Author: Ubuntu Git Importer
Author Date: 2020-05-21 13:47:39 UTC

DSC file for 2.20.9-0ubuntu7.15

Author: Brian Murray
Author Date: 2020-05-13 22:12:14 UTC

2.20.9-0ubuntu7.15 (patches unapplied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-13 22:12:14 UTC

2.20.9-0ubuntu7.15 (patches applied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-13 22:12:14 UTC

2.20.9-0ubuntu7.15 (patches applied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-13 22:12:14 UTC

2.20.9-0ubuntu7.15 (patches applied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-13 22:12:14 UTC

2.20.9-0ubuntu7.15 (patches unapplied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-13 22:12:14 UTC

2.20.9-0ubuntu7.15 (patches unapplied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-13 21:09:52 UTC

2.20.11-0ubuntu8.9 (patches applied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-13 21:09:52 UTC

2.20.11-0ubuntu8.9 (patches unapplied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-13 21:09:52 UTC

2.20.11-0ubuntu8.9 (patches unapplied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-13 21:09:52 UTC

2.20.11-0ubuntu8.9 (patches applied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-13 21:09:52 UTC

2.20.11-0ubuntu8.9 (patches applied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-13 21:09:52 UTC

2.20.11-0ubuntu8.9 (patches unapplied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-12 22:34:22 UTC

2.20.11-0ubuntu27.2 (patches unapplied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-12 22:34:22 UTC

2.20.11-0ubuntu27.2 (patches unapplied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-12 22:34:22 UTC

2.20.11-0ubuntu27.2 (patches unapplied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-12 22:34:22 UTC

2.20.11-0ubuntu27.2 (patches applied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-12 22:34:22 UTC

2.20.11-0ubuntu27.2 (patches applied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-05-12 22:34:22 UTC

2.20.11-0ubuntu27.2 (patches applied)

Imported using git-ubuntu import.

Author: Steve Langasek
Author Date: 2020-05-20 15:18:11 UTC

2.20.11-0ubuntu36 (patches unapplied)

Imported using git-ubuntu import.

Author: Steve Langasek
Author Date: 2020-05-20 15:18:11 UTC

2.20.11-0ubuntu36 (patches applied)

Imported using git-ubuntu import.

Author: Steve Langasek
Author Date: 2020-05-20 15:18:11 UTC

2.20.11-0ubuntu36 (patches applied)

Imported using git-ubuntu import.

Author: Steve Langasek
Author Date: 2020-05-20 15:18:11 UTC

2.20.11-0ubuntu36 (patches unapplied)

Imported using git-ubuntu import.

Author: Steve Langasek
Author Date: 2020-05-20 15:18:11 UTC

2.20.11-0ubuntu36 (patches applied)

Imported using git-ubuntu import.

Author: Steve Langasek
Author Date: 2020-05-20 15:18:11 UTC

2.20.11-0ubuntu36 (patches unapplied)

Imported using git-ubuntu import.

Author: Steve Langasek
Author Date: 2020-05-20 15:18:11 UTC

2.20.11-0ubuntu36 (patches applied)

Imported using git-ubuntu import.

Author: Steve Langasek
Author Date: 2020-05-20 15:18:11 UTC

2.20.11-0ubuntu36 (patches unapplied)

Imported using git-ubuntu import.

Author: Brian Murray
Author Date: 2020-04-15 17:01:49 UTC

Import patches-unapplied version 2.20.11-0ubuntu27 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: a28b9fcde7603464205105be8fe825a16b7fc0c5

New changelog entries:
  * backends/packaging-apt-dpkg.py, apport/sandboxutils.py: Add modifications
    to the retracing process to resolve failures to retrace due to user merge
    changes.
  * etc/apport/crashdb.conf: Disable Launchpad crash reports for 20.04
    release.

Author: Brian Murray
Author Date: 2020-04-15 17:01:49 UTC

Import patches-applied version 2.20.11-0ubuntu27 to applied/ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 86acbda0c8bd653236253451314cc0c8aa8e7949
Unapplied parent: f333d76b5f7a959e39777d6c8482eff62c6d5397

New changelog entries:
  * backends/packaging-apt-dpkg.py, apport/sandboxutils.py: Add modifications
    to the retracing process to resolve failures to retrace due to user merge
    changes.
  * etc/apport/crashdb.conf: Disable Launchpad crash reports for 20.04
    release.

