From andreas at canonical.com Wed Jun 1 16:16:55 2011 From: andreas at canonical.com (Andreas Hasenack) Date: Wed, 01 Jun 2011 16:16:55 -0000 Subject: [ubuntu/maverick-proposed] smart 1.3-1ubuntu0.1 (Accepted) Message-ID: <20110601161655.18528.47735.launchpad@gac.canonical.com> smart (1.3-1ubuntu0.1) maverick-proposed; urgency=low * Fix for dealing with incorrect installed-size fields. (LP: #512302) Date: Fri, 27 May 2011 18:27:15 -0300 Changed-By: Andreas Hasenack Maintainer: Ubuntu Developers Signed-By: Chuck Short https://launchpad.net/ubuntu/maverick/+source/smart/1.3-1ubuntu0.1 -------------- next part -------------- Format: 1.8 Date: Fri, 27 May 2011 18:27:15 -0300 Source: smart Binary: smartpm smartpm-core python-smartpm Architecture: source Version: 1.3-1ubuntu0.1 Distribution: maverick-proposed Urgency: low Maintainer: Ubuntu Developers Changed-By: Andreas Hasenack Description: python-smartpm - Python library of the Smart Package Manager smartpm - An alternative package manager that works with dpkg/rpm smartpm-core - An alternative package manager that works with dpkg/rpm Launchpad-Bugs-Fixed: 512302 Changes: smart (1.3-1ubuntu0.1) maverick-proposed; urgency=low . * Fix for dealing with incorrect installed-size fields. (LP: #512302) Checksums-Sha1: 7f0dfac270549ec8a5067dbe08e94b78492c118b 1189 smart_1.3-1ubuntu0.1.dsc b0271a75beeae921b66078bee1bf99d57acf51a8 11346 smart_1.3-1ubuntu0.1.diff.gz Checksums-Sha256: fa49b5ed11fb7303a949c8ada5cfc310f0fc07b1169574cff201c65d35cc8fd8 1189 smart_1.3-1ubuntu0.1.dsc b9df500f8a29fa5a16bb68ea69f8556716b634b432f0c596cedb7a80c6c8d837 11346 smart_1.3-1ubuntu0.1.diff.gz Files: e4fa0f1a8c714e62d07cc48ed96f67b1 1189 admin optional smart_1.3-1ubuntu0.1.dsc 230f96baf351f6821ccd6a801a631f64 11346 admin optional smart_1.3-1ubuntu0.1.diff.gz Original-Maintainer: Michael Vogt From archive at ubuntu.com Thu Jun 2 02:03:37 2011 From: archive at ubuntu.com (Ubuntu Installer) Date: Thu, 02 Jun 2011 02:03:37 -0000 Subject: [ubuntu/maverick-security] dovecot, dovecot (delayed) 1:1.2.12-1ubuntu8.2 (Accepted) Message-ID: <20110602020337.13505.60946.launchpad@cocoplum.canonical.com> dovecot (1:1.2.12-1ubuntu8.2) maverick-security; urgency=low * SECURITY UPDATE: fix memory corruption when header names included null bytes: - debian/patches/dovecot-CVE-2011-1929.patch: use binary copy rather than a string based copy. - CVE-2011-1929 Date: Tue, 31 May 2011 14:46:26 -0700 Changed-By: Steve Beattie Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/dovecot/1:1.2.12-1ubuntu8.2 -------------- next part -------------- Format: 1.8 Date: Tue, 31 May 2011 14:46:26 -0700 Source: dovecot Binary: dovecot-common dovecot-dev dovecot-imapd dovecot-pop3d mail-stack-delivery dovecot-postfix dovecot-dbg Architecture: source Version: 1:1.2.12-1ubuntu8.2 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Steve Beattie Description: dovecot-common - secure mail server that supports mbox and maildir mailboxes dovecot-dbg - debug symbols for Dovecot dovecot-dev - header files for the dovecot mail server dovecot-imapd - secure IMAP server that supports mbox and maildir mailboxes dovecot-pop3d - secure POP3 server that supports mbox and maildir mailboxes dovecot-postfix - mail server delivery agent stack provided by Ubuntu server team mail-stack-delivery - mail server delivery agent stack provided by Ubuntu server team Changes: dovecot (1:1.2.12-1ubuntu8.2) maverick-security; urgency=low . * SECURITY UPDATE: fix memory corruption when header names included null bytes: - debian/patches/dovecot-CVE-2011-1929.patch: use binary copy rather than a string based copy. - CVE-2011-1929 Checksums-Sha1: d1df41188810e3a0691153802d29fe35b3306d78 2342 dovecot_1.2.12-1ubuntu8.2.dsc de39748601cb36f92a06127034a1732d3a891999 1539490 dovecot_1.2.12-1ubuntu8.2.debian.tar.gz Checksums-Sha256: 8950f6c08e6b02e79b08e8d2af3267aec6c2c699888efa7863f8c01f27952dac 2342 dovecot_1.2.12-1ubuntu8.2.dsc 6d505e39e8d80b5172093b6314bec7efb4d6a9907e923fd8c8bf89b5b336e3dc 1539490 dovecot_1.2.12-1ubuntu8.2.debian.tar.gz Files: 54419568eef35c795b1e83656705d816 2342 mail optional dovecot_1.2.12-1ubuntu8.2.dsc 5685cb86933b6d653069477708e24671 1539490 mail optional dovecot_1.2.12-1ubuntu8.2.debian.tar.gz Original-Maintainer: Dovecot Maintainers From james.page at canonical.com Thu Jun 2 19:36:46 2011 From: james.page at canonical.com (James Page) Date: Thu, 02 Jun 2011 19:36:46 -0000 Subject: [ubuntu/maverick-proposed] openldap 2.4.23-0ubuntu3.6 (Accepted) Message-ID: <20110602193646.17607.40017.launchpad@gac.canonical.com> openldap (2.4.23-0ubuntu3.6) maverick-proposed; urgency=low * Fix issue causing replication failures in SASL/GSSAPI configurations (LP: #783836). - debian/patches/set.sock.err.to.EAGAIN.on.partial.write.patch: upstream patch to provide better error handling for partial writes. Date: Thu, 02 Jun 2011 12:08:59 -0700 Changed-By: James Page Maintainer: Ubuntu Developers Signed-By: Clint Byrum https://launchpad.net/ubuntu/maverick/+source/openldap/2.4.23-0ubuntu3.6 -------------- next part -------------- Format: 1.8 Date: Thu, 02 Jun 2011 12:08:59 -0700 Source: openldap Binary: slapd ldap-utils libldap-2.4-2 libldap-2.4-2-dbg libldap2-dev slapd-dbg Architecture: source Version: 2.4.23-0ubuntu3.6 Distribution: maverick-proposed Urgency: low Maintainer: Ubuntu Developers Changed-By: James Page Description: ldap-utils - OpenLDAP utilities libldap-2.4-2 - OpenLDAP libraries libldap-2.4-2-dbg - Debugging information for OpenLDAP libraries libldap2-dev - OpenLDAP development libraries slapd - OpenLDAP server (slapd) slapd-dbg - Debugging information for the OpenLDAP server (slapd) Launchpad-Bugs-Fixed: 783836 Changes: openldap (2.4.23-0ubuntu3.6) maverick-proposed; urgency=low . * Fix issue causing replication failures in SASL/GSSAPI configurations (LP: #783836). - debian/patches/set.sock.err.to.EAGAIN.on.partial.write.patch: upstream patch to provide better error handling for partial writes. Checksums-Sha1: b9fc723eab57788cd90d172d6fe725f58d3a3de0 2280 openldap_2.4.23-0ubuntu3.6.dsc 0c1b8c0ec97ca4c372341f1c0ca0af6b5f178600 157902 openldap_2.4.23-0ubuntu3.6.diff.gz Checksums-Sha256: 3c0d9c8aedf6c985483f87cdcf3333e2d38bd63413b6e8055ba39e18e83c947a 2280 openldap_2.4.23-0ubuntu3.6.dsc 0390089552cadc048296b8d5021c993bcbed73c7e925035e5173dfdd6e52a538 157902 openldap_2.4.23-0ubuntu3.6.diff.gz Files: b1d2b87606fc8786b7f800c11490c69f 2280 net optional openldap_2.4.23-0ubuntu3.6.dsc d7f34758044f71019e169089eaf242c6 157902 net optional openldap_2.4.23-0ubuntu3.6.diff.gz Original-Maintainer: Debian OpenLDAP Maintainers From brian.thomason at canonical.com Fri Jun 3 14:45:21 2011 From: brian.thomason at canonical.com (Brian Thomason) Date: Fri, 03 Jun 2011 14:45:21 -0000 Subject: [ubuntu/maverick] centrifydc 4.4.3-424-0maverick1 (Accepted) Message-ID: <20110603144521.30310.63871.launchpad@cocoplum.canonical.com> centrifydc (4.4.3-424-0maverick1) maverick; urgency=low * Initial release of 4.4.3 for Maverick Date: Fri, 03 Jun 2011 10:42:06 -0400 Changed-By: Brian Thomason Maintainer: Centrify Corporation https://launchpad.net/ubuntu/maverick/+source/centrifydc/4.4.3-424-0maverick1 -------------- next part -------------- -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Fri, 03 Jun 2011 10:42:06 -0400 Source: centrifydc Binary: centrifydc Architecture: source Version: 4.4.3-424-0maverick1 Distribution: maverick Urgency: low Maintainer: Centrify Corporation Changed-By: Brian Thomason Description: centrifydc - Centrify Express Changes: centrifydc (4.4.3-424-0maverick1) maverick; urgency=low . * Initial release of 4.4.3 for Maverick Checksums-Sha1: 9255702820a943bbf6ea07b1b495eabc2307d7a8 1104 centrifydc_4.4.3-424-0maverick1.dsc 4c4cfd85dba2c3a0632ecac12b95b9076b4a5c4d 6952 centrifydc_4.4.3-424-0maverick1.diff.gz Checksums-Sha256: b49252edf980e33397f906fd4fce5b6cfc96d7d97ee759769b19e26d97acd048 1104 centrifydc_4.4.3-424-0maverick1.dsc f0da753bd4d102c409d3469157c9b833c4e9733d373a2d8f6356b1744b2762a3 6952 centrifydc_4.4.3-424-0maverick1.diff.gz Files: 84ea94ee68b8a62456ca8584aa636e7d 1104 partner/admin optional centrifydc_4.4.3-424-0maverick1.dsc 4d697ee64eabf70d1e2c5974f2a806c9 6952 partner/admin optional centrifydc_4.4.3-424-0maverick1.diff.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iEYEARECAAYFAk3o8tsACgkQOb4zNfJqN5eKJACeJPx2vKOqJ8HZvrLVQVNQr6PE y8wAnAzq8je7hAdBb8/Xqtthf7R15Xah =YWeD -----END PGP SIGNATURE----- From marc.deslauriers at ubuntu.com Mon Jun 6 14:04:01 2011 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Mon, 06 Jun 2011 14:04:01 -0000 Subject: [ubuntu/maverick-security] subversion, subversion_1.6.12dfsg-1ubuntu1.3_amd64_translations.tar.gz, subversion_1.6.12dfsg-1ubuntu1.3_armel_translations.tar.gz, subversion_1.6.12dfsg-1ubuntu1.3_powerpc_translations.tar.gz, subversion_1.6.12dfsg-1ubuntu1.3_i386_translations.tar.gz 1.6.12dfsg-1ubuntu1.3 (Accepted) Message-ID: <20110606140401.24207.77560.launchpad@cocoplum.canonical.com> subversion (1.6.12dfsg-1ubuntu1.3) maverick-security; urgency=low * SECURITY UPDATE: denial of service via baselined WebDAV resource request - debian/patches/CVE-2011-1752.patch: disallow GETs of baselined versions of resources in subversion/mod_dav_svn/repos.c. - CVE-2011-1752 * SECURITY UPDATE: mod_dav_svn resource exhaustion via infinite loop - debian/patches/CVE-2011-1783.patch: validate path in subversion/libsvn_repos/authz.c. - CVE-2011-1783 * SECURITY UPDATE: mod_dav_svn permissions bypass via incorrect resource URL - debian/patches/CVE-2011-1921.patch: validate path in subversion/mod_dav_svn/authz.c. - CVE-2011-1921 Date: Thu, 02 Jun 2011 13:25:34 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/subversion/1.6.12dfsg-1ubuntu1.3 -------------- next part -------------- Format: 1.8 Date: Thu, 02 Jun 2011 13:25:34 -0400 Source: subversion Binary: subversion libsvn1 libsvn-dev libsvn-doc libapache2-svn python-subversion python-subversion-dbg subversion-tools libsvn-java libsvn-perl libsvn-ruby1.8 libsvn-ruby Architecture: source Version: 1.6.12dfsg-1ubuntu1.3 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: libapache2-svn - Subversion server modules for Apache libsvn-dev - Development files for Subversion libraries libsvn-doc - Developer documentation for libsvn libsvn-java - Java bindings for Subversion libsvn-perl - Perl bindings for Subversion libsvn-ruby - Ruby bindings for Subversion (dummy package) libsvn-ruby1.8 - Ruby bindings for Subversion libsvn1 - Shared libraries used by Subversion python-subversion - Python bindings for Subversion python-subversion-dbg - Python bindings for Subversion (debug extension) subversion - Advanced version control system subversion-tools - Assorted tools related to Subversion Changes: subversion (1.6.12dfsg-1ubuntu1.3) maverick-security; urgency=low . * SECURITY UPDATE: denial of service via baselined WebDAV resource request - debian/patches/CVE-2011-1752.patch: disallow GETs of baselined versions of resources in subversion/mod_dav_svn/repos.c. - CVE-2011-1752 * SECURITY UPDATE: mod_dav_svn resource exhaustion via infinite loop - debian/patches/CVE-2011-1783.patch: validate path in subversion/libsvn_repos/authz.c. - CVE-2011-1783 * SECURITY UPDATE: mod_dav_svn permissions bypass via incorrect resource URL - debian/patches/CVE-2011-1921.patch: validate path in subversion/mod_dav_svn/authz.c. - CVE-2011-1921 Checksums-Sha1: e0d015c808d3c201d901b6526cd6609e74741023 2690 subversion_1.6.12dfsg-1ubuntu1.3.dsc af356c1cead12a00913f3700e3f5389b3fce4c66 109087 subversion_1.6.12dfsg-1ubuntu1.3.diff.gz Checksums-Sha256: 0c52052dfa603b9c9b77e6b92965f25b78fd8f307743a6f4eb2868cb714b05c3 2690 subversion_1.6.12dfsg-1ubuntu1.3.dsc b19472e945396100ef824501a0f241dbf1d9a40f08f6a24586d511dc3ddc43a6 109087 subversion_1.6.12dfsg-1ubuntu1.3.diff.gz Files: 53f4726a0d50631fe4f96a9075bfe041 2690 vcs optional subversion_1.6.12dfsg-1ubuntu1.3.dsc a13a71137c4668028f746766f18e1bb2 109087 vcs optional subversion_1.6.12dfsg-1ubuntu1.3.diff.gz Original-Maintainer: Peter Samuelson From brian.thomason at canonical.com Mon Jun 6 16:40:19 2011 From: brian.thomason at canonical.com (Brian Thomason) Date: Mon, 06 Jun 2011 16:40:19 -0000 Subject: [ubuntu/maverick] adobe-flashplugin 10.3.181.22-0maverick1 (Accepted) Message-ID: <20110606164019.21513.91106.launchpad@cocoplum.canonical.com> adobe-flashplugin (10.3.181.22-0maverick1) maverick; urgency=low * Initial release of 10.3.181.22 for Maverick Date: Mon, 06 Jun 2011 12:04:13 -0400 Changed-By: Brian Thomason Maintainer: DL-Flash Player Ubuntu https://launchpad.net/ubuntu/maverick/+source/adobe-flashplugin/10.3.181.22-0maverick1 -------------- next part -------------- -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Mon, 06 Jun 2011 12:04:13 -0400 Source: adobe-flashplugin Binary: adobe-flashplugin adobe-flash-properties-gtk adobe-flash-properties-kde Architecture: source Version: 10.3.181.22-0maverick1 Distribution: maverick Urgency: low Maintainer: DL-Flash Player Ubuntu Changed-By: Brian Thomason Description: adobe-flash-properties-gtk - GTK+ control panel for Adobe Flash Player plugin version 10 adobe-flash-properties-kde - KDE control panel Adobe Flash Player plugin version 10 adobe-flashplugin - Adobe Flash Player plugin version 10 Changes: adobe-flashplugin (10.3.181.22-0maverick1) maverick; urgency=low . * Initial release of 10.3.181.22 for Maverick Checksums-Sha1: babeb6d845034d5c728714e0efa785ee8871c01f 1270 adobe-flashplugin_10.3.181.22-0maverick1.dsc 0a1fc04e4c93b970dd2bb0973597f661b179ad3b 4333 adobe-flashplugin_10.3.181.22-0maverick1.diff.gz Checksums-Sha256: 74368809c3ad1bcabef6d4a8b9e3807b5fd81e8a84bdc6d867bf4319a2a063dd 1270 adobe-flashplugin_10.3.181.22-0maverick1.dsc 0bdad02bbd423173f45a83a60d59bf7fbaa91c7643bb1de92980e68d9acad30f 4333 adobe-flashplugin_10.3.181.22-0maverick1.diff.gz Files: 85111a9261a02c5a82f54a47414f30ae 1270 partner/web optional adobe-flashplugin_10.3.181.22-0maverick1.dsc 593375ab7667e1a057852900380d5593 4333 partner/web optional adobe-flashplugin_10.3.181.22-0maverick1.diff.