From martin.pitt at ubuntu.com Mon Oct 1 13:20:39 2012 From: martin.pitt at ubuntu.com (Martin Pitt) Date: Mon, 01 Oct 2012 13:20:39 -0000 Subject: [ubuntu/lucid-updates] postgresql-8.4 8.4.14-0ubuntu10.04 (Accepted) Message-ID: <20121001132039.28887.36519.launchpad@ackee.canonical.com> postgresql-8.4 (8.4.14-0ubuntu10.04) lucid-proposed; urgency=low * New upstream bug fix release: (LP: #1055944) - Fix planner's assignment of executor parameters, and fix executor's rescan logic for CTE plan nodes. These errors could result in wrong answers from queries that scan the same WITH subquery multiple times. - Improve page-splitting decisions in GiST indexes. Multi-column GiST indexes might suffer unexpected bloat due to this error. - Fix cascading privilege revoke to stop if privileges are still held. If we revoke a grant option from some role "X", but "X" still holds that option via a grant from someone else, we should not recursively revoke the corresponding privilege from role(s) "Y" that "X" had granted it to. - Fix handling of SIGFPE when PL/Perl is in use. Perl resets the process's SIGFPE handler to SIG_IGN, which could result in crashes later on. Restore the normal Postgres signal handler after initializing PL/Perl. - Prevent PL/Perl from crashing if a recursive PL/Perl function is redefined while being executed. - Work around possible misoptimization in PL/Perl. Some Linux distributions contain an incorrect version of "pthread.h" that results in incorrect compiled code in PL/Perl, leading to crashes if a PL/Perl function calls another one that throws an error. Date: 2012-09-25 05:50:10.111491+00:00 Changed-By: Martin Pitt https://launchpad.net/ubuntu/lucid/+source/postgresql-8.4/8.4.14-0ubuntu10.04 -------------- next part -------------- Sorry, changesfile not available. From marc.deslauriers at canonical.com Mon Oct 1 17:10:27 2012 From: marc.deslauriers at canonical.com (Marc Deslauriers) Date: Mon, 01 Oct 2012 17:10:27 -0000 Subject: [ubuntu/lucid-security] software-properties 0.75.10.3 (Accepted) Message-ID: <20121001171027.31200.95474.launchpad@ackee.canonical.com> software-properties (0.75.10.3) lucid-security; urgency=low * SECURITY UPDATE: improve gpg key validation to prevent MITM attack (LP: #1016643) - softwareproperties/ppa.py: download gpg key to temporary keyring, and validate using v4 fingerprint before importing to apt keyring. Date: 2012-09-28 14:00:12.501679+00:00 Changed-By: Marc Deslauriers Maintainer: Michael Vogt https://launchpad.net/ubuntu/lucid/+source/software-properties/0.75.10.3 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Mon Oct 1 17:59:14 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Mon, 01 Oct 2012 17:59:14 -0000 Subject: [ubuntu/lucid-updates] software-properties 0.75.10.3 (Accepted) Message-ID: <20121001175914.14662.56739.launchpad@ackee.canonical.com> software-properties (0.75.10.3) lucid-security; urgency=low * SECURITY UPDATE: improve gpg key validation to prevent MITM attack (LP: #1016643) - softwareproperties/ppa.py: download gpg key to temporary keyring, and validate using v4 fingerprint before importing to apt keyring. Date: 2012-09-28 14:00:12.501679+00:00 Changed-By: Marc Deslauriers Maintainer: Michael Vogt Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/software-properties/0.75.10.3 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Tue Oct 2 02:31:11 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 02 Oct 2012 02:31:11 -0000 Subject: [ubuntu/lucid] vmware-view-client 1.6.0-0ubuntu0.10.04 (Accepted) Message-ID: <20121002023111.15101.17271.launchpad@chaenomeles.canonical.com> vmware-view-client (1.6.0-0ubuntu0.10.04) lucid; urgency=low * New upstream release (1.6.0 GA, build 844387) Date: Mon, 01 Oct 2012 20:05:50 -0600 Changed-By: Adam Conrad Maintainer: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/vmware-view-client/1.6.0-0ubuntu0.10.04 -------------- next part -------------- Format: 1.8 Date: Mon, 01 Oct 2012 20:05:50 -0600 Source: vmware-view-client Binary: vmware-view-client Architecture: source Version: 1.6.0-0ubuntu0.10.04 Distribution: lucid Urgency: low Maintainer: Adam Conrad Changed-By: Adam Conrad Description: vmware-view-client - Deliver rich, personalized virtual desktops with VMware View 5 Changes: vmware-view-client (1.6.0-0ubuntu0.10.04) lucid; urgency=low . * New upstream release (1.6.0 GA, build 844387) Checksums-Sha1: 5a4eddf4024f5e23c59da384859f8b005d088c86 1402 vmware-view-client_1.6.0-0ubuntu0.10.04.dsc 90070909ac5bc83d96343e08d0273e6daea1b2ff 11686543 vmware-view-client_1.6.0.orig.tar.gz 0b3e2d2371d8a1b262188561b7770553e5e14cd5 12796 vmware-view-client_1.6.0-0ubuntu0.10.04.debian.tar.gz Checksums-Sha256: fecc850dd0039b5a8756554a3a936817f8f6de3df97a8e2cddbca6a97c11199b 1402 vmware-view-client_1.6.0-0ubuntu0.10.04.dsc fc73133d8750bd06ea40d791470971ba2aacb65189c096a330efaa2e9e225703 11686543 vmware-view-client_1.6.0.orig.tar.gz f1a573ced70816bd8f55e0568b32324944d52a42174a97c1ad933c7f695c8fef 12796 vmware-view-client_1.6.0-0ubuntu0.10.04.debian.tar.gz Files: 7522b946f0e023344581e239c5e2a544 1402 partner/net extra vmware-view-client_1.6.0-0ubuntu0.10.04.dsc 1780f36cd8a9c7a7b6d14d7278ec4524 11686543 partner/net extra vmware-view-client_1.6.0.orig.tar.gz 002051e0ce86a0ff8fed4b7cbe45ce9f 12796 partner/net extra vmware-view-client_1.6.0-0ubuntu0.10.04.debian.tar.gz From sbeattie at ubuntu.com Tue Oct 2 04:15:21 2012 From: sbeattie at ubuntu.com (Steve Beattie) Date: Tue, 02 Oct 2012 04:15:21 -0000 Subject: [ubuntu/lucid-security] eglibc 2.11.1-0ubuntu7.11 (Accepted) Message-ID: <20121002041521.6148.46504.launchpad@ackee.canonical.com> eglibc (2.11.1-0ubuntu7.11) lucid-security; urgency=low * SECURITY UPDATE: buffer overflow in vfprintf handling - debian/patches/any/CVE-2012-3404.patch: Fix allocation when handling positional parameters in printf. - CVE-2012-3404 * SECURITY UPDATE: buffer overflow in vfprintf handling - debian/patches/any/CVE-2012-3405.patch: fix extension of array - CVE-2012-3405 * SECURITY UPDATE: stack buffer overflow in vfprintf handling (LP: #1031301) - debian/patches/any/CVE-2012-3406.patch: switch to malloc when array grows too large to handle via alloca extension - CVE-2012-3406 * SECURITY UPDATE: stdlib strtod integer/buffer overflows - debian/patches/any/CVE-2012-3480.patch: rearrange calculations and modify types to void integer overflows - CVE-2012-3480 * debian/patches/any/strtod_overflow_bug7066.patch: Fix array overflow in floating point parser triggered by applying patch for CVE-2012-3480 * debian/testsuite-checking/expected-results-x86_64-linux-gnu-libc, debian/testsuite-checking/expected-results-i486-linux-gnu-libc, debian/testsuite-checking/expected-results-i686-linux-gnu-i386, debian/testsuite-checking/expected-results-i686-linux-gnu-i686, debian/testsuite-checking/expected-results-i686-linux-gnu-xen, debian/testsuite-checking/expected-results-sparc64-linux-gnu-sparc64: update for pre-existing testsuite failures that prevents FTBFS when the testsuite is enabled. Date: 2012-09-29 08:25:13.297822+00:00 Changed-By: Steve Beattie https://launchpad.net/ubuntu/lucid/+source/eglibc/2.11.1-0ubuntu7.11 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Tue Oct 2 04:59:21 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Tue, 02 Oct 2012 04:59:21 -0000 Subject: [ubuntu/lucid-updates] eglibc 2.11.1-0ubuntu7.11 (Accepted) Message-ID: <20121002045921.20606.5806.launchpad@ackee.canonical.com> eglibc (2.11.1-0ubuntu7.11) lucid-security; urgency=low * SECURITY UPDATE: buffer overflow in vfprintf handling - debian/patches/any/CVE-2012-3404.patch: Fix allocation when handling positional parameters in printf. - CVE-2012-3404 * SECURITY UPDATE: buffer overflow in vfprintf handling - debian/patches/any/CVE-2012-3405.patch: fix extension of array - CVE-2012-3405 * SECURITY UPDATE: stack buffer overflow in vfprintf handling (LP: #1031301) - debian/patches/any/CVE-2012-3406.patch: switch to malloc when array grows too large to handle via alloca extension - CVE-2012-3406 * SECURITY UPDATE: stdlib strtod integer/buffer overflows - debian/patches/any/CVE-2012-3480.patch: rearrange calculations and modify types to void integer overflows - CVE-2012-3480 * debian/patches/any/strtod_overflow_bug7066.patch: Fix array overflow in floating point parser triggered by applying patch for CVE-2012-3480 * debian/testsuite-checking/expected-results-x86_64-linux-gnu-libc, debian/testsuite-checking/expected-results-i486-linux-gnu-libc, debian/testsuite-checking/expected-results-i686-linux-gnu-i386, debian/testsuite-checking/expected-results-i686-linux-gnu-i686, debian/testsuite-checking/expected-results-i686-linux-gnu-xen, debian/testsuite-checking/expected-results-sparc64-linux-gnu-sparc64: update for pre-existing testsuite failures that prevents FTBFS when the testsuite is enabled. Date: 2012-09-29 08:25:13.297822+00:00 Changed-By: Steve Beattie Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/eglibc/2.11.1-0ubuntu7.11 -------------- next part -------------- Sorry, changesfile not available. From marc.deslauriers at canonical.com Tue Oct 2 13:23:16 2012 From: marc.deslauriers at canonical.com (Marc Deslauriers) Date: Tue, 02 Oct 2012 13:23:16 -0000 Subject: [ubuntu/lucid-security] qemu-kvm 0.12.3+noroms-0ubuntu9.20 (Accepted) Message-ID: <20121002132316.13569.54681.launchpad@ackee.canonical.com> qemu-kvm (0.12.3+noroms-0ubuntu9.20) lucid-security; urgency=low * SECURITY UPDATE: privilege escalation via VT100 sequences - debian/patches/CVE-2012-3515.patch: check bounds in console.c. - CVE-2012-3515 Date: 2012-09-25 15:30:20.687548+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/lucid/+source/qemu-kvm/0.12.3+noroms-0ubuntu9.20 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Tue Oct 2 13:59:15 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Tue, 02 Oct 2012 13:59:15 -0000 Subject: [ubuntu/lucid-updates] qemu-kvm 0.12.3+noroms-0ubuntu9.20 (Accepted) Message-ID: <20121002135915.25628.16968.launchpad@ackee.canonical.com> qemu-kvm (0.12.3+noroms-0ubuntu9.20) lucid-security; urgency=low * SECURITY UPDATE: privilege escalation via VT100 sequences - debian/patches/CVE-2012-3515.patch: check bounds in console.c. - CVE-2012-3515 Date: 2012-09-25 15:30:20.687548+00:00 Changed-By: Marc Deslauriers Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/qemu-kvm/0.12.3+noroms-0ubuntu9.20 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Tue Oct 2 19:04:26 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 02 Oct 2012 19:04:26 -0000 Subject: [ubuntu/lucid-updates] linux-lts-backport-oneiric 3.0.0-26.43~lucid1 (Accepted) Message-ID: <20121002190426.24350.63753.launchpad@ackee.canonical.com> linux-lts-backport-oneiric (3.0.0-26.43~lucid1) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1056607 [ Dave Airlie ] * SAUCE: drm/vmwgfx: add MODULE_DEVICE_TABLE so vmwgfx loads at boot - LP: #1039157 [ Stefan Bader ] * Revert "SAUCE: fix pv-ops for legacy Xen" - LP: #1044550 [ Upstream Kernel Changes ] * KVM: Fix buffer overflow in kvm_set_irq() - LP: #1016298 - CVE-2012-2137 * VFS : mount lock scalability for internal mounts - LP: #990365 - CVE-2012-2127 * procfs: fix a vfsmount longterm reference leak - LP: #990365 - CVE-2012-2127 * eCryptfs: Copy up attributes of the lower target inode after rename - LP: #561129 * eCryptfs: Write out all dirty pages just before releasing the lower file - LP: #1047261 * eCryptfs: Call lower ->flush() from ecryptfs_flush() - LP: #1047261 * USB: vt6656: remove __devinit* from the struct usb_device_id table - LP: #1052005 * USB: emi62: remove __devinit* from the struct usb_device_id table - LP: #1052005 * ALSA: hda - fix Copyright debug message - LP: #1052005 * ARM: 7487/1: mm: avoid setting nG bit for user mappings that aren't present - LP: #1052005 * ARM: 7488/1: mm: use 5 bits for swapfile type encoding - LP: #1052005 * ARM: 7489/1: errata: fix workaround for erratum #720789 on UP systems - LP: #1052005 * ARM: S3C24XX: Fix s3c2410_dma_enqueue parameters - LP: #1052005 * ARM: imx: select CPU_FREQ_TABLE when needed - LP: #1052005 * ASoC: wm9712: Fix microphone source selection - LP: #1052005 * vfs: missed source of ->f_pos races - LP: #1052005 * vfs: canonicalize create mode in build_open_flags() - LP: #1052005 * alpha: Don't export SOCK_NONBLOCK to user space. - LP: #1052005 * USB: winbond: remove __devinit* from the struct usb_device_id table - LP: #1052005 * mm: hugetlbfs: correctly populate shared pmd - LP: #1052005 * NFSv3: Ensure that do_proc_get_root() reports errors correctly - LP: #1052005 * NFSv4.1: Remove a bogus BUG_ON() in nfs4_layoutreturn_done - LP: #1052005 * NFS: Alias the nfs module to nfs4 - LP: #1052005 * audit: don't free_chunk() after fsnotify_add_mark() - LP: #1052005 * audit: fix refcounting in audit-tree - LP: #1052005 * svcrpc: fix BUG() in svc_tcp_clear_pages - LP: #1052005 * svcrpc: fix svc_xprt_enqueue/svc_recv busy-looping - LP: #1052005 * svcrpc: sends on closed socket should stop immediately - LP: #1052005 * cciss: fix incorrect scsi status reporting - LP: #1052005 * ACPI: export symbol acpi_get_table_with_size - LP: #1052005 * ath9k: fix decrypt_error initialization in ath_rx_tasklet() - LP: #1052005 * PCI: EHCI: Fix crash during hibernation on ASUS computers - LP: #1052005 * block: replace __getblk_slow misfix by grow_dev_page fix - LP: #1052005 * USB: spca506: remove __devinit* from the struct usb_device_id table - LP: #1052005 * USB: p54usb: remove __devinit* from the struct usb_device_id table - LP: #1052005 * USB: rtl8187: remove __devinit* from the struct usb_device_id table - LP: #1052005 * USB: smsusb: remove __devinit* from the struct usb_device_id table - LP: #1052005 * USB: CDC ACM: Fix NULL pointer dereference - LP: #1052005 * powerpc: Fix DSCR inheritance in copy_thread() - LP: #1052005 * powerpc: Restore correct DSCR in context switch - LP: #1052005 * Remove user-triggerable BUG from mpol_to_str - LP: #1052005 * SCSI: megaraid_sas: Move poll_aen_lock initializer - LP: #1052005 * SCSI: mpt2sas: Fix for Driver oops, when loading driver with max_queue_depth command line option to a very small value - LP: #1052005 * SCSI: Fix 'Device not ready' issue on mpt2sas - LP: #1052005 * udf: Fix data corruption for files in ICB - LP: #1052005 * ext3: Fix fdatasync() for files with only i_size changes - LP: #1052005 * fuse: fix retrieve length - LP: #1052005 * Input: i8042 - add Gigabyte T1005 series netbooks to noloop table - LP: #1052005 * PARISC: Redefine ATOMIC_INIT and ATOMIC64_INIT to drop the casts - LP: #1052005 * dccp: check ccid before dereferencing - LP: #1052005 * hwmon: (asus_atk0110) Add quirk for Asus M5A78L - LP: #1052005 * Linux 3.0.43 - LP: #1052005 linux (3.0.0-26.42) oneiric-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1045707 [ Upstream Kernel Changes ] * rds: set correct msg_namelen - LP: #1031112 - CVE-2012-3430 * x86: Simplify code by removing a !SMP #ifdefs from 'struct cpuinfo_x86' - LP: #1037281 * Redefine ATOMIC_INIT and ATOMIC64_INIT to drop the casts - LP: #1037281 * SUNRPC: return negative value in case rpcbind client creation error - LP: #1037281 * nilfs2: fix deadlock issue between chcp and thaw ioctls - LP: #1037281 * pcdp: use early_ioremap/early_iounmap to access pcdp table - LP: #1037281 * mm: fix wrong argument of migrate_huge_pages() in soft_offline_huge_page() - LP: #1037281 * ARM: 7478/1: errata: extend workaround for erratum #720789 - LP: #1037281 * ARM: 7479/1: mm: avoid NULL dereference when flushing gate_vma with VIVT caches - LP: #1037281 * mm: mmu_notifier: fix freed page still mapped in secondary MMU - LP: #1037281 * mac80211: cancel mesh path timer - LP: #1037281 * x86, nops: Missing break resulting in incorrect selection on Intel - LP: #1037281 * random: Add support for architectural random hooks - LP: #1037281 * fix typo/thinko in get_random_bytes() - LP: #1037281 * random: Use arch_get_random_int instead of cycle counter if avail - LP: #1037281 * random: Use arch-specific RNG to initialize the entropy store - LP: #1037281 * random: Adjust the number of loops when initializing - LP: #1037281 * drivers/char/random.c: fix boot id uniqueness race - LP: #1037281 * random: make 'add_interrupt_randomness()' do something sane - LP: #1037281 * random: use lockless techniques in the interrupt path - LP: #1037281 * random: create add_device_randomness() interface - LP: #1037281 * usb: feed USB device information to the /dev/random driver - LP: #1037281 * net: feed /dev/random with the MAC address when registering a device - LP: #1037281 * random: use the arch-specific rng in xfer_secondary_pool - LP: #1037281 * random: add new get_random_bytes_arch() function - LP: #1037281 * random: add tracepoints for easier debugging and verification - LP: #1037281 * MAINTAINERS: Theodore Ts'o is taking over the random driver - LP: #1037281 * rtc: wm831x: Feed the write counter into device_add_randomness() - LP: #1037281 * mfd: wm831x: Feed the device UUID into device_add_randomness() - LP: #1037281 * random: remove rand_initialize_irq() - LP: #1037281 * random: Add comment to random_initialize() - LP: #1037281 * dmi: Feed DMI table to /dev/random driver - LP: #1037281 * random: mix in architectural randomness in extract_buf() - LP: #1037281 * x86, microcode: microcode_core.c simple_strtoul cleanup - LP: #1037281 * x86, microcode: Sanitize per-cpu microcode reloading interface - LP: #1037281 * mm: hugetlbfs: close race during teardown of hugetlbfs shared page tables - LP: #1037281 * ARM: mxs: Remove MMAP_MIN_ADDR setting from mxs_defconfig - LP: #1037281 * ARM: pxa: remove irq_to_gpio from ezx-pcap driver - LP: #1037281 * cfg80211: process pending events when unregistering net device - LP: #1037281 * cfg80211: fix interface combinations check for ADHOC(IBSS) - LP: #1037281 * e1000e: NIC goes up and immediately goes down - LP: #1037281 * Input: wacom - Bamboo One 1024 pressure fix - LP: #1037281 * rt61pci: fix NULL pointer dereference in config_lna_gain - LP: #1037281 * Linux 3.0.41 - LP: #1037281 * eCryptfs: Revert to a writethrough cache model - LP: #1034012 * net: Allow driver to limit number of GSO segments per skb - LP: #1037456 - CVE-2012-3412 * tcp: do not scale TSO segment size with reordering degree - LP: #1037456 - CVE-2012-3412 * tcp: Apply device TSO segment limit earlier - LP: #1037456 - CVE-2012-3412 * sfc: Replace some literal constants with EFX_PAGE_SIZE/EFX_BUF_SIZE - LP: #1037456 - CVE-2012-3412 * sfc: Fix maximum number of TSO segments and minimum TX queue size - LP: #1037456 - CVE-2012-3412 * s390/compat: fix mmap compat system calls - LP: #1042241 * fuse: verify all ioctl retry iov elements - LP: #1042241 * xen: mark local pages as FOREIGN in the m2p_override - LP: #1042241 * drm/i915: correctly order the ring init sequence - LP: #1042241 * drm/radeon: do not reenable crtc after moving vram start address - LP: #1042241 * ext4: avoid kmemcheck complaint from reading uninitialized memory - LP: #1042241 * xhci: Add Etron XHCI_TRUST_TX_LENGTH quirk. - LP: #1042241 * xhci: Increase reset timeout for Renesas 720201 host. - LP: #1042241 * xhci: Switch PPT ports to EHCI on shutdown. - LP: #1042241 * USB: add USB_VENDOR_AND_INTERFACE_INFO() macro - LP: #1042241 * USB: support the new interfaces of Huawei Data Card devices in option driver - LP: #1042241 * USB: option: add ZTE K5006-Z - LP: #1042241 * USB: ftdi_sio: Add VID/PID for Kondo Serial USB - LP: #1042241 * usb: serial: mos7840: Fixup mos7840_chars_in_buffer() - LP: #1042241 * IB/srp: Fix a race condition - LP: #1042241 * Linux 3.0.42 - LP: #1042241 Date: 2012-09-26 15:55:16.304608+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-lts-backport-oneiric/3.0.0-26.43~lucid1 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Tue Oct 2 19:04:31 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 02 Oct 2012 19:04:31 -0000 Subject: [ubuntu/lucid-security] linux-lts-backport-oneiric 3.0.0-26.43~lucid1 (Accepted) Message-ID: <20121002190431.24350.9123.launchpad@ackee.canonical.com> linux-lts-backport-oneiric (3.0.0-26.43~lucid1) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1056607 [ Dave Airlie ] * SAUCE: drm/vmwgfx: add MODULE_DEVICE_TABLE so vmwgfx loads at boot - LP: #1039157 [ Stefan Bader ] * Revert "SAUCE: fix pv-ops for legacy Xen" - LP: #1044550 [ Upstream Kernel Changes ] * KVM: Fix buffer overflow in kvm_set_irq() - LP: #1016298 - CVE-2012-2137 * VFS : mount lock scalability for internal mounts - LP: #990365 - CVE-2012-2127 * procfs: fix a vfsmount longterm reference leak - LP: #990365 - CVE-2012-2127 * eCryptfs: Copy up attributes of the lower target inode after rename - LP: #561129 * eCryptfs: Write out all dirty pages just before releasing the lower file - LP: #1047261 * eCryptfs: Call lower ->flush() from ecryptfs_flush() - LP: #1047261 * USB: vt6656: remove __devinit* from the struct usb_device_id table - LP: #1052005 * USB: emi62: remove __devinit* from the struct usb_device_id table - LP: #1052005 * ALSA: hda - fix Copyright debug message - LP: #1052005 * ARM: 7487/1: mm: avoid setting nG bit for user mappings that aren't present - LP: #1052005 * ARM: 7488/1: mm: use 5 bits for swapfile type encoding - LP: #1052005 * ARM: 7489/1: errata: fix workaround for erratum #720789 on UP systems - LP: #1052005 * ARM: S3C24XX: Fix s3c2410_dma_enqueue parameters - LP: #1052005 * ARM: imx: select CPU_FREQ_TABLE when needed - LP: #1052005 * ASoC: wm9712: Fix microphone source selection - LP: #1052005 * vfs: missed source of ->f_pos races - LP: #1052005 * vfs: canonicalize create mode in build_open_flags() - LP: #1052005 * alpha: Don't export SOCK_NONBLOCK to user space. - LP: #1052005 * USB: winbond: remove __devinit* from the struct usb_device_id table - LP: #1052005 * mm: hugetlbfs: correctly populate shared pmd - LP: #1052005 * NFSv3: Ensure that do_proc_get_root() reports errors correctly - LP: #1052005 * NFSv4.1: Remove a bogus BUG_ON() in nfs4_layoutreturn_done - LP: #1052005 * NFS: Alias the nfs module to nfs4 - LP: #1052005 * audit: don't free_chunk() after fsnotify_add_mark() - LP: #1052005 * audit: fix refcounting in audit-tree - LP: #1052005 * svcrpc: fix BUG() in svc_tcp_clear_pages - LP: #1052005 * svcrpc: fix svc_xprt_enqueue/svc_recv busy-looping - LP: #1052005 * svcrpc: sends on closed socket should stop immediately - LP: #1052005 * cciss: fix incorrect scsi status reporting - LP: #1052005 * ACPI: export symbol acpi_get_table_with_size - LP: #1052005 * ath9k: fix decrypt_error initialization in ath_rx_tasklet() - LP: #1052005 * PCI: EHCI: Fix crash during hibernation on ASUS computers - LP: #1052005 * block: replace __getblk_slow misfix by grow_dev_page fix - LP: #1052005 * USB: spca506: remove __devinit* from the struct usb_device_id table - LP: #1052005 * USB: p54usb: remove __devinit* from the struct usb_device_id table - LP: #1052005 * USB: rtl8187: remove __devinit* from the struct usb_device_id table - LP: #1052005 * USB: smsusb: remove __devinit* from the struct usb_device_id table - LP: #1052005 * USB: CDC ACM: Fix NULL pointer dereference - LP: #1052005 * powerpc: Fix DSCR inheritance in copy_thread() - LP: #1052005 * powerpc: Restore correct DSCR in context switch - LP: #1052005 * Remove user-triggerable BUG from mpol_to_str - LP: #1052005 * SCSI: megaraid_sas: Move poll_aen_lock initializer - LP: #1052005 * SCSI: mpt2sas: Fix for Driver oops, when loading driver with max_queue_depth command line option to a very small value - LP: #1052005 * SCSI: Fix 'Device not ready' issue on mpt2sas - LP: #1052005 * udf: Fix data corruption for files in ICB - LP: #1052005 * ext3: Fix fdatasync() for files with only i_size changes - LP: #1052005 * fuse: fix retrieve length - LP: #1052005 * Input: i8042 - add Gigabyte T1005 series netbooks to noloop table - LP: #1052005 * PARISC: Redefine ATOMIC_INIT and ATOMIC64_INIT to drop the casts - LP: #1052005 * dccp: check ccid before dereferencing - LP: #1052005 * hwmon: (asus_atk0110) Add quirk for Asus M5A78L - LP: #1052005 * Linux 3.0.43 - LP: #1052005 linux (3.0.0-26.42) oneiric-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1045707 [ Upstream Kernel Changes ] * rds: set correct msg_namelen - LP: #1031112 - CVE-2012-3430 * x86: Simplify code by removing a !SMP #ifdefs from 'struct cpuinfo_x86' - LP: #1037281 * Redefine ATOMIC_INIT and ATOMIC64_INIT to drop the casts - LP: #1037281 * SUNRPC: return negative value in case rpcbind client creation error - LP: #1037281 * nilfs2: fix deadlock issue between chcp and thaw ioctls - LP: #1037281 * pcdp: use early_ioremap/early_iounmap to access pcdp table - LP: #1037281 * mm: fix wrong argument of migrate_huge_pages() in soft_offline_huge_page() - LP: #1037281 * ARM: 7478/1: errata: extend workaround for erratum #720789 - LP: #1037281 * ARM: 7479/1: mm: avoid NULL dereference when flushing gate_vma with VIVT caches - LP: #1037281 * mm: mmu_notifier: fix freed page still mapped in secondary MMU - LP: #1037281 * mac80211: cancel mesh path timer - LP: #1037281 * x86, nops: Missing break resulting in incorrect selection on Intel - LP: #1037281 * random: Add support for architectural random hooks - LP: #1037281 * fix typo/thinko in get_random_bytes() - LP: #1037281 * random: Use arch_get_random_int instead of cycle counter if avail - LP: #1037281 * random: Use arch-specific RNG to initialize the entropy store - LP: #1037281 * random: Adjust the number of loops when initializing - LP: #1037281 * drivers/char/random.c: fix boot id uniqueness race - LP: #1037281 * random: make 'add_interrupt_randomness()' do something sane - LP: #1037281 * random: use lockless techniques in the interrupt path - LP: #1037281 * random: create add_device_randomness() interface - LP: #1037281 * usb: feed USB device information to the /dev/random driver - LP: #1037281 * net: feed /dev/random with the MAC address when registering a device - LP: #1037281 * random: use the arch-specific rng in xfer_secondary_pool - LP: #1037281 * random: add new get_random_bytes_arch() function - LP: #1037281 * random: add tracepoints for easier debugging and verification - LP: #1037281 * MAINTAINERS: Theodore Ts'o is taking over the random driver - LP: #1037281 * rtc: wm831x: Feed the write counter into device_add_randomness() - LP: #1037281 * mfd: wm831x: Feed the device UUID into device_add_randomness() - LP: #1037281 * random: remove rand_initialize_irq() - LP: #1037281 * random: Add comment to random_initialize() - LP: #1037281 * dmi: Feed DMI table to /dev/random driver - LP: #1037281 * random: mix in architectural randomness in extract_buf() - LP: #1037281 * x86, microcode: microcode_core.c simple_strtoul cleanup - LP: #1037281 * x86, microcode: Sanitize per-cpu microcode reloading interface - LP: #1037281 * mm: hugetlbfs: close race during teardown of hugetlbfs shared page tables - LP: #1037281 * ARM: mxs: Remove MMAP_MIN_ADDR setting from mxs_defconfig - LP: #1037281 * ARM: pxa: remove irq_to_gpio from ezx-pcap driver - LP: #1037281 * cfg80211: process pending events when unregistering net device - LP: #1037281 * cfg80211: fix interface combinations check for ADHOC(IBSS) - LP: #1037281 * e1000e: NIC goes up and immediately goes down - LP: #1037281 * Input: wacom - Bamboo One 1024 pressure fix - LP: #1037281 * rt61pci: fix NULL pointer dereference in config_lna_gain - LP: #1037281 * Linux 3.0.41 - LP: #1037281 * eCryptfs: Revert to a writethrough cache model - LP: #1034012 * net: Allow driver to limit number of GSO segments per skb - LP: #1037456 - CVE-2012-3412 * tcp: do not scale TSO segment size with reordering degree - LP: #1037456 - CVE-2012-3412 * tcp: Apply device TSO segment limit earlier - LP: #1037456 - CVE-2012-3412 * sfc: Replace some literal constants with EFX_PAGE_SIZE/EFX_BUF_SIZE - LP: #1037456 - CVE-2012-3412 * sfc: Fix maximum number of TSO segments and minimum TX queue size - LP: #1037456 - CVE-2012-3412 * s390/compat: fix mmap compat system calls - LP: #1042241 * fuse: verify all ioctl retry iov elements - LP: #1042241 * xen: mark local pages as FOREIGN in the m2p_override - LP: #1042241 * drm/i915: correctly order the ring init sequence - LP: #1042241 * drm/radeon: do not reenable crtc after moving vram start address - LP: #1042241 * ext4: avoid kmemcheck complaint from reading uninitialized memory - LP: #1042241 * xhci: Add Etron XHCI_TRUST_TX_LENGTH quirk. - LP: #1042241 * xhci: Increase reset timeout for Renesas 720201 host. - LP: #1042241 * xhci: Switch PPT ports to EHCI on shutdown. - LP: #1042241 * USB: add USB_VENDOR_AND_INTERFACE_INFO() macro - LP: #1042241 * USB: support the new interfaces of Huawei Data Card devices in option driver - LP: #1042241 * USB: option: add ZTE K5006-Z - LP: #1042241 * USB: ftdi_sio: Add VID/PID for Kondo Serial USB - LP: #1042241 * usb: serial: mos7840: Fixup mos7840_chars_in_buffer() - LP: #1042241 * IB/srp: Fix a race condition - LP: #1042241 * Linux 3.0.42 - LP: #1042241 Date: 2012-09-26 15:55:16.304608+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-lts-backport-oneiric/3.0.0-26.43~lucid1 -------------- next part -------------- Sorry, changesfile not available. From marc.deslauriers at canonical.com Tue Oct 2 20:13:14 2012 From: marc.deslauriers at canonical.com (Marc Deslauriers) Date: Tue, 02 Oct 2012 20:13:14 -0000 Subject: [ubuntu/lucid-security] devscripts 2.10.61ubuntu5.3 (Accepted) Message-ID: <20121002201314.13715.76232.launchpad@ackee.canonical.com> devscripts (2.10.61ubuntu5.3) lucid-security; urgency=low * SECURITY UPDATE: arbitrary code execution via insufficient validation in dscverify - scripts/dscverify.pl: perform better validation. - 22881936e53e6b585d3dc60f3161e9d704c5138d - CVE-2012-2240 * SECURITY UPDATE: arbitrary file deletion via insufficient validation in dget - scripts/dget.pl: strip invalid characters. - 79d27778321f7bb778097cfb7a724ae976fb4fbd - CVE-2012-2241 * SECURITY UPDATE: arbitrary code execution via improper argument escaping in dget - scripts/dget.pl: escape $file better, and call system() with proper arguments. - db49f493baaac2387a4dd76370c1018109e31dfc - CVE-2012-2242 * SECURITY UPDATE: file alteration via TOCTOU in annotate-output - scripts/annotate-output.sh: prevent symlink attack. - 1bbe2163987c53064a4cd57712927f4b06c01032 - CVE-2012-3500 * REGRESSION FIX: improper exit code in CVE-2012-0212 debdiff.pl fix - 252a42d225f489e398f3c0402c1f7d1e9a4451c0 Date: 2012-10-02 19:35:16.957961+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/lucid/+source/devscripts/2.10.61ubuntu5.3 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Tue Oct 2 20:59:15 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Tue, 02 Oct 2012 20:59:15 -0000 Subject: [ubuntu/lucid-updates] devscripts 2.10.61ubuntu5.3 (Accepted) Message-ID: <20121002205915.26960.52554.launchpad@ackee.canonical.com> devscripts (2.10.61ubuntu5.3) lucid-security; urgency=low * SECURITY UPDATE: arbitrary code execution via insufficient validation in dscverify - scripts/dscverify.pl: perform better validation. - 22881936e53e6b585d3dc60f3161e9d704c5138d - CVE-2012-2240 * SECURITY UPDATE: arbitrary file deletion via insufficient validation in dget - scripts/dget.pl: strip invalid characters. - 79d27778321f7bb778097cfb7a724ae976fb4fbd - CVE-2012-2241 * SECURITY UPDATE: arbitrary code execution via improper argument escaping in dget - scripts/dget.pl: escape $file better, and call system() with proper arguments. - db49f493baaac2387a4dd76370c1018109e31dfc - CVE-2012-2242 * SECURITY UPDATE: file alteration via TOCTOU in annotate-output - scripts/annotate-output.sh: prevent symlink attack. - 1bbe2163987c53064a4cd57712927f4b06c01032 - CVE-2012-3500 * REGRESSION FIX: improper exit code in CVE-2012-0212 debdiff.pl fix - 252a42d225f489e398f3c0402c1f7d1e9a4451c0 Date: 2012-10-02 19:35:16.957961+00:00 Changed-By: Marc Deslauriers Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/devscripts/2.10.61ubuntu5.3 -------------- next part -------------- Sorry, changesfile not available. From jamie at ubuntu.com Tue Oct 2 21:12:14 2012 From: jamie at ubuntu.com (Jamie Strandboge) Date: Tue, 02 Oct 2012 21:12:14 -0000 Subject: [ubuntu/lucid-security] python-distutils-extra 2.18bzr1ubuntu0.1 (Accepted) Message-ID: <20121002211214.30652.77902.launchpad@ackee.canonical.com> python-distutils-extra (2.18bzr1ubuntu0.1) lucid-security; urgency=low * Fix installation of symlinks in data/ dir (LP: #770566): - test/auto.py: Add test for installing a symlink which points to a nonexisting target directory/file. This reproduces the gist of the problem. - test/auto.py: Preserve symlinks in copytree() calls, so that we can actually verify that symlinks are preserved properly. - test/auto.py: Drop requirement that diff throws no error messages, as it will complain about the broken symlink. - DistUtilsExtra/auto.py, install_auto: Use os.walk() instead of distutils.filelist.findall() to pick out symlinks, as the latter fails badly with broken symlinks. - DistUtilsExtra/command/build_icons.py: Ignore symbolic links. distutils breaks on them when they point to a nonexisting target, and we handle them in auto.py. - backport, http://bazaar.launchpad.net/~python-distutils-extra-hackers/python-distutils-extra/debian/revision/250 Date: 2012-09-06 03:15:12.939372+00:00 Changed-By: Jamie Strandboge https://launchpad.net/ubuntu/lucid/+source/python-distutils-extra/2.18bzr1ubuntu0.1 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Tue Oct 2 21:59:13 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Tue, 02 Oct 2012 21:59:13 -0000 Subject: [ubuntu/lucid-updates] python-distutils-extra 2.18bzr1ubuntu0.1 (Accepted) Message-ID: <20121002215913.13167.485.launchpad@ackee.canonical.com> python-distutils-extra (2.18bzr1ubuntu0.1) lucid-security; urgency=low * Fix installation of symlinks in data/ dir (LP: #770566): - test/auto.py: Add test for installing a symlink which points to a nonexisting target directory/file. This reproduces the gist of the problem. - test/auto.py: Preserve symlinks in copytree() calls, so that we can actually verify that symlinks are preserved properly. - test/auto.py: Drop requirement that diff throws no error messages, as it will complain about the broken symlink. - DistUtilsExtra/auto.py, install_auto: Use os.walk() instead of distutils.filelist.findall() to pick out symlinks, as the latter fails badly with broken symlinks. - DistUtilsExtra/command/build_icons.py: Ignore symbolic links. distutils breaks on them when they point to a nonexisting target, and we handle them in auto.py. - backport, http://bazaar.launchpad.net/~python-distutils-extra-hackers/python-distutils-extra/debian/revision/250 Date: 2012-09-06 03:15:12.939372+00:00 Changed-By: Jamie Strandboge Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/python-distutils-extra/2.18bzr1ubuntu0.1 -------------- next part -------------- Sorry, changesfile not available. From marc.deslauriers at canonical.com Thu Oct 4 11:47:30 2012 From: marc.deslauriers at canonical.com (Marc Deslauriers) Date: Thu, 04 Oct 2012 11:47:30 -0000 Subject: [ubuntu/lucid-security] dbus 1.2.16-2ubuntu4.7 (Accepted) Message-ID: <20121004114730.13136.82063.launchpad@ackee.canonical.com> dbus (1.2.16-2ubuntu4.7) lucid-security; urgency=low * REGRESSION FIX: some applications launched with the activation helper may need DBUS_STARTER_ADDRESS. (LP: #1058343) - debian/patches/CVE-2012-3524-regression-fix.patch: hardcode the starter address to the default system bus address. * REGRESSION FIX: unclean shutdown after dbus upgrade (LP: #740390) - debian/libdbus-1-3.postinst: trigger an upstart re-exec before shutdown or reboot so that it can safely unmount the root filesystem. Date: 2012-10-03 18:15:15.137829+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/lucid/+source/dbus/1.2.16-2ubuntu4.7 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Thu Oct 4 12:29:16 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Thu, 04 Oct 2012 12:29:16 -0000 Subject: [ubuntu/lucid-updates] dbus 1.2.16-2ubuntu4.7 (Accepted) Message-ID: <20121004122916.31768.50533.launchpad@ackee.canonical.com> dbus (1.2.16-2ubuntu4.7) lucid-security; urgency=low * REGRESSION FIX: some applications launched with the activation helper may need DBUS_STARTER_ADDRESS. (LP: #1058343) - debian/patches/CVE-2012-3524-regression-fix.patch: hardcode the starter address to the default system bus address. * REGRESSION FIX: unclean shutdown after dbus upgrade (LP: #740390) - debian/libdbus-1-3.postinst: trigger an upstart re-exec before shutdown or reboot so that it can safely unmount the root filesystem. Date: 2012-10-03 18:15:15.137829+00:00 Changed-By: Marc Deslauriers Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/dbus/1.2.16-2ubuntu4.7 -------------- next part -------------- Sorry, changesfile not available. From marc.deslauriers at canonical.com Thu Oct 4 17:00:24 2012 From: marc.deslauriers at canonical.com (Marc Deslauriers) Date: Thu, 04 Oct 2012 17:00:24 -0000 Subject: [ubuntu/lucid-security] libxslt 1.1.26-1ubuntu1.1 (Accepted) Message-ID: <20121004170024.814.78085.launchpad@ackee.canonical.com> libxslt (1.1.26-1ubuntu1.1) lucid-security; urgency=low * SECURITY UPDATE: information disclosure via generate-id XPath function - libxslt/functions.c: do not expose object addresses directly. - ecb6bcb8d1b7e44842edde3929f412d46b40c89f - CVE-2011-1202 * SECURITY UPDATE: denial of service via out-of-bounds read - libxslt/pattern.c: fix improper loop exit. - fe5a4fa33eb85bce3253ed3742b1ea6c4b59b41b - CVE-2011-3970 * SECURITY UPDATE: denial of service via out-of-bounds read - libxslt/xsltutils.h: check for XML_ELEMENT_NODE - e6a0bc8081271f33b9899eb78e1da1a2a0428419 - CVE-2012-2825 * SECURITY UPDATE: denial of service via crafted XSLT expression - harden code in libexslt/functions.c, libxslt/attributes.c, libxslt/functions.c, libxslt/pattern.c, libxslt/preproc.c, libxslt/templates.c, libxslt/transform.c, libxslt/variables.c, libxslt/xslt.c, libxslt/xsltutils.c. - 8566ab4a10158d195adb5f1f61afe1ee8bfebd12 - 4da0f7e207f14a03daad4663865c285eb27f93e9 - 24653072221e76d2f1f06aa71225229b532f8946 - 1564b30e994602a95863d9716be83612580a2fed - CVE-2012-2870 * SECURITY UPDATE: denial of service and possible code execution during handling of XSL transforms - libxslt/transform.c: check for XML_NAMESPACE_DECL - 937ba2a3eb42d288f53c8adc211bd1122869f0bf - CVE-2012-2871 * SECURITY UPDATE: denial of service and possible code execution via double free during XSL transforms - libxslt/templates.c: Fix dictionary string usage - 54977ed7966847e305a2008cb18892df26eeb065 - CVE-2012-2893 Date: 2012-09-28 20:20:23.731631+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/lucid/+source/libxslt/1.1.26-1ubuntu1.1 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Thu Oct 4 17:29:16 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Thu, 04 Oct 2012 17:29:16 -0000 Subject: [ubuntu/lucid-updates] libxslt 1.1.26-1ubuntu1.1 (Accepted) Message-ID: <20121004172916.15454.24884.launchpad@ackee.canonical.com> libxslt (1.1.26-1ubuntu1.1) lucid-security; urgency=low * SECURITY UPDATE: information disclosure via generate-id XPath function - libxslt/functions.c: do not expose object addresses directly. - ecb6bcb8d1b7e44842edde3929f412d46b40c89f - CVE-2011-1202 * SECURITY UPDATE: denial of service via out-of-bounds read - libxslt/pattern.c: fix improper loop exit. - fe5a4fa33eb85bce3253ed3742b1ea6c4b59b41b - CVE-2011-3970 * SECURITY UPDATE: denial of service via out-of-bounds read - libxslt/xsltutils.h: check for XML_ELEMENT_NODE - e6a0bc8081271f33b9899eb78e1da1a2a0428419 - CVE-2012-2825 * SECURITY UPDATE: denial of service via crafted XSLT expression - harden code in libexslt/functions.c, libxslt/attributes.c, libxslt/functions.c, libxslt/pattern.c, libxslt/preproc.c, libxslt/templates.c, libxslt/transform.c, libxslt/variables.c, libxslt/xslt.c, libxslt/xsltutils.c. - 8566ab4a10158d195adb5f1f61afe1ee8bfebd12 - 4da0f7e207f14a03daad4663865c285eb27f93e9 - 24653072221e76d2f1f06aa71225229b532f8946 - 1564b30e994602a95863d9716be83612580a2fed - CVE-2012-2870 * SECURITY UPDATE: denial of service and possible code execution during handling of XSL transforms - libxslt/transform.c: check for XML_NAMESPACE_DECL - 937ba2a3eb42d288f53c8adc211bd1122869f0bf - CVE-2012-2871 * SECURITY UPDATE: denial of service and possible code execution via double free during XSL transforms - libxslt/templates.c: Fix dictionary string usage - 54977ed7966847e305a2008cb18892df26eeb065 - CVE-2012-2893 Date: 2012-09-28 20:20:23.731631+00:00 Changed-By: Marc Deslauriers Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/libxslt/1.1.26-1ubuntu1.1 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Oct 4 19:19:27 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 04 Oct 2012 19:19:27 -0000 Subject: [ubuntu/lucid-updates] linux-ec2 2.6.32-349.55 (Accepted) Message-ID: <20121004191927.4570.5586.launchpad@ackee.canonical.com> linux-ec2 (2.6.32-349.55) lucid-proposed; urgency=low [ Stefan Bader ] * Revert "SAUCE: EC2: Backport changes to limit GSO segments" - LP: #1037456 - CVE-2012-3412 * Rebased to Ubuntu-2.6.32-44.98 * Release Tracking Bug - LP: #1056081 [ Ubuntu: 2.6.32-44.98 ] * SAUCE: drm/vmwgfx: add MODULE_DEVICE_TABLE so vmwgfx loads at boot - LP: #1039157 * Revert "sfc: Fix maximum number of TSO segments and minimum TX queue size" - LP: #1037456 - CVE-2012-3412 * Revert "sfc: Replace some literal constants with EFX_PAGE_SIZE/EFX_BUF_SIZE" - LP: #1037456 - CVE-2012-3412 * Revert "tcp: Apply device TSO segment limit earlier" - LP: #1037456 - CVE-2012-3412 * Revert "tcp: do not scale TSO segment size with reordering degree" - LP: #1037456 - CVE-2012-3412 * Revert "net: Allow driver to limit number of GSO segments per skb" - LP: #1037456 - CVE-2012-3412 * cred: copy_process() should clear child->replacement_session_keyring - LP: #1023535 - CVE-2012-2745 * KVM: Change irq routing table to use gsi indexed array - LP: #1016298 - CVE-2012-2137 * KVM: Fix buffer overflow in kvm_set_irq() - LP: #1016298 - CVE-2012-2137 * xen: just completely disable XSAVE - LP: #1044550 * xen: Allow PV-OPS kernel to detect whether XSAVE is supported - LP: #1044550 * sfc: Fix maximum number of TSO segments and minimum TX queue size - LP: #1037456 - CVE-2012-3412 Date: 2012-09-28 14:55:11.535397+00:00 Changed-By: Stefan Bader Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-ec2/2.6.32-349.55 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Oct 4 19:19:30 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 04 Oct 2012 19:19:30 -0000 Subject: [ubuntu/lucid-security] linux-ec2 2.6.32-349.55 (Accepted) Message-ID: <20121004191930.4570.55887.launchpad@ackee.canonical.com> linux-ec2 (2.6.32-349.55) lucid-proposed; urgency=low [ Stefan Bader ] * Revert "SAUCE: EC2: Backport changes to limit GSO segments" - LP: #1037456 - CVE-2012-3412 * Rebased to Ubuntu-2.6.32-44.98 * Release Tracking Bug - LP: #1056081 [ Ubuntu: 2.6.32-44.98 ] * SAUCE: drm/vmwgfx: add MODULE_DEVICE_TABLE so vmwgfx loads at boot - LP: #1039157 * Revert "sfc: Fix maximum number of TSO segments and minimum TX queue size" - LP: #1037456 - CVE-2012-3412 * Revert "sfc: Replace some literal constants with EFX_PAGE_SIZE/EFX_BUF_SIZE" - LP: #1037456 - CVE-2012-3412 * Revert "tcp: Apply device TSO segment limit earlier" - LP: #1037456 - CVE-2012-3412 * Revert "tcp: do not scale TSO segment size with reordering degree" - LP: #1037456 - CVE-2012-3412 * Revert "net: Allow driver to limit number of GSO segments per skb" - LP: #1037456 - CVE-2012-3412 * cred: copy_process() should clear child->replacement_session_keyring - LP: #1023535 - CVE-2012-2745 * KVM: Change irq routing table to use gsi indexed array - LP: #1016298 - CVE-2012-2137 * KVM: Fix buffer overflow in kvm_set_irq() - LP: #1016298 - CVE-2012-2137 * xen: just completely disable XSAVE - LP: #1044550 * xen: Allow PV-OPS kernel to detect whether XSAVE is supported - LP: #1044550 * sfc: Fix maximum number of TSO segments and minimum TX queue size - LP: #1037456 - CVE-2012-3412 Date: 2012-09-28 14:55:11.535397+00:00 Changed-By: Stefan Bader Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-ec2/2.6.32-349.55 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Oct 4 19:19:32 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 04 Oct 2012 19:19:32 -0000 Subject: [ubuntu/lucid-updates] linux-meta-ec2 2.6.32.349.30 (Accepted) Message-ID: <20121004191932.4570.59519.launchpad@ackee.canonical.com> linux-meta-ec2 (2.6.32.349.30) lucid-proposed; urgency=low * Bump linux-ec2 ABI to 349 for proposed release Date: 2012-09-28 14:55:29.682688+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-meta-ec2/2.6.32.349.30 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Oct 4 19:19:33 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 04 Oct 2012 19:19:33 -0000 Subject: [ubuntu/lucid-security] linux-meta-ec2 2.6.32.349.30 (Accepted) Message-ID: <20121004191933.4570.30207.launchpad@ackee.canonical.com> linux-meta-ec2 (2.6.32.349.30) lucid-proposed; urgency=low * Bump linux-ec2 ABI to 349 for proposed release Date: 2012-09-28 14:55:29.682688+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-meta-ec2/2.6.32.349.30 -------------- next part -------------- Sorry, changesfile not available. From jamie at ubuntu.com Thu Oct 4 21:22:20 2012 From: jamie at ubuntu.com (Jamie Strandboge) Date: Thu, 04 Oct 2012 21:22:20 -0000 Subject: [ubuntu/lucid-security] python2.6 2.6.5-1ubuntu6.1 (Accepted) Message-ID: <20121004212220.31841.50483.launchpad@ackee.canonical.com> python2.6 (2.6.5-1ubuntu6.1) lucid-security; urgency=low * SECURITY UPDATE: fix hash randomization DoS - debian/patches/CVE-2012-1150.dpatch: add -R command-line option and PYTHONHASHSEED environment variable, to provide an opt-in way to protect against denial of service attacks due to hash collisions within the dict and set types. - CVE-2012-1150 * SECURITY UPDATE: xmlrpc: Fix an endless loop in SimpleXMLRPCServer upon malformed POST request - debian/patches/CVE-2012-0845.dpatch: break if don't receive EOF in Lib/SimpleXMLRPCServer.py - CVE-2012-0845 * SECURE UPDATE: http://bugs.python.org/issue13512 - debian/patches/CVE-2011-4944.dpatch: create ~/.pypirc securely - CVE-2011-4944 * SECURITY UPDATE: Fix CGIHTTPServer information disclosure. - debian/patches/CVE-2011-1015.dpatch: Relative paths are now collapsed within the url properly before looking in cgi_directories. - CVE-2011-1015 * SECURITY UPDATE: fix XSS in SimpleHTTPServer - debian/patches/CVE-2011-4940.dpatch: add a charset parameter to the Content-type - CVE-2011-4940 * SECURITY UPDATE: update urllib and urllib2 for invalid redirections - debian/patches/CVE-2011-1521.dpatch: only process Location headers for http, https, and ftp - http://bugs.python.org/issue11662 - CVE-2011-1521 * SECURITY UPDATE: fix DoS in smtpd.py - debian/patches/CVE-2010-3493.dpatch: adds proper error handling on accept() when smtpd accepts new incoming connections - http://bugs.python.org/issue9129 - CVE-2010-3493 * SECURITY UPDATE: fix DoS in audioop module - debian/patches/CVE-2010-2089.dpatch: ensure that the input string length is a multiple of the frame size - CVE-2010-2089 * SECURITY UPDATE: fix integer overflows in audioop module - debian/patches/CVE-2010-1634.dpatch: Fix incorrect and UB-inducing overflow checks - CVE-2010-1634 * SECURITY UPDATE: optionally disallow setting sys.path when setting sys.argv - debian/patches/CVE-2008-5983.dpatch: add new C API function, PySys_SetArgvEx - CVE-2008-5983 Date: 2012-10-01 21:50:10.999547+00:00 Changed-By: Jamie Strandboge https://launchpad.net/ubuntu/lucid/+source/python2.6/2.6.5-1ubuntu6.1 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Thu Oct 4 21:58:18 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Thu, 04 Oct 2012 21:58:18 -0000 Subject: [ubuntu/lucid-updates] python2.6 2.6.5-1ubuntu6.1 (Accepted) Message-ID: <20121004215818.16075.97800.launchpad@ackee.canonical.com> python2.6 (2.6.5-1ubuntu6.1) lucid-security; urgency=low * SECURITY UPDATE: fix hash randomization DoS - debian/patches/CVE-2012-1150.dpatch: add -R command-line option and PYTHONHASHSEED environment variable, to provide an opt-in way to protect against denial of service attacks due to hash collisions within the dict and set types. - CVE-2012-1150 * SECURITY UPDATE: xmlrpc: Fix an endless loop in SimpleXMLRPCServer upon malformed POST request - debian/patches/CVE-2012-0845.dpatch: break if don't receive EOF in Lib/SimpleXMLRPCServer.py - CVE-2012-0845 * SECURE UPDATE: http://bugs.python.org/issue13512 - debian/patches/CVE-2011-4944.dpatch: create ~/.pypirc securely - CVE-2011-4944 * SECURITY UPDATE: Fix CGIHTTPServer information disclosure. - debian/patches/CVE-2011-1015.dpatch: Relative paths are now collapsed within the url properly before looking in cgi_directories. - CVE-2011-1015 * SECURITY UPDATE: fix XSS in SimpleHTTPServer - debian/patches/CVE-2011-4940.dpatch: add a charset parameter to the Content-type - CVE-2011-4940 * SECURITY UPDATE: update urllib and urllib2 for invalid redirections - debian/patches/CVE-2011-1521.dpatch: only process Location headers for http, https, and ftp - http://bugs.python.org/issue11662 - CVE-2011-1521 * SECURITY UPDATE: fix DoS in smtpd.py - debian/patches/CVE-2010-3493.dpatch: adds proper error handling on accept() when smtpd accepts new incoming connections - http://bugs.python.org/issue9129 - CVE-2010-3493 * SECURITY UPDATE: fix DoS in audioop module - debian/patches/CVE-2010-2089.dpatch: ensure that the input string length is a multiple of the frame size - CVE-2010-2089 * SECURITY UPDATE: fix integer overflows in audioop module - debian/patches/CVE-2010-1634.dpatch: Fix incorrect and UB-inducing overflow checks - CVE-2010-1634 * SECURITY UPDATE: optionally disallow setting sys.path when setting sys.argv - debian/patches/CVE-2008-5983.dpatch: add new C API function, PySys_SetArgvEx - CVE-2008-5983 Date: 2012-10-01 21:50:10.999547+00:00 Changed-By: Jamie Strandboge Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/python2.6/2.6.5-1ubuntu6.1 -------------- next part -------------- Sorry, changesfile not available. From chris.coulson at canonical.com Tue Oct 9 13:26:36 2012 From: chris.coulson at canonical.com (Chris Coulson) Date: Tue, 09 Oct 2012 13:26:36 -0000 Subject: [ubuntu/lucid] adobe-flashplugin 11.2.202.243-0lucid1 (Accepted) Message-ID: <20121009132636.2274.66741.launchpad@chaenomeles.canonical.com> adobe-flashplugin (11.2.202.243-0lucid1) lucid; urgency=low * New upstream release v11.2.202.243 Date: Tue, 09 Oct 2012 