Author: Alex Murray
Author Date: 2020-03-25 11:50:41 UTC

Import patches-applied version 2.20.1-0ubuntu2.23 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 5662498e78ce7cc8a57a725adbc558349fbf9c0b
Unapplied parent: e6572282550ec06c27d27e33d07892b3e7733f7a

New changelog entries:
  * SECURITY UPDATE: World writable root owned lock file created in user
    controllable location (LP: #1862348)
    - data/apport: Change location of lock file to be directly under
      /var/run so that regular users can not directly access it or perform
      symlink attacks.
    - CVE-2020-8831
  * SECURITY UPDATE: Race condition between report creation and ownership
    (LP: #1862933)
    - data/apport: When setting owner of report file use a file-descriptor
      to the report file instead of its path name to ensure that users can
      not cause Apport to change the ownership of other files via a
      symlink attack.
    - CVE-2020-8833

Author: Alex Murray
Author Date: 2020-03-25 11:50:41 UTC

Import patches-applied version 2.20.1-0ubuntu2.23 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 5662498e78ce7cc8a57a725adbc558349fbf9c0b
Unapplied parent: e6572282550ec06c27d27e33d07892b3e7733f7a

New changelog entries:
  * SECURITY UPDATE: World writable root owned lock file created in user
    controllable location (LP: #1862348)
    - data/apport: Change location of lock file to be directly under
      /var/run so that regular users can not directly access it or perform
      symlink attacks.
    - CVE-2020-8831
  * SECURITY UPDATE: Race condition between report creation and ownership
    (LP: #1862933)
    - data/apport: When setting owner of report file use a file-descriptor
      to the report file instead of its path name to ensure that users can
      not cause Apport to change the ownership of other files via a
      symlink attack.
    - CVE-2020-8833

Author: Alex Murray
Author Date: 2020-03-25 11:50:41 UTC

Import patches-applied version 2.20.1-0ubuntu2.23 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 5662498e78ce7cc8a57a725adbc558349fbf9c0b
Unapplied parent: e6572282550ec06c27d27e33d07892b3e7733f7a

New changelog entries:
  * SECURITY UPDATE: World writable root owned lock file created in user
    controllable location (LP: #1862348)
    - data/apport: Change location of lock file to be directly under
      /var/run so that regular users can not directly access it or perform
      symlink attacks.
    - CVE-2020-8831
  * SECURITY UPDATE: Race condition between report creation and ownership
    (LP: #1862933)
    - data/apport: When setting owner of report file use a file-descriptor
      to the report file instead of its path name to ensure that users can
      not cause Apport to change the ownership of other files via a
      symlink attack.
    - CVE-2020-8833

Author: Alex Murray
Author Date: 2020-03-25 11:50:41 UTC

Import patches-unapplied version 2.20.1-0ubuntu2.23 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: ec9d47920850cb82eb8d3799c3b5b196ce91945c

New changelog entries:
  * SECURITY UPDATE: World writable root owned lock file created in user
    controllable location (LP: #1862348)
    - data/apport: Change location of lock file to be directly under
      /var/run so that regular users can not directly access it or perform
      symlink attacks.
    - CVE-2020-8831
  * SECURITY UPDATE: Race condition between report creation and ownership
    (LP: #1862933)
    - data/apport: When setting owner of report file use a file-descriptor
      to the report file instead of its path name to ensure that users can
      not cause Apport to change the ownership of other files via a
      symlink attack.
    - CVE-2020-8833

Author: Alex Murray
Author Date: 2020-03-25 11:50:41 UTC

Import patches-unapplied version 2.20.1-0ubuntu2.23 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: ec9d47920850cb82eb8d3799c3b5b196ce91945c

New changelog entries:
  * SECURITY UPDATE: World writable root owned lock file created in user
    controllable location (LP: #1862348)
    - data/apport: Change location of lock file to be directly under
      /var/run so that regular users can not directly access it or perform
      symlink attacks.
    - CVE-2020-8831
  * SECURITY UPDATE: Race condition between report creation and ownership
    (LP: #1862933)
    - data/apport: When setting owner of report file use a file-descriptor
      to the report file instead of its path name to ensure that users can
      not cause Apport to change the ownership of other files via a
      symlink attack.
    - CVE-2020-8833