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAk3s+pMACgkQOb4zNfJqN5d3lwCeN7lBrDbLq4Om6EYhpxAXx9PT 5fkAnjeIQXwYUnY9YTPOq+AYUt0Tl1OC =ei3F -----END PGP SIGNATURE----- From cjwatson at ubuntu.com Mon Jun 6 17:48:34 2011 From: cjwatson at ubuntu.com (Colin Watson) Date: Mon, 06 Jun 2011 17:48:34 -0000 Subject: [ubuntu/maverick-proposed] lupin 0.32.1 (Accepted) Message-ID: <20110606174834.16722.89896.launchpad@gac.canonical.com> lupin (0.32.1) maverick-proposed; urgency=low * Detect the case where Wubi's disk images were installed to a different partition from Windows, which means that wubildr will not be on /host: update all wubildr images we can find (LP: #610898). Date: Mon, 06 Jun 2011 16:11:29 +0100 Changed-By: Colin Watson Maintainer: Agostino Russo Signed-By: Colin Watson https://launchpad.net/ubuntu/maverick/+source/lupin/0.32.1 -------------- next part -------------- Format: 1.8 Date: Mon, 06 Jun 2011 16:11:29 +0100 Source: lupin Binary: lupin-casper lupin-support Architecture: source Version: 0.32.1 Distribution: maverick-proposed Urgency: low Maintainer: Agostino Russo Changed-By: Colin Watson Description: lupin-casper - Add support for loop-mount installations to casper lupin-support - Support files for loop-mount installations Launchpad-Bugs-Fixed: 610898 Changes: lupin (0.32.1) maverick-proposed; urgency=low . * Detect the case where Wubi's disk images were installed to a different partition from Windows, which means that wubildr will not be on /host: update all wubildr images we can find (LP: #610898). Checksums-Sha1: 6864d83fa6cd3f40dd51aac18fbd8aded677119a 1526 lupin_0.32.1.dsc 8ea107e14f909aa7d60a9d03f330308228ccb6dd 14347 lupin_0.32.1.tar.gz Checksums-Sha256: 50b0a3cff669f6e5cbf740c2551ba90060fdda35ead5949db712cbf0ce7ae5c2 1526 lupin_0.32.1.dsc e29710d85b5b9a8489c4f4fd64122e15bdf2a785eb992cc10291ce8c9c1dedba 14347 lupin_0.32.1.tar.gz Files: 51eba566fae36fbd90c2d786e5944c13 1526 misc extra lupin_0.32.1.dsc dacefd6683165be6dd4a55369edd8995 14347 misc extra lupin_0.32.1.tar.gz From marc.deslauriers at ubuntu.com Mon Jun 6 18:12:46 2011 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Mon, 06 Jun 2011 18:12:46 -0000 Subject: [ubuntu/maverick-proposed] libimobiledevice 1.0.1-1ubuntu0.1 (Accepted) Message-ID: <20110606181246.18340.14366.launchpad@gac.canonical.com> libimobiledevice (1.0.1-1ubuntu0.1) maverick-proposed; urgency=low * Add compatibility for iOS 4.2 and 4.3. This doesn't add new device support, it only maintains support for devices which were updated to the new firmware. (LP: #793616) - debian/patches/04-ios-42-compat.patch: Fix compatibility with iOS 4.2 by passing a cert in the handshake. - debian/patches/05-ios-43-compat.patch: Fix compatibility with iOS 4.3 by handling invalid null characters in the plist. Date: Mon, 06 Jun 2011 12:31:59 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers Signed-By: Marc Deslauriers https://launchpad.net/ubuntu/maverick/+source/libimobiledevice/1.0.1-1ubuntu0.1 -------------- next part -------------- Format: 1.8 Date: Mon, 06 Jun 2011 12:31:59 -0400 Source: libimobiledevice Binary: libimobiledevice1 libimobiledevice-dev libimobiledevice1-dbg python-imobiledevice libimobiledevice-utils libimobiledevice-doc Architecture: source Version: 1.0.1-1ubuntu0.1 Distribution: maverick-proposed Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: libimobiledevice-dev - Library for communicating with iPhone and iPod Touch devices libimobiledevice-doc - Library for communicating with iPhone and iPod Touch devices libimobiledevice-utils - Library for communicating with iPhone and iPod Touch devices libimobiledevice1 - Library for communicating with the iPhone and iPod Touch libimobiledevice1-dbg - Library for communicating with iPhone and iPod Touch devices python-imobiledevice - Library for communicating with iPhone and iPod Touch devices Launchpad-Bugs-Fixed: 793616 Changes: libimobiledevice (1.0.1-1ubuntu0.1) maverick-proposed; urgency=low . * Add compatibility for iOS 4.2 and 4.3. This doesn't add new device support, it only maintains support for devices which were updated to the new firmware. (LP: #793616) - debian/patches/04-ios-42-compat.patch: Fix compatibility with iOS 4.2 by passing a cert in the handshake. - debian/patches/05-ios-43-compat.patch: Fix compatibility with iOS 4.3 by handling invalid null characters in the plist. Checksums-Sha1: 22198bfac65c9af8951599fb6b136c453f620bab 2484 libimobiledevice_1.0.1-1ubuntu0.1.dsc 3197599a37803002467f38678901ad1e145b7f34 8339 libimobiledevice_1.0.1-1ubuntu0.1.debian.tar.gz Checksums-Sha256: 7041354cd2630c6e03d6e2859f377595bf9000d28fa05c0d345f8d32a72007c3 2484 libimobiledevice_1.0.1-1ubuntu0.1.dsc 8c6700481a26613c43ecec71cd74b3a20fd95f876a87c113eaf7cebe67d5e96c 8339 libimobiledevice_1.0.1-1ubuntu0.1.debian.tar.gz Files: 775f935e06afd4c8aac3c40d7f78020b 2484 libs optional libimobiledevice_1.0.1-1ubuntu0.1.dsc dbd42e5838fd84f14b25136d9ffdf88b 8339 libs optional libimobiledevice_1.0.1-1ubuntu0.1.debian.tar.gz Original-Maintainer: Julien Lavergne From serge.hallyn at ubuntu.com Mon Jun 6 18:15:08 2011 From: serge.hallyn at ubuntu.com (Serge Hallyn) Date: Mon, 06 Jun 2011 18:15:08 -0000 Subject: [ubuntu/maverick-proposed] qemu-kvm 0.12.5+noroms-0ubuntu7.4 (Accepted) Message-ID: <20110606181508.13810.23239.launchpad@wampee.canonical.com> qemu-kvm (0.12.5+noroms-0ubuntu7.4) maverick-proposed; urgency=low * Add usb-linux-increase-buffer-for-usb-ctrl-req.patch from upstream to increase the usb control buffer. (LP: #790145) Date: Thu, 02 Jun 2011 08:28:15 -0500 Changed-By: Serge Hallyn Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/qemu-kvm/0.12.5+noroms-0ubuntu7.4 -------------- next part -------------- Format: 1.8 Date: Thu, 02 Jun 2011 08:28:15 -0500 Source: qemu-kvm Binary: qemu-kvm qemu-common qemu-kvm-extras qemu-kvm-extras-static qemu-arm-static kvm qemu Architecture: source Version: 0.12.5+noroms-0ubuntu7.4 Distribution: maverick-proposed Urgency: low Maintainer: Ubuntu Developers Changed-By: Serge Hallyn Description: kvm - dummy transitional pacakge from kvm to qemu-kvm qemu - dummy transitional pacakge from qemu to qemu-kvm qemu-arm-static - dummy transitional package for qemu-kvm-extras-static qemu-common - qemu common functionality (bios, documentation, etc) qemu-kvm - Full virtualization on i386 and amd64 hardware qemu-kvm-extras - fast processor emulator binaries for non-x86 architectures qemu-kvm-extras-static - static QEMU user mode emulation binaries Launchpad-Bugs-Fixed: 790145 Changes: qemu-kvm (0.12.5+noroms-0ubuntu7.4) maverick-proposed; urgency=low . * Add usb-linux-increase-buffer-for-usb-ctrl-req.patch from upstream to increase the usb control buffer. (LP: #790145) Checksums-Sha1: 2107e046e314450183773ece7da48e308ce7b4e7 1835 qemu-kvm_0.12.5+noroms-0ubuntu7.4.dsc c316ac8a1b040e28275bf34911fbce14209c1563 4722351 qemu-kvm_0.12.5+noroms.orig.tar.gz 897693bf22e392333db0ac18092334bcb7d49587 60555 qemu-kvm_0.12.5+noroms-0ubuntu7.4.diff.gz Checksums-Sha256: f57a9f2d975b6180cce30fa9d399982b3c6a76e273a41f9e985c627a1c708307 1835 qemu-kvm_0.12.5+noroms-0ubuntu7.4.dsc 24c085aecbc784ea8b4837ca02bfe5086c7f91c8a88a0f607826692234af583f 4722351 qemu-kvm_0.12.5+noroms.orig.tar.gz c14dbd0ddde13a71be40df98c9f35dab81fc5de1a401bb6286d3485037b7ed51 60555 qemu-kvm_0.12.5+noroms-0ubuntu7.4.diff.gz Files: fad6d2e76abb0b6b93d4919daf34cebe 1835 misc optional qemu-kvm_0.12.5+noroms-0ubuntu7.4.dsc c7303c30432dc4eb0a39bb85a9d15cc9 4722351 misc optional qemu-kvm_0.12.5+noroms.orig.tar.gz f7405aede8f908f3d95d89a5c0472504 60555 misc optional qemu-kvm_0.12.5+noroms-0ubuntu7.4.diff.gz From marc.deslauriers at ubuntu.com Mon Jun 6 20:03:29 2011 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Mon, 06 Jun 2011 20:03:29 -0000 Subject: [ubuntu/maverick-security] flashplugin-nonfree, flashplugin-nonfree_10.3.181.22ubuntu0.10.10.1_i386_translations.tar.gz, flashplugin-nonfree_10.3.181.22ubuntu0.10.10.1_amd64_translations.tar.gz 10.3.181.22ubuntu0.10.10.1 (Accepted) Message-ID: <20110606200329.23651.88810.launchpad@cocoplum.canonical.com> flashplugin-nonfree (10.3.181.22ubuntu0.10.10.1) maverick-security; urgency=low * SECURITY UPDATE: New upstream release 10.3.181.22 - debian/config, debian/postinst: Updated sha256sums and path. - CVE-2011-2107 Date: Mon, 06 Jun 2011 13:53:00 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/flashplugin-nonfree/10.3.181.22ubuntu0.10.10.1 -------------- next part -------------- Format: 1.8 Date: Mon, 06 Jun 2011 13:53:00 -0400 Source: flashplugin-nonfree Binary: flashplugin-installer flashplugin-nonfree Architecture: source Version: 10.3.181.22ubuntu0.10.10.1 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: flashplugin-installer - Adobe Flash Player plugin installer flashplugin-nonfree - Adobe Flash Player plugin installer (transitional package) Changes: flashplugin-nonfree (10.3.181.22ubuntu0.10.10.1) maverick-security; urgency=low . * SECURITY UPDATE: New upstream release 10.3.181.22 - debian/config, debian/postinst: Updated sha256sums and path. - CVE-2011-2107 Checksums-Sha1: 8f8533af967722401389fe201d9b06b426e43549 1639 flashplugin-nonfree_10.3.181.22ubuntu0.10.10.1.dsc e5527f070ef6ac4cabddb31fc9748277578afaf9 27497 flashplugin-nonfree_10.3.181.22ubuntu0.10.10.1.tar.gz Checksums-Sha256: 4d7353196ae5adcec87729e786dbcf50ab9a8d1555caacba4558ea4ee65de0b1 1639 flashplugin-nonfree_10.3.181.22ubuntu0.10.10.1.dsc 00cb8de836101d9a59e8fca7be968b502afdc1d1befbf942072a8a6fdc4693aa 27497 flashplugin-nonfree_10.3.181.22ubuntu0.10.10.1.tar.gz Files: db457cd532a50cc9a26309b7eb8025c7 1639 contrib/web optional flashplugin-nonfree_10.3.181.22ubuntu0.10.10.1.dsc 0011ad8bc81bcc7eae260a216c15394c 27497 contrib/web optional flashplugin-nonfree_10.3.181.22ubuntu0.10.10.1.tar.gz Original-Maintainer: Bart Martens From zulcss at ubuntu.com Tue Jun 7 05:00:14 2011 From: zulcss at ubuntu.com (Chuck Short) Date: Tue, 07 Jun 2011 05:00:14 -0000 Subject: [ubuntu/maverick-proposed] dovecot 1:1.2.12-1ubuntu8.3 (Accepted) Message-ID: <20110607050014.11589.40830.launchpad@soybean.canonical.com> dovecot (1:1.2.12-1ubuntu8.3) maverick-proposed; urgency=low * debian/mail-stack-delivery.postinst: don't override user's postfix settings on upgrade. Thanks to Ante Karamatic. (LP: #715056) Date: Thu, 02 Jun 2011 10:03:18 -0400 Changed-By: Chuck Short Maintainer: Ubuntu Developers Signed-By: Chuck Short https://launchpad.net/ubuntu/maverick/+source/dovecot/1:1.2.12-1ubuntu8.3 -------------- next part -------------- Format: 1.8 Date: Thu, 02 Jun 2011 10:03:18 -0400 Source: dovecot Binary: dovecot-common dovecot-dev dovecot-imapd dovecot-pop3d mail-stack-delivery dovecot-postfix dovecot-dbg Architecture: source Version: 1:1.2.12-1ubuntu8.3 Distribution: maverick-proposed Urgency: low Maintainer: Ubuntu Developers Changed-By: Chuck Short Description: dovecot-common - secure mail server that supports mbox and maildir mailboxes dovecot-dbg - debug symbols for Dovecot dovecot-dev - header files for the dovecot mail server