[ubuntu-cloud] Refreshed Cloud Images of 12.04.1 LTS (Precise Pangolin) [20121001]

Tue Oct 2 17:09:07 UTC 2012

A new release of the Ubuntu Cloud Images for stable Ubuntu release
12.04.1 LTS (Precise Pangolin) is available at [1]. These new images
superseded the existing images [2]. Images are available for download or
immediate use on EC2 via publish AMI ids. Users who wish to update their
existing installations can do so with:
   'apt-get update && sudo apt-get dist-upgrade && reboot'.

The Linux kernel was updated from 3.2.0-29.46 [3] to 3.2.0-31.50 [4]

One notable change is the "recordfail" timeout for Grub2 is now
parameterizable. The recordfail setting dictates how long the Grub
prompt will wait for user input after a failed boot; the primary purpose
of this setting is to prevent reboot loops caused a kernel upgrade
failure. However, this setting has caused problems with fully-virtual
remote instances and appliances where the Grub console is not available
when an instance fails to boot due to power-failures or when an instance
is terminated before boot completes. This behavior change only affects
instances which boot via Grub2 (i.e. KVM, OpenStack and EC2 HVM Cluster
Computer instances) and does _not_ affect EC2 instance-store or EBS
instance types. See [5, 6]. 

After applying updates, any user of Ubuntu 12.04.1 LTS and the
development version can set the recordfail setting by running (replace
the '5' with the desired timeout in seconds):
    echo "GRUB_RECORDFAIL_TIMEOUT=5" | sudo tee -a /etc/grub/default
    sudo update-grub

The following packages have been updated. Please see the full changelogs
for a complete listing of changes:
 * apport: 2.0.1-0ubuntu12 => 2.0.1-0ubuntu13
 * apt: 0.8.16~exp12ubuntu10.2 => 0.8.16~exp12ubuntu10.3
 * bind9: 1:9.8.1.dfsg.P1-4ubuntu0.2 => 1:9.8.1.dfsg.P1-4ubuntu0.3
 * dbus: 1.4.18-1ubuntu1 => 1.4.18-1ubuntu1.1
 * gnupg: 1.4.11-3ubuntu2 => 1.4.11-3ubuntu2.1
 * grub2: 1.99-21ubuntu3.1 => 1.99-21ubuntu3.4
 * isc-dhcp: 4.1.ESV-R4-0ubuntu5.2 => 4.1.ESV-R4-0ubuntu5.5
 * libgc: 1:7.1-8build1 => 1:7.1-8ubuntu0.12.04.1
 * libxml2: 2.7.8.dfsg-5.1ubuntu4.1 => 2.7.8.dfsg-5.1ubuntu4.2
 * linux-firmware: 1.79 => 1.79.1
 * linux-meta: 3.2.0.29.31 => 3.2.0.31.34
 * linux: 3.2.0-29.46 => 3.2.0-31.50
 * openssl: 1.0.1-4ubuntu5.3 => 1.0.1-4ubuntu5.5
 * resolvconf: 1.63ubuntu15 => 1.63ubuntu16
 * tzdata: 2012e-0ubuntu0.12.04 => 2012e-0ubuntu0.12.04.1
 * ubuntu-keyring: 2011.11.21 => 2011.11.21.1

CVE Updates:
 * bind9
    - denial of service via large crafted resource record (CVE-2012-4244)
 * dbus
    - privilege escalation via unsanitized environment (CVE-2012-3524)
 * isc-dhcp
    - denial of service via ipv6 lease expiration time reduction
(CVE-2012-3955)
 * libgc
    - multiple integer overflows (CVE-2012-2673)
 * libxml2
     - denial of service and possible code execution (CVE-2012-2807)

--
[1] http://cloud-images.ubuntu.com/releases/precise/release-20121001/
[2] http://cloud-images.ubuntu.com/releases/precise/release-20120822/
[3]
http://changelogs.ubuntu.com/changelogs/pool/main/l/linux/linux_3.2.0-29.46/changelog
[4]
http://changelogs.ubuntu.com/changelogs/pool/main/l/linux/linux_3.2.0-31.50/changelog
[5] https://bugs.launchpad.net/ubuntu/+source/grub2/+bug/669481
[6]
http://changelogs.ubuntu.com/changelogs/pool/main/g/grub2/grub2_1.99-21ubuntu3.4/changelog

-- 

Ben Howard
ben.howard at canonical.com
Canonical
GPG ID 0x5406A866

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/ubuntu-cloud/attachments/20121002/33fcb9bd/attachment.pgp>