Author: Alex Murray
Author Date: 2020-03-25 11:50:41 UTC

Import patches-unapplied version 2.20.1-0ubuntu2.23 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: ec9d47920850cb82eb8d3799c3b5b196ce91945c

New changelog entries:
  * SECURITY UPDATE: World writable root owned lock file created in user
    controllable location (LP: #1862348)
    - data/apport: Change location of lock file to be directly under
      /var/run so that regular users can not directly access it or perform
      symlink attacks.
    - CVE-2020-8831
  * SECURITY UPDATE: Race condition between report creation and ownership
    (LP: #1862933)
    - data/apport: When setting owner of report file use a file-descriptor
      to the report file instead of its path name to ensure that users can
      not cause Apport to change the ownership of other files via a
      symlink attack.
    - CVE-2020-8833

Author: Alex Murray
Author Date: 2020-03-25 11:47:13 UTC

Import patches-applied version 2.20.9-0ubuntu7.14 to applied/ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: ba257fbc28a6d16746fea1d6e9752917899ea999
Unapplied parent: a75beeffad3f46277913b9fea19c6fe630279f54

New changelog entries:
  * SECURITY UPDATE: World writable root owned lock file created in user
    controllable location (LP: #1862348)
    - data/apport: Change location of lock file to be directly under
      /var/run so that regular users can not directly access it or perform
      symlink attacks.
    - CVE-2020-8831
  * SECURITY UPDATE: Race condition between report creation and ownership
    (LP: #1862933)
    - data/apport: When setting owner of report file use a file-descriptor
      to the report file instead of its path name to ensure that users can
      not cause Apport to change the ownership of other files via a
      symlink attack.
    - CVE-2020-8833

Author: Alex Murray
Author Date: 2020-03-25 11:47:13 UTC

Import patches-unapplied version 2.20.9-0ubuntu7.14 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 68af7404cceab95a99c6f4d1a38bcbf483ee6768

New changelog entries:
  * SECURITY UPDATE: World writable root owned lock file created in user
    controllable location (LP: #1862348)
    - data/apport: Change location of lock file to be directly under
      /var/run so that regular users can not directly access it or perform
      symlink attacks.
    - CVE-2020-8831
  * SECURITY UPDATE: Race condition between report creation and ownership
    (LP: #1862933)
    - data/apport: When setting owner of report file use a file-descriptor
      to the report file instead of its path name to ensure that users can
      not cause Apport to change the ownership of other files via a
      symlink attack.
    - CVE-2020-8833

Author: Alex Murray
Author Date: 2020-03-25 11:40:00 UTC

Import patches-applied version 2.20.11-0ubuntu8.8 to applied/ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: c53cc66b7e84326e91e1dd7a098358b35b10ad3c
Unapplied parent: d77c15e2bd3d26b7abe760c274ab733bb013a6ba

New changelog entries:
  * SECURITY UPDATE: World writable root owned lock file created in user
    controllable location (LP: #1862348)
    - data/apport: Change location of lock file to be directly under
      /var/run so that regular users can not directly access it or perform
      symlink attacks.
    - CVE-2020-8831
  * SECURITY UPDATE: Race condition between report creation and ownership
    (LP: #1862933)
    - data/apport: When setting owner of report file use a file-descriptor
      to the report file instead of its path name to ensure that users can
      not cause Apport to change the ownership of other files via a
      symlink attack.
    - CVE-2020-8833

Author: Alex Murray
Author Date: 2020-03-25 11:40:00 UTC

Import patches-unapplied version 2.20.11-0ubuntu8.8 to ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: 56a0c64b39ed831627bbefb9890474a642556343

New changelog entries:
  * SECURITY UPDATE: World writable root owned lock file created in user
    controllable location (LP: #1862348)
    - data/apport: Change location of lock file to be directly under
      /var/run so that regular users can not directly access it or perform
      symlink attacks.
    - CVE-2020-8831
  * SECURITY UPDATE: Race condition between report creation and ownership
    (LP: #1862933)
    - data/apport: When setting owner of report file use a file-descriptor
      to the report file instead of its path name to ensure that users can
      not cause Apport to change the ownership of other files via a
      symlink attack.
    - CVE-2020-8833

Author: Alex Murray
Author Date: 2020-03-25 11:28:58 UTC

Import patches-applied version 2.20.11-0ubuntu22 to applied/ubuntu/focal-security

Imported using git-ubuntu import.