dovecot-imapd - secure IMAP server that supports mbox and maildir mailboxes dovecot-pop3d - secure POP3 server that supports mbox and maildir mailboxes dovecot-postfix - mail server delivery agent stack provided by Ubuntu server team mail-stack-delivery - mail server delivery agent stack provided by Ubuntu server team Launchpad-Bugs-Fixed: 715056 Changes: dovecot (1:1.2.12-1ubuntu8.3) maverick-proposed; urgency=low . * debian/mail-stack-delivery.postinst: don't override user's postfix settings on upgrade. Thanks to Ante Karamatic. (LP: #715056) Checksums-Sha1: 87f74624146cfe433e892b26d31c6b88b14bcbbe 1702 dovecot_1.2.12-1ubuntu8.3.dsc d3c820b4f5bb9c06cb40653d34b2a81d295525ca 1539135 dovecot_1.2.12-1ubuntu8.3.debian.tar.gz Checksums-Sha256: 504e80f9cd78292e3bba6356aa8a0dcc9a6496017291548ddc1312aed33463d7 1702 dovecot_1.2.12-1ubuntu8.3.dsc ad0dc6ba7584379f6561506ddc6a5b3d1940262a71138bc34958360af7ae9f47 1539135 dovecot_1.2.12-1ubuntu8.3.debian.tar.gz Files: 746a6fa4a2639993834dd0a8b09c49fe 1702 mail optional dovecot_1.2.12-1ubuntu8.3.dsc 8c5909dccc06beff48c8c5340ac72f97 1539135 mail optional dovecot_1.2.12-1ubuntu8.3.debian.tar.gz Original-Maintainer: Dovecot Maintainers From maco.m at ubuntu.com Tue Jun 7 05:02:28 2011 From: maco.m at ubuntu.com (Mackenzie Morgan) Date: Tue, 07 Jun 2011 05:02:28 -0000 Subject: [ubuntu/maverick-proposed] lintian 2.4.3ubuntu2.1 (Accepted) Message-ID: <20110607050228.11589.26636.launchpad@soybean.canonical.com> lintian (2.4.3ubuntu2.1) maverick-proposed; urgency=low * data/changelogs/ubuntu-dists should include oneiric (LP: #790960) Date: Tue, 31 May 2011 18:39:40 -0400 Changed-By: Mackenzie Morgan Maintainer: Ubuntu Developers Signed-By: Luke Yelavich https://launchpad.net/ubuntu/maverick/+source/lintian/2.4.3ubuntu2.1 -------------- next part -------------- Format: 1.8 Date: Tue, 31 May 2011 18:39:40 -0400 Source: lintian Binary: lintian Architecture: source Version: 2.4.3ubuntu2.1 Distribution: maverick-proposed Urgency: low Maintainer: Ubuntu Developers Changed-By: Mackenzie Morgan Description: lintian - Debian package checker Launchpad-Bugs-Fixed: 790960 Changes: lintian (2.4.3ubuntu2.1) maverick-proposed; urgency=low . * data/changelogs/ubuntu-dists should include oneiric (LP: #790960) Checksums-Sha1: 473272fc325eea036fc2d7a948e78185229f081f 1328 lintian_2.4.3ubuntu2.1.dsc 8e2cc1790a256fe94336d0e0976b3f9fcfab68fa 866273 lintian_2.4.3ubuntu2.1.tar.gz Checksums-Sha256: 2d33b1a1921be36a51cc199030233ccc94727468406dcc08533618573572f02e 1328 lintian_2.4.3ubuntu2.1.dsc e5d47c427e5f63aee1246d59cee8235753794a251d41b386d2b3da34ea6583b8 866273 lintian_2.4.3ubuntu2.1.tar.gz Files: 02c8ab2f8edc45ae8b7ba05532eb4fe2 1328 devel optional lintian_2.4.3ubuntu2.1.dsc 22577bb90fadd9e5b335f4639a7993de 866273 devel optional lintian_2.4.3ubuntu2.1.tar.gz Original-Maintainer: Debian Lintian Maintainers From stefan.bader at canonical.com Thu Jun 9 22:57:15 2011 From: stefan.bader at canonical.com (Stefan Bader) Date: Thu, 09 Jun 2011 22:57:15 -0000 Subject: [ubuntu/maverick-proposed] ifenslave-2.6 1.1.0-15ubuntu2.10.10.1 (Accepted) Message-ID: <20110609225715.3660.19758.launchpad@chaenomeles.canonical.com> ifenslave-2.6 (1.1.0-15ubuntu2.10.10.1) maverick-proposed; urgency=low * Check for previous version to be not set (on fresh install) when comparing versions in postinst. LP: #714904 Date: Mon, 16 May 2011 16:56:35 +0000 Changed-By: Stefan Bader Maintainer: Ubuntu Developers Signed-By: Dave Walker https://launchpad.net/ubuntu/maverick/+source/ifenslave-2.6/1.1.0-15ubuntu2.10.10.1 -------------- next part -------------- Format: 1.8 Date: Mon, 16 May 2011 16:56:35 +0000 Source: ifenslave-2.6 Binary: ifenslave-2.6 Architecture: source Version: 1.1.0-15ubuntu2.10.10.1 Distribution: maverick-proposed Urgency: low Maintainer: Ubuntu Developers Changed-By: Stefan Bader Description: ifenslave-2.6 - Attach and detach slave interfaces to a bonding device Launchpad-Bugs-Fixed: 714904 Changes: ifenslave-2.6 (1.1.0-15ubuntu2.10.10.1) maverick-proposed; urgency=low . * Check for previous version to be not set (on fresh install) when comparing versions in postinst. LP: #714904 Checksums-Sha1: b25308d740b1218569380975d5e27fa5e64c40f9 1191 ifenslave-2.6_1.1.0-15ubuntu2.10.10.1.dsc 84e787863dc10ee7e48dd7ca04381308f3c1dbd7 8002 ifenslave-2.6_1.1.0.orig.tar.gz ab9801326aa8e44026c638dc2efcfb057a78e31a 10339 ifenslave-2.6_1.1.0-15ubuntu2.10.10.1.debian.tar.gz Checksums-Sha256: deaffdcdd2a393dee4596d58c23100fe31ac0a29dc6a1edc79937baa91f98bac 1191 ifenslave-2.6_1.1.0-15ubuntu2.10.10.1.dsc 7917bf34de80a2492eb225adf9168c83a4854ac8a008ed0fd5b3fd147ccd3041 8002 ifenslave-2.6_1.1.0.orig.tar.gz 55775c530081664adb27a3dde1b7d102bb62f48d22109757abe89ce3ff5e5408 10339 ifenslave-2.6_1.1.0-15ubuntu2.10.10.1.debian.tar.gz Files: 79269d2078115176a7625945674d14a5 1191 net optional ifenslave-2.6_1.1.0-15ubuntu2.10.10.1.dsc 56126cd1013cefe0ce6f81613e677bdd 8002 net optional ifenslave-2.6_1.1.0.orig.tar.gz eb88b0cd30790a93a3cc50dee42cfeec 10339 net optional ifenslave-2.6_1.1.0-15ubuntu2.10.10.1.debian.tar.gz Original-Maintainer: Guus Sliepen From jamie at ubuntu.com Fri Jun 10 05:03:40 2011 From: jamie at ubuntu.com (Jamie Strandboge) Date: Fri, 10 Jun 2011 05:03:40 -0000 Subject: [ubuntu/maverick-security] qemu-kvm 0.12.5+noroms-0ubuntu7.5 (Accepted) Message-ID: <20110610050340.7940.80279.launchpad@cocoplum.canonical.com> qemu-kvm (0.12.5+noroms-0ubuntu7.5) maverick-security; urgency=low * SECURITY UPDATE: fix heap buffer overflow from unaligned requests - virtio-blk-fail-unaligned-access-CVE-2011-1750-52c050236e.diff: patch from Debian - CVE-2011-1750 * SECURITY UPDATE: verify no_hotplug attribute when handling hot-unplug requests - CVE-2011-1751-prep-pci-cleanly-backout-of-pci_qdev_init-925fe64ae7.diff: Moving common code to a separate function and using it from another place to fix a memory leak. Backported by Debian - CVE-2011-1751-prep-hotplug-0-acpi_piix4-qdevfy-e8ec0571e1.diff: This qdevifies acpi_piix4 device. Backported by Debian - CVE-2011-1751-prep-hotplug-1-pci-allow-devices-being-tagged-as-not-hotpluggable-180c22e18b.diff: Introduce a "no_hotplug" attribute and check it in common places to ensure such devices wont be hot-(un)plugged. This needs the pci-cleanly-backout-of-pci_qdev_init patch mentioned above. Backported by Debian - CVE-2011-1751-prep-hotplug-2-piix-tag-as-not-hotpluggable-0965f12da6.diff: Backported by Debian - CVE-2011-1751-prep-hotplug-3-vga-tag-as-not-hotplugable-be92bbf73d.diff: Mark certain devices as non-hotpluggable. Backported by Debian - CVE-2011-1751-hotplug-4-ignore-pci-hotplug-requests-for-unpluggable-devices.diff: Verifies the no_hotplug attribute when handling hot-unplug request from guest. Backported by Debian Date: Sun, 29 May 2011 08:22:56 -0500 Changed-By: Jamie Strandboge Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/qemu-kvm/0.12.5+noroms-0ubuntu7.5 -------------- next part -------------- Format: 1.8 Date: Sun, 29 May 2011 08:22:56 -0500 Source: qemu-kvm Binary: qemu-kvm qemu-common qemu-kvm-extras qemu-kvm-extras-static qemu-arm-static kvm qemu Architecture: source Version: 0.12.5+noroms-0ubuntu7.5 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Jamie Strandboge Description: kvm - dummy transitional pacakge from kvm to qemu-kvm qemu - dummy transitional pacakge from qemu to qemu-kvm qemu-arm-static - dummy transitional package for qemu-kvm-extras-static qemu-common - qemu common functionality (bios, documentation, etc) qemu-kvm - Full virtualization on i386 and amd64 hardware qemu-kvm-extras - fast processor emulator binaries for non-x86 architectures qemu-kvm-extras-static - static QEMU user mode emulation binaries Changes: qemu-kvm (0.12.5+noroms-0ubuntu7.5) maverick-security; urgency=low . * SECURITY UPDATE: fix heap buffer overflow from unaligned requests - virtio-blk-fail-unaligned-access-CVE-2011-1750-52c050236e.diff: patch from Debian - CVE-2011-1750 * SECURITY UPDATE: verify no_hotplug attribute when handling hot-unplug requests - CVE-2011-1751-prep-pci-cleanly-backout-of-pci_qdev_init-925fe64ae7.diff: Moving common code to a separate function and using it from another place to fix a memory leak. Backported by Debian - CVE-2011-1751-prep-hotplug-0-acpi_piix4-qdevfy-e8ec0571e1.diff: This qdevifies acpi_piix4 device. Backported by Debian - CVE-2011-1751-prep-hotplug-1-pci-allow-devices-being-tagged-as-not-hotpluggable-180c22e18b.diff: Introduce a "no_hotplug" attribute and check it in common places to ensure such devices wont be hot-(un)plugged. This needs the pci-cleanly-backout-of-pci_qdev_init patch mentioned above. Backported by Debian - CVE-2011-1751-prep-hotplug-2-piix-tag-as-not-hotpluggable-0965f12da6.diff: Backported by Debian - CVE-2011-1751-prep-hotplug-3-vga-tag-as-not-hotplugable-be92bbf73d.diff: Mark certain devices as non-hotpluggable. Backported by Debian - CVE-2011-1751-hotplug-4-ignore-pci-hotplug-requests-for-unpluggable-devices.diff: Verifies the no_hotplug attribute when handling hot-unplug request from guest. Backported by Debian Checksums-Sha1: cd45b5d425251122720dcdd3df74eb87876bae11 2183 qemu-kvm_0.12.5+noroms-0ubuntu7.5.dsc f40f3088db5297f2b00b8c4723317a5d64c7a372 64494 qemu-kvm_0.12.5+noroms-0ubuntu7.5.diff.gz Checksums-Sha256: fd11b51f6cda7293171c334c19cae4a15782f44ffa40aed6987dd22b0f45f0f6 2183 qemu-kvm_0.12.5+noroms-0ubuntu7.5.dsc 42d7f8e2ff48abde92bb51bf0c8c59788147b657b8a00274cf87c5cfeb88cc23 64494 qemu-kvm_0.12.5+noroms-0ubuntu7.5.diff.gz Files: f3d62528b04a34bec9da9cd8f848d438 2183 misc optional qemu-kvm_0.12.5+noroms-0ubuntu7.5.dsc ad40a7a34fb4604187e0760c35b614ca 64494 misc optional qemu-kvm_0.12.5+noroms-0ubuntu7.5.diff.gz From scott at kitterman.com Fri Jun 10 05:03:54 2011 From: scott at kitterman.com (Scott Kitterman) Date: Fri, 10 Jun 2011 05:03:54 -0000 Subject: [ubuntu/maverick-security] unbound 1.4.5-1ubuntu1.1 (Accepted) Message-ID: <20110610050354.7940.92739.launchpad@cocoplum.canonical.com> unbound (1.4.5-1ubuntu1.1) maverick-security; urgency=low * SECURITY UPDATE: * References: CVE 2011-1922 (LP: #788818) * Add debian/patches/30_cve2011-1922 backported from 1.4.10 Date: Sat, 28 May 2011 00:09:20 -0400 Changed-By: Scott Kitterman Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/unbound/1.4.5-1ubuntu1.1 -------------- next part -------------- Format: 1.8 Date: Sat, 28 May 2011 00:09:20 -0400 Source: unbound Binary: unbound unbound-host libunbound2 libunbound-dev Architecture: source Version: 1.4.5-1ubuntu1.1 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Scott Kitterman Description: libunbound-dev - static library, header files, and docs for libunbound libunbound2 - library implementing DNS resolution and validation unbound - validating, recursive, caching DNS resolver unbound-host - reimplementation of the 'host' command Launchpad-Bugs-Fixed: 788818 Changes: unbound (1.4.5-1ubuntu1.1) maverick-security; urgency=low . * SECURITY UPDATE: * References: CVE 2011-1922 (LP: #788818) * Add debian/patches/30_cve2011-1922 backported from 1.4.10 Checksums-Sha1: 54030257e40e4d13e7b94c3716fd97d6bdcb5e3b 2005 unbound_1.4.5-1ubuntu1.1.dsc 7516fdde38cdd299eb2677b5e4d9e1c0402bc179 7853 unbound_1.4.5-1ubuntu1.1.diff.gz Checksums-Sha256: 4922d6028711cd13e326c25dc97e04b74886926370e284a0b1141a421b993a26 2005 unbound_1.4.5-1ubuntu1.1.dsc e5d996adef147f054c2bab00b2130604ed5268d722dda979dce3f6370ea81c8c 7853 unbound_1.4.5-1ubuntu1.1.diff.gz Files: 6c07b4adf47b9bbb6950d2d1876a836e 2005 net optional unbound_1.4.5-1ubuntu1.1.dsc 8aaff92351ac1fc5bc43de1f8ad27122 7853 net optional unbound_1.4.5-1ubuntu1.1.diff.gz Original-Maintainer: Robert S. Edmonds From bdrung at ubuntu.com Sun Jun 12 11:04:47 2011 From: bdrung at ubuntu.com (Benjamin Drung) Date: Sun, 12 Jun 2011 11:04:47 -0000 Subject: [ubuntu/maverick-security] vlc_1.1.4-1ubuntu1.6_i386_translations.tar.gz, vlc, vlc_1.1.4-1ubuntu1.6_armel_translations.tar.gz, vlc_1.1.4-1ubuntu1.6_powerpc_translations.tar.gz, vlc_1.1.4-1ubuntu1.6_amd64_translations.tar.gz 1.1.4-1ubuntu1.6 (Accepted) Message-ID: <20110612110447.24363.29985.launchpad@cocoplum.canonical.com> vlc (1.1.4-1ubuntu1.6) maverick-security; urgency=low * SECURITY UPDATE: Integer overflow in XSPF playlist parser (LP: #795410) - debian/patches/fix-xspf-integer-overflow.patch: Fix realloc() integer overflow, thanks to Rémi Denis-Courmont - CVE-2011-2194 - VideoLAN-SA-1104 Date: Sat, 11 Jun 2011 21:17:55 +0200 Changed-By: Benjamin Drung Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/vlc/1.1.4-1ubuntu1.6 -------------- next