[ubuntu/trusty-updates] apport 2.14.1-0ubuntu3.9 (Accepted)

Ubuntu Archive Robot cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Tue Apr 14 14:28:13 UTC 2015


apport (2.14.1-0ubuntu3.9) trusty-security; urgency=medium

  * SECURITY UPDATE: privilege escalation through namespaces and crafted
    chroot (LP: #1438345)
    - data/apport: If crash comes from a container, rather than
      chrooting into it, detect what LXC container it is and then use the
      attach_wait API call to execute apport in the container.
    - data/apport: Don't fail when encountering unicode characters.
      (Thanks to Martin Pitt)
    - test/test_signal_crashes.py: Test for the unicode fix.
      (Thanks to Martin Pitt)
    - CVE-2015-1318

Date: 2015-04-10 12:17:15.529944+00:00
Changed-By: Stéphane Graber <stgraber at stgraber.org>
Maintainer: Martin Pitt <martin.pitt at ubuntu.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/apport/2.14.1-0ubuntu3.9
-------------- next part --------------
Sorry, changesfile not available.


More information about the Trusty-changes mailing list