[ubuntu/precise-security] update-manager_0.156.14.4_amd64_translations.tar.gz, update-manager_0.156.14.4_powerpc_translations.tar.gz, update-manager, update-manager_0.156.14.4_armhf_translations.tar.gz, update-manager_0.156.14.4_armel_translations.tar.gz, update-manager_0.156.14.4_i386_translations.tar.gz, dist-upgrader_0.156.14.4_all.tar.gz 1:0.156.14.4 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Thu May 17 18:33:48 UTC 2012
update-manager (1:0.156.14.4) precise-security; urgency=low
* SECURITY UPDATE: Incorrect permissions on system_state archive may
expose repo passwords (LP: #954483)
- DistUpgrade/DistUpgradeMain.py: create file with proper permissions.
- debian/update-manager-core.postinst: clean up permissions on existing
files.
- CVE-2012-0948
* SECURITY UPDATE: Apport hook may upload system_state archive containing
repo passwords (LP: #954483)
- debian/source_update-manager.py: don't upload system_state archives.
- CVE-2012-0949
* This package does _not_ contain the changes from (1:0.156.14.2) in
precise-proposed.
Date: Tue, 15 May 2012 08:13:39 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Michael Vogt <michael.vogt at ubuntu.com>
https://launchpad.net/ubuntu/precise/+source/update-manager/1:0.156.14.4
-------------- next part --------------
Format: 1.8
Date: Tue, 15 May 2012 08:13:39 -0400
Source: update-manager
Binary: update-manager-core update-manager update-manager-text update-manager-kde auto-upgrade-tester
Architecture: source
Version: 1:0.156.14.4
Distribution: precise-security
Urgency: low
Maintainer: Michael Vogt <michael.vogt at ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
auto-upgrade-tester - Test release upgrades in a virtual environment
update-manager - GNOME application that manages apt updates
update-manager-core - manage release upgrades
update-manager-kde - Support modules for Muon Notifier and Apper
update-manager-text - Text application that manages apt updates
Launchpad-Bugs-Fixed: 954483
Changes:
update-manager (1:0.156.14.4) precise-security; urgency=low
.
* SECURITY UPDATE: Incorrect permissions on system_state archive may
expose repo passwords (LP: #954483)
- DistUpgrade/DistUpgradeMain.py: create file with proper permissions.
- debian/update-manager-core.postinst: clean up permissions on existing
files.
- CVE-2012-0948
* SECURITY UPDATE: Apport hook may upload system_state archive containing
repo passwords (LP: #954483)
- debian/source_update-manager.py: don't upload system_state archives.
- CVE-2012-0949
* This package does _not_ contain the changes from (1:0.156.14.2) in
precise-proposed.
Checksums-Sha1:
4da4cad88c70cbfa2ece4fe6d51e98809061d751 1976 update-manager_0.156.14.4.dsc
fd8682c3525ce9f87aff75dfb233305717b8d082 3270123 update-manager_0.156.14.4.tar.gz
Checksums-Sha256:
54a66ea0e7cb985a35f2cbb746572ab000bc8a02e5b3264bcf14b3cac641046f 1976 update-manager_0.156.14.4.dsc
bd9956ff03c48c700dbb24919ccc0e9784cceab1c528dd3dfab70c27e492961b 3270123 update-manager_0.156.14.4.tar.gz
Files:
d619b621e3aca6e64ecac339a5eb71dc 1976 gnome optional update-manager_0.156.14.4.dsc
edb37d763fb5efd28d2cf63eed75abd9 3270123 gnome optional update-manager_0.156.14.4.tar.gz
More information about the Precise-changes
mailing list