manager related prefs to the whitelist - Display additional metadata in the extensions report - Take "default-to-compatible" in to account when determining whether the user is running incompatible addons - Attach submitted crash ID's to bug reports - Report if files in the profile folder have broken permissions * Update compare-locales to 0.9.5 * Fix for NSS libs not being signed, breaking FIPS - update debian/rules * Update StartupWMClass to the correct name - update debian/thunderbird.desktop.in - update debian/rules Date: 2012-06-15 06:36:46.826311+00:00 Changed-By: Chris Coulson Signed-By: Micah Gersten https://launchpad.net/ubuntu/lucid/+source/thunderbird/13.0.1+build1-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From launchpad at micahscomputing.com Fri Jun 22 01:44:43 2012 From: launchpad at micahscomputing.com (Micah Gersten) Date: Fri, 22 Jun 2012 01:44:43 -0000 Subject: [ubuntu/lucid-security] enigmail 2:1.4.2-0ubuntu0.10.04.1 (Accepted) Message-ID: <20120622014443.6655.72431.launchpad@ackee.canonical.com> enigmail (2:1.4.2-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream release v1.4.2 - LP: #1007556 Date: 2012-06-06 08:56:42.732568+00:00 Changed-By: Chris Coulson Signed-By: Micah Gersten https://launchpad.net/ubuntu/lucid/+source/enigmail/2:1.4.2-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From clint at ubuntu.com Fri Jun 22 19:08:16 2012 From: clint at ubuntu.com (Clint Byrum) Date: Fri, 22 Jun 2012 19:08:16 -0000 Subject: [ubuntu/lucid-proposed] python-qt4 4.7.2-0ubuntu1.1 (Accepted) Message-ID: <20120622190816.23778.1799.launchpad@gac.canonical.com> python-qt4 (4.7.2-0ubuntu1.1) lucid-proposed; urgency=low * d/p/lp-561303.diff: Cherry pick fix from 4.7.3 to stop crashes. (LP: #561303) Date: Fri, 22 Jun 2012 10:59:44 -0700 Changed-By: Clint Byrum Maintainer: Kubuntu Developers https://launchpad.net/ubuntu/lucid/+source/python-qt4/4.7.2-0ubuntu1.1 -------------- next part -------------- Format: 1.8 Date: Fri, 22 Jun 2012 10:59:44 -0700 Source: python-qt4 Binary: python-qt4 python-qt4-dbg python-qt4-phonon python-qt4-phonon-dbg python-qt4-dbus python-qt4-dbus-dbg python-qt4-gl python-qt4-gl-dbg python-qt4-sql python-qt4-sql-dbg python-qt4-dev python-qt4-doc pyqt4-dev-tools Architecture: source Version: 4.7.2-0ubuntu1.1 Distribution: lucid-proposed Urgency: low Maintainer: Kubuntu Developers Changed-By: Clint Byrum Description: pyqt4-dev-tools - Development tools for PyQt4 python-qt4 - Python bindings for Qt4 python-qt4-dbg - Python bindings for Qt4 (debug extensions) python-qt4-dbus - DBus Support for PyQt4 python-qt4-dbus-dbg - DBus Support for PyQt4 (debug extensions) python-qt4-dev - Development files for PyQt4 python-qt4-doc - Documentation and examples for PyQt4 python-qt4-gl - Python bindings for Qt4's OpenGL module python-qt4-gl-dbg - Python bindings for Qt4's OpenGL module (debug extension) python-qt4-phonon - Python bindings for Phonon python-qt4-phonon-dbg - Python bindings for Phonon (debug extensions) python-qt4-sql - Python bindings for PyQt4's SQL module python-qt4-sql-dbg - Python bindings for PyQt4's SQL module (debug extension) Launchpad-Bugs-Fixed: 561303 Changes: python-qt4 (4.7.2-0ubuntu1.1) lucid-proposed; urgency=low . * d/p/lp-561303.diff: Cherry pick fix from 4.7.3 to stop crashes. (LP: #561303) Checksums-Sha1: 2f26c121f5f1100bbcd035a3cdc7fcf7ceb9c83f 2765 python-qt4_4.7.2-0ubuntu1.1.dsc 9990166d74ab88c66dd5d8fb1c121ab8db92aad6 16044 python-qt4_4.7.2-0ubuntu1.1.debian.tar.gz Checksums-Sha256: b7452fa1722f31bd28fd1a02588b22d89d60d936836a5ecd96576ecb34d738ce 2765 python-qt4_4.7.2-0ubuntu1.1.dsc 0f619ad6e835e214fbfd61054fb305510d0b175d436f5af417adeb17fb73cda2 16044 python-qt4_4.7.2-0ubuntu1.1.debian.tar.gz Files: 916e4284a47a56ea72f975878a25486f 2765 python optional python-qt4_4.7.2-0ubuntu1.1.dsc 53ea8b2f1f1906f814e1a9b55575b621 16044 python optional python-qt4_4.7.2-0ubuntu1.1.debian.tar.gz Original-Maintainer: Debian Python Modules Team From steve.langasek at canonical.com Mon Jun 25 15:24:21 2012 From: steve.langasek at canonical.com (Steve Langasek) Date: Mon, 25 Jun 2012 15:24:21 -0000 Subject: [ubuntu/lucid-updates] libgcrypt11 1.4.4-5ubuntu2.1 (Accepted) Message-ID: <20120625152421.2084.55326.launchpad@ackee.canonical.com> libgcrypt11 (1.4.4-5ubuntu2.1) lucid-proposed; urgency=low * Do not call global_init when setting thread callbacks (LP: #423252) Date: 2012-05-24 20:55:13.775018+00:00 Changed-By: Adam Stokes Signed-By: Steve Langasek https://launchpad.net/ubuntu/lucid/+source/libgcrypt11/1.4.4-5ubuntu2.1 -------------- next part -------------- Sorry, changesfile not available. From marc.deslauriers at canonical.com Wed Jun 27 12:42:15 2012 From: marc.deslauriers at canonical.com (Marc Deslauriers) Date: Wed, 27 Jun 2012 12:42:15 -0000 Subject: [ubuntu/lucid-security] network-manager 0.8-0ubuntu3.3 (Accepted) Message-ID: <20120627124215.6957.89078.launchpad@ackee.canonical.com> network-manager (0.8-0ubuntu3.3) lucid-security; urgency=low * SECURITY UPDATE: Insecure WPA AdHoc network creation (LP: #905748) - debian/patches/CVE-2012-2736.patch: disable WPA-secured adhoc wireless networks in libnm-util/nm-utils.c, src/nm-device-wifi.c, src/system-settings/nm-sysconfig-settings.c. - CVE-2012-2736 Date: 2012-06-22 18:11:01.390835+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/lucid/+source/network-manager/0.8-0ubuntu3.3 -------------- next part -------------- Sorry, changesfile not available. From marc.deslauriers at ubuntu.com Wed Jun 27 13:33:39 2012 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Wed, 27 Jun 2012 13:33:39 -0000 Subject: [ubuntu/lucid-security] network-manager-applet_0.8-0ubuntu3.1_armel_translations.tar.gz, network-manager-applet_0.8-0ubuntu3.1_ia64_translations.tar.gz, network-manager-applet_0.8-0ubuntu3.1_i386_translations.tar.gz, network-manager-applet, network-manager-applet_0.8-0ubuntu3.1_powerpc_translations.tar.gz, network-manager-applet_0.8-0ubuntu3.1_amd64_translations.tar.gz, network-manager-applet_0.8-0ubuntu3.1_sparc_translations.tar.gz 0.8-0ubuntu3.1 (Accepted) Message-ID: <20120627133339.4572.18238.launchpad@cocoplum.canonical.com> network-manager-applet (0.8-0ubuntu3.1) lucid-security; urgency=low * SECURITY UPDATE: Insecure WPA AdHoc network creation (LP: #905748) - debian/patches/CVE-2012-2736.patch: disable WPA-secured adhoc wireless networks. - CVE-2012-2736 Date: Fri, 22 Jun 2012 09:31:35 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/network-manager-applet/0.8-0ubuntu3.1 -------------- next part -------------- Format: 1.8 Date: Fri, 22 Jun 2012 09:31:35 -0400 Source: network-manager-applet Binary: network-manager-gnome Architecture: source Version: 0.8-0ubuntu3.1 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: network-manager-gnome - network management framework (GNOME frontend) Launchpad-Bugs-Fixed: 905748 Changes: network-manager-applet (0.8-0ubuntu3.1) lucid-security; urgency=low . * SECURITY UPDATE: Insecure WPA AdHoc network creation (LP: #905748) - debian/patches/CVE-2012-2736.patch: disable WPA-secured adhoc wireless networks. - CVE-2012-2736 Checksums-Sha1: 790fce003f0c0e43f4fdd2eaa06e2b9402f36132 2210 network-manager-applet_0.8-0ubuntu3.1.dsc 99479b41bbef575509d494d7bae82b50f1c3b119 41659 network-manager-applet_0.8-0ubuntu3.1.diff.gz Checksums-Sha256: e4b78f57508fb16eb70c7a8864cfa9b1759a14fe0550c83e2f6d6b990fd8141b 2210 network-manager-applet_0.8-0ubuntu3.1.dsc 1e0f3cbd21333b86a907a6fdf80ecadf3e08255772c3ee9701635d75c64817a8 41659 network-manager-applet_0.8-0ubuntu3.1.diff.gz Files: 612811129de27f554ba9739fc152c9a5 2210 gnome optional network-manager-applet_0.8-0ubuntu3.1.dsc d7780d3979fdcbf53bff40ed618b55e0 41659 gnome optional network-manager-applet_0.8-0ubuntu3.1.diff.gz From adconrad at 0c3.net Thu Jun 28 16:31:48 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 28 Jun 2012 16:31:48 -0000 Subject: [ubuntu/lucid-updates] linux 2.6.32-41.91 (Accepted) Message-ID: <20120628163148.31276.14399.launchpad@ackee.canonical.com> linux (2.6.32-41.91) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1012014 [ Tim Gardner ] * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 [ Upstream Kernel Changes ] * dl2k: Clean up rio_ioctl - CVE-2012-2313 * hfsplus: Fix potential buffer overflows - CVE-2012-2319 Date: 2012-06-13 11:37:35.865088+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux/2.6.32-41.91 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Jun 28 16:32:06 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 28 Jun 2012 16:32:06 -0000 Subject: [ubuntu/lucid-security] linux 2.6.32-41.91 (Accepted) Message-ID: <20120628163206.31276.80854.launchpad@ackee.canonical.com> linux (2.6.32-41.91) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1012014 [ Tim Gardner ] * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 [ Upstream Kernel Changes ] * dl2k: Clean up rio_ioctl - CVE-2012-2313 * hfsplus: Fix potential buffer overflows - CVE-2012-2319 Date: 2012-06-13 11:37:35.865088+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux/2.6.32-41.91 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Jun 28 16:32:12 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 28 Jun 2012 16:32:12 -0000 Subject: [ubuntu/lucid-updates] linux-ec2 2.6.32-345.50 (Accepted) Message-ID: <20120628163212.31276.78238.launchpad@ackee.canonical.com> linux-ec2 (2.6.32-345.50) lucid-proposed; urgency=low [ Stefan Bader ] * Rebased to Ubuntu-2.6.32-41.91 * Release Tracking Bug - LP: #1012812 [ Ubuntu: 2.6.32-41.91 ] * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 * dl2k: Clean up rio_ioctl - CVE-2012-2313 * hfsplus: Fix potential buffer overflows - CVE-2012-2319 Date: 2012-06-15 10:06:21.811022+00:00 Changed-By: Stefan Bader Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-ec2/2.6.32-345.50 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Jun 28 16:32:14 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 28 Jun 2012 16:32:14 -0000 Subject: [ubuntu/lucid-security] linux-ec2 2.6.32-345.50 (Accepted) Message-ID: <20120628163214.31276.72524.launchpad@ackee.canonical.com> linux-ec2 (2.6.32-345.50) lucid-proposed; urgency=low [ Stefan Bader ] * Rebased to Ubuntu-2.6.32-41.91 * Release Tracking Bug - LP: #1012812 [ Ubuntu: 2.6.32-41.91 ] * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 * dl2k: Clean up rio_ioctl - CVE-2012-2313 * hfsplus: Fix potential buffer overflows - CVE-2012-2319 Date: 2012-06-15 10:06:21.811022+00:00 Changed-By: Stefan Bader Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-ec2/2.6.32-345.50 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Jun 28 16:34:55 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 28 Jun 2012 16:34:55 -0000 Subject: [ubuntu/lucid-security] linux-lts-backport-natty 2.6.38-15.61~lucid1 (Accepted) Message-ID: <20120628163455.31732.41639.launchpad@ackee.canonical.com> linux-lts-backport-natty (2.6.38-15.61~lucid1) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1012532 [ Herton Ronaldo Krzesinski ] * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 [ Upstream Kernel Changes ] * dl2k: Clean up rio_ioctl - CVE-2012-2313 * hfsplus: Fix potential buffer overflows - CVE-2012-2319 * Avoid reading past buffer when calling GETACL - LP: #1002505 - CVE-2012-2375 * Avoid beyond bounds copy while caching ACL - LP: #1002505 - CVE-2012-2375 * Fix length of buffer copied in __nfs4_get_acl_uncached - LP: #1002505 - CVE-2012-2375 linux (2.6.38-15.60) natty-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1002384 [ Andy Whitcroft ] * [Config] control.stub is an intermediate product not a dependancy - LP: #992414 [ Herton Ronaldo Krzesinski ] * linux: add Build-Depends for libnewt-dev, to enable perf TUI support - LP: #981717 [ Tim Gardner ] * [Config] perarch and indep tools builds need separate build directories [ Upstream Kernel Changes ] * fcaps: clear the same personality flags as suid when fcaps are used - LP: #987571 - CVE-2012-2123 * natty security: fix compile error in commoncap.c - LP: #987571 - CVE-2012-2123 * KVM: Clean up error handling during VCPU creation - LP: #971685 - CVE-2012-1601 * KVM: Ensure all vcpus are consistent with in-kernel irqchip settings - LP: #971685 - CVE-2012-1601 * KVM: unmap pages from the iommu when slots are removed - LP: #987569 - CVE-2012-2121 * NFSv4: include bitmap in nfsv4 get acl data - LP: #893147 - CVE-2011-4131 * hugepages: fix use after free bug in "quota" handling - LP: #990368 - CVE-2012-2133 Date: 2012-06-13 13:23:28.432649+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-lts-backport-natty/2.6.38-15.61~lucid1 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Jun 28 16:34:45 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 28 Jun 2012 16:34:45 -0000 Subject: [ubuntu/lucid-updates] linux-meta-lts-backport-oneiric 3.0.0.22.10 (Accepted) Message-ID: <20120628163445.31732.93462.launchpad@ackee.canonical.com> linux-meta-lts-backport-oneiric (3.0.0.22.10) lucid-proposed; urgency=low * linux-oneiric 3.0.0-22.36 Date: 2012-06-13 16:26:07.132221+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-meta-lts-backport-oneiric/3.0.0.22.10 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Jun 28 16:35:26 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 28 Jun 2012 16:35:26 -0000 Subject: [ubuntu/lucid-security] linux-lts-backport-oneiric 3.0.0-22.36~lucid1 (Accepted) Message-ID: <20120628163526.31732.31888.launchpad@ackee.canonical.com> linux-lts-backport-oneiric (3.0.0-22.36~lucid1) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1012483 [ Herton Ronaldo Krzesinski ] * SAUCE: fix get_gate_vma call in i386 NX emulation code - LP: #1009200 [ Upstream Kernel Changes ] * Avoid reading past buffer when calling GETACL - LP: #1002505 - CVE-2012-2375 * Avoid beyond bounds copy while caching ACL - LP: #1002505 - CVE-2012-2375 * Fix length of buffer copied in __nfs4_get_acl_uncached - LP: #1002505 - CVE-2012-2375 * tilegx: enable SYSCALL_WRAPPERS support - LP: #1008697 * block: fix buffer overflow when printing partition UUIDs - LP: #1008697 * block: don't mark buffers beyond end of disk as mapped - LP: #1008697 * PARISC: fix PA1.1 oops on boot - LP: #1008697 * PARISC: fix crash in flush_icache_page_asm on PA1.1 - LP: #1008697 * PARISC: fix panic on prefetch(NULL) on PA7300LC - LP: #1008697 * isdn/gigaset: ratelimit CAPI message dumps - LP: #1008697 * vfs: make AIO use the proper rw_verify_area() area helpers - LP: #1008697 * cfg80211: warn if db.txt is empty with CONFIG_CFG80211_INTERNAL_REGDB - LP: #1008697 * Fix blocking allocations called very early during bootup - LP: #1008697 * s390/pfault: fix task state race - LP: #1008697 * SCSI: mpt2sas: Fix for panic happening because of improper memory allocation - LP: #1008697 * RDMA/cxgb4: Drop peer_abort when no endpoint found - LP: #1008697 * KEYS: Use the compat keyctl() syscall wrapper on Sparc64 for Sparc32 compat - LP: #1008697 * SELinux: if sel_make_bools errors don't leave inconsistent state - LP: #1008697 * drivers/staging/comedi/comedi_fops.c: add missing vfree - LP: #1008697 * perf/x86: Update event scheduling constraints for AMD family 15h models - LP: #1008697 * mtd: sm_ftl: fix typo in major number. - LP: #1008697 * ahci: Detect Marvell 88SE9172 SATA controller - LP: #1008697 * um: Fix __swp_type() - LP: #1008697 * um: Implement a custom pte_same() function - LP: #1008697 * docs: update HOWTO for 2.6.x -> 3.x versioning - LP: #1008697 * USB: cdc-wdm: poll must return POLLHUP if device is gone - LP: #1008697 * workqueue: skip nr_running sanity check in worker_enter_idle() if trustee is active - LP: #1008697 * mm: mempolicy: Let vma_merge and vma_split handle vma->vm_policy linkages - LP: #1008697 * md: using GFP_NOIO to allocate bio for flush request - LP: #1008697 * Add missing call to uart_update_timeout() - LP: #1008697 * tty: Allow uart_register/unregister/register - LP: #1008697 * USB: ftdi-sio: add support for Physik Instrumente E-861 - LP: #1008697 * usb-storage: unusual_devs entry for Yarvik PMP400 MP4 player - LP: #1008697 * USB: ffs-test: fix length argument of out function call - LP: #1008697 * drivers/rtc/rtc-pl031.c: configure correct wday for 2000-01-01 - LP: #1008697 * SCSI: hpsa: Fix problem with MSA2xxx devices - LP: #1008697 * usb: usbtest: two super speed fixes for usbtest - LP: #1008697 * USB: Remove races in devio.c - LP: #1008697 * USB: serial: ti_usb_3410_5052: Add support for the FRI2 serial console - LP: #1008697 * usb: gadget: fsl_udc_core: dTD's next dtd pointer need to be updated once written - LP: #1008697 * usb: add USB_QUIRK_RESET_RESUME for M-Audio 88es - LP: #1008697 * xhci: Add Lynx Point to list of Intel switchable hosts. - LP: #1008697 * usb-xhci: Handle COMP_TX_ERR for isoc tds - LP: #1008697 * xhci: Reset reserved command ring TRBs on cleanup. - LP: #1008697 * xhci: Add new short TX quirk for Fresco Logic host. - LP: #1008697 * drm/i915: Avoid a double-read of PCH_IIR during interrupt handling - LP: #1008697 * drm/i915: [GEN7] Use HW scheduler for fixed function shaders - LP: #1008697 * drm/i915: don't clobber the pipe param in sanitize_modesetting - LP: #1008697 * nouveau: nouveau_set_bo_placement takes TTM flags - LP: #1008697 * smsusb: add autodetection support for USB ID 2040:c0a0 - LP: #1008697 * media: uvcvideo: Fix ENUMINPUT handling - LP: #1008697 * x86/mce: Fix check for processor context when machine check was taken. - LP: #1008697 * mmc: sdio: avoid spurious calls to interrupt handlers - LP: #1008697 * tile: fix bug where fls(0) was not returning 0 - LP: #1008697 * isci: fix oem parameter validation on single controller skus - LP: #1008697 * ARM: 7365/1: drop unused parameter from flush_cache_user_range - LP: #1008697 * ARM: 7409/1: Do not call flush_cache_user_range with mmap_sem held - LP: #1008697 * i2c: davinci: Free requested IRQ in remove - LP: #1008697 * Linux 3.0.33 - LP: #1008697 linux (3.0.0-21.35) oneiric-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1004571 [ Andy Whitcroft ] * [Config] control.stub is an intermediate product not a dependancy - LP: #992414 [ Herton Ronaldo Krzesinski ] * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 [ Tim Gardner ] * Revert "SAUCE: ite-cir: postpone ISR registration" - LP: #1002880 * [Config] perarch and indep tools builds need separate build directories [ Upstream Kernel Changes ] * Revert "autofs: work around unhappy compat problem on x86-64" - LP: #996109 * Revert "usb: Fix build error due to dma_mask is not at pdev_archdata at ARM" - LP: #996109 * KVM: unmap pages from the iommu when slots are removed - LP: #987569 - CVE-2012-2121 * NFSv4: include bitmap in nfsv4 get acl data - LP: #893147 - CVE-2011-4131 * hugepages: fix use after free bug in "quota" handling - LP: #990368 - CVE-2012-2133 * nfs: Enclose hostname in brackets when needed in nfs_do_root_mount - LP: #996109 * NFSv4: Ensure that the LOCK code sets exception->inode - LP: #996109 * NFSv4: Ensure that we check lock exclusive/shared type against open modes - LP: #996109 * x86, apic: APIC code touches invalid MSR on P5 class machines - LP: #996109 * xen: correctly check for pending events when restoring irq flags - LP: #996109 * xen/smp: Fix crash when booting with ACPI hotplug CPUs. - LP: #996109 * ASoC: dapm: Ensure power gets managed for line widgets - LP: #996109 * dmaengine: at_hdmac: remove clear-on-read in atc_dostart() - LP: #996109 * hwmon: fam15h_power: fix bogus values with current BIOSes - LP: #996109 * hwmon: (fam15h_power) Fix pci_device_id array - LP: #996109 * drm/i915: handle input/output sdvo timings separately in mode_set - LP: #996109 * drm/i915: fix integer overflow in i915_gem_execbuffer2() - LP: #996109 * drm/i915: fix integer overflow in i915_gem_do_execbuffer() - LP: #996109 * nl80211: ensure interface is up in various APIs - LP: #996109 * EHCI: fix criterion for resuming the root hub - LP: #996109 * brcm80211: smac: resume transmit fifo upon receiving frames - LP: #996109 * Fix modpost failures in fedora 17 - LP: #996109 * mmc: unbreak sdhci-esdhc-imx on i.MX25 - LP: #996109 * nfsd: fix b0rken error value for setattr on read-only mount - LP: #996109 * nfsd: fix error values returned by nfsd4_lockt() when nfsd_open() fails - LP: #996109 * USB: cdc-wdm: fix race leading leading to memory corruption - LP: #996109 * USB: EHCI: fix crash during suspend on ASUS computers - LP: #996109 * USB: gadget: storage gadgets send wrong error code for unknown commands - LP: #996109 * usb gadget: uvc: uvc_request_data::length field must be signed - LP: #996109 * pipes: add a "packetized pipe" mode for writing - LP: #996109 * autofs: make the autofsv5 packet file descriptor use a packetized pipe - LP: #996109 * ARM: 7403/1: tls: remove covert channel via TPIDRURW - LP: #996109 * SCSI: libsas: fix sas_find_bcast_phy() in the presence of 'vacant' phys - LP: #996109 * SCSI: libsas: fix false positive 'device attached' conditions - LP: #996109 * efi: Add new variable attributes - LP: #996109 * efivars: String functions - LP: #996109 * efivars: fix warnings when CONFIG_PSTORE=n - LP: #996109 * efi: Validate UEFI boot variables - LP: #996109 * efivars: Improve variable validation - LP: #996109 * hwmon: (coretemp) Increase CPU core limit - LP: #996109 * hwmon: (coretemp) fix oops on cpu unplug - LP: #996109 * libata: skip old error history when counting probe trials - LP: #996109 * i2c: pnx: Disable clk in suspend - LP: #996109 * ipw2200: Fix race condition in the command completion acknowledge - LP: #996109 * mac80211: fix AP mode EAP tx for VLAN stations - LP: #996109 * rtlwifi: Fix oops on unload - LP: #996109 * wl1251: fix crash on remove due to premature kfree - LP: #996109 * wl1251: fix crash on remove due to leftover work item - LP: #996109 * sched: Fix nohz load accounting -- again! - LP: #996109 * hfsplus: Fix potential buffer overflows - LP: #996109 * Linux 3.0.31 - LP: #996109 * smsc95xx: mark link down on startup and let PHY interrupt deal with carrier changes - LP: #1002880 * xen/pte: Fix crashes when trying to see non-existent PGD/PMD/PUD/PTEs - LP: #1002880 * xen/pci: don't use PCI BIOS service for configuration space accesses - LP: #1002880 * percpu, x86: don't use PMD_SIZE as embedded atom_size on 32bit - LP: #1002880 * asm-generic: Use __BITS_PER_LONG in statfs.h - LP: #1002880 * Fix __read_seqcount_begin() to use ACCESS_ONCE for sequence value read - LP: #1002880 * ARM: 7410/1: Add extra clobber registers for assembly in kernel_execve - LP: #1002880 * ARM: 7414/1: SMP: prevent use of the console when using idmap_pgd - LP: #1002880 * regulator: Fix the logic to ensure new voltage setting in valid range - LP: #1002880 * ARM: orion5x: Fix GPIO enable bits for MPP9 - LP: #1002880 * asix: Fix tx transfer padding for full-speed USB - LP: #1002880 * netem: fix possible skb leak - LP: #1002880 * net: In unregister_netdevice_notifier unregister the netdevices. - LP: #1002880 * net: l2tp: unlock socket lock before returning from l2tp_ip_sendmsg - LP: #1002880 * sky2: propogate rx hash when packet is copied - LP: #1002880 * sky2: fix receive length error in mixed non-VLAN/VLAN traffic - LP: #1002880 * tg3: Avoid panic from reserved statblk field access - LP: #1002880 * sungem: Fix WakeOnLan - LP: #1002880 * tcp: change tcp_adv_win_scale and tcp_rmem[2] - LP: #1002880 * sony-laptop: Enable keyboard backlight by default - LP: #1002880 * ALSA: echoaudio: Remove incorrect part of assertion - LP: #1002880 * ALSA: HDA: Lessen CPU usage when waiting for chip to respond - LP: #1002880 * usbnet: fix skb traversing races during unlink(v2) - LP: #1002880 * namespaces, pid_ns: fix leakage on fork() failure - LP: #1002880 * sparc64: Do not clobber %g2 in xcall_fetch_glob_regs(). - LP: #1002880 * ARM: prevent VM_GROWSDOWN mmaps extending below FIRST_USER_ADDRESS - LP: #1002880 * media: rc: Postpone ISR registration - LP: #1002880 * cdc_ether: Ignore bogus union descriptor for RNDIS devices - LP: #1002880 * cdc_ether: add Novatel USB551L device IDs for FLAG_WWAN - LP: #1002880 * percpu: pcpu_embed_first_chunk() should free unused parts after all allocs are complete - LP: #1002880 * hugetlb: prevent BUG_ON in hugetlb_fault() -> hugetlb_cow() - LP: #1002880 * mm: nobootmem: fix sign extend problem in __free_pages_memory() - LP: #1002880 * jffs2: Fix lock acquisition order bug in gc path - LP: #1002880 * arch/tile: apply commit 74fca9da0 to the compat signal handling as well - LP: #1002880 * crypto: mv_cesa requires on CRYPTO_HASH to build - LP: #1002880 * MD: Add del_timer_sync to mddev_suspend (fix nasty panic) - LP: #1002880 * tcp: do_tcp_sendpages() must try to push data out on oom conditions - LP: #1002880 * init: don't try mounting device as nfs root unless type fully matches - LP: #1002880 * ext4: avoid deadlock on sync-mounted FS w/o journal - LP: #1002880 * NFSv4: Revalidate uid/gid after open - LP: #1002880 * memcg: free spare array to avoid memory leak - LP: #1002880 * compat: Fix RT signal mask corruption via sigprocmask - LP: #1002880 * ext3: Fix error handling on inode bitmap corruption - LP: #1002880 * ext4: fix error handling on inode bitmap corruption - LP: #1002880 * ACPI / PM: Add Sony Vaio VPCCW29FX to nonvs blacklist. - LP: #1002880 * SCSI: hpsa: Add IRQF_SHARED back in for the non-MSI(X) interrupt handler - LP: #1002880 * wake up s_wait_unfrozen when ->freeze_fs fails - LP: #1002880 * pch_gpio: Support new device LAPIS Semiconductor ML7831 IOH - LP: #1002880 * pch_gbe: fixed the issue which receives an unnecessary packet. - LP: #1002880 * pch_gbe: support ML7831 IOH - LP: #1002880 * pch_gbe: Fixed the issue on which PC was frozen when link was downed. - LP: #1002880 * pch_gbe: Do not abort probe on bad MAC - LP: #1002880 * pch_gbe: memory corruption calling pch_gbe_validate_option() - LP: #1002880 * ia64: Add accept4() syscall - LP: #1002880 * Linux 3.0.32 - LP: #1002880 * dl2k: Clean up rio_ioctl - CVE-2012-2313 Date: 2012-06-13 15:37:21.813456+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-lts-backport-oneiric/3.0.0-22.36~lucid1 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Jun 28 16:34:44 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 28 Jun 2012 16:34:44 -0000 Subject: [ubuntu/lucid-updates] linux-lts-backport-natty 2.6.38-15.61~lucid1 (Accepted) Message-ID: <20120628163444.31732.29575.launchpad@ackee.canonical.com> linux-lts-backport-natty (2.6.38-15.61~lucid1) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1012532 [ Herton Ronaldo Krzesinski ] * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 [ Upstream Kernel Changes ] * dl2k: Clean up rio_ioctl - CVE-2012-2313 * hfsplus: Fix potential buffer overflows - CVE-2012-2319 * Avoid reading past buffer when calling GETACL - LP: #1002505 - CVE-2012-2375 * Avoid beyond bounds copy while caching ACL - LP: #1002505 - CVE-2012-2375 * Fix length of buffer copied in __nfs4_get_acl_uncached - LP: #1002505 - CVE-2012-2375 linux (2.6.38-15.60) natty-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1002384 [ Andy Whitcroft ] * [Config] control.stub is an intermediate product not a dependancy - LP: #992414 [ Herton Ronaldo Krzesinski ] * linux: add Build-Depends for libnewt-dev, to enable perf TUI support - LP: #981717 [ Tim Gardner ] * [Config] perarch and indep tools builds need separate build directories [ Upstream Kernel Changes ] * fcaps: clear the same personality flags as suid when fcaps are used - LP: #987571 - CVE-2012-2123 * natty security: fix compile error in commoncap.c - LP: #987571 - CVE-2012-2123 * KVM: Clean up error handling during VCPU creation - LP: #971685 - CVE-2012-1601 * KVM: Ensure all vcpus are consistent with in-kernel irqchip settings - LP: #971685 - CVE-2012-1601 * KVM: unmap pages from the iommu when slots are removed - LP: #987569 - CVE-2012-2121 * NFSv4: include bitmap in nfsv4 get acl data - LP: #893147 - CVE-2011-4131 * hugepages: fix use after free bug in "quota" handling - LP: #990368 - CVE-2012-2133 Date: 2012-06-13 13:23:28.432649+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-lts-backport-natty/2.6.38-15.61~lucid1 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Jun 28 16:35:27 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 28 Jun 2012 16:35:27 -0000 Subject: [ubuntu/lucid-security] linux-meta-lts-backport-oneiric 3.0.0.22.10 (Accepted) Message-ID: <20120628163527.31732.77775.launchpad@ackee.canonical.com> linux-meta-lts-backport-oneiric (3.0.0.22.10) lucid-proposed; urgency=low * linux-oneiric 3.0.0-22.36 Date: 2012-06-13 16:26:07.132221+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-meta-lts-backport-oneiric/3.0.0.22.10 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Jun 28 16:35:15 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 28 Jun 2012 16:35:15 -0000 Subject: [ubuntu/lucid-updates] linux-lts-backport-oneiric 