part -------------- Format: 1.8 Date: Sat, 11 Jun 2011 21:17:55 +0200 Source: vlc Binary: libvlc5 libvlc-dev libvlccore4 libvlccore-dev mozilla-plugin-vlc vlc vlc-data vlc-dbg vlc-nox vlc-plugin-fluidsynth vlc-plugin-ggi vlc-plugin-jack vlc-plugin-notify vlc-plugin-pulse vlc-plugin-sdl vlc-plugin-svg vlc-plugin-svgalib vlc-plugin-zvbi Architecture: source Version: 1.1.4-1ubuntu1.6 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Benjamin Drung Description: libvlc-dev - development files for libvlc libvlc5 - multimedia player and streamer library libvlccore-dev - development files for libvlccore libvlccore4 - base library for VLC and its modules mozilla-plugin-vlc - multimedia plugin for web browsers based on VLC vlc - multimedia player and streamer vlc-data - Common data for VLC vlc-dbg - debugging symbols for vlc vlc-nox - multimedia player and streamer (without X support) vlc-plugin-fluidsynth - FluidSynth plugin for VLC vlc-plugin-ggi - GGI video output plugin for VLC vlc-plugin-jack - Jack audio plugins for VLC vlc-plugin-notify - LibNotify plugin for VLC vlc-plugin-pulse - PulseAudio plugin for VLC vlc-plugin-sdl - SDL video and audio output plugin for VLC vlc-plugin-svg - SVG plugin for VLC vlc-plugin-svgalib - SVGAlib video output plugin for VLC vlc-plugin-zvbi - VBI teletext plugin for VLC Launchpad-Bugs-Fixed: 795410 Changes: vlc (1.1.4-1ubuntu1.6) maverick-security; urgency=low . * SECURITY UPDATE: Integer overflow in XSPF playlist parser (LP: #795410) - debian/patches/fix-xspf-integer-overflow.patch: Fix realloc() integer overflow, thanks to Rémi Denis-Courmont - CVE-2011-2194 - VideoLAN-SA-1104 Checksums-Sha1: 293d6a4837780ae2345384424e5790ac65694e8e 4366 vlc_1.1.4-1ubuntu1.6.dsc 6dd404abcecdf944b8542f6f24e7db2f0299cc27 61858 vlc_1.1.4-1ubuntu1.6.debian.tar.gz Checksums-Sha256: 586001c3dc0fea8318fe6457e0d17cc3989dbfa3c067e6dd744b3a13aab609c8 4366 vlc_1.1.4-1ubuntu1.6.dsc a096470d877fc460a3123451c04133538e539284086f90ac068c8a0875d0a363 61858 vlc_1.1.4-1ubuntu1.6.debian.tar.gz Files: fd512e3a263ad7eb6cce97aa442caaf4 4366 video optional vlc_1.1.4-1ubuntu1.6.dsc 1674db7a4410689c8a70ca105ad171fc 61858 video optional vlc_1.1.4-1ubuntu1.6.debian.tar.gz Original-Maintainer: Debian multimedia packages maintainers From marc.deslauriers at ubuntu.com Mon Jun 13 17:05:04 2011 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Mon, 13 Jun 2011 17:05:04 -0000 Subject: [ubuntu/maverick-security] libmodplug 1:0.8.8.1-1ubuntu1.2 (Accepted) Message-ID: <20110613170504.23394.63926.launchpad@cocoplum.canonical.com> libmodplug (1:0.8.8.1-1ubuntu1.2) maverick-security; urgency=low * SECURITY UPDATE: buffer overflow in S3M loader - src/load_s3m.cpp: ignore corrupted headers. - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=aecef259828a89bb00c2e6f78e89de7363b2237b - CVE-2011-1574 * SECURITY UPDATE: multiple security issues in ABC loader - src/load_abc.cpp: fix various issues. - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=d7c36959757fc6c8e4d487be8a72383093d9d26f - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=5d437ad2f741c08fc3862cd4d5157492ead0fe84 - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=a13e067a82fa195b1732ad9fb8341c1b0f141bf5 - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=22aa681cd12f8547a8866112c7e443166115b701 - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=bd5363f31274d6e79b8ace5a94686c9ac6ef415b - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=51f4b152060be23a4514da2a65c83e205bfb21ba - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=56436fac0a37b1746dab594e4aefba9d2bb92e09 - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=ad305187322171eab3a66f4b5ce2a067b1580b3e - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=497a27ba2555399d7aa243dbb51ca81e4e7a32cf - CVE-2011-1761 Date: Mon, 13 Jun 2011 10:11:44 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/libmodplug/1:0.8.8.1-1ubuntu1.2 -------------- next part -------------- Format: 1.8 Date: Mon, 13 Jun 2011 10:11:44 -0400 Source: libmodplug Binary: libmodplug1 libmodplug-dev Architecture: source Version: 1:0.8.8.1-1ubuntu1.2 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: libmodplug-dev - development files for mod music based on ModPlug libmodplug1 - shared libraries for mod music based on ModPlug Changes: libmodplug (1:0.8.8.1-1ubuntu1.2) maverick-security; urgency=low . * SECURITY UPDATE: buffer overflow in S3M loader - src/load_s3m.cpp: ignore corrupted headers. - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=aecef259828a89bb00c2e6f78e89de7363b2237b - CVE-2011-1574 * SECURITY UPDATE: multiple security issues in ABC loader - src/load_abc.cpp: fix various issues. - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=d7c36959757fc6c8e4d487be8a72383093d9d26f - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=5d437ad2f741c08fc3862cd4d5157492ead0fe84 - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=a13e067a82fa195b1732ad9fb8341c1b0f141bf5 - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=22aa681cd12f8547a8866112c7e443166115b701 - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=bd5363f31274d6e79b8ace5a94686c9ac6ef415b - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=51f4b152060be23a4514da2a65c83e205bfb21ba - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=56436fac0a37b1746dab594e4aefba9d2bb92e09 - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=ad305187322171eab3a66f4b5ce2a067b1580b3e - http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms;a=commit;h=497a27ba2555399d7aa243dbb51ca81e4e7a32cf - CVE-2011-1761 Checksums-Sha1: 0b236f7aed1b2eb063d97ea3d90564ee36bcadcc 1801 libmodplug_0.8.8.1-1ubuntu1.2.dsc 2915e25a14c09da5b8bf17e626b9e23d82bb9346 13978 libmodplug_0.8.8.1-1ubuntu1.2.diff.gz Checksums-Sha256: 11a429e23c3374d3b3595e883ffecd6e991b5d2a3a25a241014a157ec93edd3d 1801 libmodplug_0.8.8.1-1ubuntu1.2.dsc da058026835421da801c7c76b57bd27e29544aa8c3260337468391e9a1035c96 13978 libmodplug_0.8.8.1-1ubuntu1.2.diff.gz Files: 0b2b9d8439c802f630012d5274e7225c 1801 libs optional libmodplug_0.8.8.1-1ubuntu1.2.dsc 12d9219ab9d7f398c23a51427053cd45 13978 libs optional libmodplug_0.8.8.1-1ubuntu1.2.diff.gz Original-Maintainer: Zed Pobre From marc.deslauriers at ubuntu.com Mon Jun 13 17:06:27 2011 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Mon, 13 Jun 2011 17:06:27 -0000 Subject: [ubuntu/maverick-security] gimp_2.6.10-1ubuntu3.3_amd64_translations.tar.gz, gimp_2.6.10-1ubuntu3.3_i386_translations.tar.gz, gimp_2.6.10-1ubuntu3.3_armel_translations.tar.gz, gimp_2.6.10-1ubuntu3.3_powerpc_translations.tar.gz, gimp 2.6.10-1ubuntu3.3 (Accepted) Message-ID: <20110613170627.23394.22805.launchpad@cocoplum.canonical.com> gimp (2.6.10-1ubuntu3.3) maverick-security; urgency=low * SECURITY UPDATE: denial of service and possible code execution via malformed PSP image file - debian/patches/08_CVE-2011-1782.patch: further fix buffer overflow in plug-ins/common/file-psp.c. - CVE-2011-1782 Date: Wed, 08 Jun 2011 10:37:57 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Desktop Team https://launchpad.net/ubuntu/maverick/+source/gimp/2.6.10-1ubuntu3.3 -------------- next part -------------- Format: 1.8 Date: Wed, 08 Jun 2011 10:37:57 -0400 Source: gimp Binary: libgimp2.0 gimp gimp-data libgimp2.0-dev libgimp2.0-doc gimp-dbg Architecture: source Version: 2.6.10-1ubuntu3.3 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Desktop Team Changed-By: Marc Deslauriers Description: gimp - The GNU Image Manipulation Program gimp-data - Data files for GIMP gimp-dbg - Debugging symbols for GIMP libgimp2.0 - Libraries for the GNU Image Manipulation Program libgimp2.0-dev - Headers and other files for compiling plugins for GIMP libgimp2.0-doc - Developers' Documentation for the GIMP library Changes: gimp (2.6.10-1ubuntu3.3) maverick-security; urgency=low . * SECURITY UPDATE: denial of service and possible code execution via malformed PSP image file - debian/patches/08_CVE-2011-1782.patch: further fix buffer overflow in plug-ins/common/file-psp.c. - CVE-2011-1782 Checksums-Sha1: 24a1604436e947bfe57c4ec229556c27da48da00 2790 gimp_2.6.10-1ubuntu3.3.dsc 61a6123be4cf6e2d6c3b5d657e10f0a03ef5f6c4 46941 gimp_2.6.10-1ubuntu3.3.debian.tar.gz Checksums-Sha256: 1c1ed82622191d2b4101c6e54189bd9c14ea8b61763bb22702a71937c6b3a491 2790 gimp_2.6.10-1ubuntu3.3.dsc d37691fe15366c1e8f3063f0c0557c9363ef229082c3fd10455e4973e09b37f4 46941 gimp_2.6.10-1ubuntu3.3.debian.tar.gz Files: 0e486b1404e9b1fb3236b9d337988dd9 2790 graphics optional gimp_2.6.10-1ubuntu3.3.dsc ed425998f770fe6326991cca88e4f680 46941 graphics optional gimp_2.6.10-1ubuntu3.3.debian.tar.gz Original-Maintainer: Ari Pollak From jamie at ubuntu.com Tue Jun 14 18:03:45 2011 From: jamie at ubuntu.com (Jamie Strandboge) Date: Tue, 14 Jun 2011 18:03:45 -0000 Subject: [ubuntu/maverick-security] jabberd14, jabberd14_1.6.1.1-5+squeeze1build0.10.10.1_armel_translations.tar.gz, jabberd14_1.6.1.1-5+squeeze1build0.10.10.1_powerpc_translations.tar.gz, jabberd14_1.6.1.1-5+squeeze1build0.10.10.1_i386_translations.tar.gz, jabberd14_1.6.1.1-5+squeeze1build0.10.10.1_amd64_translations.tar.gz 1.6.1.1-5+squeeze1build0.10.10.1 (Accepted) Message-ID: <20110614180345.23881.49581.launchpad@cocoplum.canonical.com> jabberd14 (1.6.1.1-5+squeeze1build0.10.10.1) maverick-security; urgency=low * fake sync from Debian jabberd14 (1.6.1.1-5+squeeze1) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Prevent entity expansion in order to prevent about the billion laughs DoS attack (CVE-2011-1754.dpatch). Date: Fri, 10 Jun 2011 14:59:58 -0500 Changed-By: Jamie Strandboge Maintainer: Miguel Landaeta https://launchpad.net/ubuntu/maverick/+source/jabberd14/1.6.1.1-5+squeeze1build0.10.10.1 -------------- next part -------------- Format: 1.8 Date: Fri, 10 Jun 2011 14:59:58 -0500 Source: jabberd14 Binary: jabber jabberd14 libjabberd2-dev libjabberd2 Architecture: source Version: 1.6.1.1-5+squeeze1build0.10.10.1 Distribution: maverick-security Urgency: high Maintainer: Miguel Landaeta Changed-By: Jamie Strandboge Description: jabber - Transitional package for jabber rename jabberd14 - Instant messaging server using the Jabber/XMPP protocol libjabberd2 - Runtime library for the Jabber/XMPP instant messaging server libjabberd2-dev - Development files for the Jabber/XMPP instant messaging server Changes: jabberd14 (1.6.1.1-5+squeeze1build0.10.10.1) maverick-security; urgency=low . * fake sync from Debian . jabberd14 (1.6.1.1-5+squeeze1) stable-security; urgency=high . * Non-maintainer upload by the Security Team. * Prevent entity expansion in order to prevent about the billion laughs DoS attack (CVE-2011-1754.dpatch). Checksums-Sha1: e46b4fdae6de59fb2d64968aae1264d22b2cf9a1 2135 jabberd14_1.6.1.1-5+squeeze1build0.10.10.1.dsc 280abcbd62122920a82c252a16ab84aab906fb23 29956 jabberd14_1.6.1.1-5+squeeze1build0.10.10.1.diff.gz Checksums-Sha256: f36a579d64512005f93d74d1520b527c7caa9d6333aa027f41702d415b0c48f6 2135 jabberd14_1.6.1.1-5+squeeze1build0.10.10.1.dsc 6dd91c8fdad440b8b035bbd77f1cc1644290ae1d9f2b5f23e8e762d818999aca 29956 jabberd14_1.6.1.1-5+squeeze1build0.10.10.1.diff.gz Files: bd41d1dd109160ac09d69714020fbda1 2135 net optional jabberd14_1.6.1.1-5+squeeze1build0.10.10.1.dsc 7adac471a44b6c46025c748c8e8ad69f 29956 net optional jabberd14_1.6.1.1-5+squeeze1build0.10.10.1.diff.gz From jamie at ubuntu.com Tue Jun 14 18:03:52 2011 From: jamie at ubuntu.com (Jamie Strandboge) Date: Tue, 14 Jun 2011 18:03:52 -0000 Subject: [ubuntu/maverick-security] cyrus-imapd-2.2, cyrus-imapd-2.2_2.2.13-19squeeze1build0.10.10.1_armel_translations.tar.gz, cyrus-imapd-2.2_2.2.13-19squeeze1build0.10.10.1_i386_translations.tar.gz, cyrus-imapd-2.2_2.2.13-19squeeze1build0.10.10.1_amd64_translations.tar.gz, cyrus-imapd-2.2_2.2.13-19squeeze1build0.10.10.1_powerpc_translations.tar.gz 2.2.13-19squeeze1build0.10.10.1 (Accepted) Message-ID: <20110614180352.23881.74263.launchpad@cocoplum.canonical.com> cyrus-imapd-2.2 (2.2.13-19squeeze1build0.10.10.1) maverick-security; urgency=low * fake sync from Debian cyrus-imapd-2.2 (2.2.13-19+squeeze1) stable-security; urgency=low * Fix infinite loop in case of corrupted index files (Closes: #627078) * Add gbp.conf to easy future updates * Fix CVE-2011-1926: STARTTLS plaintext command injection vulnerability (VU#555316) (Closes: #627081) Date: Fri, 10 Jun 2011 15:18:20 -0500 Changed-By: Jamie Strandboge Maintainer: Debian Cyrus Team https://launchpad.net/ubuntu/maverick/+source/cyrus-imapd-2.2/2.2.13-19squeeze1build0.10.10.1 -------------- next part -------------- Format: 1.8 Date: Fri, 10 Jun 2011 15:18:20 -0500 Source: cyrus-imapd-2.2 Binary: cyrus-common-2.2 cyrus-doc-2.2 cyrus-imapd-2.2 cyrus-pop3d-2.2 cyrus-admin-2.2 cyrus-murder-2.2 cyrus-nntpd-2.2 cyrus-clients-2.2 cyrus-dev-2.2 libcyrus-imap-perl22 Architecture: source Version: 2.2.13-19squeeze1build0.10.10.1 Distribution: maverick-security Urgency: low Maintainer: Debian Cyrus Team Changed-By: Jamie Strandboge Description: cyrus-admin-2.2 - Cyrus mail system - administration tools cyrus-clients-2.2 - Cyrus mail system (test clients) cyrus-common-2.2 - Cyrus mail system - common files cyrus-dev-2.2 - Cyrus mail system (developer files) cyrus-doc-2.2 - Cyrus mail system - documentation files cyrus-imapd-2.2 - Cyrus mail system - IMAP support cyrus-murder-2.2 - Cyrus mail system (proxies and aggregator) cyrus-nntpd-2.2 - Cyrus mail system (NNTP support) cyrus-pop3d-2.2 - Cyrus mail system - POP3 support libcyrus-imap-perl22 - Interface to Cyrus imap client imclient library Closes: 627078 627081 Changes: cyrus-imapd-2.2 (2.2.13-19squeeze1build0.10.10.1) maverick-security; urgency=low . * fake sync from Debian . cyrus-imapd-2.2 (2.2.13-19+squeeze1) stable-security; urgency=low . * Fix infinite loop in case of corrupted index files (Closes: #627078) * Add gbp.conf to easy future updates * Fix CVE-2011-1926: STARTTLS plaintext command injection vulnerability (VU#555316) (Closes: #627081) Checksums-Sha1: 381e618e4a87d384992e7dd162784da6a1aa0072 2644 cyrus-imapd-2.2_2.2.13-19squeeze1build0.10.10.1.dsc 75b9e81df26c12c9422913d61afb2eef4681cc3b 273351 cyrus-imapd-2.2_2.2.13-19squeeze1build0.10.10.1.diff.gz Checksums-Sha256: 65955ef4f4133144367388395b30362ce7800ff278807b953fd1ab51321bec8e 2644 cyrus-imapd-2.2_2.2.13-19squeeze1build0.10.10.1.dsc f1fd6b462536872cd5050e4d6e44b49d894a4e4acb09384f70051bc2c8ba6768 273351 cyrus-imapd-2.2_2.2.13-19squeeze1build0.10.10.1.diff.gz Files: 94c08b78a489f7458836d549cb7c98b9 2644 mail extra cyrus-imapd-2.2_2.2.13-19squeeze1build0.10.10.1.dsc da2aeabea26d537ed20afe7b10682dcd 273351 mail extra cyrus-imapd-2.2_2.2.13-19squeeze1build0.10.10.1.diff.gz From marc.deslauriers at ubuntu.com Tue Jun 14 18:10:09 2011 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Tue, 14 Jun 2011 18:10:09 -0000 Subject: [ubuntu/maverick-security] fex 20100208+debian1-1+squeeze1build0.10.10.1 (Accepted) Message-ID: <20110614181009.27930.85678.launchpad@cocoplum.canonical.com> fex (20100208+debian1-1+squeeze1build0.10.10.1) maverick-security; urgency=low * fake sync from Debian fex (20100208+debian1-1+squeeze1) squeeze-security; urgency=high * Add debian/patches/07_fup.patch (backported from upstream): Security update for cgi-bin/fup to not allow everyone to upload files with empty auth-ID (fixes CVE-2011-1409) * Put myself into Uploaders Date: Tue, 14 Jun 2011 13:46:47 -0400 Changed-By: Marc Deslauriers Maintainer: Giuseppe Iuculano https://launchpad.net/ubuntu/maverick/+source/fex/20100208+debian1-1+squeeze1build0.10.10.1 -------------- next part -------------- Format: 1.8 Date: Tue, 14 Jun 2011 13:46:47 -0400 Source: fex Binary: fex fex-utils Architecture: source Version: 20100208+debian1-1+squeeze1build0.10.10.1 Distribution: maverick-security Urgency: high Maintainer: Giuseppe Iuculano Changed-By: Marc Deslauriers Description: fex - web service for transfering very large files fex-utils - web service for transfering very large files (utils) Changes: fex (20100208+debian1-1+squeeze1build0.10.10.1) maverick-security; urgency=low . * fake sync from Debian . fex (20100208+debian1-1+squeeze1) squeeze-security; urgency=high . * Add debian/patches/07_fup.patch (backported from upstream): Security update for cgi-bin/fup to not allow everyone to upload files with empty auth-ID (fixes CVE-2011-1409) * Put myself into Uploaders Checksums-Sha1: f7f7f4754462b905b1acc861adbb1169da963c94 1951 fex_20100208+debian1-1+squeeze1build0.10.10.1.dsc 70087576404a7d5d29281a2b5416a1355fdd65a4 8485 fex_20100208+debian1-1+squeeze1build0.10.10.1.diff.gz Checksums-Sha256: 3857f95b1eff84a8adba4305c9f1095f1b1db2fc7a7b9985763ca1c9e6ffcfcd 1951 fex_20100208+debian1-1+squeeze1build0.10.10.1.dsc 55a6f2a9630326d2a51f4f2716cf9efbd9c26f317f543d3a5a68c7246148bd58 8485 fex_20100208+debian1-1+squeeze1build0.10.10.1.diff.gz Files: 947cf4854d09ac4336237ef2abc0cead 1951 web optional fex_20100208+debian1-1+squeeze1build0.10.10.1.dsc 2930068747c886eecebcf54fd0b44e1d 8485 web optional fex_20100208+debian1-1+squeeze1build0.10.10.1.diff.gz From brian.thomason at canonical.com Tue Jun 14 22:00:26 2011 From: brian.thomason at canonical.com (Brian Thomason) Date: Tue, 14 Jun 2011 22:00:26 -0000 Subject: [ubuntu/maverick] adobe-flashplugin 10.3.181.26-0maverick1 (Accepted) Message-ID: <20110614220026.12365.7539.launchpad@cocoplum.canonical.com> adobe-flashplugin (10.3.181.26-0maverick1) maverick; urgency=low * Initial release of 10.3.181.26 for Maverick Date: Tue, 14 Jun 2011 17:56:54 -0400 Changed-By: Brian Thomason Maintainer: DL-Flash Player Ubuntu https://launchpad.net/ubuntu/maverick/+source/adobe-flashplugin/10.3.181.26-0maverick1 -------------- next part -------------- -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 14 Jun 2011 17:56:54 -0400 Source: adobe-flashplugin Binary: adobe-flashplugin adobe-flash-properties-gtk adobe-flash-properties-kde Architecture: source Version: 10.3.181.26-0maverick1 Distribution: maverick Urgency: low Maintainer: DL-Flash Player Ubuntu Changed-By: Brian Thomason Description: adobe-flash-properties-gtk - GTK+ control panel for Adobe Flash Player plugin version 10 adobe-flash-properties-kde - KDE control panel Adobe Flash Player plugin version 10 adobe-flashplugin - Adobe Flash Player plugin version 10 Changes: adobe-flashplugin (10.3.181.26-0maverick1) maverick; urgency=low . * Initial release of 10.3.181.26 for Maverick Checksums-Sha1: 7c00e4e8f7fd7a7e3799938d4dd63df6474fb78a 1270 adobe-flashplugin_10.3.181.26-0maverick1.dsc 496d5ace3cd2d802c2c8e1be45144bd30ddc8539 4377 adobe-flashplugin_10.3.181.26-0maverick1.diff.gz Checksums-Sha256: a271f604ff6e4beb1710b74e3744d4a80dfa8d85ef83ece15ba54b1486bd451f 1270 adobe-flashplugin_10.3.181.26-0maverick1.dsc c9c73013ed2167a44e9664a6dd9656f5299d1d8e9c4b959c33601411f7b14fde 4377 adobe-flashplugin_10.3.181.26-0maverick1.diff.gz Files: da1f70555aeb311c812b2e8a314b5273 1270 partner/web optional adobe-flashplugin_10.3.181.26-0maverick1.dsc 42312c2bf15e2a7a24b970d3f16cd434 4377 partner/web optional adobe-flashplugin_10.3.181.26-0maverick1.diff.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAk332U4ACgkQOb4zNfJqN5fpywCeKBl4WyBabyxAdDQCdnQVs2uG fQsAn1OIcj0s6HBc/Nxm6jH12S0S2X6h =s9S1 -----END PGP SIGNATURE----- From brian.thomason at canonical.com Tue Jun 14 22:10:20 2011 From: brian.thomason at canonical.com (Brian Thomason) Date: Tue, 14 Jun 2011 22:10:20 -0000 Subject: [ubuntu/maverick] adobeair 1:2.6.0.19170-0maverick1 (Accepted) Message-ID: <20110614221020.14123.28000.launchpad@cocoplum.canonical.com> adobeair (1:2.6.0.19170-0maverick1) maverick; urgency=low * Initial release of 2.6.0.19170 for Maverick Date: Tue, 14 Jun 2011 18:07:49 -0400 Changed-By: Brian Thomason https://launchpad.net/ubuntu/maverick/+source/adobeair/1:2.6.0.19170-0maverick1 -------------- next part -------------- -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 14 Jun 2011 18:07:49 -0400 Source: adobeair Binary: adobeair Architecture: source Version: 1:2.6.0.19170-0maverick1 Distribution: maverick Urgency: low Maintainer: Brian Thomason Changed-By: Brian Thomason Description: adobeair - runtime for rich Internet applications Changes: adobeair (1:2.6.0.19170-0maverick1) maverick; urgency=low . * Initial release of 2.6.0.19170 for Maverick Checksums-Sha1: 4e9c55fab849bf1a959265545fdecaaa4d10a5df 1080 adobeair_2.6.0.19170-0maverick1.dsc 6385ac89d07702ed31d01007ad223a9b6b9e75b4 4622 adobeair_2.6.0.19170-0maverick1.diff.gz Checksums-Sha256: d1eb315eb5b25e9b4518f0546d451de12d6c2bce85200cb67f26a1dda3d09697 1080 adobeair_2.6.0.19170-0maverick1.dsc 09651c7993eb871e0242198147a48e2b3eb8191a3bc0995f9c02ceed649ffd15 4622 adobeair_2.6.0.19170-0maverick1.diff.gz Files: 4d1c81ad450c7f6e2ada0eb6a1b9092c 1080 partner/utils extra adobeair_2.6.0.19170-0maverick1.dsc fc649b3c7c0fe50047907392cccc7170 4622 partner/utils extra adobeair_2.6.0.19170-0maverick1.diff.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAk3328oACgkQOb4zNfJqN5c49ACfbns0zV7yW7sAvZK8vGE9Nyyw uFsAnisj0KoHZ+Ngj6AhDbfyDXYBze/G =HAJF -----END PGP SIGNATURE----- From marc.deslauriers at ubuntu.com Wed Jun 15 14:03:22 2011 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Wed, 15 Jun 2011 14:03:22 -0000 Subject: [ubuntu/maverick-security] flashplugin-nonfree, flashplugin-nonfree_10.3.181.26ubuntu0.10.10.1_i386_translations.tar.gz, flashplugin-nonfree_10.3.181.26ubuntu0.10.10.1_amd64_translations.tar.gz 10.3.181.26ubuntu0.10.10.1 (Accepted) Message-ID: <20110615140322.12207.17725.launchpad@cocoplum.canonical.com> flashplugin-nonfree (10.3.181.26ubuntu0.10.10.1) maverick-security; urgency=low * SECURITY UPDATE: New upstream release 10.3.181.26 - debian/config, debian/postinst: Updated sha256sums and path. - CVE-2011-2110 Date: Wed, 15 Jun 2011 08:09:54 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/flashplugin-nonfree/10.3.181.26ubuntu0.10.10.1 -------------- next part -------------- Format: 1.8 Date: Wed, 15 Jun 2011 08:09:54 -0400 Source: flashplugin-nonfree Binary: flashplugin-installer flashplugin-nonfree Architecture: source Version: 10.3.181.26ubuntu0.10.10.1 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: flashplugin-installer - Adobe Flash Player plugin installer flashplugin-nonfree - Adobe Flash Player plugin installer (transitional package) Changes: flashplugin-nonfree (10.3.181.26ubuntu0.10.10.1) maverick-security; urgency=low . * SECURITY UPDATE: New upstream release 10.3.181.26 - debian/config, debian/postinst: Updated sha256sums and path. - CVE-2011-2110 Checksums-Sha1: 8b9858113d3a0bb4835cd3a8b0728769067db2e7 1639 flashplugin-nonfree_10.3.181.26ubuntu0.10.10.1.dsc 27107cb4266b1d56eb330ade0d86adc751da041b 27328 flashplugin-nonfree_10.3.181.26ubuntu0.10.10.1.tar.gz Checksums-Sha256: 8fffb9e17fd80cb2de77dd7c70e377f9aa8871189ad2b6ab76f6b8770e99629b 1639 flashplugin-nonfree_10.3.181.26ubuntu0.10.10.1.dsc 068cd228946c2e30fff6fc5f73d6ab01c6d240bc5be12608d6379a7e824eea6e 27328 flashplugin-nonfree_10.3.181.26ubuntu0.10.10.1.tar.gz Files: 107305bc801c53b8b95fc5c0eacba2a9 1639 contrib/web optional flashplugin-nonfree_10.3.181.26ubuntu0.10.10.1.dsc f1bc227068514d56462ce620cb049f83 27328 contrib/web optional flashplugin-nonfree_10.3.181.26ubuntu0.10.10.1.tar.gz Original-Maintainer: Bart Martens From marc.deslauriers at ubuntu.com Wed Jun 15 18:03:28 2011 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Wed, 15 Jun 2011 18:03:28 -0000 Subject: [ubuntu/maverick-security] nagios3_3.2.1-2ubuntu1.2_amd64_translations.tar.gz, nagios3_3.2.1-2ubuntu1.2_i386_translations.tar.gz, nagios3_3.2.1-2ubuntu1.2_armel_translations.tar.gz, nagios3_3.2.1-2ubuntu1.2_powerpc_translations.tar.gz, nagios3 3.2.1-2ubuntu1.2 (Accepted) Message-ID: <20110615180328.8430.55787.launchpad@cocoplum.canonical.com> nagios3 (3.2.1-2ubuntu1.2) maverick-security; urgency=low * SECURITY UPDATE: Cross-site scripting in layer url - debian/patches/96_security_CVE-2011-1523.dpatch: use escape_string on layer name in cgi/statusmap.c. - CVE-2011-1523 Date: Tue, 07 Jun 2011 08:38:42 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/nagios3/3.2.1-2ubuntu1.2 -------------- next part -------------- Format: 1.8 Date: Tue, 07 Jun 2011 08:38:42 -0400 Source: nagios3 Binary: nagios3-common nagios3-cgi nagios3 nagios3-core nagios3-doc nagios3-dbg Architecture: source Version: 3.2.1-2ubuntu1.2 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: nagios3 - A host/service/network monitoring and management system nagios3-cgi - cgi files for nagios3 nagios3-common - support files for nagios3 nagios3-core - A host/service/network monitoring and management system core file nagios3-dbg - debugging symbols and debug stuff for nagios3 nagios3-doc - documentation for nagios3 Changes: nagios3 (3.2.1-2ubuntu1.2) maverick-security; urgency=low . * SECURITY UPDATE: Cross-site scripting in layer url - debian/patches/96_security_CVE-2011-1523.dpatch: use escape_string on layer name in cgi/statusmap.c. - CVE-2011-1523 Checksums-Sha1: d42127d5fea07ee4e4807f22c17a00531a13bac1 2267 nagios3_3.2.1-2ubuntu1.2.dsc c5e0685143c0a97ec6afdb4bf47402540a8019d8 43658 nagios3_3.2.1-2ubuntu1.2.diff.gz