13:27:40 +0100 Changed-By: Chris Coulson Maintainer: DL-Flash Player Ubuntu https://launchpad.net/ubuntu/lucid/+source/adobe-flashplugin/11.2.202.243-0lucid1 -------------- next part -------------- Format: 1.8 Date: Tue, 09 Oct 2012 13:27:40 +0100 Source: adobe-flashplugin Binary: adobe-flashplugin adobe-flash-properties-gtk adobe-flash-properties-kde Architecture: source Version: 11.2.202.243-0lucid1 Distribution: lucid Urgency: low Maintainer: DL-Flash Player Ubuntu Changed-By: Chris Coulson Description: adobe-flash-properties-gtk - GTK+ control panel for Adobe Flash Player plugin version 11 adobe-flash-properties-kde - KDE control panel Adobe Flash Player plugin version 11 adobe-flashplugin - Adobe Flash Player plugin version 11 Changes: adobe-flashplugin (11.2.202.243-0lucid1) lucid; urgency=low . * New upstream release v11.2.202.243 Checksums-Sha1: 4b6c88886d7be8c48675dc16c10e58d53f5749c0 1731 adobe-flashplugin_11.2.202.243-0lucid1.dsc c3366555ae44c082a24a271cd8d5c2fa4f57c082 5136 adobe-flashplugin_11.2.202.243-0lucid1.diff.gz Checksums-Sha256: 266cc5d348f72eddf2dd5693b018177e63ab51407ff34db3d5762bcbc2854368 1731 adobe-flashplugin_11.2.202.243-0lucid1.dsc 58d31f084120accaa73c5e5cd6992fe8a72582bb29e1ad5eef886b172cb749d2 5136 adobe-flashplugin_11.2.202.243-0lucid1.diff.gz Files: 77babbb177d78fd6a80559fc19770dd5 1731 partner/web optional adobe-flashplugin_11.2.202.243-0lucid1.dsc 96d5e20665f103820c9d1f02afd7f8c2 5136 partner/web optional adobe-flashplugin_11.2.202.243-0lucid1.diff.gz From jamie at ubuntu.com Tue Oct 9 21:40:20 2012 From: jamie at ubuntu.com (Jamie Strandboge) Date: Tue, 09 Oct 2012 21:40:20 -0000 Subject: [ubuntu/lucid-security] flashplugin-nonfree 11.2.202.243ubuntu0.10.04.1 (Accepted) Message-ID: <20121009214020.25377.45511.launchpad@ackee.canonical.com> flashplugin-nonfree (11.2.202.243ubuntu0.10.04.1) lucid-security; urgency=low * New upstream release 11.2.202.243 - debian/{config,postinst.in}: Updated version and sha256sum. Date: 2012-10-09 13:05:20.828995+00:00 Changed-By: Chris Coulson Signed-By: Jamie Strandboge https://launchpad.net/ubuntu/lucid/+source/flashplugin-nonfree/11.2.202.243ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From jamie at ubuntu.com Tue Oct 9 21:44:24 2012 From: jamie at ubuntu.com (Jamie Strandboge) Date: Tue, 09 Oct 2012 21:44:24 -0000 Subject: [ubuntu/lucid-security] firefox 16.0+build1-0ubuntu0.10.04.1 (Accepted) Message-ID: <20121009214424.27526.46347.launchpad@ackee.canonical.com> firefox (16.0+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (FIREFOX_16_0_BUILD1) - see LP: #1062611 for USN information * Refresh patches after merging of nsILocalFile in to nsIFile - update debian/patches/firefox-kde.patch - update debian/patches/mozilla-kde.patch * Drop StartupWMClass from the desktop file, as it isn't actually required by gnome shell or unity - update debian/firefox.desktop.in * Refresh patches - update debian/patches/ubuntu-ua-string-changes.patch - update debian/patches/mozilla-kde.patch - update debian/patches/dont-override-general-useragent-locale.patch - update debian/patches/firefox-kde.patch - update debian/patches/add-syspref-dir.patch * Fix for bmo: #795395 - add debian/patches/fix-for-bmo795395.patch - update debian/patches/series * Drop compare-locales from the packaging, and just check out the current version when we create the tarball - update debian/build/mozbuild.mk - update debian/build/create-tarball.py - remove debian/build/compare-locales * Generate a list of the search engines that we modify and store this in bzr, rather than determining this list at build time. We refresh the list in the clean target and fail the build if anything changes. This ensures that any upstream changes to the search engine list for any locale will not go unnoticed and will force a manual check to ensure that we are shipping correctly modified search engines - add debian/build/refresh-search-modifications.pl - update debian/build/mozbuild.mk - add debian/config/search-mods.list - rename debian/build/check-search-overrides.pl => debian/build/verify-search-overrides.pl * Drop obsolete autocomplete-theme-tweak patch now - remove debian/patches/autocomplete-theme-tweak.patch - update debian/patches/series Date: 2012-10-06 06:01:52.276110+00:00 Changed-By: Chris Coulson Signed-By: Jamie Strandboge https://launchpad.net/ubuntu/lucid/+source/firefox/16.0+build1-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Tue Oct 9 22:34:47 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Tue, 09 Oct 2012 22:34:47 -0000 Subject: [ubuntu/lucid-updates] firefox 16.0+build1-0ubuntu0.10.04.1 (Accepted) Message-ID: <20121009223447.11046.4506.launchpad@ackee.canonical.com> firefox (16.0+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (FIREFOX_16_0_BUILD1) - see LP: #1062611 for USN information * Refresh patches after merging of nsILocalFile in to nsIFile - update debian/patches/firefox-kde.patch - update debian/patches/mozilla-kde.patch * Drop StartupWMClass from the desktop file, as it isn't actually required by gnome shell or unity - update debian/firefox.desktop.in * Refresh patches - update debian/patches/ubuntu-ua-string-changes.patch - update debian/patches/mozilla-kde.patch - update debian/patches/dont-override-general-useragent-locale.patch - update debian/patches/firefox-kde.patch - update debian/patches/add-syspref-dir.patch * Fix for bmo: #795395 - add debian/patches/fix-for-bmo795395.patch - update debian/patches/series * Drop compare-locales from the packaging, and just check out the current version when we create the tarball - update debian/build/mozbuild.mk - update debian/build/create-tarball.py - remove debian/build/compare-locales * Generate a list of the search engines that we modify and store this in bzr, rather than determining this list at build time. We refresh the list in the clean target and fail the build if anything changes. This ensures that any upstream changes to the search engine list for any locale will not go unnoticed and will force a manual check to ensure that we are shipping correctly modified search engines - add debian/build/refresh-search-modifications.pl - update debian/build/mozbuild.mk - add debian/config/search-mods.list - rename debian/build/check-search-overrides.pl => debian/build/verify-search-overrides.pl * Drop obsolete autocomplete-theme-tweak patch now - remove debian/patches/autocomplete-theme-tweak.patch - update debian/patches/series Date: 2012-10-06 06:01:52.276110+00:00 Changed-By: Chris Coulson Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/firefox/16.0+build1-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Tue Oct 9 22:34:50 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Tue, 09 Oct 2012 22:34:50 -0000 Subject: [ubuntu/lucid-updates] flashplugin-nonfree 11.2.202.243ubuntu0.10.04.1 (Accepted) Message-ID: <20121009223450.11046.80521.launchpad@ackee.canonical.com> flashplugin-nonfree (11.2.202.243ubuntu0.10.04.1) lucid-security; urgency=low * New upstream release 11.2.202.243 - debian/{config,postinst.in}: Updated version and sha256sum. Date: 2012-10-09 13:05:20.828995+00:00 Changed-By: Chris Coulson Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/flashplugin-nonfree/11.2.202.243ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From marc.deslauriers at canonical.com Wed Oct 10 12:04:18 2012 From: marc.deslauriers at canonical.com (Marc Deslauriers) Date: Wed, 10 Oct 2012 12:04:18 -0000 Subject: [ubuntu/lucid-security] bind9 1:9.7.0.dfsg.P1-1ubuntu0.8 (Accepted) Message-ID: <20121010120418.21494.19346.launchpad@ackee.canonical.com> bind9 (1:9.7.0.dfsg.P1-1ubuntu0.8) lucid-security; urgency=low * SECURITY UPDATE: denial of service via specific combinations of RDATA - bin/named/query.c: fix logic - Patch backported from 9.8.3-P4 - CVE-2012-5166 Date: 2012-10-09 13:00:13.454763+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/lucid/+source/bind9/1:9.7.0.dfsg.P1-1ubuntu0.8 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Wed Oct 10 12:59:18 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Wed, 10 Oct 2012 12:59:18 -0000 Subject: [ubuntu/lucid-updates] bind9 1:9.7.0.dfsg.P1-1ubuntu0.8 (Accepted) Message-ID: <20121010125918.5546.30812.launchpad@ackee.canonical.com> bind9 (1:9.7.0.dfsg.P1-1ubuntu0.8) lucid-security; urgency=low * SECURITY UPDATE: denial of service via specific combinations of RDATA - bin/named/query.c: fix logic - Patch backported from 9.8.3-P4 - CVE-2012-5166 Date: 2012-10-09 13:00:13.454763+00:00 Changed-By: Marc Deslauriers Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/bind9/1:9.7.0.dfsg.P1-1ubuntu0.8 -------------- next part -------------- Sorry, changesfile not available. From adam.stokes at canonical.com Wed Oct 10 19:16:08 2012 From: adam.stokes at canonical.com (Adam Stokes) Date: Wed, 10 Oct 2012 19:16:08 -0000 Subject: [ubuntu/lucid-proposed] lsb 4.0-0ubuntu8.1 (Accepted) Message-ID: <20121010191608.32355.9280.launchpad@soybean.canonical.com> lsb (4.0-0ubuntu8.1) lucid-proposed; urgency=low * If a pidfile is specified, but doesn't provide a PID to test, return 'not running', and return 'unknown' if the pidfile exists but is unreadable (LP: #683640) Date: Wed, 10 Oct 2012 14:26:06 -0400 Changed-By: Adam Stokes Maintainer: Ubuntu Core Developers Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/lsb/4.0-0ubuntu8.1 -------------- next part -------------- Format: 1.8 Date: Wed, 10 Oct 2012 14:26:06 -0400 Source: lsb Binary: lsb-core lsb-graphics lsb-cxx lsb-desktop lsb-qt4 lsb-languages lsb-multimedia lsb-printing lsb-security lsb lsb-base lsb-release lsb-invalid-mta Architecture: source Version: 4.0-0ubuntu8.1 Distribution: lucid-proposed Urgency: low Maintainer: Ubuntu Core Developers Changed-By: Adam Stokes Description: lsb - Linux Standard Base 4.0 support package lsb-base - Linux Standard Base 4.0 init script functionality lsb-core - Linux Standard Base 4.0 core support package lsb-cxx - Linux Standard Base 4.0 C++ support package lsb-desktop - Linux Standard Base 4.0 Desktop support package lsb-graphics - Linux Standard Base 4.0 graphics support package lsb-invalid-mta - Linux Standard Base sendmail dummy lsb-languages - Linux Standard Base 4.0 Runtime Languages package lsb-multimedia - Linux Standard Base 4.0 Multimedia package lsb-printing - Linux Standard Base 4.0 Printing package lsb-qt4 - Linux Standard Base 4.0 Qt4 support package lsb-release - Linux Standard Base version reporting utility lsb-security - Linux Standard Base 4.0 Security package Launchpad-Bugs-Fixed: 683640 Changes: lsb (4.0-0ubuntu8.1) lucid-proposed; urgency=low . * If a pidfile is specified, but doesn't provide a PID to test, return 'not running', and return 'unknown' if the pidfile exists but is unreadable (LP: #683640) Checksums-Sha1: 362373d87808160c871604a714d92defe30b5954 1470 lsb_4.0-0ubuntu8.1.dsc 54acfe3f2ae81935a1520022468b957582ee8cf1 60924 lsb_4.0-0ubuntu8.1.tar.gz Checksums-Sha256: e08ba3c09c55dff12ee8f58114b64293aae345de05062dfe11aa5dc4533829a7 1470 lsb_4.0-0ubuntu8.1.dsc 08739d83648612cd541d9c636a172b2382b83bf7f2bee3f32713e732f73f7ef8 60924 lsb_4.0-0ubuntu8.1.tar.gz Files: 76f7c5188a242f9d79ca2ad574956756 1470 misc extra lsb_4.0-0ubuntu8.1.dsc 043386b822f7cf4bc18cb54b9a4e37d1 60924 misc extra lsb_4.0-0ubuntu8.1.tar.gz Original-Maintainer: Chris Lawrence From tyhicks at canonical.com Wed Oct 10 22:01:16 2012 From: tyhicks at canonical.com (Tyler Hicks) Date: Wed, 10 Oct 2012 22:01:16 -0000 Subject: [ubuntu/lucid-security] ruby1.8 1.8.7.249-2ubuntu0.2 (Accepted) Message-ID: <20121010220116.2626.1770.launchpad@ackee.canonical.com> ruby1.8 (1.8.7.249-2ubuntu0.2) lucid-security; urgency=low * SECURITY UPDATE: Safe level bypasses - debian/patches/CVE-2012-4466_CVE-2012-4481.dpatch: Remove incorrect string taints in exception handling methods. Based on upstream patch. - CVE-2012-4466 - CVE-2012-4481 Date: 2012-10-10 11:15:58.933465+00:00 Changed-By: Tyler Hicks https://launchpad.net/ubuntu/lucid/+source/ruby1.8/1.8.7.249-2ubuntu0.2 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Wed Oct 10 22:28:14 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Wed, 10 Oct 2012 22:28:14 -0000 Subject: [ubuntu/lucid-updates] ruby1.8 1.8.7.249-2ubuntu0.2 (Accepted) Message-ID: <20121010222814.6819.42271.launchpad@ackee.canonical.com> ruby1.8 (1.8.7.249-2ubuntu0.2) lucid-security; urgency=low * SECURITY UPDATE: Safe level bypasses - debian/patches/CVE-2012-4466_CVE-2012-4481.dpatch: Remove incorrect string taints in exception handling methods. Based on upstream patch. - CVE-2012-4466 - CVE-2012-4481 Date: 2012-10-10 11:15:58.933465+00:00 Changed-By: Tyler Hicks Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/ruby1.8/1.8.7.249-2ubuntu0.2 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Oct 11 05:11:38 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 11 Oct 2012 05:11:38 -0000 Subject: [ubuntu/lucid-updates] linux 2.6.32-44.98 (Accepted) Message-ID: <20121011051138.17036.53838.launchpad@ackee.canonical.com> linux (2.6.32-44.98) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1055438 [ Dave Airlie ] * SAUCE: drm/vmwgfx: add MODULE_DEVICE_TABLE so vmwgfx loads at boot - LP: #1039157 [ Upstream Kernel Changes ] * Revert "sfc: Fix maximum number of TSO segments and minimum TX queue size" - LP: #1037456 - CVE-2012-3412 * Revert "sfc: Replace some literal constants with EFX_PAGE_SIZE/EFX_BUF_SIZE" - LP: #1037456 - CVE-2012-3412 * Revert "tcp: Apply device TSO segment limit earlier" - LP: #1037456 - CVE-2012-3412 * Revert "tcp: do not scale TSO segment size with reordering degree" - LP: #1037456 - CVE-2012-3412 * Revert "net: Allow driver to limit number of GSO segments per skb" - LP: #1037456 - CVE-2012-3412 * cred: copy_process() should clear child->replacement_session_keyring - LP: #1023535 - CVE-2012-2745 * KVM: Change irq routing table to use gsi indexed array - LP: #1016298 - CVE-2012-2137 * KVM: Fix buffer overflow in kvm_set_irq() - LP: #1016298 - CVE-2012-2137 * xen: just completely disable XSAVE - LP: #1044550 * xen: Allow PV-OPS kernel to detect whether XSAVE is supported - LP: #1044550 * sfc: Fix maximum number of TSO segments and minimum TX queue size - LP: #1037456 - CVE-2012-3412 Date: 2012-09-24 17:25:11.084751+00:00 Changed-By: Tim Gardner Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux/2.6.32-44.98 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Oct 11 05:11:46 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 11 Oct 2012 05:11:46 -0000 Subject: [ubuntu/lucid-security] linux 2.6.32-44.98 (Accepted) Message-ID: <20121011051146.17036.68784.launchpad@ackee.canonical.com> linux (2.6.32-44.98) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1055438 [ Dave Airlie ] * SAUCE: drm/vmwgfx: add MODULE_DEVICE_TABLE so vmwgfx loads at boot - LP: #1039157 [ Upstream Kernel Changes ] * Revert "sfc: Fix maximum number of TSO segments and minimum TX queue size" - LP: #1037456 - CVE-2012-3412 * Revert "sfc: Replace some literal constants with EFX_PAGE_SIZE/EFX_BUF_SIZE" - LP: #1037456 - CVE-2012-3412 * Revert "tcp: Apply device TSO segment limit earlier" - LP: #1037456 - CVE-2012-3412 * Revert "tcp: do not scale TSO segment size with reordering degree" - LP: #1037456 - CVE-2012-3412 * Revert "net: Allow driver to limit number of GSO segments per skb" - LP: #1037456 - CVE-2012-3412 * cred: copy_process() should clear child->replacement_session_keyring - LP: #1023535 - CVE-2012-2745 * KVM: Change irq routing table to use gsi indexed array - LP: #1016298 - CVE-2012-2137 * KVM: Fix buffer overflow in kvm_set_irq() - LP: #1016298 - CVE-2012-2137 * xen: just completely disable XSAVE - LP: #1044550 * xen: Allow PV-OPS kernel to detect whether XSAVE is supported - LP: #1044550 * sfc: Fix maximum number of TSO segments and minimum TX queue size - LP: #1037456 - CVE-2012-3412 Date: 2012-09-24 17:25:11.084751+00:00 Changed-By: Tim Gardner Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux/2.6.32-44.98 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Oct 11 05:11:52 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 11 Oct 2012 05:11:52 -0000 Subject: [ubuntu/lucid-updates] linux-backports-modules-2.6.32 2.6.32-44.46 (Accepted) Message-ID: <20121011051152.17036.53946.launchpad@ackee.canonical.com> linux-backports-modules-2.6.32 (2.6.32-44.46) lucid-proposed; urgency=low * Start new release (and bump ABI) Date: 2012-09-25 08:20:38.459623+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-backports-modules-2.6.32/2.6.32-44.46 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Oct 11 05:11:56 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 11 Oct 2012 05:11:56 -0000 Subject: [ubuntu/lucid-security] linux-backports-modules-2.6.32 2.6.32-44.46 (Accepted) Message-ID: <20121011051156.17036.14172.launchpad@ackee.canonical.com> linux-backports-modules-2.6.32 (2.6.32-44.46) lucid-proposed; urgency=low * Start new release (and bump ABI) Date: 2012-09-25 08:20:38.459623+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-backports-modules-2.6.32/2.6.32-44.46 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Oct 11 05:12:22 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 11 Oct 2012 05:12:22 -0000 Subject: [ubuntu/lucid-updates] linux-meta 2.6.32.44.51 (Accepted) Message-ID: <20121011051222.17288.66734.launchpad@ackee.canonical.com> linux-meta (2.6.32.44.51) lucid-proposed; urgency=low [ Luis Henriques ] * Bump ABI Date: 2012-09-24 17:25:46.558138+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-meta/2.6.32.44.51 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Oct 11 05:12:26 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 11 Oct 2012 05:12:26 -0000 Subject: [ubuntu/lucid-security] linux-meta 2.6.32.44.51 (Accepted) Message-ID: <20121011051226.17288.86765.launchpad@ackee.canonical.com> linux-meta (2.6.32.44.51) lucid-proposed; urgency=low [ Luis Henriques ] * Bump ABI Date: 2012-09-24 17:25:46.558138+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-meta/2.6.32.44.51 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Oct 11 05:12:29 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 11 Oct 2012 05:12:29 -0000 Subject: [ubuntu/lucid-updates] linux-ports-meta 2.6.32.44.36 (Accepted) Message-ID: <20121011051229.17288.68371.launchpad@ackee.canonical.com> linux-ports-meta (2.6.32.44.36) lucid-proposed; urgency=low * Bump ABI Date: 2012-09-25 08:20:13.382925+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-ports-meta/2.6.32.44.36 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Thu Oct 11 05:12:31 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Thu, 11 Oct 2012 05:12:31 -0000 Subject: [ubuntu/lucid-security] linux-ports-meta 2.6.32.44.36 (Accepted) Message-ID: <20121011051231.17288.82521.launchpad@ackee.canonical.com> linux-ports-meta (2.6.32.44.36) lucid-proposed; urgency=low * Bump ABI Date: 2012-09-25 08:20:13.382925+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-ports-meta/2.6.32.44.36 -------------- next part -------------- Sorry, changesfile not available. From marc.deslauriers at canonical.com Thu Oct 11 11:49:12 2012 From: marc.deslauriers at canonical.com (Marc Deslauriers) Date: Thu, 11 Oct 2012 11:49:12 -0000 Subject: [ubuntu/lucid-security] moin 1.9.2-2ubuntu3.2 (Accepted) Message-ID: <20121011114912.11579.65880.launchpad@ackee.canonical.com> moin (1.9.2-2ubuntu3.2) lucid-security; urgency=low * SECURITY UPDATE: cross-site scripting issue in reStructuredText parser - debian/patches/CVE-2011-1058.patch: remove javascript support in MoinMoin/parser/text_rst.py. - CVE-2011-1058 * SECURITY UPDATE: incorrect permissions due to broken virtual group names handling - debian/patches/CVE-2012-4404.patch: fix group test in MoinMoin/security/__init__.py, added test in MoinMoin/security/_tests/test_security.py. - CVE-2012-4404 Date: 2012-10-10 16:00:12.488167+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/lucid/+source/moin/1.9.2-2ubuntu3.2 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Thu Oct 11 12:28:12 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Thu, 11 Oct 2012 12:28:12 -0000 Subject: [ubuntu/lucid-updates] moin 1.9.2-2ubuntu3.2 (Accepted) Message-ID: <20121011122812.23141.54060.launchpad@ackee.canonical.com> moin (1.9.2-2ubuntu3.2) lucid-security; urgency=low * SECURITY UPDATE: cross-site scripting issue in reStructuredText parser - debian/patches/CVE-2011-1058.patch: remove javascript support in MoinMoin/parser/text_rst.py. - CVE-2011-1058 * SECURITY UPDATE: incorrect permissions due to broken virtual group names handling - debian/patches/CVE-2012-4404.patch: fix group test in MoinMoin/security/__init__.py, added test in MoinMoin/security/_tests/test_security.py. - CVE-2012-4404 Date: 2012-10-10 16:00:12.488167+00:00 Changed-By: Marc Deslauriers Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/moin/1.9.2-2ubuntu3.2 -------------- next part -------------- Sorry, changesfile not available. From marc.deslauriers at canonical.com Thu Oct 11 18:00:27 2012 From: marc.deslauriers at canonical.com (Marc Deslauriers) Date: Thu, 11 Oct 2012 18:00:27 -0000 Subject: [ubuntu/lucid-security] quagga 0.99.20.1-0ubuntu0.10.04.3 (Accepted) Message-ID: <20121011180027.27117.66134.launchpad@ackee.canonical.com> quagga (0.99.20.1-0ubuntu0.10.04.3) lucid-security; urgency=low * SECURITY UPDATE: denial of service via malformed ORF capability TLV (LP: #1018052) - debian/patches/CVE-2012-1820.patch: correctly follow spec in bgpd/bgp_open.c. - CVE-2012-1820 Date: 2012-10-11 15:50:12.087313+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/lucid/+source/quagga/0.99.20.1-0ubuntu0.10.04.3 -------------- next part -------------- Sorry, changesfile not available. From launchpad at micahscomputing.com Thu Oct 11 18:20:42 2012 From: launchpad at micahscomputing.com (Micah Gersten) Date: Thu, 11 Oct 2012 18:20:42 -0000 Subject: [ubuntu/lucid-security] firefox 16.0.1+build1-0ubuntu0.10.04.1 (Accepted) Message-ID: <20121011182042.930.84827.launchpad@ackee.canonical.com> firefox (16.0.1+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (FIREFOX_16_0_1_BUILD1) - see LP: #1065285 for USN information Date: 2012-10-10 23:06:55.967964+00:00 Changed-By: Chris Coulson Signed-By: Micah Gersten https://launchpad.net/ubuntu/lucid/+source/firefox/16.0.1+build1-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Thu Oct 11 18:28:13 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Thu, 11 Oct 2012 18:28:13 -0000 Subject: [ubuntu/lucid-updates] quagga 0.99.20.1-0ubuntu0.10.04.3 (Accepted) Message-ID: <20121011182813.2576.94414.launchpad@ackee.canonical.com> quagga (0.99.20.1-0ubuntu0.10.04.3) lucid-security; urgency=low * SECURITY UPDATE: denial of service via malformed ORF capability TLV (LP: #1018052) - debian/patches/CVE-2012-1820.patch: correctly follow spec in bgpd/bgp_open.c. - CVE-2012-1820 Date: 2012-10-11 15:50:12.087313+00:00 Changed-By: Marc Deslauriers Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/quagga/0.99.20.1-0ubuntu0.10.04.3 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Thu Oct 11 20:05:20 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Thu, 11 Oct 2012 20:05:20 -0000 Subject: [ubuntu/lucid-updates] firefox 16.0.1+build1-0ubuntu0.10.04.1 (Accepted) Message-ID: <20121011200520.32471.78316.launchpad@ackee.canonical.com> firefox (16.0.1+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (FIREFOX_16_0_1_BUILD1) - see LP: #1065285 for USN information Date: 2012-10-10 23:06:55.967964+00:00 Changed-By: Chris Coulson Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/firefox/16.0.1+build1-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From launchpad at micahscomputing.com Fri Oct 12 09:16:30 2012 From: launchpad at micahscomputing.com (Micah Gersten) Date: Fri, 12 Oct 2012 09:16:30 -0000 Subject: [ubuntu/lucid-security] thunderbird 16.0.1+build1-0ubuntu0.10.04.1 (Accepted) Message-ID: <20121012091630.19891.82794.launchpad@ackee.canonical.com> thunderbird (16.0.1+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (THUNDERBIRD_16_0_1_BUILD1) - see LP: #1065292 for USN information thunderbird (16.0+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (THUNDERBIRD_16_0_BUILD1) - see LP: #1062587 for USN information * Drop compare-locales from the packaging, and just check out the current version when we create the tarball - update debian/build/mozbuild.mk - update debian/build/create-tarball.py - remove debian/build/compare-locales * Fix for bmo: #795395 - add debian/patches/fix-for-bmo795395.patch - update debian/patches/series Date: 2012-10-10 23:20:19.643711+00:00 Changed-By: Chris Coulson Signed-By: Micah Gersten https://launchpad.net/ubuntu/lucid/+source/thunderbird/16.0.1+build1-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From launchpad at micahscomputing.com Fri Oct 12 09:16:58 2012 From: launchpad at micahscomputing.com (Micah Gersten) Date: Fri, 12 Oct 2012 09:16:58 -0000 Subject: [ubuntu/lucid-security] enigmail 2:1.4.5-0ubuntu0.10.04.1 (Accepted) Message-ID: <20121012091658.19891.48165.launchpad@ackee.canonical.com> enigmail (2:1.4.5-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream release v1.4.5 to support Thunderbird 16 - LP: #1062587 * Add patch to set the correct version number. The version was not changed from 1.5a1pre to 1.4.5 when the tarball was built from rev 24e938 - add debian/patches/correct-version-number.diff - update debian/patches/series Date: 2012-10-09 18:30:11.773565+00:00 Changed-By: Chris Coulson Signed-By: Micah Gersten https://launchpad.net/ubuntu/lucid/+source/enigmail/2:1.4.5-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Fri Oct 12 11:33:17 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Fri, 12 Oct 2012 11:33:17 -0000 Subject: [ubuntu/lucid-updates] thunderbird 16.0.1+build1-0ubuntu0.10.04.1 (Accepted) Message-ID: <20121012113317.28075.31241.launchpad@ackee.canonical.com> thunderbird (16.0.1+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (THUNDERBIRD_16_0_1_BUILD1) - see LP: #1065292 for USN information thunderbird (16.0+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (THUNDERBIRD_16_0_BUILD1) - see LP: #1062587 for USN information * Drop compare-locales from the packaging, and just check out the current version when we create the tarball - update debian/build/mozbuild.mk - update debian/build/create-tarball.py - remove debian/build/compare-locales * Fix for bmo: #795395 - add debian/patches/fix-for-bmo795395.patch - update debian/patches/series Date: 2012-10-10 23:20:19.643711+00:00 Changed-By: Chris Coulson Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/thunderbird/16.0.1+build1-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Fri Oct 12 11:33:19 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Fri, 12 Oct 2012 11:33:19 -0000 Subject: [ubuntu/lucid-updates] enigmail 2:1.4.5-0ubuntu0.10.04.1 (Accepted) Message-ID: <20121012113319.28075.4739.launchpad@ackee.canonical.com> enigmail (2:1.4.5-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream release v1.4.5 to support Thunderbird 16 - LP: #1062587 * Add patch to set the correct version number. The version was not changed from 1.5a1pre to 1.4.5 when the tarball was built from rev 24e938 - add debian/patches/correct-version-number.diff - update debian/patches/series Date: 2012-10-09 18:30:11.773565+00:00 Changed-By: Chris Coulson Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/enigmail/2:1.4.5-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From tyhicks at canonical.com Mon Oct 15 16:41:17 2012 From: tyhicks at canonical.com (Tyler Hicks) Date: Mon, 15 Oct 2012 16:41:17 -0000 Subject: [ubuntu/lucid-security] libgssglue 0.1-4ubuntu0.1 (Accepted) Message-ID: <20121015164117.6666.47635.launchpad@ackee.canonical.com> libgssglue (0.1-4ubuntu0.1) lucid-security; urgency=low * SECURITY UPDATE: Privilege escalation via malicious environment variable - debian/patches/07-CVE_2011_2709.patch: Only read the GSSAPI_MECH_CONF environment variable in non-setuid situations. Based on upstream patch. - CVE-2011-2709 Date: 2012-09-28 09:00:35.201289+00:00 Changed-By: Tyler Hicks https://launchpad.net/ubuntu/lucid/+source/libgssglue/0.1-4ubuntu0.1 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Mon Oct 15 17:28:13 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Mon, 15 Oct 2012 17:28:13 -0000 Subject: [ubuntu/lucid-updates] libgssglue 0.1-4ubuntu0.1 (Accepted) Message-ID: <20121015172813.21442.40364.launchpad@ackee.canonical.com> libgssglue (0.1-4ubuntu0.1) lucid-security; urgency=low * SECURITY UPDATE: Privilege escalation via malicious environment variable - debian/patches/07-CVE_2011_2709.patch: Only read the GSSAPI_MECH_CONF environment variable in non-setuid situations. Based on upstream patch. - CVE-2011-2709 Date: 2012-09-28 09:00:35.201289+00:00 Changed-By: Tyler Hicks Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/libgssglue/0.1-4ubuntu0.1 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Fri Oct 19 09:04:17 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Fri, 19 Oct 2012 09:04:17 -0000 Subject: [ubuntu/lucid-proposed] linux-meta 2.6.32.45.52 (Accepted) Message-ID: <20121019090417.27335.54043.launchpad@ackee.canonical.com> linux-meta (2.6.32.45.52) lucid-proposed; urgency=low [ Luis Henriques ] * Bump ABI [ Stefan Bader ] * Make linux-crashdump alternatively depend on EFI grub LP: #1064259 Date: 2012-10-16 16:25:46.572001+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-meta/2.6.32.45.52 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Fri Oct 19 09:04:20 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Fri, 19 Oct 2012 09:04:20 -0000 Subject: [ubuntu/lucid-proposed] linux-ports-meta 2.6.32.45.37 (Accepted) Message-ID: <20121019090420.27335.53414.launchpad@ackee.canonical.com> linux-ports-meta (2.6.32.45.37) lucid-proposed; urgency=low * Bump ABI Date: 2012-10-18 16:10:32.479904+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-ports-meta/2.6.32.45.37 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Fri Oct 19 09:04:42 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Fri, 19 Oct 2012 09:04:42 -0000 Subject: [ubuntu/lucid-proposed] linux 2.6.32-45.99 (Accepted) Message-ID: <20121019090442.27335.19472.launchpad@ackee.canonical.com> linux (2.6.32-45.99) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1067331 [ Tim Gardner ] * SAUCE: omnibook: Expose PWD for standalone builds - LP: #505420 [ Upstream Kernel Changes ] * Revert "xfs: Fix possible memory corruption in xfs_readlink, CVE-2011-4077" - LP: #1064480 * UBUNTU SAUCE: apparmor: fix IRQ stack overflow - LP: #1056078 * net/9p: fix virtio transport to correctly update status on connect - LP: #676823 * 9p: Fix the kernel crash on a failed mount - LP: #676823 * netxen: support for GbE port settings - LP: #1064480 * Fix sparc build with newer tools. - LP: #1064480 * powerpc/pmac: Fix SMP kernels on pre-core99 UP machines - LP: #1064480 * Bluetooth: btusb: fix bInterval for high/super speed isochronous endpoints - LP: #1064480 * fix pgd_lock deadlock - LP: #1064480 * futex: Fix uninterruptible loop due to gate_area - LP: #1064480 * time: Improve sanity checking of timekeeping inputs - LP: #1064480 * time: Avoid making adjustments if we haven't accumulated anything - LP: #1064480 * time: Move ktime_t overflow checking into timespec_valid_strict - LP: #1064480 * drm/i915: Attempt to fix watermark setup on 85x (v2) - LP: #1064480 * ioat2: kill pending flag - LP: #1064480 * usb: Fix deadlock in hid_reset when Dell iDRAC is reset - LP: #1064480 * oprofile: use KM_NMI slot for kmap_atomic - LP: #1064480 * tty_audit: fix tty_audit_add_data live lock on audit disabled - LP: #1064480 * bonding: 802.3ad - fix agg_device_up - LP: #1064480 * usbnet: increase URB reference count before usb_unlink_urb - LP: #1064480 * usbnet: don't clear urb->dev in tx_complete - LP: #1064480 * sched: Fix signed unsigned comparison in check_preempt_tick() - LP: #1064480 * x86/PCI: amd: factor out MMCONFIG discovery - LP: #1064480 * PNP: fix "work around Dell 1536/1546 BIOS MMCONFIG bug that breaks USB" - LP: #1064480 * KVM: x86: disallow multiple KVM_CREATE_IRQCHIP - LP: #1064480 * KVM: ia64: fix build due to typo - LP: #1064480 * xfs: Fix possible memory corruption in xfs_readlink - LP: #1064480 * xfs: Fix missing xfs_iunlock() on error recovery path in xfs_readlink() - LP: #1064480 * dl2k: use standard #defines from mii.h. - LP: #1064480 * tcp: Don't change unlocked socket state in tcp_v4_err(). - LP: #1064480 * x86: Derandom delay_tsc for 64 bit - LP: #1064480 * ipsec: be careful of non existing mac headers - LP: #1064480 * block, sx8: fix pointer math issue getting fw version - LP: #1064480 * nilfs2: fix NULL pointer dereference in nilfs_load_super_block() - LP: #1064480 * USB: ftdi_sio: fix problem when the manufacture is a NULL string - LP: #1064480 * ntp: Fix integer overflow when setting time - LP: #1064480 * SUNRPC: We must not use list_for_each_entry_safe() in rpc_wake_up() - LP: #1064480 * ext4: check for zero length extent - LP: #1064480 * xfs: Fix oops on IO error during xlog_recover_process_iunlinks() - LP: #1064480 * nfsd: don't allow zero length strings in cache_parse() - LP: #1064480 * sched/x86: Fix overflow in cyc2ns_offset - LP: #1064480 * Bluetooth: add NULL pointer check in HCI - LP: #1064480 * Bluetooth: hci_ldisc: fix NULL-pointer dereference on tty_close - LP: #1064480 * sparc64: Fix bootup crash on sun4v. - LP: #1064480 * video:uvesafb: Fix oops that uvesafb try to execute NX-protected page - LP: #1064480 * USB: serial: fix race between probe and open - LP: #1064480 * xhci: Don't write zeroed pointers to xHC registers. - LP: #1064480 * xHCI: Correct the #define