Changelog parent: 593399557d2bef760072043aa2eb2ea228b9be46
Unapplied parent: 5d0f215248a9a0a8e25f7febbc64d3a277ca8e3c

New changelog entries:
  * SECURITY UPDATE: World writable root owned lock file created in user
    controllable location (LP: #1862348)
    - data/apport: Change location of lock file to be directly under
      /var/run so that regular users can not directly access it or perform
      symlink attacks.
    - CVE-2020-8831
  * SECURITY UPDATE: Race condition between report creation and ownership
    (LP: #1862933)
    - data/apport: When setting owner of report file use a file-descriptor
      to the report file instead of its path name to ensure that users can
      not cause Apport to change the ownership of other files via a
      symlink attack.
    - CVE-2020-8833

Author: Alex Murray
Author Date: 2020-03-25 11:28:58 UTC

Import patches-unapplied version 2.20.11-0ubuntu22 to ubuntu/focal-security

Imported using git-ubuntu import.

Changelog parent: 0cf82a4a5aee5277052a767321034f3ed8aa243e

New changelog entries:
  * SECURITY UPDATE: World writable root owned lock file created in user
    controllable location (LP: #1862348)
    - data/apport: Change location of lock file to be directly under
      /var/run so that regular users can not directly access it or perform
      symlink attacks.
    - CVE-2020-8831
  * SECURITY UPDATE: Race condition between report creation and ownership
    (LP: #1862933)
    - data/apport: When setting owner of report file use a file-descriptor
      to the report file instead of its path name to ensure that users can
      not cause Apport to change the ownership of other files via a
      symlink attack.
    - CVE-2020-8833

Author: dann frazier
Author Date: 2019-11-13 22:12:24 UTC

Import patches-unapplied version 2.20.10-0ubuntu27.4 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 3092832dd4fe053ad2b2784ae569c2360e7ab3fa

New changelog entries:
  * Use an SRU-safe substring when checking for the available version of
    aspell-doc in xenial, since aspell *did* have an SRU. Backported
    from apport 2.20.11-0ubuntu9. (LP: #1851542)

Author: dann frazier
Author Date: 2019-11-13 22:12:24 UTC

Import patches-applied version 2.20.10-0ubuntu27.4 to applied/ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 8424ba1273c579c1afe8b7136abb4207136525aa
Unapplied parent: 102ea45d0800dc527414aa047e9ce0c8e0fa9702

New changelog entries:
  * Use an SRU-safe substring when checking for the available version of
    aspell-doc in xenial, since aspell *did* have an SRU. Backported
    from apport 2.20.11-0ubuntu9. (LP: #1851542)

Author: dann frazier
Author Date: 2019-11-13 22:12:24 UTC

Import patches-applied version 2.20.10-0ubuntu27.4 to applied/ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 8424ba1273c579c1afe8b7136abb4207136525aa
Unapplied parent: 102ea45d0800dc527414aa047e9ce0c8e0fa9702

New changelog entries:
  * Use an SRU-safe substring when checking for the available version of
    aspell-doc in xenial, since aspell *did* have an SRU. Backported
    from apport 2.20.11-0ubuntu9. (LP: #1851542)

Author: dann frazier
Author Date: 2019-11-13 22:12:24 UTC

Import patches-unapplied version 2.20.10-0ubuntu27.4 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 3092832dd4fe053ad2b2784ae569c2360e7ab3fa

New changelog entries:
  * Use an SRU-safe substring when checking for the available version of
    aspell-doc in xenial, since aspell *did* have an SRU. Backported
    from apport 2.20.11-0ubuntu9. (LP: #1851542)

Author: Tiago Stürmer Daitx
Author Date: 2019-11-05 02:49:27 UTC

Import patches-unapplied version 2.20.10-0ubuntu27.3 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 1a6cb13e1fcefff15c3f2967f093c8dfa833ce79

New changelog entries:
  * SECURITY REGRESSION: missing argument in Report.add_proc_environ
    call (LP: #1850929)
    - apport/report.py: call add_proc_environ using named arguments
      and move proc_pid_dir keyword to last to keep api compatibility.