Checksums-Sha256: 7572436d3d6cf25e09d0c365f853ca75715f2c379fb81cf098b214242103a0d2 2267 nagios3_3.2.1-2ubuntu1.2.dsc 218baa832630dba1eea34cb39e535d9675f450a7d4b4b66b31752acd91754a2a 43658 nagios3_3.2.1-2ubuntu1.2.diff.gz Files: c9790ef32b33680c4e2bbedf29d7fc14 2267 net optional nagios3_3.2.1-2ubuntu1.2.dsc 1bdab38a3571e82727c2a7cfd805508e 43658 net optional nagios3_3.2.1-2ubuntu1.2.diff.gz Original-Maintainer: Debian Nagios Maintainer Group From jamie at ubuntu.com Thu Jun 16 17:04:37 2011 From: jamie at ubuntu.com (Jamie Strandboge) Date: Thu, 16 Jun 2011 17:04:37 -0000 Subject: [ubuntu/maverick-security] libvirt_0.8.3-1ubuntu18_armel_translations.tar.gz, libvirt_0.8.3-1ubuntu18_amd64_translations.tar.gz, libvirt_0.8.3-1ubuntu18_powerpc_translations.tar.gz, libvirt_0.8.3-1ubuntu18_i386_translations.tar.gz, libvirt 0.8.3-1ubuntu18 (Accepted) Message-ID: <20110616170437.29652.29630.launchpad@cocoplum.canonical.com> libvirt (0.8.3-1ubuntu18) maverick-security; urgency=low * SECURITY UPDATE: - 9030-CVE-2011-1486.patch: update daemon/dispatch.c and daemon/remote.c to call virDomainFree() after remoteDispatchConnError() - CVE-2011-1486 Date: Fri, 10 Jun 2011 17:25:26 -0500 Changed-By: Jamie Strandboge Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/libvirt/0.8.3-1ubuntu18 -------------- next part -------------- Format: 1.8 Date: Fri, 10 Jun 2011 17:25:26 -0500 Source: libvirt Binary: libvirt-bin libvirt0 libvirt0-dbg libvirt-doc libvirt-dev python-libvirt Architecture: source Version: 0.8.3-1ubuntu18 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Jamie Strandboge Description: libvirt-bin - the programs for the libvirt library libvirt-dev - development files for the libvirt library libvirt-doc - documentation for the libvirt library libvirt0 - library for interfacing with different virtualization systems libvirt0-dbg - library for interfacing with different virtualization systems python-libvirt - libvirt Python bindings Changes: libvirt (0.8.3-1ubuntu18) maverick-security; urgency=low . * SECURITY UPDATE: - 9030-CVE-2011-1486.patch: update daemon/dispatch.c and daemon/remote.c to call virDomainFree() after remoteDispatchConnError() - CVE-2011-1486 Checksums-Sha1: b76de36b3546a3af83ab3a377866c703a47f73f3 2661 libvirt_0.8.3-1ubuntu18.dsc 3ac3f8219cbe4279b058d7caebb54b3bb0879b89 71678 libvirt_0.8.3-1ubuntu18.debian.tar.gz Checksums-Sha256: 3a12683a0525fd65ad44368c0c062b917e041e715c5ef71408afbd5f96034255 2661 libvirt_0.8.3-1ubuntu18.dsc d7eb5d5f4c726a7f6bd7a92111029bd4435e9b25653f71b7a9ecf1d897d6f657 71678 libvirt_0.8.3-1ubuntu18.debian.tar.gz Files: 73b957c134838ee7d4cef616c7023281 2661 libs optional libvirt_0.8.3-1ubuntu18.dsc 53ba4abf9219df4b584248d9f7686483 71678 libs optional libvirt_0.8.3-1ubuntu18.debian.tar.gz Original-Maintainer: Debian Libvirt Maintainers From debfx-pkg at fobos.de Thu Jun 16 17:04:51 2011 From: debfx-pkg at fobos.de (Felix Geyer) Date: Thu, 16 Jun 2011 17:04:51 -0000 Subject: [ubuntu/maverick-security] ejabberd_2.1.5-2ubuntu0.1_powerpc_translations.tar.gz, ejabberd_2.1.5-2ubuntu0.1_i386_translations.tar.gz, ejabberd_2.1.5-2ubuntu0.1_armel_translations.tar.gz, ejabberd, ejabberd_2.1.5-2ubuntu0.1_amd64_translations.tar.gz 2.1.5-2ubuntu0.1 (Accepted) Message-ID: <20110616170451.29652.16344.launchpad@cocoplum.canonical.com> ejabberd (2.1.5-2ubuntu0.1) maverick-security; urgency=low * SECURITY UPDATE: billion laughs DoS vulnerability (LP: #791730) - debian/patches/CVE-2011-1753.patch: patch from upstream - CVE-2011-1753 Date: Thu, 16 Jun 2011 12:06:06 +0200 Changed-By: Felix Geyer Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/ejabberd/2.1.5-2ubuntu0.1 -------------- next part -------------- Format: 1.8 Date: Thu, 16 Jun 2011 12:06:06 +0200 Source: ejabberd Binary: ejabberd Architecture: source Version: 2.1.5-2ubuntu0.1 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Felix Geyer Description: ejabberd - distributed, fault-tolerant Jabber/XMPP server written in Erlang Launchpad-Bugs-Fixed: 791730 Changes: ejabberd (2.1.5-2ubuntu0.1) maverick-security; urgency=low . * SECURITY UPDATE: billion laughs DoS vulnerability (LP: #791730) - debian/patches/CVE-2011-1753.patch: patch from upstream - CVE-2011-1753 Checksums-Sha1: 7a99d131d66263324a075089bc87f8a40ac5cc8b 2072 ejabberd_2.1.5-2ubuntu0.1.dsc 46cba6b0e981bbb5b4eb808e5e68cc8775baa5b2 76410 ejabberd_2.1.5-2ubuntu0.1.diff.gz Checksums-Sha256: 12b49e05a94079d953f8639a1d91d6a7b19e7d9b40281e0f133c50d8757557d0 2072 ejabberd_2.1.5-2ubuntu0.1.dsc 56c924fc6fb7ba804e34b8a5911fda88177f3711e3930e6098ea3be4c3b91025 76410 ejabberd_2.1.5-2ubuntu0.1.diff.gz Files: 4ad02de28c8463e424759243c0e48cbc 2072 net optional ejabberd_2.1.5-2ubuntu0.1.dsc 4492c283d1abda32cf619f69aaff7241 76410 net optional ejabberd_2.1.5-2ubuntu0.1.diff.gz Original-Maintainer: Konstantin Khomoutov From marc.deslauriers at ubuntu.com Thu Jun 16 17:13:37 2011 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Thu, 16 Jun 2011 17:13:37 -0000 Subject: [ubuntu/maverick-security] libxml2 2.7.7.dfsg-4ubuntu0.2 (Accepted) Message-ID: <20110616171337.1888.47016.launchpad@cocoplum.canonical.com> libxml2 (2.7.7.dfsg-4ubuntu0.2) maverick-security; urgency=low * SECURITY UPDATE: denial of service and possible code execution via specially crafted xml file - xpath.c: update count only if allocation succeeds. - http://git.gnome.org/browse/libxml2/commit/?id=d7958b21e7f8c447a26bb2436f08402b2c308be4 - CVE-2011-1944 Date: Thu, 16 Jun 2011 09:26:36 -0400 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/libxml2/2.7.7.dfsg-4ubuntu0.2 -------------- next part -------------- Format: 1.8 Date: Thu, 16 Jun 2011 09:26:36 -0400 Source: libxml2 Binary: libxml2 libxml2-utils libxml2-dev libxml2-dbg libxml2-doc python-libxml2 python-libxml2-dbg libxml2-udeb Architecture: source Version: 2.7.7.dfsg-4ubuntu0.2 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: libxml2 - GNOME XML library libxml2-dbg - Debugging symbols for the GNOME XML library libxml2-dev - Development files for the GNOME XML library libxml2-doc - Documentation for the GNOME XML library libxml2-udeb - GNOME XML library - minimal runtime (udeb) libxml2-utils - XML utilities python-libxml2 - Python bindings for the GNOME XML library python-libxml2-dbg - Python bindings for the GNOME XML library (debug extension) Changes: libxml2 (2.7.7.dfsg-4ubuntu0.2) maverick-security; urgency=low . * SECURITY UPDATE: denial of service and possible code execution via specially crafted xml file - xpath.c: update count only if allocation succeeds. - http://git.gnome.org/browse/libxml2/commit/?id=d7958b21e7f8c447a26bb2436f08402b2c308be4 - CVE-2011-1944 Checksums-Sha1: 3528f28204d4e225c0debff21baf6404deb793a3 2287 libxml2_2.7.7.dfsg-4ubuntu0.2.dsc 1cb3444c221270a082a81cf0961fcbab42502c20 102360 libxml2_2.7.7.dfsg-4ubuntu0.2.diff.gz Checksums-Sha256: f7dd3f934461ba6f0af2939d95c31d36d63e6999b61b0ab558a7ea8f6f71c6c6 2287 libxml2_2.7.7.dfsg-4ubuntu0.2.dsc 21048c0ac5dcf39045c6c02a47adb06bc062381cf82937502de18f7fa19c88f1 102360 libxml2_2.7.7.dfsg-4ubuntu0.2.diff.gz Files: c0a0dd4f5ca9e76e8ff339bd21fd1f92 2287 libs optional libxml2_2.7.7.dfsg-4ubuntu0.2.dsc e3d6455dac66e09029637343b6d2b304 102360 libs optional libxml2_2.7.7.dfsg-4ubuntu0.2.diff.gz Original-Maintainer: Debian XML/SGML Group From sbeattie at ubuntu.com Thu Jun 16 22:04:35 2011 From: sbeattie at ubuntu.com (Steve Beattie) Date: Thu, 16 Jun 2011 22:04:35 -0000 Subject: [ubuntu/maverick-security] openjdk-6b18 6b18-1.8.8-0ubuntu1~10.10.1 (Accepted) Message-ID: <20110616220435.9937.7954.launchpad@cocoplum.canonical.com> openjdk-6b18 (6b18-1.8.8-0ubuntu1~10.10.1) maverick-security; urgency=low * SECURITY UPDATE: IcedTea6 1.8.8 release. - S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent disabled get still selected for read ops (win) - S6618658, CVE-2011-0865: Vulnerability in deserialization - S7012520, CVE-2011-0815: Heap overflow vulnerability in FileDialog.show() - S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code - S7013969, CVE-2011-0867: NetworkInterface.toString can reveal bindings - S7013971, CVE-2011-0869: Vulnerability in SAAJ - S7016340, CVE-2011-0870: Vulnerability in SAAJ - S7016495, CVE-2011-0868: Crash in Java 2D transforming an image with scale close to zero - S7020198, CVE-2011-0871: ImageIcon creates Component with null acc - S7020373, CVE-2011-0864: JSR rewriting can overflow memory address size variables * Backport CACAO updates from the 6-1.10 branch. * debian/generate_debian_orig.sh: adjust settings to match the generation of this update. * debian/rules: debian/patches/hotspot-fix_added_define.patch; applied upstream Date: Sat, 11 Jun 2011 08:29:51 -0700 Changed-By: Steve Beattie Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/openjdk-6b18/6b18-1.8.8-0ubuntu1~10.10.1 -------------- next part -------------- Format: 1.8 Date: Sat, 11 Jun 2011 08:29:51 -0700 Source: openjdk-6b18 Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-demo openjdk-6-dbg icedtea6-plugin icedtea-6-jre-cacao openjdk-6-jre-zero Architecture: source Version: 6b18-1.8.8-0ubuntu1~10.10.1 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Steve Beattie Description: icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao icedtea6-plugin - web browser plugin based on OpenJDK and IcedTea to execute Java a openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols) openjdk-6-demo - Java runtime based on OpenJDK (demos and examples) openjdk-6-jdk - OpenJDK Development Kit (JDK) openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name} openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless) openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark Changes: openjdk-6b18 (6b18-1.8.8-0ubuntu1~10.10.1) maverick-security; urgency=low . * SECURITY UPDATE: IcedTea6 1.8.8 release. - S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent disabled get still selected for read ops (win) - S6618658, CVE-2011-0865: Vulnerability in deserialization - S7012520, CVE-2011-0815: Heap overflow vulnerability in FileDialog.show() - S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code - S7013969, CVE-2011-0867: NetworkInterface.toString can reveal bindings - S7013971, CVE-2011-0869: Vulnerability in SAAJ - S7016340, CVE-2011-0870: Vulnerability in SAAJ - S7016495, CVE-2011-0868: Crash in Java 2D transforming an image with scale close to zero - S7020198, CVE-2011-0871: ImageIcon creates Component with null acc - S7020373, CVE-2011-0864: JSR rewriting can overflow memory address size variables * Backport CACAO updates from the 6-1.10 branch. * debian/generate_debian_orig.sh: adjust settings to match the generation of this update. * debian/rules: debian/patches/hotspot-fix_added_define.patch; applied upstream Checksums-Sha1: f7a6d315bd0fb308810f71ffdf70d872c9531190 3118 openjdk-6b18_6b18-1.8.8-0ubuntu1~10.10.1.dsc 9cfdb9cb92ce0e3d9b7062fc563b83c718643c80 73074039 openjdk-6b18_6b18-1.8.8.orig.tar.gz c1ad630840e46c59e523a967dda481e0f5218756 137751 openjdk-6b18_6b18-1.8.8-0ubuntu1~10.10.1.diff.gz Checksums-Sha256: d10f460db7cc28b24e202a4629b6890947dccfb95850fbfdb121a931d5ff21f1 3118 openjdk-6b18_6b18-1.8.8-0ubuntu1~10.10.1.dsc f378324110efe6619d8f00938939b2716b35652b0d1d02573c2a73e251bd5513 73074039 openjdk-6b18_6b18-1.8.8.orig.tar.gz 2910e9927bcea2a76754d373eb1c51817eeeec321ef9424b21fc6c67ea2a868c 137751 openjdk-6b18_6b18-1.8.8-0ubuntu1~10.10.1.diff.gz Files: f97c369b0a2b3832972f555830b84826 3118 java optional openjdk-6b18_6b18-1.8.8-0ubuntu1~10.10.1.dsc 7450170dd5927d46ce7c5f87b37a17a5 73074039 java optional openjdk-6b18_6b18-1.8.8.orig.tar.gz 4f4ebf674b7980b43f89f62cba60bace 137751 java optional openjdk-6b18_6b18-1.8.8-0ubuntu1~10.10.1.diff.gz Original-Maintainer: OpenJDK Team From sbeattie at ubuntu.com Thu Jun 16 22:04:56 2011 From: sbeattie at ubuntu.com (Steve Beattie) Date: Thu, 16 Jun 2011 22:04:56 -0000 Subject: [ubuntu/maverick-security] openjdk-6 6b20-1.9.8-0ubuntu1~10.10.1 (Accepted) Message-ID: <20110616220456.9937.9213.launchpad@cocoplum.canonical.com> openjdk-6 (6b20-1.9.8-0ubuntu1~10.10.1) maverick-security; urgency=low * SECURITY UPDATE: IcedTea6 1.9.8 Release: - S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent disabled get still selected for read ops (win) - S6618658, CVE-2011-0865: Vulnerability in deserialization - S7012520, CVE-2011-0815: Heap overflow vulnerability in FileDialog.show() - S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code - S7013969, CVE-2011-0867: NetworkInterface.toString can reveal bindings - S7013971, CVE-2011-0869: Vulnerability in SAAJ - S7016340, CVE-2011-0870: Vulnerability in SAAJ - S7016495, CVE-2011-0868: Crash in Java 2D transforming an image with scale close to zero - S7020198, CVE-2011-0871: ImageIcon creates Component with null acc - S7020373, CVE-2011-0864: JSR rewriting can overflow memory address size variables * debian/generate_debian_orig.sh: adjust settings to match the generation of this update. * Makefile.