[ubuntu/precise-security] apport 2.0.1-0ubuntu17.6 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Thu Oct 24 16:34:49 UTC 2013 

apport (2.0.1-0ubuntu17.6) precise-security; urgency=low

  * SECURITY UPDATE: incorrect permissions on setuid process core dumps
    (LP: #1242435)
    - use correct permissions when writing the core file in data/apport,
      added test to test/test_signal_crashes.py.
    - Thanks to Martin Pitt for the patch!
    - CVE-2013-1067

apport (2.0.1-0ubuntu17.5) precise-proposed; urgency=low

  * fix up apport reporting for linux-lts-raring kernels (LP: #1229611)
   - generalise linux-meta* to linux* mapping so we do not have to add
     each backport kernel explicitly.
   - remove linux-lts-quantal hack which was introduced for when packages
     were shipped via the x-swap PPA and so there was no real source
     package in the archive.
   - add links for linux-lts-raring to the package to map those to
     the source_linux.py hooks.
   - add links for linux-lts-saucy to the package to map those to
     the source_linux.py hooks.

apport (2.0.1-0ubuntu17.4) precise-proposed; urgency=low

  * Enable suid_dumpable (core dumps of setuid binaries). This has
    always been safe for us, as we set a core pipe handler, but the
    kernel now protects against one not being set:
    http://kernel.ubuntu.com/git?p=ubuntu/ubuntu-
    raring.git;a=blob;f=Documentation/sysctl/fs.txt;h=88152f214f48cb69c6
    43d4bf2ff2ac9a61ad2eb0;hb=HEAD (LP: #1194541).

apport (2.0.1-0ubuntu17.3) precise-proposed; urgency=low

  * data/general-hooks/ubuntu.py: For package installation failures, build a
    DuplicateSignature from the package, version, and dpkg ErrorMessage,
    instead of using the whole dpkg terminal log. (LP: #1185515)

apport (2.0.1-0ubuntu17.2) precise-proposed; urgency=low

  * data/general-hooks/cloud_archive.py,
    etc/apport/crashdb.conf.d/cloud-archive.conf: Add general hook and CrashDB
    configuration to redirect bug reports from packages from the Ubuntu Cloud
    Archive to the cloud-archive project on Launchpad (LP: #1168009).

apport (2.0.1-0ubuntu17.1) precise-proposed; urgency=low

  * bin/apport-bug: Explicitly set the PATH to that of ENV_SUPATH in
    /etc/login.defs and unset ENV and CDPATH. We need do this so that confined
    applications using ubuntu-browsers.d/ubuntu-integration cannot abuse the
    environment to escape AppArmor confinement via this script (LP: #1045986).

apport (2.0.1-0ubuntu17) precise-proposed; urgency=low

  * Fix OSError crash in mark_report_upload(); regression from
    2.0.1-0ubuntu16.

apport (2.0.1-0ubuntu16) precise-proposed; urgency=low

  * Ignore implausibly low addresses when computing
    StacktraceAddressSignature.  These are usually artifacts from gdb when not
    having debug symbols, and having too many of them prevents proper
    client-side duplicate detection and proper bucketing in daisy.
    Backported from trunk r2541. (LP: #1084996)
  * mark_report_upload(): Refresh the .upload stamps if a previous version of
    the report was already uploaded, but another instance of the problem
    happened since then. Thanks Brian Murray. Backported from trunk r2540.
    (LP: #1084296)

Date: 2013-10-24 12:23:14.723039+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Maintainer: Martin Pitt <martin.pitt at ubuntu.com>
https://launchpad.net/ubuntu/precise/+source/apport/2.0.1-0ubuntu17.6
-------------- next part --------------
Sorry, changesfile not available.

More information about the Precise-changes mailing list