Author: Tiago Stürmer Daitx
Author Date: 2019-11-05 02:49:27 UTC

Import patches-unapplied version 2.20.10-0ubuntu27.3 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 1a6cb13e1fcefff15c3f2967f093c8dfa833ce79

New changelog entries:
  * SECURITY REGRESSION: missing argument in Report.add_proc_environ
    call (LP: #1850929)
    - apport/report.py: call add_proc_environ using named arguments
      and move proc_pid_dir keyword to last to keep api compatibility.

Author: Tiago Stürmer Daitx
Author Date: 2019-11-05 02:49:27 UTC

Import patches-applied version 2.20.10-0ubuntu27.3 to applied/ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 54d9bfc1d7ad24f264b6f2eda17693e17a54db5a
Unapplied parent: 3092832dd4fe053ad2b2784ae569c2360e7ab3fa

New changelog entries:
  * SECURITY REGRESSION: missing argument in Report.add_proc_environ
    call (LP: #1850929)
    - apport/report.py: call add_proc_environ using named arguments
      and move proc_pid_dir keyword to last to keep api compatibility.

Author: Tiago Stürmer Daitx
Author Date: 2019-11-05 02:49:27 UTC

Import patches-applied version 2.20.10-0ubuntu27.3 to applied/ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 54d9bfc1d7ad24f264b6f2eda17693e17a54db5a
Unapplied parent: 3092832dd4fe053ad2b2784ae569c2360e7ab3fa

New changelog entries:
  * SECURITY REGRESSION: missing argument in Report.add_proc_environ
    call (LP: #1850929)
    - apport/report.py: call add_proc_environ using named arguments
      and move proc_pid_dir keyword to last to keep api compatibility.

Author: Brian Murray
Author Date: 2019-10-09 21:23:27 UTC

Import patches-unapplied version 2.20.11-0ubuntu8 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 73cb935fa9e38bf5b9cea8a8f2a601672f04765f

New changelog entries:
  * Removed general hook which would gather information about click packages.
  * data/package-hooks/source_ubiquity: pass on a KeyError when adding
    installation logs.
  * etc/apport/crashdb.conf: Disable Launchpad crash reports for 19.04
    release.

Author: Brian Murray
Author Date: 2019-10-09 21:23:27 UTC

Import patches-applied version 2.20.11-0ubuntu8 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 7cf13524579d9e75840f7e68e6d069d2b887be28
Unapplied parent: a5929e1a4180a39b282b9864ae384da02c9df851

New changelog entries:
  * Removed general hook which would gather information about click packages.
  * data/package-hooks/source_ubiquity: pass on a KeyError when adding
    installation logs.
  * etc/apport/crashdb.conf: Disable Launchpad crash reports for 19.04
    release.

Author: Alex Murray
Author Date: 2019-07-04 02:35:21 UTC

Import patches-applied version 2.20.10-0ubuntu13.4 to applied/ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 4bfac44d02869af7af7973046b0d62cb8b6b9602
Unapplied parent: 52b5cb0f7b2a003282ad32ecac87ce13b9adec42

New changelog entries:
  * SECURITY UPDATE: TOCTOU issue allows local user to read arbitrary
    files (LP: #1830858)
    - apport/report.py: Avoid TOCTOU issue on users ignore file by
      dropping privileges and then opening the file both test for access and
      open the file in a single operation, instead of using access() before
      reading the file which could be abused by a symlink to cause Apport to
      read and embed an arbitrary file in the resulting crash dump.
    - CVE-2019-7307

Author: Alex Murray
Author Date: 2019-07-04 02:35:21 UTC

Import patches-applied version 2.20.10-0ubuntu13.4 to applied/ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 4bfac44d02869af7af7973046b0d62cb8b6b9602
Unapplied parent: 52b5cb0f7b2a003282ad32ecac87ce13b9adec42

New changelog entries:
  * SECURITY UPDATE: TOCTOU issue allows local user to read arbitrary
    files (LP: #1830858)
    - apport/report.py: Avoid TOCTOU issue on users ignore file by
      dropping privileges and then opening the file both test for access and
      open the file in a single operation, instead of using access() before
      reading the file which could be abused by a symlink to cause Apport to
      read and embed an arbitrary file in the resulting crash dump.
    - CVE-2019-7307

