[ubuntu-cloud] Refreshed Cloud Images of 12.04.1 LTS (Precise Pangolin) [20121218]

Ben Howard ben.howard at canonical.com
Tue Dec 18 22:47:09 UTC 2012 

A new release of the Ubuntu Cloud Images for stable Ubuntu release
12.04.1 LTS (Precise Pangolin) is available at [1]. These new images
superseded the existing images [2]. Images are available for download or
immediate use on EC2 via publish AMI ids. Users who wish to update their
existing installations can do so with:
   'apt-get update && sudo apt-get dist-upgrade && reboot'.

The Linux kernel was updated from 3.2.0-32.51 [3] to 3.2.0-35.55 [4]

The following packages have been updated. Please see the full changelogs
for a complete listing of changes:
 * apparmor: 2.7.102-0ubuntu3.2 => 2.7.102-0ubuntu3.5
 * apport: 2.0.1-0ubuntu14 => 2.0.1-0ubuntu15.1
 * apt: 0.8.16~exp12ubuntu10.5 => 0.8.16~exp12ubuntu10.7
 * aptitude: 0.6.6-1ubuntu1 => 0.6.6-1ubuntu1.1
 * base-files: 6.5ubuntu6.2 => 6.5ubuntu6.4
 * bind9: 1:9.8.1.dfsg.P1-4ubuntu0.4 => 1:9.8.1.dfsg.P1-4ubuntu0.5
 * busybox: 1:1.18.5-1ubuntu4 => 1:1.18.5-1ubuntu4.1
 * cloud-init: 0.6.3-0ubuntu1 => 0.6.3-0ubuntu1.1
 * coreutils: 8.13-3ubuntu3.1 => 8.13-3ubuntu3.2
 * libxml2: 2.7.8.dfsg-5.1ubuntu4.2 => 2.7.8.dfsg-5.1ubuntu4.3
 * linux-meta: 3.2.0.32.35 => 3.2.0.35.40
 * linux: 3.2.0-32.51 => 3.2.0-35.55
 * perl: 5.14.2-6ubuntu2.1 => 5.14.2-6ubuntu2.2
 * python-keyring: 0.7.1-1fakesync1 => 0.9.2-0ubuntu0.12.04.2
 * udev: 175-0ubuntu9.1 => 175-0ubuntu9.2

CVE Updates:
 * apt
     - change permissions of /var/log/apt/term.log (CVE-2012-0961)
 * bind9
     - denial of service via DNS64 and crafted query (CVE-2012-5688)
 * libxml2
     - buffer underflow in xmlParseAttValueComplex (CVE-2012-5134)
 * perl
     - Heap overflow in "x" operator (CVE-2012-5195)
     - CGI.pm improper cookie and p3p CRLF escaping (CVE-2012-5526)



--
[1] http://cloud-images.ubuntu.com/releases/precise/release-20121218/
[2] http://cloud-images.ubuntu.com/releases/precise/release-20121026.1/
[3]
http://changelogs.ubuntu.com/changelogs/pool/main/l/linux/linux_3.2.0-32.51/changelog
[4]
http://changelogs.ubuntu.com/changelogs/pool/main/l/linux/linux_3.2.0-35.55/changelog

-- 


Ben Howard
ben.howard at canonical.com
Canonical
GPG ID 0x5406A866



-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/ubuntu-cloud/attachments/20121218/f0411fb0/attachment.pgp>

More information about the Ubuntu-cloud mailing list