3.0.0-22.36~lucid1 (Accepted) Message-ID: <20120628163515.31732.64025.launchpad@ackee.canonical.com> linux-lts-backport-oneiric (3.0.0-22.36~lucid1) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1012483 [ Herton Ronaldo Krzesinski ] * SAUCE: fix get_gate_vma call in i386 NX emulation code - LP: #1009200 [ Upstream Kernel Changes ] * Avoid reading past buffer when calling GETACL - LP: #1002505 - CVE-2012-2375 * Avoid beyond bounds copy while caching ACL - LP: #1002505 - CVE-2012-2375 * Fix length of buffer copied in __nfs4_get_acl_uncached - LP: #1002505 - CVE-2012-2375 * tilegx: enable SYSCALL_WRAPPERS support - LP: #1008697 * block: fix buffer overflow when printing partition UUIDs - LP: #1008697 * block: don't mark buffers beyond end of disk as mapped - LP: #1008697 * PARISC: fix PA1.1 oops on boot - LP: #1008697 * PARISC: fix crash in flush_icache_page_asm on PA1.1 - LP: #1008697 * PARISC: fix panic on prefetch(NULL) on PA7300LC - LP: #1008697 * isdn/gigaset: ratelimit CAPI message dumps - LP: #1008697 * vfs: make AIO use the proper rw_verify_area() area helpers - LP: #1008697 * cfg80211: warn if db.txt is empty with CONFIG_CFG80211_INTERNAL_REGDB - LP: #1008697 * Fix blocking allocations called very early during bootup - LP: #1008697 * s390/pfault: fix task state race - LP: #1008697 * SCSI: mpt2sas: Fix for panic happening because of improper memory allocation - LP: #1008697 * RDMA/cxgb4: Drop peer_abort when no endpoint found - LP: #1008697 * KEYS: Use the compat keyctl() syscall wrapper on Sparc64 for Sparc32 compat - LP: #1008697 * SELinux: if sel_make_bools errors don't leave inconsistent state - LP: #1008697 * drivers/staging/comedi/comedi_fops.c: add missing vfree - LP: #1008697 * perf/x86: Update event scheduling constraints for AMD family 15h models - LP: #1008697 * mtd: sm_ftl: fix typo in major number. - LP: #1008697 * ahci: Detect Marvell 88SE9172 SATA controller - LP: #1008697 * um: Fix __swp_type() - LP: #1008697 * um: Implement a custom pte_same() function - LP: #1008697 * docs: update HOWTO for 2.6.x -> 3.x versioning - LP: #1008697 * USB: cdc-wdm: poll must return POLLHUP if device is gone - LP: #1008697 * workqueue: skip nr_running sanity check in worker_enter_idle() if trustee is active - LP: #1008697 * mm: mempolicy: Let vma_merge and vma_split handle vma->vm_policy linkages - LP: #1008697 * md: using GFP_NOIO to allocate bio for flush request - LP: #1008697 * Add missing call to uart_update_timeout() - LP: #1008697 * tty: Allow uart_register/unregister/register - LP: #1008697 * USB: ftdi-sio: add support for Physik Instrumente E-861 - LP: #1008697 * usb-storage: unusual_devs entry for Yarvik PMP400 MP4 player - LP: #1008697 * USB: ffs-test: fix length argument of out function call - LP: #1008697 * drivers/rtc/rtc-pl031.c: configure correct wday for 2000-01-01 - LP: #1008697 * SCSI: hpsa: Fix problem with MSA2xxx devices - LP: #1008697 * usb: usbtest: two super speed fixes for usbtest - LP: #1008697 * USB: Remove races in devio.c - LP: #1008697 * USB: serial: ti_usb_3410_5052: Add support for the FRI2 serial console - LP: #1008697 * usb: gadget: fsl_udc_core: dTD's next dtd pointer need to be updated once written - LP: #1008697 * usb: add USB_QUIRK_RESET_RESUME for M-Audio 88es - LP: #1008697 * xhci: Add Lynx Point to list of Intel switchable hosts. - LP: #1008697 * usb-xhci: Handle COMP_TX_ERR for isoc tds - LP: #1008697 * xhci: Reset reserved command ring TRBs on cleanup. - LP: #1008697 * xhci: Add new short TX quirk for Fresco Logic host. - LP: #1008697 * drm/i915: Avoid a double-read of PCH_IIR during interrupt handling - LP: #1008697 * drm/i915: [GEN7] Use HW scheduler for fixed function shaders - LP: #1008697 * drm/i915: don't clobber the pipe param in sanitize_modesetting - LP: #1008697 * nouveau: nouveau_set_bo_placement takes TTM flags - LP: #1008697 * smsusb: add autodetection support for USB ID 2040:c0a0 - LP: #1008697 * media: uvcvideo: Fix ENUMINPUT handling - LP: #1008697 * x86/mce: Fix check for processor context when machine check was taken. - LP: #1008697 * mmc: sdio: avoid spurious calls to interrupt handlers - LP: #1008697 * tile: fix bug where fls(0) was not returning 0 - LP: #1008697 * isci: fix oem parameter validation on single controller skus - LP: #1008697 * ARM: 7365/1: drop unused parameter from flush_cache_user_range - LP: #1008697 * ARM: 7409/1: Do not call flush_cache_user_range with mmap_sem held - LP: #1008697 * i2c: davinci: Free requested IRQ in remove - LP: #1008697 * Linux 3.0.33 - LP: #1008697 linux (3.0.0-21.35) oneiric-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1004571 [ Andy Whitcroft ] * [Config] control.stub is an intermediate product not a dependancy - LP: #992414 [ Herton Ronaldo Krzesinski ] * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 [ Tim Gardner ] * Revert "SAUCE: ite-cir: postpone ISR registration" - LP: #1002880 * [Config] perarch and indep tools builds need separate build directories [ Upstream Kernel Changes ] * Revert "autofs: work around unhappy compat problem on x86-64" - LP: #996109 * Revert "usb: Fix build error due to dma_mask is not at pdev_archdata at ARM" - LP: #996109 * KVM: unmap pages from the iommu when slots are removed - LP: #987569 - CVE-2012-2121 * NFSv4: include bitmap in nfsv4 get acl data - LP: #893147 - CVE-2011-4131 * hugepages: fix use after free bug in "quota" handling - LP: #990368 - CVE-2012-2133 * nfs: Enclose hostname in brackets when needed in nfs_do_root_mount - LP: #996109 * NFSv4: Ensure that the LOCK code sets exception->inode - LP: #996109 * NFSv4: Ensure that we check lock exclusive/shared type against open modes - LP: #996109 * x86, apic: APIC code touches invalid MSR on P5 class machines - LP: #996109 * xen: correctly