Author: Alex Murray
Author Date: 2019-07-04 02:35:21 UTC

Import patches-unapplied version 2.20.10-0ubuntu13.4 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 5df916436ffdb23c755589a620bd78dd2738ca51

New changelog entries:
  * SECURITY UPDATE: TOCTOU issue allows local user to read arbitrary
    files (LP: #1830858)
    - apport/report.py: Avoid TOCTOU issue on users ignore file by
      dropping privileges and then opening the file both test for access and
      open the file in a single operation, instead of using access() before
      reading the file which could be abused by a symlink to cause Apport to
      read and embed an arbitrary file in the resulting crash dump.
    - CVE-2019-7307

Author: Alex Murray
Author Date: 2019-07-04 02:35:21 UTC

Import patches-unapplied version 2.20.10-0ubuntu13.4 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 5df916436ffdb23c755589a620bd78dd2738ca51

New changelog entries:
  * SECURITY UPDATE: TOCTOU issue allows local user to read arbitrary
    files (LP: #1830858)
    - apport/report.py: Avoid TOCTOU issue on users ignore file by
      dropping privileges and then opening the file both test for access and
      open the file in a single operation, instead of using access() before
      reading the file which could be abused by a symlink to cause Apport to
      read and embed an arbitrary file in the resulting crash dump.
    - CVE-2019-7307

Author: Alex Murray
Author Date: 2019-07-04 02:35:21 UTC

Import patches-unapplied version 2.20.10-0ubuntu13.4 to ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 5df916436ffdb23c755589a620bd78dd2738ca51

New changelog entries:
  * SECURITY UPDATE: TOCTOU issue allows local user to read arbitrary
    files (LP: #1830858)
    - apport/report.py: Avoid TOCTOU issue on users ignore file by
      dropping privileges and then opening the file both test for access and
      open the file in a single operation, instead of using access() before
      reading the file which could be abused by a symlink to cause Apport to
      read and embed an arbitrary file in the resulting crash dump.
    - CVE-2019-7307

Author: Alex Murray
Author Date: 2019-07-04 02:35:21 UTC

Import patches-applied version 2.20.10-0ubuntu13.4 to applied/ubuntu/cosmic-security

Imported using git-ubuntu import.

Changelog parent: 4bfac44d02869af7af7973046b0d62cb8b6b9602
Unapplied parent: 52b5cb0f7b2a003282ad32ecac87ce13b9adec42

New changelog entries:
  * SECURITY UPDATE: TOCTOU issue allows local user to read arbitrary
    files (LP: #1830858)
    - apport/report.py: Avoid TOCTOU issue on users ignore file by
      dropping privileges and then opening the file both test for access and
      open the file in a single operation, instead of using access() before
      reading the file which could be abused by a symlink to cause Apport to
      read and embed an arbitrary file in the resulting crash dump.
    - CVE-2019-7307

Author: Brian Murray
Author Date: 2019-04-11 16:52:07 UTC

Import patches-unapplied version 2.20.10-0ubuntu27 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 15fe0cec3a11aab3ab47756f5a5b5b7817bad613

New changelog entries:
  * data/whoopsie-upload-all: confirm the exception has an errno before using
    it in a comparison. (LP: #1824152)

Author: Brian Murray
Author Date: 2019-04-11 16:52:07 UTC

Import patches-applied version 2.20.10-0ubuntu27 to applied/ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: b874542e3a2946a9356e43c443b99b81685743ba
Unapplied parent: 674d74406cf99ec543b44ee1f3df0d66eade8087

New changelog entries:
  * data/whoopsie-upload-all: confirm the exception has an errno before using
    it in a comparison. (LP: #1824152)

Author: Brian Murray
Author Date: 2019-04-02 15:19:10 UTC

Import patches-applied version 2.20.10-0ubuntu13.3 to applied/ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 1f60c4dfe8129f77c451e981dd28788f34562637
Unapplied parent: 5df916436ffdb23c755589a620bd78dd2738ca51

New changelog entries:
  * apport/ui.py: if report.get_timestamp() returns None don't try and use it
    in a comparison. (LP: #1658188)

Author: Brian Murray
Author Date: 2019-04-02 15:19:10 UTC

Import patches-unapplied version 2.20.10-0ubuntu13.3 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 0567877fa503dbf0ffd2166313995dd94d2ab518

New changelog entries:
  * apport/ui.py: if report.get_timestamp() returns None don't try and use it
    in a comparison. (LP: #1658188)

Author: Brian Murray
Author Date: 2018-10-11 21:35:11 UTC

Import patches-applied version 2.20.10-0ubuntu13 to applied/ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 81884e9d8fff4d2dd5e3b9a3fceae88842ad2a02
Unapplied parent: 8d6891edd03efa8ef077ab692203f43258a694fc

New changelog entries:
  * Fix PEP8 605 warnings and ignore 503,504 ones.

