[ubuntu/maverick-security] update-notifier_0.105ubuntu1.1_powerpc_translations.tar.gz, update-notifier_0.105ubuntu1.1_i386_translations.tar.gz, update-notifier_0.105ubuntu1.1_amd64_translations.tar.gz, update-notifier, update-notifier_0.105ubuntu1.1_armel_translations.tar.gz 0.105ubuntu1.1 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Mon Nov 28 16:04:45 UTC 2011 

update-notifier (0.105ubuntu1.1) maverick-security; urgency=low

  * SECURITY UPDATE: hotfix for arbitrary code execution via directory
    traversal in update-manager on iso media (LP: #881548)
    - data/cddistupgrader: patch update-manager that is pulled off an
      upgrade cd.
    - debian/update-manager-downloader-fix2.diff: hotfix to verify
      signature before unpacking the tarball in
      UpdateManager/Core/DistUpgradeFetcherCore.py.
    - debian/update-notifier-common.*: ship new hotfix in package.
    - CVE-2011-3152

Date: Thu, 24 Nov 2011 12:58:59 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Michael Vogt <michael.vogt at ubuntu.com>
https://launchpad.net/ubuntu/maverick/+source/update-notifier/0.105ubuntu1.1
-------------- next part --------------
Format: 1.8
Date: Thu, 24 Nov 2011 12:58:59 -0500
Source: update-notifier
Binary: update-notifier update-notifier-common
Architecture: source
Version: 0.105ubuntu1.1
Distribution: maverick-security
Urgency: low
Maintainer: Michael Vogt <michael.vogt at ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 update-notifier - Daemon which notifies about package updates
 update-notifier-common - Files shared between update-notifier and adept
Launchpad-Bugs-Fixed: 881548
Changes: 
 update-notifier (0.105ubuntu1.1) maverick-security; urgency=low
 .
   * SECURITY UPDATE: hotfix for arbitrary code execution via directory
     traversal in update-manager on iso media (LP: #881548)
     - data/cddistupgrader: patch update-manager that is pulled off an
       upgrade cd.
     - debian/update-manager-downloader-fix2.diff: hotfix to verify
       signature before unpacking the tarball in
       UpdateManager/Core/DistUpgradeFetcherCore.py.
     - debian/update-notifier-common.*: ship new hotfix in package.
     - CVE-2011-3152
Checksums-Sha1: 
 0212b24e6cdfcc977207661f4ecf7a3ce3e9dbea 1707 update-notifier_0.105ubuntu1.1.dsc
 f3df23a218ee51194733ddf1613c472cde525a08 247026 update-notifier_0.105ubuntu1.1.tar.gz
Checksums-Sha256: 
 7a2841604c69d4e24502750523b710342ca09c501962b4fae0f260935f7a64b7 1707 update-notifier_0.105ubuntu1.1.dsc
 c30b7ea65c64cd418fad90e593969d875e5006a5db3802b7ee7aa0b348b410ee 247026 update-notifier_0.105ubuntu1.1.tar.gz
Files: 
 08e85043ec57394f3420e2ceba15ca51 1707 gnome optional update-notifier_0.105ubuntu1.1.dsc
 a36dc34c629996a6aa169bc019d0090e 247026 gnome optional update-notifier_0.105ubuntu1.1.tar.gz

More information about the Maverick-changes mailing list