check for pending events when restoring irq flags - LP: #996109 * xen/smp: Fix crash when booting with ACPI hotplug CPUs. - LP: #996109 * ASoC: dapm: Ensure power gets managed for line widgets - LP: #996109 * dmaengine: at_hdmac: remove clear-on-read in atc_dostart() - LP: #996109 * hwmon: fam15h_power: fix bogus values with current BIOSes - LP: #996109 * hwmon: (fam15h_power) Fix pci_device_id array - LP: #996109 * drm/i915: handle input/output sdvo timings separately in mode_set - LP: #996109 * drm/i915: fix integer overflow in i915_gem_execbuffer2() - LP: #996109 * drm/i915: fix integer overflow in i915_gem_do_execbuffer() - LP: #996109 * nl80211: ensure interface is up in various APIs - LP: #996109 * EHCI: fix criterion for resuming the root hub - LP: #996109 * brcm80211: smac: resume transmit fifo upon receiving frames - LP: #996109 * Fix modpost failures in fedora 17 - LP: #996109 * mmc: unbreak sdhci-esdhc-imx on i.MX25 - LP: #996109 * nfsd: fix b0rken error value for setattr on read-only mount - LP: #996109 * nfsd: fix error values returned by nfsd4_lockt() when nfsd_open() fails - LP: #996109 * USB: cdc-wdm: fix race leading leading to memory corruption - LP: #996109 * USB: EHCI: fix crash during suspend on ASUS computers - LP: #996109 * USB: gadget: storage gadgets send wrong error code for unknown commands - LP: #996109 * usb gadget: uvc: uvc_request_data::length field must be signed - LP: #996109 * pipes: add a "packetized pipe" mode for writing - LP: #996109 * autofs: make the autofsv5 packet file descriptor use a packetized pipe - LP: #996109 * ARM: 7403/1: tls: remove covert channel via TPIDRURW - LP: #996109 * SCSI: libsas: fix sas_find_bcast_phy() in the presence of 'vacant' phys - LP: #996109 * SCSI: libsas: fix false positive 'device attached' conditions - LP: #996109 * efi: Add new variable attributes - LP: #996109 * efivars: String functions - LP: #996109 * efivars: fix warnings when CONFIG_PSTORE=n - LP: #996109 * efi: Validate UEFI boot variables - LP: #996109 * efivars: Improve variable validation - LP: #996109 * hwmon: (coretemp) Increase CPU core limit - LP: #996109 * hwmon: (coretemp) fix oops on cpu unplug - LP: #996109 * libata: skip old error history when counting probe trials - LP: #996109 * i2c: pnx: Disable clk in suspend - LP: #996109 * ipw2200: Fix race condition in the command completion acknowledge - LP: #996109 * mac80211: fix AP mode EAP tx for VLAN stations - LP: #996109 * rtlwifi: Fix oops on unload - LP: #996109 * wl1251: fix crash on remove due to premature kfree - LP: #996109 * wl1251: fix crash on remove due to leftover work item - LP: #996109 * sched: Fix nohz load accounting -- again! - LP: #996109 * hfsplus: Fix potential buffer overflows - LP: #996109 * Linux 3.0.31 - LP: #996109 * smsc95xx: mark link down on startup and let PHY interrupt deal with carrier changes - LP: #1002880 * xen/pte: Fix crashes when trying to see non-existent PGD/PMD/PUD/PTEs - LP: #1002880 * xen/pci: don't use PCI BIOS service for configuration space accesses - LP: #1002880 * percpu, x86: don't use PMD_SIZE as embedded atom_size on 32bit - LP: #1002880 * asm-generic: Use __BITS_PER_LONG in statfs.h - LP: #1002880 * Fix __read_seqcount_begin() to use ACCESS_ONCE for sequence value read - LP: #1002880 * ARM: 7410/1: Add extra clobber registers for assembly in kernel_execve - LP: #1002880 * ARM: 7414/1: SMP: prevent use of the console when using idmap_pgd - LP: #1002880 * regulator: Fix the logic to ensure new voltage setting in valid range - LP: #1002880 * ARM: orion5x: Fix GPIO enable bits for MPP9 - LP: #1002880 * asix: Fix tx transfer padding for full-speed USB - LP: #1002880 * netem: fix possible skb leak - LP: #1002880 * net: In unregister_netdevice_notifier unregister the netdevices. - LP: #1002880 * net: l2tp: unlock socket lock before returning from l2tp_ip_sendmsg - LP: #1002880 * sky2: propogate rx hash when packet is copied - LP: #1002880 * sky2: fix receive length error in mixed non-VLAN/VLAN traffic - LP: #1002880 * tg3: Avoid panic from reserved statblk field access - LP: #1002880 * sungem: Fix WakeOnLan - LP: #1002880 * tcp: change tcp_adv_win_scale and tcp_rmem[2] - LP: #1002880 * sony-laptop: Enable keyboard backlight by default - LP: #1002880 * ALSA: echoaudio: Remove incorrect part of assertion - LP: #1002880 * ALSA: HDA: Lessen CPU usage when waiting for chip to respond - LP: #1002880 * usbnet: fix skb traversing races during unlink(v2) - LP: #1002880 * namespaces, pid_ns: fix leakage on fork() failure - LP: #1002880 * sparc64: Do not clobber %g2 in xcall_fetch_glob_regs(). - LP: #1002880 * ARM: prevent VM_GROWSDOWN mmaps extending below FIRST_USER_ADDRESS - LP: #1002880 * media: rc: Postpone ISR registration - LP: #1002880 * cdc_ether: Ignore bogus union descriptor for RNDIS devices - LP: #1002880 * cdc_ether: add Novatel USB551L device IDs for FLAG_WWAN - LP: #1002880 * percpu: pcpu_embed_first_chunk() should free unused parts after all allocs are complete - LP: #1002880 * hugetlb: prevent BUG_ON in hugetlb_fault() -> hugetlb_cow() - LP: #1002880 * mm: nobootmem: fix sign extend problem in __free_pages_memory() - LP: #1002880 * jffs2: Fix lock acquisition order bug in gc path - LP: #1002880 * arch/tile: apply commit 74fca9da0 to the compat signal handling as well - LP: #1002880 * crypto: mv_cesa requires on CRYPTO_HASH to build - LP: #1002880 * MD: Add del_timer_sync to mddev_suspend (fix nasty panic) - LP: #1002880 * tcp: do_tcp_sendpages() must try to push data out on oom conditions - LP: #1002880 * init: don't try mounting device as nfs root unless type fully matches - LP: #1002880 * ext4: avoid deadlock on sync-mounted FS w/o journal - LP: #1002880 * NFSv4: Revalidate uid/gid after open - LP: #1002880 * memcg: free spare array to avoid memory leak - LP: #1002880 * compat: Fix RT signal mask corruption via sigprocmask - LP: #1002880 * ext3: Fix error handling on inode bitmap corruption - LP: #1002880 * ext4: fix error handling on inode bitmap corruption - LP: #1002880 * ACPI / PM: Add Sony Vaio VPCCW29FX to nonvs blacklist. - LP: #1002880 * SCSI: hpsa: Add IRQF_SHARED back in for the non-MSI(X) interrupt handler - LP: #1002880 * wake up s_wait_unfrozen when ->freeze_fs fails - LP: #1002880 * pch_gpio: Support new device LAPIS Semiconductor ML7831 IOH - LP: #1002880 * pch_gbe: fixed the issue which receives an unnecessary packet. - LP: #1002880 * pch_gbe: support ML7831 IOH - LP: #1002880 * pch_gbe: Fixed the issue on which PC was frozen when link was downed. - LP: #1002880 * pch_gbe: Do not abort probe on bad MAC - LP: #1002880 * pch_gbe: memory corruption calling pch_gbe_validate_option() - LP: #1002880 * ia64: Add accept4() syscall - LP: #1002880 * Linux 3.0.32 - LP: #1002880 * dl2k: Clean up rio_ioctl - CVE-2012-2313 Date: 2012-06-13 15:37:21.813456+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-lts-backport-oneiric/3.0.0-22.36~lucid1 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Jun 28 17:55:38 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 28 Jun 2012 17:55:38 -0000 Subject: [ubuntu/lucid-updates] linux-firmware 1.34.14 (Accepted) Message-ID: <20120628175538.23774.43475.launchpad@ackee.canonical.com> linux-firmware (1.34.14) lucid-proposed; urgency=low * Add new iwlwifi ucode files iwlwifi: add new firmware for 6000g2b devices iwlwifi: add new firmware for 2030 devices iwlwifi: add new firmware for 2000 devices iwlwifi: add new firmware for 135 devcies iwlwifi: add new firmware for 105 devices -LP: #918351 linux-firmware (1.34.13) lucid-proposed; urgency=low * ath3k-fw: Fix EEPROM radio table issue. LP: #882685 linux-firmware (1.34.12) lucid-proposed; urgency=low * Added firmware files to support Oneiric LTS backport linux-firmware: Add a new FW 7.0.20.0 bnx2x: Adding FW 7.0.23.0 -LP: #808884 linux-firmware (1.34.11) lucid-proposed; urgency=low * Added firmware files to support compat-wireless linux-firmware: add new firmware for RTL8168E-VL linux-firmware: update firmware for RTL8111E linux-firmware: Add firmware for RTL8168/8111E linux-firmware: Add firmware for RTL8105E rtl_nic: Add firmware for RTL8111D(L) -LP: #804671 linux-firmware (1.34.10) lucid-proposed; urgency=low * Added carl9170.fw for Atheros wireless AR9170 based devices. -LP: #713987 linux-firmware (1.34.9) lucid-proposed; urgency=low * Add Firmware for Atheros HTC devices (ath9k) -LP: #653854 linux-firmware (1.34.8) lucid-proposed; urgency=low * Added iwlwifi-1000-5.ucode -LP: #752829 Date: 2012-01-24 18:30:14.129229+00:00 Changed-By: Tim Gardner Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-firmware/1.34.14 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Jun 28 17:55:40 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 28 Jun 2012 17:55:40 -0000 Subject: [ubuntu/lucid-security] linux-firmware 1.34.14 (Accepted) Message-ID: <20120628175540.23774.16280.launchpad@ackee.canonical.com> linux-firmware (1.34.14) lucid-proposed; urgency=low * Add new iwlwifi ucode files iwlwifi: add new firmware for 6000g2b devices iwlwifi: add new firmware for 2030 devices iwlwifi: add new firmware for 2000 devices iwlwifi: add new firmware for 135 devcies iwlwifi: add new firmware for 105 devices -LP: #918351 Date: 2012-01-24 18:30:14.129229+00:00 Changed-By: Tim Gardner Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-firmware/1.34.14 -------------- next part -------------- Sorry, changesfile not available. From marc.deslauriers at ubuntu.com Thu Jun 28 18:05:20 2012 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Thu, 28 Jun 2012 18:05:20 -0000 Subject: [ubuntu/lucid-security] python-crypto 2.0.1+dfsg1-4ubuntu2.2 (Accepted) Message-ID: <20120628180520.10103.57397.launchpad@cocoplum.canonical.com> python-crypto (2.0.1+dfsg1-4ubuntu2.2) lucid-security; urgency=low * SECURITY UPDATE: incorrect ElGamal key generation - debian/patches/CVE-2012-2417.patch: generate safe prime numbers in PublicKey/ElGamal.py, backport getRandomRange() to Util/number.py. - CVE-2012-2417 Date: Thu, 28 Jun 2012 09:20:19 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/lucid/+source/python-crypto/2.0.1+dfsg1-4ubuntu2.2 -------------- next part -------------- Format: 1.8 Date: Thu, 28 Jun 2012 09:20:19 -0400 Source: python-crypto Binary: python-crypto python-crypto-dbg Architecture: source Version: 2.0.1+dfsg1-4ubuntu2.2 Distribution: lucid-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: python-crypto - cryptographic algorithms and protocols for Python python-crypto-dbg - cryptographic algorithms and protocols for Python (debug extensio Changes: python-crypto (2.0.1+dfsg1-4ubuntu2.2) lucid-security; urgency=low . * SECURITY UPDATE: incorrect ElGamal key generation - debian/patches/CVE-2012-2417.patch: generate safe prime numbers in PublicKey/ElGamal.py, backport getRandomRange() to Util/number.py. - CVE-2012-2417 Checksums-Sha1: beb7398b769e55d797f4b0ed12bd356021207f4d 2094 python-crypto_2.0.1+dfsg1-4ubuntu2.2.dsc cd93e024683a9470eb2c4877dd8b751b7a364a1b 24754 python-crypto_2.0.1+dfsg1-4ubuntu2.2.diff.gz Checksums-Sha256: f0f6226432f59036c8b7d8c6f2b5afe74f20caa7a085ae2240cb786733d28ac5 2094 python-crypto_2.0.1+dfsg1-4ubuntu2.2.dsc 182c5afabb2470234dd9bf0a16bbdc92892f622d34dcc79c331568627547b147 24754 python-crypto_2.0.1+dfsg1-4ubuntu2.2.diff.gz Files: ac5800718d6220eb18f8f819274ac223 2094 python optional python-crypto_2.0.1+dfsg1-4ubuntu2.2.dsc b4246c9e43def77ca2d66a0842a320ce 24754 python optional python-crypto_2.0.1+dfsg1-4ubuntu2.2.diff.gz Original-Maintainer: Andreas Rottmann