XHCI_LEGACY_DISABLE_SMI - LP: #1064480 * crypto: sha512 - Fix byte counter overflow in SHA-512 - LP: #1064480 * PCI: Add quirk for still enabled interrupts on Intel Sandy Bridge GPUs - LP: #1064480 * phonet: Check input from user before allocating - LP: #1064480 * netlink: fix races after skb queueing - LP: #1064480 * net: fix a race in sock_queue_err_skb() - LP: #1064480 * atl1: fix kernel panic in case of DMA errors - LP: #1064480 * net/ethernet: ks8851_mll fix rx frame buffer overflow - LP: #1064480 * net_sched: gred: Fix oops in gred_dump() in WRED mode - LP: #1064480 * ARM: 7410/1: Add extra clobber registers for assembly in kernel_execve - LP: #1064480 * netem: fix possible skb leak - LP: #1064480 * ALSA: echoaudio: Remove incorrect part of assertion - LP: #1064480 * NFSv4: Revalidate uid/gid after open - LP: #1064480 * ext3: Fix error handling on inode bitmap corruption - LP: #1064480 * ext4: fix error handling on inode bitmap corruption - LP: #1064480 * xhci: Reset reserved command ring TRBs on cleanup. - LP: #1064480 * SCSI: fix scsi_wait_scan - LP: #1064480 * powerpc: Fix kernel panic during kernel module load - LP: #1064480 * fuse: fix stat call on 32 bit platforms - LP: #1064480 * udf: Improve table length check to avoid possible overflow - LP: #1064480 * stable: Allow merging of backports for serious user-visible performance issues - LP: #1064480 * eCryptfs: Properly check for O_RDONLY flag before doing privileged open - LP: #1064480 * USB: cdc-wdm: fix lockup on error in wdm_read - LP: #1064480 * ntp: Fix STA_INS/DEL clearing bug - LP: #1064480 * MIPS: Properly align the .data..init_task section. - LP: #1064480 * powerpc/ftrace: Fix assembly trampoline register usage - LP: #1064480 * powerpc: Add "memory" attribute for mfmsr() - LP: #1064480 * SCSI: libsas: continue revalidation - LP: #1064480 * SCSI: libsas: fix sas_discover_devices return code handling - LP: #1064480 * SCSI: fix eh wakeup (scsi_schedule_eh vs scsi_restart_operations) - LP: #1064480 * SCSI: Avoid dangling pointer in scsi_requeue_command() - LP: #1064480 * usbdevfs: Correct amount of data copied to user in processcompl_compat - LP: #1064480 * locks: fix checking of fcntl_setlease argument - LP: #1064480 * ACPI/AC: prevent OOPS on some boxes due to missing check power_supply_register() return value check - LP: #1064480 * Btrfs: call the ordered free operation without any locks held - LP: #1064480 * nfsd4: our filesystems are normally case sensitive - LP: #1064480 * ext4: don't let i_reserved_meta_blocks go negative - LP: #1064480 * sctp: Fix list corruption resulting from freeing an association on a list - LP: #1064480 * cipso: don't follow a NULL pointer when setsockopt() is called - LP: #1064480 * wanmain: comparing array with NULL - LP: #1064480 * USB: kaweth.c: use GFP_ATOMIC under spin_lock - LP: #1064480 * tcp: perform DMA to userspace only if there is a task waiting for it - LP: #1064480 * net/tun: fix ioctl() based info leaks - LP: #1064480 * USB: echi-dbgp: increase the controller wait time to come out of halt. - LP: #1064480 * ALSA: mpu401: Fix missing initialization of irq field - LP: #1064480 * futex: Test for pi_mutex on fault in futex_wait_requeue_pi() - LP: #1064480 * futex: Fix bug in WARN_ON for NULL q.pi_state - LP: #1064480 * futex: Forbid uaddr == uaddr2 in futex_wait_requeue_pi() - LP: #1064480 * pcdp: use early_ioremap/early_iounmap to access pcdp table - LP: #1064480 * mm: mmu_notifier: fix freed page still mapped in secondary MMU - LP: #1064480 * fuse: verify all ioctl retry iov elements - LP: #1064480 * xhci: Increase reset timeout for Renesas 720201 host. - LP: #1064480 * usb: serial: mos7840: Fixup mos7840_chars_in_buffer() - LP: #1064480 * ALSA: hda - fix Copyright debug message - LP: #1064480 * vfs: missed source of ->f_pos races - LP: #1064480 * NFSv3: Ensure that do_proc_get_root() reports errors correctly - LP: #1064480 * NFS: Alias the nfs module to nfs4 - LP: #1064480 * svcrpc: fix svc_xprt_enqueue/svc_recv busy-looping - LP: #1064480 * svcrpc: sends on closed socket should stop immediately - LP: #1064480 * cciss: fix incorrect scsi status reporting - LP: #1064480 * USB: CDC ACM: Fix NULL pointer dereference - LP: #1064480 * Remove user-triggerable BUG from mpol_to_str - LP: #1064480 * udf: Fix data corruption for files in ICB - LP: #1064480 * ext3: Fix fdatasync() for files with only i_size changes - LP: #1064480 * PARISC: Redefine ATOMIC_INIT and ATOMIC64_INIT to drop the casts - LP: #1064480 * dccp: check ccid before dereferencing - LP: #1064480 * ia64: Add accept4() syscall - LP: #1064480 * tcp: do_tcp_sendpages() must try to push data out on oom conditions - LP: #1064480 * tcp: drop SYN+FIN messages - LP: #1064480 * xen: correctly check for pending events when restoring irq flags - LP: #1064480 * x86, amd, xen: Avoid NULL pointer paravirt references - LP: #1064480 * x86, tls: Off by one limit check - LP: #1064480 * sparc64: Eliminate obsolete __handle_softirq() function - LP: #1064480 * udf: fix retun value on error path in udf_load_logicalvol - LP: #1064480 * mtd: cafe_nand: fix an & vs | mistake - LP: #1064480 * epoll: introduce POLLFREE to flush ->signalfd_wqh before kfree() - LP: #1064480 * epoll: ep_unregister_pollwait() can use the freed pwq->whead - LP: #1064480 * epoll: limit paths - LP: #1064480 * Don't limit non-nested epoll paths - LP: #1064480 * epoll: clear the tfile_check_list on -ELOOP - LP: #1064480 * random: Reorder struct entropy_store to remove padding on 64bits - LP: #1064480 * random: update interface comments to reflect reality - LP: #1064480 * random: simplify fips mode - LP: #1064480 * x86, cpu: Add CPU flags for F16C and RDRND - LP: #1064480 * x86, cpufeature: Update CPU feature RDRND to RDRAND - LP: #1064480 * random: Add support for architectural random hooks - LP: #1064480 * x86, random: Architectural inlines to get random integers with RDRAND - LP: #1064480 * x86, random: Verify RDRAND functionality and allow it to be disabled - LP: #1064480 * fix typo/thinko in get_random_bytes() - LP: #1064480 * random: Use arch_get_random_int instead of cycle counter if avail - LP: #1064480 * random: Use arch-specific RNG to initialize the entropy store - LP: #1064480 * random: Adjust the number of loops when initializing - LP: #1064480 * drivers/char/random.c: fix boot id uniqueness race - LP: #1064480 * random: make 'add_interrupt_randomness()' do something sane - LP: #1064480 * random: use lockless techniques in the interrupt path - LP: #1064480 * random: create add_device_randomness() interface - LP: #1064480 * random: use the arch-specific rng in xfer_secondary_pool - LP: #1064480 * random: add new get_random_bytes_arch() function - LP: #1064480 * random: mix in architectural randomness in extract_buf() - LP: #1064480 * MAINTAINERS: Theodore Ts'o is taking over the random driver - LP: #1064480 * usb: feed USB device information to the /dev/random driver - LP: #1064480 * net: feed /dev/random with the MAC address when registering a device - LP: #1064480 * random: remove rand_initialize_irq() - LP: #1064480 * random: Add comment to random_initialize() - LP: #1064480 * rtc: wm831x: Feed the write counter into device_add_randomness() - LP: #1064480 * mfd: wm831x: Feed the device UUID into device_add_randomness() - LP: #1064480 * dmi: Feed DMI table to /dev/random driver - LP: #1064480 * Linux 2.6.32.60 - LP: #1064480 Date: 2012-10-16 16:25:23.969514+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux/2.6.32-45.99 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Fri Oct 19 09:04:45 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Fri, 19 Oct 2012 09:04:45 -0000 Subject: [ubuntu/lucid-proposed] linux-backports-modules-2.6.32 2.6.32-45.47 (Accepted) Message-ID: <20121019090445.27335.18910.launchpad@ackee.canonical.com> linux-backports-modules-2.6.32 (2.6.32-45.47) lucid-proposed; urgency=low * Start new release (and bump ABI) Date: 2012-10-18 16:10:17.957894+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-backports-modules-2.6.32/2.6.32-45.47 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Sat Oct 20 12:18:17 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Sat, 20 Oct 2012 12:18:17 -0000 Subject: [ubuntu/lucid-proposed] linux-lts-backport-oneiric 3.0.0-27.44~lucid1 (Accepted) Message-ID: <20121020121817.4165.70203.launchpad@ackee.canonical.com> linux-lts-backport-oneiric (3.0.0-27.44~lucid1) lucid-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1068230 [ James M Leddy ] * SAUCE: input: fix weird issue of synaptics psmouse sync lost after resume - LP: #717970 [ Upstream Kernel Changes ] * UBUNTU SAUCE: apparmor: fix IRQ stack overflow - LP: #1056078 * net_sched: gact: Fix potential panic in tcf_gact(). - LP: #1060430 * isdnloop: fix and simplify isdnloop_init() - LP: #1060430 * net/core: Fix potential memory leak in dev_set_alias() - LP: #1060430 * af_packet: remove BUG statement in tpacket_destruct_skb - LP: #1060430 * ipv6: addrconf: Avoid calling netdevice notifiers with RCU read-side lock - LP: #1060430 * atm: fix info leak in getsockopt(SO_ATMPVC) - LP: #1060430 * atm: fix info leak via getsockname() - LP: #1060430 * Bluetooth: HCI - Fix info leak in getsockopt(HCI_FILTER) - LP: #1060430 * Bluetooth: HCI - Fix info leak via getsockname() - LP: #1060430 * Bluetooth: RFCOMM - Fix info leak in ioctl(RFCOMMGETDEVLIST) - LP: #1060430 * Bluetooth: RFCOMM - Fix info leak via getsockname() - LP: #1060430 * Bluetooth: L2CAP - Fix info leak via getsockname() - LP: #1060430 * llc: fix info leak via getsockname() - LP: #1060430 * dccp: fix info leak via getsockopt(DCCP_SOCKOPT_CCID_TX_INFO) - LP: #1060430 * ipvs: fix info leak in getsockopt(IP_VS_SO_GET_TIMEOUT) - LP: #1060430 * net: fix info leak in compat dev_ifconf() - LP: #1060430 * netlink: fix possible spoofing from non-root processes - LP: #1060430 * l2tp: avoid to use synchronize_rcu in tunnel free function - LP: #1060430 * net: ipv4: ipmr_expire_timer causes crash when removing net namespace - LP: #1060430 * workqueue: reimplement work_on_cpu() using system_wq - LP: #1060430 * cpufreq/powernow-k8: workqueue user shouldn't migrate the kworker to another CPU - LP: #1060430 * cciss: fix handling of protocol error - LP: #1060430 * vfs: make O_PATH file descriptors usable for 'fstat()' - LP: #1060430 * vfs: dcache: use DCACHE_DENTRY_KILLED instead of DCACHE_DISCONNECTED in d_kill() - LP: #1060430 * netconsole: remove a redundant netconsole_target_put() - LP: #1060430 * target: Fix ->data_length re-assignment bug with SCSI overflow - LP: #1060430 * ALSA: ice1724: Use linear scale for AK4396 volume control. - LP: #1060430 * Staging: speakup: fix an improperly-declared variable. - LP: #1060430 * staging: vt6656: [BUG] - Failed connection, incorrect endian. - LP: #1060430 * staging: r8712u: fix bug in r8712_recv_indicatepkt() - LP: #1060430 * staging: comedi: das08: Correct AO output for das08jr-16-ao - LP: #1060430 * USB: option: replace ZTE K5006-Z entry with vendor class rule - LP: #1060430 * perf_event: Switch to internal refcount, fix race with close() - LP: #1060430 * mmc: mxs-mmc: fix deadlock in SDIO IRQ case - LP: #1060430 * mmc: sdhci-esdhc: break out early if clock is 0 - LP: #1060430 * ahci: Add alternate identifier for the 88SE9172 - LP: #1060430 * kobject: fix oops with "input0: bad kobj_uevent_env content in show_uevent()" - LP: #1060430 * Redefine ATOMIC_INIT and ATOMIC64_INIT to drop the casts - LP: #1060430 * md: Don't truncate size at 4TB for RAID0 and Linear - LP: #1060430 * mm/page_alloc: fix the page address of higher page's buddy calculation - LP: #1060430 * drivers/rtc/rtc-twl.c: ensure all interrupts are disabled during probe - LP: #1060430 * hwmon: (twl4030-madc-hwmon) Initialize uninitialized structure elements - LP: #1060430 * can: mcp251x: avoid repeated frame bug - LP: #1060430 * mm/ia64: fix a memory block size bug - LP: #1060430 * memory hotplug: fix section info double registration bug - LP: #1060430 * xen/boot: Disable NUMA for PV guests. - LP: #1060430 * hwmon: (fam15h_power) Tweak runavg_range on resume - LP: #1060430 * hwmon: (ads7871) Add 'name' sysfs attribute - LP: #1060430 * SCSI: mpt2sas: Fix for issue - Unable to boot from the drive connected to HBA - LP: #1060430 * SCSI: bnx2i: Fixed NULL ptr deference for 1G bnx2 Linux iSCSI offload - LP: #1060430 * SCSI: hpsa: fix handling of protocol error - LP: #1060430 * hpwdt: Fix kdump issue in hpwdt - LP: #1060430 * ARM: fix bad applied patch for arch/arm/Kconfig of stable 3.0.y tree. - LP: #1060430 * ARM: 7532/1: decompressor: reset SCTLR.TRE for VMSA ARMv7 cores - LP: #1060430 * tracing: Don't call page_to_pfn() if page is NULL - LP: #1060430 * Input: i8042 - disable mux on Toshiba C850D - LP: #1060430 * asix: Support DLink DUB-E100 H/W Ver C1 - LP: #1060430 * can: ti_hecc: fix oops during rmmod - LP: #1060430 * can: janz-ican3: fix support for older hardware revisions - LP: #1060430 * cfg80211: fix possible circular lock on reg_regdb_search() - LP: #1060430 * dmaengine: at_hdmac: fix comment in atc_prep_slave_sg() - LP: #1060430 * dmaengine: at_hdmac: check that each sg data length is non-null - LP: #1060430 * rt2x00: Fix word size of rt2500usb MAC_CSR19 register. - LP: #1060430 * rt2x00: Fix rfkill polling prior to interface start. - LP: #1060430 * NFS: Fix the initialisation of the readdir 'cookieverf' array - LP: #1060430 * NFS: Fix a problem with the legacy binary mount code - LP: #1060430 * NFS: return error from decode_getfh in decode open - LP: #1060430 * EHCI: Update qTD next pointer in QH overlay region during unlink - LP: #1060430 * USB: ftdi_sio: PID for NZR SEM 16+ USB - LP: #1060430 * USB: ftdi_sio: do not claim CDC ACM function - LP: #1060430 * USB: ftdi-sio: add support for more Physik Instrumente devices - LP: #1060430 * USB: add device quirk for Joss Optical touchboard - LP: #1060430 * Intel xhci: Only switch the switchable ports - LP: #1060430 * xhci: Fix a logical vs bitwise AND bug - LP: #1060430 * xhci: Make handover code more robust - LP: #1060430 * xhci: Recognize USB 3.0 devices as superspeed at powerup - LP: #1000424, #1060430 * usb: host: xhci: fix compilation error for non-PCI based stacks - LP: #1060430 * xhci: Fix bug after deq ptr set to link TRB. - LP: #1060430 * mutex: Place lock in contended state after fastpath_lock failure - LP: #1060430 * drivers/rtc/rtc-rs5c348.c: fix hour decoding in 12-hour mode - LP: #1060430 * PM / Runtime: Fix rpm_resume() return value for power.no_callbacks set - LP: #1060430 * PM / Runtime: Clear power.deferred_resume on success in rpm_suspend() - LP: #1060430 * drivers/misc/sgi-xp/xpc_uv.c: SGI XPC fails to load when cpu 0 is out of IRQ resources - LP: #1060430 * fbcon: fix race condition between console lock and cursor timer (v1.1) - LP: #1060430 * drm/radeon/kms: extend the Fujitsu D3003-S2 board connector quirk to cover later silicon stepping - LP: #1060430 * asus-laptop: HRWS/HWRS typo - LP: #1060430 * asus-nb-wmi: add some video toggle keys - LP: #1060430 * drm/i915: HDMI - Clear Audio Enable bit for Hot Plug - LP: #1060430 * workqueue: UNBOUND -> REBIND morphing in rebind_workers() should be atomic - LP: #1060430 * x86: Fix boot on Twinhead H12Y - LP: #1060430 * Bluetooth: btusb: Add vendor specific ID (0a5c:21f4) BCM20702A0 - LP: #1060430 * Bluetooth: Use USB_VENDOR_AND_INTERFACE() for Broadcom devices - LP: #1060430 * Bluetooth: Add support for Apple vendor-specific devices - LP: #1060430 * net: Statically initialize init_net.dev_base_head - LP: #1060430 * Fix a dead loop in async_synchronize_full() - LP: #1060430 * libata: Prevent interface errors with Seagate FreeAgent GoFlex - LP: #1060430 * cpufreq / ACPI: Fix not loading acpi-cpufreq driver regression - LP: #1060430 * media: lirc_sir: make device registration work - LP: #1060430 * drop_monitor: fix sleeping in invalid context warning - LP: #1060430 * drop_monitor: Make updating data->skb smp safe - LP: #1060430 * drop_monitor: prevent init path from scheduling on the wrong cpu - LP: #1060430 * drop_monitor: dont sleep in atomic context - LP: #1060430 * time: Improve sanity checking of timekeeping inputs - LP: #1060430 * time: Avoid making adjustments if we haven't accumulated anything - LP: #1060430 * time: Move ktime_t overflow checking into timespec_valid_strict - LP: #1060430 * pch_uart: Fix missing break for 16 byte fifo - LP: #1060430 * pch_uart: Fix rx error interrupt setting issue - LP: #1060430 * pch_uart: Fix parity setting issue - LP: #1060430 * Squashfs: fix mount time sanity check for corrupted superblock - LP: #1060430 * mmc: sd: Handle SD3.0 cards not supporting UHS-I bus speed mode - LP: #1060430 * mmc: Prevent 1.8V switch for SD hosts that don't support UHS modes. - LP: #1060430 * e1000e: Disable ASPM L1 on 82574 - LP: #1060430 * UBI: fix a horrible memory deallocation bug - LP: #1060430 * spi/mpc83xx: fix NULL pdata dereference bug - LP: #1060430 * spi/spi-fsl-spi: reference correct pdata in fsl_spi_cs_control - LP: #1060430 * sched: Fix ancient race in do_exit() - LP: #1060430 * MCE: Fix vm86 handling for 32bit mce handler - LP: #1060430 * USB: Fix race condition when removing host controllers - LP: #1060430 * ARM: 7467/1: mutex: use generic xchg-based implementation for ARMv6+ - LP: #1060430 * Linux 3.0.44 - LP: #1060430 * vfs: dcache: fix deadlock in tree traversal - LP: #1063828 * dm: handle requests beyond end of device instead of using BUG_ON - LP: #1063828 * USB: option: blacklist QMI interface on ZTE MF683 - LP: #1063828 * USB: ftdi_sio: add TIAO USB Multi-Protocol Adapter (TUMPA) support - LP: #1063828 * USB: qcaux: add Pantech vendor class match - LP: #1063828 * staging: speakup_soft: Fix reading of init string - LP: #1063828 * staging: comedi: s626: don't dereference insn->data - LP: #1063828 * staging: comedi: jr3_pci: fix iomem dereference - LP: #1063828 * staging: comedi: don't dereference user memory for INSN_INTTRIG - LP: #1063828 * staging: comedi: fix memory leak for saved channel list - LP: #1063828 * Remove BUG_ON from n_tty_read() - LP: #1063828 * TTY: ttyprintk, don't touch behind tty->write_buf - LP: #1063828 * serial: pl011: handle corruption at high clock speeds - LP: #1063828 * serial: set correct baud_base for EXSYS EX-41092 Dual 16950 - LP: #1063828 * b43legacy: Fix crash on unload when firmware not available - LP: #1063828 * firmware: Add missing attributes to EFI variable attribute print out from sysfs - LP: #1063828 * xhci: Intel Panther Point BEI quirk. - LP: #1063828 * n_gsm: added interlocking for gsm_data_lock for certain code paths - LP: #1063828 * coredump: prevent double-free on an error path in core dumper - LP: #1063828 * Increase XHCI suspend timeout to 16ms - LP: #1063828 * n_gsm: memory leak in uplink error path - LP: #1063828 * UBI: fix autoresize handling in R/O mode - LP: #1063828 * SCSI: ibmvscsi: Fix host config length field overflow - LP: #1063828 * SCSI: hpsa: Use LUN reset instead of target reset - LP: #1063828 * can: mscan-mpc5xxx: fix return value check in mpc512x_can_get_clock() - LP: #1063828 * IPoIB: Fix use-after-free of multicast object - LP: #1063828 * IB/srp: Fix use-after-free in srp_reset_req() - LP: #1063828 * IB/srp: Avoid having aborted requests hang - LP: #1063828 * isci: fix isci_pci_probe() generates warning on efi failure path - LP: #1063828 * x86/alternatives: Fix p6 nops on non-modular kernels - LP: #1063828 * PCI: honor child buses add_size in hot plug configuration - LP: #1063828 * SCSI: scsi_remove_target: fix softlockup regression on hot remove - LP: #1063828 * SCSI: scsi_dh_alua: Enable STPG for unavailable ports - LP: #1063828 * Linux 3.0.45 - LP: #1063828 Date: 2012-10-19 15:25:15.681245+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-lts-backport-oneiric/3.0.0-27.44~lucid1 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Sat Oct 20 12:18:19 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Sat, 20 Oct 2012 12:18:19 -0000 Subject: [ubuntu/lucid-proposed] linux-meta-lts-backport-oneiric 3.0.0.27.15 (Accepted) Message-ID: <20121020121819.4165.75257.launchpad@ackee.canonical.com> linux-meta-lts-backport-oneiric (3.0.0.27.15) lucid-proposed; urgency=low * linux-oneiric 3.0.0-27.44 Date: 2012-10-19 15:25:35.295511+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-meta-lts-backport-oneiric/3.0.0.27.15 -------------- next part -------------- Sorry, changesfile not available. From jamie at ubuntu.com Mon Oct 22 13:06:14 2012 From: jamie at ubuntu.com (Jamie Strandboge) Date: Mon, 22 Oct 2012 13:06:14 -0000 Subject: [ubuntu/lucid-proposed] munin 1.4.4-1ubuntu1.2 (Accepted) Message-ID: <20121022130614.10554.4682.launchpad@ackee.canonical.com> munin (1.4.4-1ubuntu1.2) lucid-security; urgency=low * SECURITY UPDATE: symlink vulnerability in qmailscan plugin - debian/patches/CVE-2012-2103.patch: remove the use of tempfiles in plugins/node.d/qmailscan.in. - CVE-2012-2103 * SECURITY UPDATE: privilege escalation via root running plugins - debian/patches/CVE-2012-3512.patch: run each plugin in their own state directory in Makefile, Makefile.config, node/lib/Munin/Node/{OS,Service}.pm, plugins/lib/Munin/Plugin.pm, plugins/node.d/*.in,plugins/node.d.linux/*.in. - debian/patches/CVE-2012-3512-regression.patch: Don't rely on MUNIN_PLUGSTATE being in the environment as these scripts also get run by a cron job in plugins/node.d.linux/apt_all.in, plugins/node.d.linux/apt.in. - CVE-2012-3512 * debian/Makefile.config: added new plugin state directory location. * debian/munin-node.{postinst,postrm}: Remove old plugin state directory override, also remove new plugin state directory. Date: 2012-10-17 15:20:33.865930+00:00 Changed-By: Marc Deslauriers Signed-By: Jamie Strandboge https://launchpad.net/ubuntu/lucid/+source/munin/1.4.4-1ubuntu1.2 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Tue Oct 23 09:15:20 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 23 Oct 2012 09:15:20 -0000 Subject: [ubuntu/lucid-proposed] linux-ec2 2.6.32-350.56 (Accepted) Message-ID: <20121023091520.23369.38440.launchpad@ackee.canonical.com> linux-ec2 (2.6.32-350.56) lucid-proposed; urgency=low [ Stefan Bader ] * Rebased to Ubuntu-2.6.32-45.99 * SAUCE: XEN: Pull in RDRAND changes - LP: #1064480 * SAUCE: XEN: Backport pgd_lock fixes - LP: #1064480 * Release Tracking Bug - LP: #1068278 [ Ubuntu: 2.6.32-45.99 ] * SAUCE: omnibook: Expose PWD for standalone builds - LP: #505420 * Revert "xfs: Fix possible memory corruption in xfs_readlink, CVE-2011-4077" - LP: #1064480 * UBUNTU SAUCE: apparmor: fix IRQ stack overflow - LP: #1056078 * net/9p: fix virtio transport to correctly update status on connect - LP: #676823 * 9p: Fix the kernel crash on a failed mount - LP: #676823 * netxen: support for GbE port settings - LP: #1064480 * Fix sparc build with newer tools. - LP: #1064480 * powerpc/pmac: Fix SMP kernels on pre-core99 UP machines - LP: #1064480 * Bluetooth: btusb: fix bInterval for high/super speed isochronous endpoints - LP: #1064480 * fix pgd_lock deadlock - LP: #1064480 * futex: Fix uninterruptible loop due to gate_area - LP: #1064480 * time: Improve sanity checking of timekeeping inputs - LP: #1064480 * time: Avoid making adjustments if we haven't accumulated anything - LP: #1064480 * time: Move ktime_t overflow checking into timespec_valid_strict - LP: #1064480 * drm/i915: Attempt to fix watermark setup on 85x (v2) - LP: #1064480 * ioat2: kill pending flag - LP: #1064480 * usb: Fix deadlock in hid_reset when Dell iDRAC is reset - LP: #1064480 * oprofile: use KM_NMI slot for kmap_atomic - LP: #1064480 * tty_audit: fix tty_audit_add_data live lock on audit disabled - LP: #1064480 * bonding: 802.3ad - fix agg_device_up - LP: #1064480 * usbnet: increase URB reference count before usb_unlink_urb - LP: #1064480 * usbnet: don't clear urb->dev in tx_complete - LP: #1064480 * sched: Fix signed unsigned comparison in check_preempt_tick() - LP: #1064480 * x86/PCI: amd: factor out MMCONFIG discovery - LP: #1064480 * PNP: fix "work around Dell 1536/1546 BIOS MMCONFIG bug that breaks USB" - LP: #1064480 * KVM: x86: disallow multiple KVM_CREATE_IRQCHIP - LP: #1064480 * KVM: ia64: fix build due to typo - LP: #1064480 * xfs: Fix possible memory corruption in xfs_readlink - LP: #1064480 * xfs: Fix missing xfs_iunlock() on error recovery path in xfs_readlink() - LP: #1064480 * dl2k: use standard #defines from mii.h. - LP: #1064480 * tcp: Don't change unlocked socket state in tcp_v4_err(). - LP: #1064480 * x86: Derandom delay_tsc for 64 bit - LP: #1064480 * ipsec: be careful of non existing mac headers - LP: #1064480 * block, sx8: fix pointer math issue getting fw version - LP: #1064480 * nilfs2: fix NULL pointer dereference in nilfs_load_super_block() - LP: #1064480 * USB: ftdi_sio: fix problem when the manufacture is a NULL string - LP: #1064480 * ntp: Fix integer overflow when setting time - LP: #1064480 * SUNRPC: We must not use list_for_each_entry_safe() in rpc_wake_up() - LP: #1064480 * ext4: check for zero length extent - LP: #1064480 * xfs: Fix oops on IO error during xlog_recover_process_iunlinks() - LP: #1064480 * nfsd: don't allow zero length strings in cache_parse() - LP: #1064480 * sched/x86: Fix overflow in cyc2ns_offset - LP: #1064480 * Bluetooth: add NULL pointer check in HCI - LP: #1064480 * Bluetooth: hci_ldisc: fix NULL-pointer dereference on tty_close - LP: #1064480 * sparc64: Fix bootup crash on sun4v. - LP: #1064480 * video:uvesafb: Fix oops that uvesafb try to execute NX-protected page - LP: #1064480 * USB: serial: fix race between probe and open - LP: #1064480 * xhci: Don't write zeroed pointers to xHC registers. - LP: #1064480 * xHCI: Correct the #define XHCI_LEGACY_DISABLE_SMI - LP: #1064480 * crypto: sha512 - Fix byte counter overflow in SHA-512 - LP: #1064480 * PCI: Add quirk for still enabled interrupts on Intel Sandy Bridge GPUs - LP: #1064480 * phonet: Check input from user before allocating - LP: #1064480 * netlink: fix races after skb queueing - LP: #1064480 * net: fix a race in sock_queue_err_skb() - LP: #1064480 * atl1: fix kernel panic in case of DMA errors - LP: #1064480 * net/ethernet: ks8851_mll fix rx frame buffer overflow - LP: #1064480 * net_sched: gred: Fix oops in gred_dump() in WRED mode - LP: #1064480 * ARM: 7410/1: Add extra clobber registers for assembly in kernel_execve - LP: #1064480 * netem: fix possible skb leak - LP: #1064480 * ALSA: echoaudio: Remove incorrect part of assertion - LP: #1064480 * NFSv4: Revalidate uid/gid after open - LP: #1064480 * ext3: Fix error handling on inode bitmap corruption - LP: #1064480 * ext4: fix error handling on inode bitmap corruption - LP: #1064480 * xhci: Reset reserved command ring TRBs on cleanup. - LP: #1064480 * SCSI: fix scsi_wait_scan - LP: #1064480 * powerpc: Fix kernel panic during kernel module load - LP: #1064480 * fuse: fix stat call on 32 bit platforms - LP: #1064480 * udf: Improve table length check to avoid possible overflow - LP: #1064480 * stable: Allow merging of backports for serious user-visible performance issues - LP: #1064480 * eCryptfs: Properly check for O_RDONLY flag before doing privileged open - LP: #1064480 * USB: cdc-wdm: fix lockup on error in wdm_read - LP: #1064480 * ntp: Fix STA_INS/DEL clearing bug - LP: #1064480 * MIPS: Properly align the .data..init_task section. - LP: #1064480 * powerpc/ftrace: Fix assembly trampoline register usage - LP: #1064480 * powerpc: Add "memory" attribute for mfmsr() - LP: #1064480 * SCSI: libsas: continue revalidation - LP: #1064480 * SCSI: libsas: fix sas_discover_devices return code handling - LP: #1064480 * SCSI: fix eh wakeup (scsi_schedule_eh vs scsi_restart_operations) - LP: #1064480 * SCSI: Avoid dangling pointer in scsi_requeue_command() - LP: #1064480 * usbdevfs: Correct amount of data copied to user in processcompl_compat - LP: #1064480 * locks: fix checking of fcntl_setlease argument - LP: #1064480 * ACPI/AC: prevent OOPS on some boxes due to missing check power_supply_register() return value check - LP: #1064480 * Btrfs: call the ordered free operation without any locks held - LP: #1064480 * nfsd4: our filesystems are normally case sensitive - LP: #1064480 * ext4: don't let i_reserved_meta_blocks go negative - LP: #1064480 * sctp: Fix list corruption resulting from freeing an association on a list - LP: #1064480 * cipso: don't follow a NULL pointer when setsockopt() is called - LP: #1064480 * wanmain: comparing array with NULL - LP: #1064480 * USB: kaweth.c: use GFP_ATOMIC under spin_lock - LP: #1064480 * tcp: perform DMA to userspace only if there is a task waiting for it - LP: #1064480 * net/tun: fix ioctl() based info leaks - LP: #1064480 * USB: echi-dbgp: increase the controller wait time to come out of halt. - LP: #1064480 * ALSA: mpu401: Fix missing initialization of irq field - LP: #1064480 * futex: Test for pi_mutex on fault in futex_wait_requeue_pi() - LP: #1064480 * futex: Fix bug in WARN_ON for NULL q.pi_state - LP: #1064480 * futex: Forbid uaddr == uaddr2 in futex_wait_requeue_pi() - LP: #1064480 * pcdp: use early_ioremap/early_iounmap to access pcdp table - LP: #1064480 * mm: mmu_notifier: fix freed page still mapped in secondary MMU - LP: #1064480 * fuse: verify all ioctl retry iov elements - LP: #1064480 * xhci: Increase reset timeout for Renesas 720201 host. - LP: #1064480 * usb: serial: mos7840: Fixup mos7840_chars_in_buffer() - LP: #1064480 * ALSA: hda - fix Copyright debug message - LP: #1064480 * vfs: missed source of ->f_pos races - LP: #1064480 * NFSv3: Ensure that do_proc_get_root() reports errors correctly - LP: #1064480 * NFS: Alias the nfs module to nfs4 - LP: #1064480 * svcrpc: fix svc_xprt_enqueue/svc_recv busy-looping - LP: #1064480 * svcrpc: sends on closed socket should stop immediately - LP: #1064480 * cciss: fix incorrect scsi status reporting - LP: #1064480 * USB: CDC ACM: Fix NULL pointer dereference - LP: #1064480 * Remove user-triggerable BUG from mpol_to_str - LP: #1064480 * udf: Fix data corruption for files in ICB - LP: #1064480 * ext3: Fix fdatasync() for files with only i_size changes - LP: #1064480 * PARISC: Redefine ATOMIC_INIT and ATOMIC64_INIT to drop the casts - LP: #1064480 * dccp: check ccid before dereferencing - LP: #1064480 * ia64: Add accept4() syscall - LP: #1064480 * tcp: do_tcp_sendpages() must try to push data out on oom conditions - LP: #1064480 * tcp: drop SYN+FIN messages - LP: #1064480 * xen: correctly check for pending events when restoring irq flags - LP: #1064480 * x86, amd, xen: Avoid NULL pointer paravirt references - LP: #1064480 * x86, tls: Off by one limit check - LP: #1064480 * sparc64: Eliminate obsolete __handle_softirq() function - LP: #1064480 * udf: fix retun value on error path in udf_load_logicalvol - LP: #1064480 * mtd: cafe_nand: fix an & vs | mistake - LP: #1064480 * epoll: introduce POLLFREE to flush ->signalfd_wqh before kfree() - LP: #1064480 * epoll: ep_unregister_pollwait() can use the freed pwq->whead - LP: #1064480 * epoll: limit paths - LP: #1064480 * Don't limit non-nested epoll paths - LP: #1064480 * epoll: clear the tfile_check_list on -ELOOP - LP: #1064480 * random: Reorder struct entropy_store to remove padding on 64bits - LP: #1064480 * random: update interface comments to reflect reality - LP: #1064480 * random: simplify fips mode - LP: #1064480 * x86, cpu: Add CPU flags for F16C and RDRND - LP: #1064480 * x86, cpufeature: Update CPU feature RDRND to RDRAND - LP: #1064480 * random: Add support for architectural random hooks - LP: #1064480 * x86, random: Architectural inlines to get random integers with RDRAND - LP: #1064480 * x86, random: Verify RDRAND functionality and allow it to be disabled - LP: #1064480 * fix typo/thinko in get_random_bytes() - LP: #1064480 * random: Use arch_get_random_int instead of cycle counter if avail - LP: #1064480 * random: Use arch-specific RNG to initialize the entropy store - LP: #1064480 * random: Adjust the number of loops when initializing - LP: #1064480 * drivers/char/random.c: fix boot id uniqueness race - LP: #1064480 * random: make 'add_interrupt_randomness()' do something sane - LP: #1064480 * random: use lockless techniques in the interrupt path - LP: #1064480 * random: create add_device_randomness() interface - LP: #1064480 * random: use the arch-specific rng in xfer_secondary_pool - LP: #1064480 * random: add new get_random_bytes_arch() function - LP: #1064480 * random: mix in architectural randomness in extract_buf() - LP: #1064480 * MAINTAINERS: Theodore Ts'o is taking over the random driver - LP: #1064480 * usb: feed USB device information to the /dev/random driver - LP: #1064480 * net: feed /dev/random with the MAC address when registering a device - LP: #1064480 * random: remove rand_initialize_irq() - LP: #1064480 * random: Add comment to random_initialize() - LP: #1064480 * rtc: wm831x: Feed the write counter into device_add_randomness() - LP: #1064480 * mfd: wm831x: Feed the device UUID into device_add_randomness() - LP: #1064480 * dmi: Feed DMI table to /dev/random driver - LP: #1064480 * Linux 2.6.32.60 - LP: #1064480 Date: 2012-10-22 17:45:11.577894+00:00 Changed-By: Stefan Bader Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-ec2/2.6.32-350.56 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Tue Oct 23 09:15:21 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Tue, 23 Oct 2012 09:15:21 -0000 Subject: [ubuntu/lucid-proposed] linux-meta-ec2 2.6.32.350.31 (Accepted) Message-ID: <20121023091521.23369.74345.launchpad@ackee.canonical.com> linux-meta-ec2 (2.6.32.350.31) lucid-proposed; urgency=low * Bump linux-ec2 ABI to 350 for proposed release Date: 2012-10-22 17:45:30.313938+00:00 Changed-By: Luis Henriques Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/linux-meta-ec2/2.6.32.350.31 -------------- next part -------------- Sorry, changesfile not available. From adconrad at 0c3.net Wed Oct 24 12:57:16 2012 From: adconrad at 0c3.net (Adam Conrad) Date: Wed, 24 Oct 2012 12:57:16 -0000 Subject: [ubuntu/lucid-updates] lsb 4.0-0ubuntu8.1 (Accepted) Message-ID: <20121024125716.13285.56392.launchpad@ackee.canonical.com> lsb (4.0-0ubuntu8.1) lucid-proposed; urgency=low * If a pidfile is specified, but doesn't provide a PID to test, return 'not running', and return 'unknown' if the pidfile exists but is unreadable (LP: #683640) Date: 2012-10-10 19:15:11.836342+00:00 Changed-By: Adam Stokes Signed-By: Adam Conrad https://launchpad.net/ubuntu/lucid/+source/lsb/4.0-0ubuntu8.1 -------------- next part -------------- Sorry, changesfile not available. From jamie at ubuntu.com Wed Oct 24 15:37:17 2012 From: jamie at ubuntu.com (Jamie Strandboge) Date: Wed, 24 Oct 2012 15:37:17 -0000 Subject: [ubuntu/lucid-security] python3.1 3.1.2-0ubuntu3.2 (Accepted) Message-ID: <20121024153717.29966.37566.launchpad@ackee.canonical.com> python3.1 (3.1.2-0ubuntu3.2) lucid-security; urgency=low * SECURITY UPDATE: optionally disallow setting sys.path when setting sys.argv - debian/patches/CVE-2008-5983.dpatch: add new C API function, PySys_SetArgvEx - CVE-2008-5983 * SECURITY UPDATE: fix integer overflows in audioop module - debian/patches/CVE-2010-1634.dpatch: Fix incorrect and UB-inducing overflow checks - CVE-2010-1634 * SECURITY UPDATE: fix DoS in audioop module - debian/patches/CVE-2010-2089.dpatch: ensure that the input string length is a multiple of the frame size - CVE-2010-2089 * SECURE UPDATE: http://bugs.python.org/issue13512 - debian/patches/CVE-2011-4944.dpatch: create ~/.pypirc securely - CVE-2011-4944 * SECURITY UPDATE: xmlrpc: Fix an endless loop in SimpleXMLRPCServer upon malformed POST request - debian/patches/CVE-2012-0845.dpatch: break if don't receive EOF in Lib/SimpleXMLRPCServer.py - CVE-2012-0845 * SECURITY UPDATE: fix hash randomization DoS - debian/patches/CVE-2012-1150.dpatch: add -R command-line option and PYTHONHASHSEED environment variable, to provide an opt-in way to protect against denial of service attacks due to hash collisions within the dict and set types. - CVE-2012-1150 * SECURITY UPDATE: http://bugs.python.org/issue14579 - debian/patches/CVE-2012-2135.dpatch: fix vulnerability in the utf-16 decoder after error handling - CVE-2012-2135 Date: 2012-10-23 20:00:12.816746+00:00 Changed-By: Jamie Strandboge https://launchpad.net/ubuntu/lucid/+source/python3.1/3.1.2-0ubuntu3.2 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Wed Oct 24 16:28:14 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Wed, 24 Oct 2012 16:28:14 -0000 Subject: [ubuntu/lucid-updates] python3.1 3.1.2-0ubuntu3.2 (Accepted) Message-ID: <20121024162814.14600.23167.launchpad@ackee.canonical.com> python3.1 (3.1.2-0ubuntu3.2) lucid-security; urgency=low * SECURITY UPDATE: optionally disallow setting sys.path when setting sys.argv - debian/patches/CVE-2008-5983.dpatch: add new C API function, PySys_SetArgvEx - CVE-2008-5983 * SECURITY UPDATE: fix integer overflows in audioop module - debian/patches/CVE-2010-1634.dpatch: Fix incorrect and UB-inducing overflow checks - CVE-2010-1634 * SECURITY UPDATE: fix DoS in audioop module - debian/patches/CVE-2010-2089.dpatch: ensure that the input string length is a multiple of the frame size - CVE-2010-2089 * SECURE UPDATE: http://bugs.python.org/issue13512 - debian/patches/CVE-2011-4944.dpatch: create ~/.pypirc securely - CVE-2011-4944 * SECURITY UPDATE: xmlrpc: Fix an endless loop in SimpleXMLRPCServer upon malformed POST request - debian/patches/CVE-2012-0845.dpatch: break if don't receive EOF in Lib/SimpleXMLRPCServer.py - CVE-2012-0845 * SECURITY UPDATE: fix hash randomization DoS - debian/patches/CVE-2012-1150.dpatch: add -R command-line option and PYTHONHASHSEED environment variable, to provide an opt-in way to protect against denial of service attacks due to hash collisions within the dict and set types. - CVE-2012-1150 * SECURITY UPDATE: http://bugs.python.org/issue14579 - debian/patches/CVE-2012-2135.dpatch: fix vulnerability in the utf-16 decoder after error handling - CVE-2012-2135 Date: 2012-10-23 20:00:12.816746+00:00 Changed-By: Jamie Strandboge Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/python3.1/3.1.2-0ubuntu3.2 -------------- next part -------------- Sorry, changesfile not available. From marc.deslauriers at canonical.com Fri Oct 26 11:46:19 2012 From: marc.deslauriers at canonical.com (Marc Deslauriers) Date: Fri, 26 Oct 2012 11:46:19 -0000 Subject: [ubuntu/lucid-security] exim4 4.71-3ubuntu1.4 (Accepted) Message-ID: <20121026114619.30689.25239.launchpad@ackee.canonical.com> exim4 (4.71-3ubuntu1.4) lucid-security; urgency=low * SECURITY UPDATE: arbitrary code execution via dns decode logic - debian/patches/CVE-2012-5671.patch: adjust max length and validate against it in src/pdkim/pdkim.h, src/dkim.c. - CVE-2012-5671 Date: 2012-10-25 14:10:15.819673+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/lucid/+source/exim4/4.71-3ubuntu1.4 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Fri Oct 26 12:28:14 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Fri, 26 Oct 2012 12:28:14 -0000 Subject: [ubuntu/lucid-updates] exim4 4.71-3ubuntu1.4 (Accepted) Message-ID: <20121026122814.11156.84494.launchpad@ackee.canonical.com> exim4 (4.71-3ubuntu1.4) lucid-security; urgency=low * SECURITY UPDATE: arbitrary code execution via dns decode logic - debian/patches/CVE-2012-5671.patch: adjust max length and validate against it in src/pdkim/pdkim.h, src/dkim.c. - CVE-2012-5671 Date: 2012-10-25 14:10:15.819673+00:00 Changed-By: Marc Deslauriers Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/exim4/4.71-3ubuntu1.4 -------------- next part -------------- Sorry, changesfile not available. From marc.deslauriers at canonical.com Fri Oct 26 12:35:18 2012 From: marc.deslauriers at canonical.com (Marc Deslauriers) Date: Fri, 26 Oct 2012 12:35:18 -0000 Subject: [ubuntu/lucid-proposed] mysql-dfsg-5.1 5.1.66-0ubuntu0.10.04.1 (Accepted) Message-ID: <20121026123518.13667.65596.launchpad@ackee.canonical.com> mysql-dfsg-5.1 (5.1.66-0ubuntu0.10.04.1) lucid-security; urgency=low * SECURITY UPDATE: Update to 5.1.66 to fix security issues (LP: #1068158) - http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html * debian/mysql-server-5.1.postrm: do not delete local files if main conffile still exists since it probably means it is owned by a new/different package. (LP: #986892) Date: 2012-10-20 21:00:14.140027+00:00 Changed-By: Marc Deslauriers https://launchpad.net/ubuntu/lucid/+source/mysql-dfsg-5.1/5.1.66-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From jamie at ubuntu.com Fri Oct 26 14:39:21 2012 From: jamie at ubuntu.com (Jamie Strandboge) Date: Fri, 26 Oct 2012 14:39:21 -0000 Subject: [ubuntu/lucid-security] openjdk-6 6b24-1.11.5-0ubuntu1~10.04.2 (Accepted) Message-ID: <20121026143921.17837.63835.launchpad@ackee.canonical.com> openjdk-6 (6b24-1.11.5-0ubuntu1~10.04.2) lucid-security; urgency=low * Build for lucid. openjdk-6 (6b24-1.11.5-0ubuntu1) quantal-security; urgency=low * IcedTea 1.11.5 release. * Security fixes - S6631398, CVE-2012-3216: FilePermission improved path checking. - S7093490: adjust package access in rmiregistry. - S7143535, CVE-2012-5068: ScriptEngine corrected permissions. - S7167656, CVE-2012-5077: Multiple Seeders are being created. - S7169884, CVE-2012-5073: LogManager checks do not work correctly for sub-types. - S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI connector. - S7172522, CVE-2012-5072: Improve DomainCombiner checking. - S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC. - S7189103, CVE-2012-5069: Executors needs to maintain state. - S7189490: More improvements to DomainCombiner checking. - S7189567, CVE-2012-5085: java net obselete protocol. - S7192975, CVE-2012-5071: Conditional usage check is wrong. - S7195194, CVE-2012-5084: Better data validation for Swing. - S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be improved. - S7195919, CVE-2012-5079: (sl) ServiceLoader can throw CCE without needing to create instance. - S7198296, CVE-2012-5089: Refactor classloader usage. - S7158800: Improve storage of symbol tables. - S7158801: Improve VM CompileOnly option. - S7158804: Improve config file parsing. - S7176337: Additional changes needed for 7158801 fix. - S7198606, CVE-2012-4416: Improve VM optimization. * Bug fixes - S7175845: "jar uf" changes file permissions unexpectedly. - S7177216: native2ascii changes file permissions of input file. - S7199153: TEST_BUG: try-with-resources syntax pushed to 6-open repo. openjdk-6 (6b24-1.11.4-3ubuntu1) quantal; urgency=low * Merge with Debian. openjdk-6 (6b24-1.11.4-3) unstable; urgency=low * Regenerate the control file to fix build dependencies on mips/mipsel. openjdk-6 (6b24-1.11.4-2) unstable; urgency=low * Remove the autoconf Xp check. Date: 2012-10-25 17:30:11.189106+00:00 Changed-By: Matthias Klose Maintainer: OpenJDK Signed-By: Jamie Strandboge https://launchpad.net/ubuntu/lucid/+source/openjdk-6/6b24-1.11.5-0ubuntu1~10.04.2 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Fri Oct 26 15:29:24 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Fri, 26 Oct 2012 15:29:24 -0000 Subject: [ubuntu/lucid-updates] openjdk-6 6b24-1.11.5-0ubuntu1~10.04.2 (Accepted) Message-ID: <20121026152924.888.57112.launchpad@ackee.canonical.com> openjdk-6 (6b24-1.11.5-0ubuntu1~10.04.2) lucid-security; urgency=low * Build for lucid. openjdk-6 (6b24-1.11.5-0ubuntu1) quantal-security; urgency=low * IcedTea 1.11.5 release. * Security fixes - S6631398, CVE-2012-3216: FilePermission improved path checking. - S7093490: adjust package access in rmiregistry. - S7143535, CVE-2012-5068: ScriptEngine corrected permissions. - S7167656, CVE-2012-5077: Multiple Seeders are being created. - S7169884, CVE-2012-5073: LogManager checks do not work correctly for sub-types. - S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI connector. - S7172522, CVE-2012-5072: Improve DomainCombiner checking. - S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC. - S7189103, CVE-2012-5069: Executors needs to maintain state. - S7189490: More improvements to DomainCombiner checking. - S7189567, CVE-2012-5085: java net obselete protocol. - S7192975, CVE-2012-5071: Conditional usage check is wrong. - S7195194, CVE-2012-5084: Better data validation for Swing. - S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be improved. - S7195919, CVE-2012-5079: (sl) ServiceLoader can throw CCE without needing to create instance. - S7198296, CVE-2012-5089: Refactor classloader usage. - S7158800: Improve storage of symbol tables. - S7158801: Improve VM CompileOnly option. - S7158804: Improve config file parsing. - S7176337: Additional changes needed for 7158801 fix. - S7198606, CVE-2012-4416: Improve VM optimization. * Bug fixes - S7175845: "jar uf" changes file permissions unexpectedly. - S7177216: native2ascii changes file permissions of input file. - S7199153: TEST_BUG: try-with-resources syntax pushed to 6-open repo. openjdk-6 (6b24-1.11.4-3ubuntu1) quantal; urgency=low * Merge with Debian. openjdk-6 (6b24-1.11.4-3) unstable; urgency=low * Regenerate the control file to fix build dependencies on mips/mipsel. openjdk-6 (6b24-1.11.4-2) unstable; urgency=low * Remove the autoconf Xp check. Date: 2012-10-25 17:30:11.189106+00:00 Changed-By: Matthias Klose Maintainer: OpenJDK Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/openjdk-6/6b24-1.11.5-0ubuntu1~10.04.2 -------------- next part -------------- Sorry, changesfile not available. From jamie at ubuntu.com Fri Oct 26 20:46:34 2012 From: jamie at ubuntu.com (Jamie Strandboge) Date: Fri, 26 Oct 2012 20:46:34 -0000 Subject: [ubuntu/lucid-security] firefox 16.0.2+build1-0ubuntu0.10.04.1 (Accepted) Message-ID: <20121026204634.2082.38897.launchpad@ackee.canonical.com> firefox (16.0.2+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (FIREFOX_16_0_2_BUILD1) - see LP: #1071392 for USN information Date: 2012-10-25 20:50:15.809658+00:00 Changed-By: Micah Gersten Signed-By: Jamie Strandboge https://launchpad.net/ubuntu/lucid/+source/firefox/16.0.2+build1-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Fri Oct 26 22:06:20 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Fri, 26 Oct 2012 22:06:20 -0000 Subject: [ubuntu/lucid-updates] firefox 16.0.2+build1-0ubuntu0.10.04.1 (Accepted) Message-ID: <20121026220620.25247.70487.launchpad@ackee.canonical.com> firefox (16.0.2+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (FIREFOX_16_0_2_BUILD1) - see LP: #1071392 for USN information Date: 2012-10-25 20:50:15.809658+00:00 Changed-By: Micah Gersten Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/firefox/16.0.2+build1-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From launchpad at micahscomputing.com Tue Oct 30 01:08:41 2012 From: launchpad at micahscomputing.com (Micah Gersten) Date: Tue, 30 Oct 2012 01:08:41 -0000 Subject: [ubuntu/lucid-security] thunderbird 16.0.2+build1-0ubuntu0.10.04.1 (Accepted) Message-ID: <20121030010841.6541.56000.launchpad@ackee.canonical.com> thunderbird (16.0.2+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (THUNDERBIRD_16_0_2_BUILD1) - see LP: #1072362 for USN information * Only update the message size in the db when downloading the whole message * Don't call DiscardNewMessage with a closed stream * Fixes LP: #1068921 Date: 2012-10-28 14:50:21.796711+00:00 Changed-By: Chris Coulson Signed-By: Micah Gersten https://launchpad.net/ubuntu/lucid/+source/thunderbird/16.0.2+build1-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Tue Oct 30 02:04:19 2012 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Tue, 30 Oct 2012 02:04:19 -0000 Subject: [ubuntu/lucid-updates] thunderbird 16.0.2+build1-0ubuntu0.10.04.1 (Accepted) Message-ID: <20121030020419.23815.75698.launchpad@ackee.canonical.com> thunderbird (16.0.2+build1-0ubuntu0.10.04.1) lucid-security; urgency=low * New upstream stable release (THUNDERBIRD_16_0_2_BUILD1) - see LP: #1072362 for USN information * Only update the message size in the db when downloading the whole message * Don't call DiscardNewMessage with a closed stream * Fixes LP: #1068921 Date: 2012-10-28 14:50:21.796711+00:00 Changed-By: Chris Coulson Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/lucid/+source/thunderbird/16.0.2+build1-0ubuntu0.10.04.1 -------------- next part -------------- Sorry, changesfile not available. From andreas at canonical.com Tue Oct 30 13:43:40 2012 From: andreas at canonical.com (Andreas Hasenack) Date: Tue, 30 Oct 2012 13:43:40 -0000 Subject: [ubuntu/lucid-proposed] landscape-client 12.05-0ubuntu1.10.04 (Accepted) Message-ID: <20121030134340.30529.92274.launchpad@gac.canonical.com> landscape-client (12.05-0ubuntu1.10.04) lucid-proposed; urgency=low * Added fix for lshw storm when the client was talking to an old Landscape server which was then upgraded (LP: #1053057). Date: Tue, 25 Sep 2012 06:10:14 -0700 Changed-By: Andreas Hasenack Maintainer: Ubuntu Developers Signed-By: Clint Byrum https://launchpad.net/ubuntu/lucid/+source/landscape-client/12.05-0ubuntu1.10.04 -------------- next part -------------- Format: 1.8 Date: Tue, 25 Sep 2012 06:10:14 -0700 Source: landscape-client Binary: landscape-common landscape-client landscape-client-ui landscape-client-ui-install Architecture: source Version: 12.05-0ubuntu1.10.04 Distribution: lucid-proposed Urgency: low Maintainer: Ubuntu Developers Changed-By: Andreas Hasenack Description: landscape-client - The Landscape administration system client landscape-client-ui - The Landscape administration system client - UI configuration landscape-client-ui-install - The Landscape administration system client - UI installer landscape-common - The Landscape administration system client - Common files Launchpad-Bugs-Fixed: 1053057 Changes: landscape-client (12.05-0ubuntu1.10.04) lucid-proposed; urgency=low . * Added fix for lshw storm when the client was talking to an old Landscape server which was then upgraded (LP: #1053057). Checksums-Sha1: d5193c50adf483022081b147787a6c44167f390f 1875 landscape-client_12.05-0ubuntu1.10.04.dsc ffb01a9c3bfeaa35555d74d9cb64131ca2f9c5af 27703 landscape-client_12.05-0ubuntu1.10.04.debian.tar.gz Checksums-Sha256: 248fd56f0f64438489140118cc827aee5bb52cd4cefa2dab247079666152b87d 1875 landscape-client_12.05-0ubuntu1.10.04.dsc 1dd5b1b91e34d5fe73f97a41b616f257a303fef870bc4ca4d39a9005c865ab1a 27703 landscape-client_12.05-0ubuntu1.10.04.debian.tar.gz Files: 0ed49ba42f3580d6a91066f5798a7d41 1875 admin optional landscape-client_12.05-0ubuntu1.10.04.dsc 8135acbcdcf8a638632e963cace4d4b4 27703 admin optional landscape-client_12.05-0ubuntu1.10.04.debian.tar.gz Original-Maintainer: Landscape Team