{am,in}: don't apply patches/jtreg-LastErrorString.patch as it causes the testsuite runner to fail. Date: Tue, 14 Jun 2011 11:13:28 -0700 Changed-By: Steve Beattie Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/openjdk-6/6b20-1.9.8-0ubuntu1~10.10.1 -------------- next part -------------- Format: 1.8 Date: Tue, 14 Jun 2011 11:13:28 -0700 Source: openjdk-6 Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-jre-lib openjdk-6-demo openjdk-6-source openjdk-6-doc openjdk-6-dbg icedtea6-plugin icedtea-6-jre-cacao openjdk-6-jre-zero Architecture: source Version: 6b20-1.9.8-0ubuntu1~10.10.1 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Steve Beattie Description: icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao icedtea6-plugin - web browser plugin based on OpenJDK and IcedTea to execute Java a openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols) openjdk-6-demo - Java runtime based on OpenJDK (demos and examples) openjdk-6-doc - OpenJDK Development Kit (JDK) documentation openjdk-6-jdk - OpenJDK Development Kit (JDK) openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name} openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless) openjdk-6-jre-lib - OpenJDK Java runtime (architecture independent libraries) openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark openjdk-6-source - OpenJDK Development Kit (JDK) source files Changes: openjdk-6 (6b20-1.9.8-0ubuntu1~10.10.1) maverick-security; urgency=low . * SECURITY UPDATE: IcedTea6 1.9.8 Release: - S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent disabled get still selected for read ops (win) - S6618658, CVE-2011-0865: Vulnerability in deserialization - S7012520, CVE-2011-0815: Heap overflow vulnerability in FileDialog.show() - S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code - S7013969, CVE-2011-0867: NetworkInterface.toString can reveal bindings - S7013971, CVE-2011-0869: Vulnerability in SAAJ - S7016340, CVE-2011-0870: Vulnerability in SAAJ - S7016495, CVE-2011-0868: Crash in Java 2D transforming an image with scale close to zero - S7020198, CVE-2011-0871: ImageIcon creates Component with null acc - S7020373, CVE-2011-0864: JSR rewriting can overflow memory address size variables * debian/generate_debian_orig.sh: adjust settings to match the generation of this update. * Makefile.{am,in}: don't apply patches/jtreg-LastErrorString.patch as it causes the testsuite runner to fail. Checksums-Sha1: d1a3b52100c3b1278714b5698365e2fa4b8cfac7 3115 openjdk-6_6b20-1.9.8-0ubuntu1~10.10.1.dsc 140823cc44408d91bdd9d28f7e568cad41e78776 73280789 openjdk-6_6b20-1.9.8.orig.tar.gz b4a94c26047359fe366bb91421861591751d5eb6 135533 openjdk-6_6b20-1.9.8-0ubuntu1~10.10.1.diff.gz Checksums-Sha256: a46297a44e48d4455a0f5c8841d09148cc14bc92f9fb730518e4595f671d1ad5 3115 openjdk-6_6b20-1.9.8-0ubuntu1~10.10.1.dsc 03a26acae6dd07a02e67475d562862fd5545de0bacc02f8d359f9bedc88d612a 73280789 openjdk-6_6b20-1.9.8.orig.tar.gz e6e471db9f1cd01e11550d88252214b24ffc458667aa01e58f0b1a409e741529 135533 openjdk-6_6b20-1.9.8-0ubuntu1~10.10.1.diff.gz Files: 0816d5565a3a734f73e7632ced83f643 3115 java optional openjdk-6_6b20-1.9.8-0ubuntu1~10.10.1.dsc 696be93d97da7e2186d1988bafb1cca6 73280789 java optional openjdk-6_6b20-1.9.8.orig.tar.gz 24f2f3708346f3d6e0bab9eb5e81c6ea 135533 java optional openjdk-6_6b20-1.9.8-0ubuntu1~10.10.1.diff.gz Original-Maintainer: OpenJDK Team From angelabad at ubuntu.com Fri Jun 17 06:06:05 2011 From: angelabad at ubuntu.com (Angel Abad) Date: Fri, 17 Jun 2011 06:06:05 -0000 Subject: [ubuntu/maverick-proposed] fpc 2.4.0-2ubuntu1.10.10 (Accepted) Message-ID: <20110617060605.22045.62017.launchpad@soybean.canonical.com> fpc (2.4.0-2ubuntu1.10.10) maverick-proposed; urgency=low * debian/control: - fp-compiler depends on binutils and conflicts with binutils-gold (LP: #790583) Date: Wed, 08 Jun 2011 21:44:49 +0200 Changed-By: Angel Abad Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/fpc/2.4.0-2ubuntu1.10.10 -------------- next part -------------- Format: 1.8 Date: Wed, 08 Jun 2011 21:44:49 +0200 Source: fpc Binary: fpc fpc-source fp-compiler fp-ide fp-utils fp-docs fp-units-rtl fp-units-base fp-units-fcl fp-units-fv fp-units-gtk fp-units-gtk2 fp-units-gnome1 fp-units-db fp-units-gfx fp-units-net fp-units-math fp-units-misc fp-units-multimedia fp-units-i386 Architecture: source Version: 2.4.0-2ubuntu1.10.10 Distribution: maverick-proposed Urgency: low Maintainer: Ubuntu Developers Changed-By: Angel Abad Description: fp-compiler - Free Pascal - Compiler fp-docs - Free Pascal - Documentation fp-ide - Free Pascal - IDE fp-units-base - Free Pascal - base units fp-units-db - Free Pascal - database libraries units fp-units-fcl - Free Pascal - Free Component Library fp-units-fv - Free Pascal - Free Vision units fp-units-gfx - Free Pascal - graphics libraries units fp-units-gnome1 - Free Pascal - GNOME 1 units fp-units-gtk - Free Pascal - GTK+ 1.2 units fp-units-gtk2 - Free Pascal - GTK+ 2.x units fp-units-i386 - Free Pascal - kylix compatibility units fp-units-math - Free Pascal - math units fp-units-misc - Free Pascal - miscellaneous units fp-units-multimedia - Free Pascal - multimedia units fp-units-net - Free Pascal - networking units fp-units-rtl - Free Pascal - Runtime Library fp-utils - Free Pascal - Utils fpc - Free Pascal Compiler - Meta Package fpc-source - Free Pascal Compiler - Source Code Launchpad-Bugs-Fixed: 790583 Changes: fpc (2.4.0-2ubuntu1.10.10) maverick-proposed; urgency=low . * debian/control: - fp-compiler depends on binutils and conflicts with binutils-gold (LP: #790583) Checksums-Sha1: 5f0d08604acaece2fadabf88a55d2e1b4f7d3c7e 1754 fpc_2.4.0-2ubuntu1.10.10.dsc 24929aafaf6149f5bc717a269f81403ddf62d49e 56724 fpc_2.4.0-2ubuntu1.10.10.diff.gz Checksums-Sha256: 751151fdd2c822f45e4ae130417bf36b973127d95d87c3546fef164f01fc4bd4 1754 fpc_2.4.0-2ubuntu1.10.10.dsc 4b8203939f7cbb4d340680f9c1f3e93331f4c79374b51621c9a6e25796507bdf 56724 fpc_2.4.0-2ubuntu1.10.10.diff.gz Files: e73e887edf2a443bf4d3b9d9e837b995 1754 devel optional fpc_2.4.0-2ubuntu1.10.10.dsc b01d83b7ec594719ca4fa21224df92c4 56724 devel optional fpc_2.4.0-2ubuntu1.10.10.diff.gz Original-Maintainer: Carlos Laviola From clint at ubuntu.com Fri Jun 17 06:06:36 2011 From: clint at ubuntu.com (Clint Byrum) Date: Fri, 17 Jun 2011 06:06:36 -0000 Subject: [ubuntu/maverick-proposed] openssh 1:5.5p1-4ubuntu6 (Accepted) Message-ID: <20110617060636.26337.3294.launchpad@gac.canonical.com> openssh (1:5.5p1-4ubuntu6) maverick-proposed; urgency=low [ Clint Byrum ] * debian/openssh-server.ssh.init: Adding upstart awareness that will call /lib/init/upstart-job when script is run outside of a chroot. While this fixes LP: #531912, the change should be reverted when upstart gains chroot session support. [ Colin Watson ] * Only do the above if /etc/init/ssh.conf still exists, since apparently some people have been removing it. Date: Sat, 11 Jun 2011 08:06:02 -0700 Changed-By: Clint Byrum Maintainer: Colin Watson https://launchpad.net/ubuntu/maverick/+source/openssh/1:5.5p1-4ubuntu6 -------------- next part -------------- Format: 1.8 Date: Sat, 11 Jun 2011 08:06:02 -0700 Source: openssh Binary: openssh-client openssh-server ssh ssh-krb5 ssh-askpass-gnome openssh-client-udeb openssh-server-udeb Architecture: source Version: 1:5.5p1-4ubuntu6 Distribution: maverick-proposed Urgency: low Maintainer: Colin Watson Changed-By: Clint Byrum Description: openssh-client - secure shell (SSH) client, for secure access to remote machines openssh-client-udeb - secure shell client for the Debian installer (udeb) openssh-server - secure shell (SSH) server, for secure access from remote machines openssh-server-udeb - secure shell server for the Debian installer (udeb) ssh - secure shell client and server (metapackage) ssh-askpass-gnome - interactive X program to prompt users for a passphrase for ssh-ad ssh-krb5 - secure shell client and server (transitional package) Launchpad-Bugs-Fixed: 531912 Changes: openssh (1:5.5p1-4ubuntu6) maverick-proposed; urgency=low . [ Clint Byrum ] * debian/openssh-server.ssh.init: Adding upstart awareness that will call /lib/init/upstart-job when script is run outside of a chroot. While this fixes LP: #531912, the change should be reverted when upstart gains chroot session support. . [ Colin Watson ] * Only do the above if /etc/init/ssh.conf still exists, since apparently some people have been removing it. Checksums-Sha1: 4fabb8f55b483ec3aab8da9e9f9b4758fde2e288 2053 openssh_5.5p1-4ubuntu6.dsc ad33efdb39369c06d1e6b6c686d61b9c75e339f1 249907 openssh_5.5p1-4ubuntu6.debian.tar.gz Checksums-Sha256: 859c7008def139913ff5377bcdb449c5acf894d946ca8b7db945880ee96b82ea 2053 openssh_5.5p1-4ubuntu6.dsc 3d531dbd4a2b2854dda5540e74e1588049dfb720b7453dfd7aba520e2faf9fd0 249907 openssh_5.5p1-4ubuntu6.debian.tar.gz Files: 473383fce3804365b823e68c41ab2815 2053 net standard openssh_5.5p1-4ubuntu6.dsc 6be53fa360c25473813fa60e1c79848e 249907 net standard openssh_5.5p1-4ubuntu6.debian.tar.gz Original-Maintainer: Debian OpenSSH Maintainers From kirkland at ubuntu.com Fri Jun 17 06:07:15 2011 From: kirkland at ubuntu.com (Dustin Kirkland) Date: Fri, 17 Jun 2011 06:07:15 -0000 Subject: [ubuntu/maverick-proposed] byobu 3.5-0ubuntu1.1 (Accepted) Message-ID: <20110617060715.22043.14626.launchpad@chaenomeles.canonical.com> byobu (3.5-0ubuntu1.1) maverick-proposed; urgency=low * debian/postinst: - fix chown of reload-required flag, which might otherwise fail, and break package upgrades, LP: #796422 Date: Sun, 12 Jun 2011 23:34:40 -0500 Changed-By: Dustin Kirkland https://launchpad.net/ubuntu/maverick/+source/byobu/3.5-0ubuntu1.1 -------------- next part -------------- Format: 1.8 Date: Sun, 12 Jun 2011 23:34:40 -0500 Source: byobu Binary: byobu Architecture: source Version: 3.5-0ubuntu1.1 Distribution: maverick-proposed Urgency: low Maintainer: Dustin Kirkland Changed-By: Dustin Kirkland Description: byobu - a set of useful profiles and a profile-switcher for GNU screen Launchpad-Bugs-Fixed: 796422 Changes: byobu (3.5-0ubuntu1.1) maverick-proposed; urgency=low . * debian/postinst: - fix chown of reload-required flag, which might otherwise fail, and break package upgrades, LP: #796422 Checksums-Sha1: 773a43e2e5152ceb22597ed914506a38bda54f2a 1725 byobu_3.5-0ubuntu1.1.dsc c19a766b984810b478d426f2db3ed6dbb4903ed8 32381 byobu_3.5-0ubuntu1.1.diff.gz Checksums-Sha256: e06094c5d2754a03fcd04e8425e2a0415225c8054af6562c81e3d8ab908fbac5 1725 byobu_3.5-0ubuntu1.1.dsc 647f3c87785cd944a9cf35f852deb85fe2d0fe8952d08206e5bf551798fac716 32381 byobu_3.5-0ubuntu1.1.diff.gz Files: 93193170c6ca63027c1d1dce4eaf7f67 1725 misc optional byobu_3.5-0ubuntu1.1.dsc 78614462b760ebf6a76c7560968b1c20 32381 misc optional byobu_3.5-0ubuntu1.1.diff.gz From gary.lasker at canonical.com Fri Jun 17 06:08:10 2011 From: gary.lasker at canonical.com (Gary Lasker) Date: Fri, 17 Jun 2011 06:08:10 -0000 Subject: [ubuntu/maverick-proposed] software-center 3.0.9 (Accepted) Message-ID: <20110617060810.22653.87433.launchpad@chaenomeles.canonical.com> software-center (3.0.9) maverick-proposed; urgency=low [ Gary Lasker ] * softwarecenter/db/update.py, test/test_appview.py, test/test_database.py: - track cataloged_time for items not in axi (e.g. for-purchase apps) so that they will show up in What's New, add/modify unit tests per the changes (LP: #684077) - fix icon display that have a "." in it (LP: #745942) * softwarecenter/db/update.py, softwarecenter/view/appdetailsview_gtk.py, test/test_downloader.py: - fix screenshot issues for apps for purchase and update unit test (LP: #791932) [ Olivier Tilloy ] * softwarecenter/apt/apthistory.py: - fix startup crash if the history file is corrupted (LP: #725186) Date: Wed, 15 Jun 2011 22:35:43 -0400 Changed-By: Gary Lasker Maintainer: Michael Vogt Signed-By: Michael Vogt https://launchpad.net/ubuntu/maverick/+source/software-center/3.0.9 -------------- next part -------------- Format: 1.8 Date: Wed, 15 Jun 2011 22:35:43 -0400 Source: software-center Binary: software-center Architecture: source Version: 3.0.9 Distribution: maverick-proposed Urgency: low Maintainer: Michael Vogt Changed-By: Gary Lasker Description: software-center - Utility for browsing, installing, and removing applications Launchpad-Bugs-Fixed: 684077 725186 745942 791932 Changes: software-center (3.0.9) maverick-proposed; urgency=low . [ Gary Lasker ] * softwarecenter/db/update.py, test/test_appview.py, test/test_database.py: - track cataloged_time for items not in axi (e.g. for-purchase apps) so that they will show up in What's New, add/modify unit tests per the changes (LP: #684077) - fix icon display that have a "." in it (LP: #745942) * softwarecenter/db/update.py, softwarecenter/view/appdetailsview_gtk.py, test/test_downloader.py: - fix screenshot issues for apps for purchase and update unit test (LP: #791932) . [ Olivier Tilloy ] * softwarecenter/apt/apthistory.py: - fix startup crash if the history file is corrupted (LP: #725186) Checksums-Sha1: d852f15e2092c303891d7b128238a26529d31b5f 1021 software-center_3.0.9.dsc f15897aafeec4e207d50e7603130fb6e1d13a722 631462 software-center_3.0.9.tar.gz Checksums-Sha256: 2872a08d95814c53f2830e06530ccddcea41c5364eee43ebf7b023f4e38edd46 1021 software-center_3.0.9.dsc 2ce65859173fccb8635a3d0e35c9dff58d613e7f1366a69264fb002e25eeabb3 631462 software-center_3.0.9.tar.gz Files: 37265e7ddf7386f8510137e38c2d38b3 1021 gnome optional software-center_3.0.9.dsc 23e04a758e887b5b0e1a7d772678af64 631462 gnome optional software-center_3.0.9.tar.gz From brian.thomason at canonical.com Wed Jun 22 20:35:26 2011 From: brian.thomason at canonical.com (Brian Thomason) Date: Wed, 22 Jun 2011 20:35:26 -0000 Subject: [ubuntu/maverick] skype 2.2.0.35-0maverick1 (Accepted) Message-ID: <20110622203526.14546.12104.launchpad@cocoplum.canonical.com> skype (2.2.0.35-0maverick1) maverick; urgency=low * Initial release of 2.2.0.35 for Maverick Date: Wed, 22 Jun 2011 20:27:18 +0000 Changed-By: Brian Thomason https://launchpad.net/ubuntu/maverick/+source/skype/2.2.0.35-0maverick1 -------------- next part -------------- -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Wed, 22 Jun 2011 20:27:18 +0000 Source: skype Binary: skype Architecture: source Version: 2.2.0.35-0maverick1 Distribution: maverick Urgency: low Maintainer: Brian Thomason Changed-By: Brian Thomason Description: skype - VOIP and instant messaging client Changes: skype (2.2.0.35-0maverick1) maverick; urgency=low . * Initial release of 2.2.0.35 for Maverick Checksums-Sha1: dae56240e84955e8460a49fe124228bbe1d8b745 1152 skype_2.2.0.35-0maverick1.dsc 445ac52723e7ddcc3cdaa59051373204b96d45a5 1580 skype_2.2.0.35-0maverick1.diff.gz Checksums-Sha256: 98b087fd68c6380ece8851bdd9c5d0cec419ca6cc14181e990f7c9ddea38d145 1152 skype_2.2.0.35-0maverick1.dsc d95de792d714be2ef90de66aacb167cb8b74ec612ea5f06b26a3d773eb1cb9d0 1580 skype_2.2.0.35-0maverick1.diff.gz Files: 6df5f1d07de065b817f26b241402dcd7 1152 partner/net extra skype_2.2.0.35-0maverick1.dsc 5ff19debf5dc8dc0a5aae301c80eb967 1580 partner/net extra skype_2.2.0.35-0maverick1.diff.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAk4CUJYACgkQOb4zNfJqN5dp6QCeNhFdgIPXvaX02YeZ5moPhPfX zpUAnidIw+GihzlxkBhy3kUKCy9CmZnr =ogUA -----END PGP SIGNATURE----- From sbeattie at ubuntu.com Thu Jun 23 23:03:40 2011 From: sbeattie at ubuntu.com (Steve Beattie) Date: Thu, 23 Jun 2011 23:03:40 -0000 Subject: [ubuntu/maverick-security] curl 7.21.0-1ubuntu1.1 (Accepted) Message-ID: <20110623230340.5694.55532.launchpad@cocoplum.canonical.com> curl (7.21.0-1ubuntu1.1) maverick-security; urgency=low * SECURITY UPDATE: libcurl unconditional credential delegation during GSSAPI authentication vulnerability. - debian/patches/0001-Curl_input_negotiate-do-not-delegate-credentials.patch: do not delegate credentials when doing GSSAPI authentication - CVE-2011-2192 Date: Wed, 08 Jun 2011 14:03:34 -0700 Changed-By: Steve Beattie Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/curl/7.21.0-1ubuntu1.1 -------------- next part -------------- Format: 1.8 Date: Wed, 08 Jun 2011 14:03:34 -0700 Source: curl Binary: curl libcurl3 libcurl3-gnutls libcurl4-openssl-dev libcurl4-gnutls-dev libcurl3-dbg Architecture: source Version: 7.21.0-1ubuntu1.1 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Steve Beattie Description: curl - Get a file from an HTTP, HTTPS or FTP server libcurl3 - Multi-protocol file transfer library (OpenSSL) libcurl3-dbg - libcurl compiled with debug symbols libcurl3-gnutls - Multi-protocol file transfer library (GnuTLS) libcurl4-gnutls-dev - Development files and documentation for libcurl (GnuTLS) libcurl4-openssl-dev - Development files and documentation for libcurl (OpenSSL) Changes: curl (7.21.0-1ubuntu1.1) maverick-security; urgency=low . * SECURITY UPDATE: libcurl unconditional credential delegation during GSSAPI authentication vulnerability. - debian/patches/0001-Curl_input_negotiate-do-not-delegate-credentials.patch: do not delegate credentials when doing GSSAPI authentication - CVE-2011-2192 Checksums-Sha1: d7c6b04cf5f7905c25c4555ca37c9c2b55b8ee62 2221 curl_7.21.0-1ubuntu1.1.dsc 0301569dd1412032c270576761a9b72dcd5d5c75 94329 curl_7.21.0-1ubuntu1.1.debian.tar.gz Checksums-Sha256: f05f740806f5ee829e2d01ffd015aa2e47bf0e91d1dc0e870a9c4e7645848adf 2221 curl_7.21.0-1ubuntu1.1.dsc 9844fc8433b0c2e78e9e0f0280027a790a6a9dcbdc1af7af0119013bba18ce53 94329 curl_7.21.0-1ubuntu1.1.debian.tar.gz Files: 2265b03f7cdeb53ec8856530013ce309 2221 web optional curl_7.21.0-1ubuntu1.1.dsc 4f311480f323491e4eeafcec816cacdf 94329 web optional curl_7.21.0-1ubuntu1.1.debian.tar.gz Original-Maintainer: Ramakrishnan Muthukrishnan From peter.petrakis at canonical.com Tue Jun 28 06:47:49 2011 From: peter.petrakis at canonical.com (Peter M. Petrakis) Date: Tue, 28 Jun 2011 06:47:49 -0000 Subject: [ubuntu/maverick-proposed] multipath-tools 0.4.8-14ubuntu4.10.10.1 (Accepted) Message-ID: <20110628064749.27625.60017.launchpad@gac.canonical.com> multipath-tools (0.4.8-14ubuntu4.10.10.1) maverick-proposed; urgency=high * Eliminate UDEV CHANGE events generated by mpath priority checkers. Due to quirk in how SG IO is handled by SD devices (LP: #644489). Date: Tue, 21 Jun 2011 14:13:12 -0400 Changed-By: Peter M. Petrakis Maintainer: Ubuntu Core Developers Signed-By: Serge Hallyn https://launchpad.net/ubuntu/maverick/+source/multipath-tools/0.4.8-14ubuntu4.10.10.1 -------------- next part -------------- Format: 1.8 Date: Tue, 21 Jun 2011 14:13:12 -0400 Source: multipath-tools Binary: multipath-tools kpartx multipath-tools-boot multipath-udeb Architecture: source Version: 0.4.8-14ubuntu4.10.10.1 Distribution: maverick-proposed Urgency: high Maintainer: Ubuntu Core Developers Changed-By: Peter M. Petrakis Description: kpartx - create device mappings for partitions multipath-tools - maintain multipath block device access multipath-tools-boot - Support booting from multipath devices multipath-udeb - maintain multipath block device access (udeb) Launchpad-Bugs-Fixed: 644489 Changes: multipath-tools (0.4.8-14ubuntu4.10.10.1) maverick-proposed; urgency=high . * Eliminate UDEV CHANGE events generated by mpath priority checkers. Due to quirk in how SG IO is handled by SD devices (LP: #644489). Checksums-Sha1: abea895c0b4d47aafb05f49a0b89dc6b7f8e1cad 1798 multipath-tools_0.4.8-14ubuntu4.10.10.1.dsc e538c62b14c993d392e3dddb823b06720378a8d0 202446 multipath-tools_0.4.8.orig.tar.gz da07dc085552b1abef83249362545ebb20933773 27725 multipath-tools_0.4.8-14ubuntu4.10.10.1.diff.gz Checksums-Sha256: 2ee583bae3de5a76a334eb6f2a5e38fc6a1171741c5da43966c5cb805ec91cca 1798 multipath-tools_0.4.8-14ubuntu4.10.10.1.dsc a3cb242717c907e287088df2b1f161b78bfd40193d0c3faf20c65825bb84a2a4 202446 multipath-tools_0.4.8.orig.tar.gz f43eb6a699f46c0ee0589a63b16ee81cf76f07f3a6b97cdada07a739c9704437 27725 multipath-tools_0.4.8-14ubuntu4.10.10.1.diff.gz Files: 23f309c8de6d7dbe8d1428019af03c36 1798 admin extra multipath-tools_0.4.8-14ubuntu4.10.10.1.dsc bf67b278e4b23da0c8ad21a278c04cb3 202446 admin extra multipath-tools_0.4.8.orig.tar.gz d90c27088a91173820d33faf6dce0c39 27725 admin extra multipath-tools_0.4.8-14ubuntu4.10.10.1.diff.gz Original-Maintainer: Debian LVM Team From brian.thomason at canonical.com Wed Jun 29 01:10:20 2011 From: brian.thomason at canonical.com (Brian Thomason) Date: Wed, 29 Jun 2011 01:10:20 -0000 Subject: [ubuntu/maverick] adobe-flashplugin 10.3.181.34-0maverick1 (Accepted) Message-ID: <20110629011020.4940.37187.launchpad@cocoplum.canonical.com> adobe-flashplugin (10.3.181.34-0maverick1) maverick; urgency=low * Initial release of 10.3.181.34 for Maverick Date: Tue, 28 Jun 2011 21:08:15 -0400 Changed-By: Brian Thomason Maintainer: DL-Flash Player Ubuntu https://launchpad.net/ubuntu/maverick/+source/adobe-flashplugin/10.3.181.34-0maverick1 -------------- next part -------------- -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 28 Jun 2011 21:08:15 -0400 Source: adobe-flashplugin Binary: adobe-flashplugin adobe-flash-properties-gtk adobe-flash-properties-kde Architecture: source Version: 10.3.181.34-0maverick1 Distribution: maverick Urgency: low Maintainer: DL-Flash Player Ubuntu Changed-By: Brian Thomason Description: adobe-flash-properties-gtk - GTK+ control panel for Adobe Flash Player plugin version 10 adobe-flash-properties-kde - KDE control panel Adobe Flash Player plugin version 10 adobe-flashplugin - Adobe Flash Player plugin version 10 Changes: adobe-flashplugin (10.3.181.34-0maverick1) maverick; urgency=low . * Initial release of 10.3.181.34 for Maverick Checksums-Sha1: ff4f441a3e05869421cd737d8fee26c099526b28 1270 adobe-flashplugin_10.3.181.34-0maverick1.dsc 7b5a9e6e8c91d99bc56a850f3ca56b8a953d2630 4421 adobe-flashplugin_10.3.181.34-0maverick1.diff.gz Checksums-Sha256: bc41febaa2d738307e09b2dfb4b4322d8f5b10f1067c4cc198c7f6c0ff2f4d9d 1270 adobe-flashplugin_10.3.181.34-0maverick1.dsc 392e49c9156b26b15cf504027dea6e9b7ce84afa2325f38e4a1afdf575fafdaf 4421 adobe-flashplugin_10.3.181.34-0maverick1.diff.gz Files: c1b72474287da23b5066ccacf0ae0706 1270 partner/web optional adobe-flashplugin_10.3.181.34-0maverick1.dsc 8da20626f67bcae7e78e970e0dabd6ab 4421 partner/web optional adobe-flashplugin_10.3.181.34-0maverick1.diff.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAk4KexUACgkQOb4zNfJqN5ffYQCff5jBBN4mz51yYukEllQV/8Wq 6h4AnjSFD+TKBkWRtI0tXJ+zJ0qQXlHZ =Kaf5 -----END PGP SIGNATURE----- From marc.deslauriers at ubuntu.com Thu Jun 30 16:03:42 2011 From: marc.deslauriers at ubuntu.com (Marc Deslauriers) Date: Thu, 30 Jun 2011 16:03:42 -0000 Subject: [ubuntu/maverick-security] flashplugin-nonfree, flashplugin-nonfree_10.3.181.34ubuntu0.10.10.1_amd64_translations.tar.gz, flashplugin-nonfree_10.3.181.34ubuntu0.10.10.1_i386_translations.tar.gz 10.3.181.34ubuntu0.10.10.1 (Accepted) Message-ID: <20110630160342.22650.39213.launchpad@cocoplum.canonical.com> flashplugin-nonfree (10.3.181.34ubuntu0.10.10.1) maverick-security; urgency=low * New upstream release 10.3.181.34 (LP: #803761) - debian/config, debian/postinst: Updated sha256sums and path. Date: Thu, 30 Jun 2011 15:24:17 +0100 Changed-By: Marc Deslauriers Maintainer: Ubuntu Developers https://launchpad.net/ubuntu/maverick/+source/flashplugin-nonfree/10.3.181.34ubuntu0.10.10.1 -------------- next part -------------- Format: 1.8 Date: Thu, 30 Jun 2011 15:24:17 +0100 Source: flashplugin-nonfree Binary: flashplugin-installer flashplugin-nonfree Architecture: source Version: 10.3.181.34ubuntu0.10.10.1 Distribution: maverick-security Urgency: low Maintainer: Ubuntu Developers Changed-By: Marc Deslauriers Description: flashplugin-installer - Adobe Flash Player plugin installer flashplugin-nonfree - Adobe Flash Player plugin installer (transitional package) Launchpad-Bugs-Fixed: 803761 Changes: flashplugin-nonfree (10.3.181.34ubuntu0.10.10.1) maverick-security; urgency=low . * New upstream release 10.3.181.34 (LP: #803761) - debian/config, debian/postinst: Updated sha256sums and path. Checksums-Sha1: 64866700ce0882175639a4d5f0302f2e1d86efef 1639 flashplugin-nonfree_10.3.181.34ubuntu0.10.10.1.dsc 6bdce927b6a55ec1b4bff5db8aeba16ff9963358 27544 flashplugin-nonfree_10.3.181.34ubuntu0.10.10.1.tar.gz Checksums-Sha256: 7072183223a2321304cee3172f7662d2ed983d42b4a24125c9f67f1aed4191fa 1639 flashplugin-nonfree_10.3.181.34ubuntu0.10.10.1.dsc 23f68cd62aac6efa819c7f1e900fa5d88af58e5d08dec506bdc77bf5963f0a91 27544 flashplugin-nonfree_10.3.181.34ubuntu0.10.10.1.tar.gz Files: de4d5cdd8c2804ce255377c73f112b8c 1639 contrib/web optional flashplugin-nonfree_10.3.181.34ubuntu0.10.10.1.dsc bc658d34d8e56fe99d9a4588b46a6208 27544 contrib/web optional flashplugin-nonfree_10.3.181.34ubuntu0.10.10.1.tar.gz Original-Maintainer: Bart Martens