Author: Brian Murray
Author Date: 2018-10-11 21:35:11 UTC

Import patches-unapplied version 2.20.10-0ubuntu13 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 8112a4e4d096d06be3e859e5dfa8f47736f98066

New changelog entries:
  * Fix PEP8 605 warnings and ignore 503,504 ones.

Author: Marc Deslauriers
Author Date: 2018-06-01 12:12:01 UTC

Import patches-applied version 2.14.1-0ubuntu3.29 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 189238075f31d960208712414382bf49f51c95e6
Unapplied parent: 26c8a9c7111696c2f94e768e9750c9bd087e98d1

New changelog entries:
  * data/apport: Properly handle crashes originating from a PID namespace.
    (LP: #1746668)
    - Thanks to Sander Bos for discovering this issue.
    - CVE-2018-6552

Author: Marc Deslauriers
Author Date: 2018-06-01 12:12:01 UTC

Import patches-applied version 2.14.1-0ubuntu3.29 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 189238075f31d960208712414382bf49f51c95e6
Unapplied parent: 26c8a9c7111696c2f94e768e9750c9bd087e98d1

New changelog entries:
  * data/apport: Properly handle crashes originating from a PID namespace.
    (LP: #1746668)
    - Thanks to Sander Bos for discovering this issue.
    - CVE-2018-6552

Author: Marc Deslauriers
Author Date: 2018-06-01 12:12:01 UTC

Import patches-unapplied version 2.14.1-0ubuntu3.29 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 739d1bd33d7de83eb93e87f86b1280b8bc15414e

New changelog entries:
  * data/apport: Properly handle crashes originating from a PID namespace.
    (LP: #1746668)
    - Thanks to Sander Bos for discovering this issue.
    - CVE-2018-6552

Author: Marc Deslauriers
Author Date: 2018-06-01 12:12:01 UTC

Import patches-unapplied version 2.14.1-0ubuntu3.29 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 739d1bd33d7de83eb93e87f86b1280b8bc15414e

New changelog entries:
  * data/apport: Properly handle crashes originating from a PID namespace.
    (LP: #1746668)
    - Thanks to Sander Bos for discovering this issue.
    - CVE-2018-6552

Author: Marc Deslauriers
Author Date: 2018-06-01 12:12:01 UTC

Import patches-unapplied version 2.14.1-0ubuntu3.29 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 739d1bd33d7de83eb93e87f86b1280b8bc15414e

New changelog entries:
  * data/apport: Properly handle crashes originating from a PID namespace.
    (LP: #1746668)
    - Thanks to Sander Bos for discovering this issue.
    - CVE-2018-6552

Author: Marc Deslauriers
Author Date: 2018-06-01 12:12:01 UTC

Import patches-applied version 2.14.1-0ubuntu3.29 to applied/ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 189238075f31d960208712414382bf49f51c95e6
Unapplied parent: 26c8a9c7111696c2f94e768e9750c9bd087e98d1

New changelog entries:
  * data/apport: Properly handle crashes originating from a PID namespace.
    (LP: #1746668)
    - Thanks to Sander Bos for discovering this issue.
    - CVE-2018-6552

Author: Brian Murray
Author Date: 2018-05-10 22:27:03 UTC

Import patches-applied version 2.20.7-0ubuntu3.9 to applied/ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: ea4c1de7230e4e73f95141b83db7eb0c6499c5ed
Unapplied parent: 8f24258dfb2d38ee14410c6b3094d0504a502cac

New changelog entries:
  * data/apport: Properly handle crashes originating from a PID namespace.
    (LP: #1746668)
    - CVE-2018-6552

Author: Brian Murray
Author Date: 2018-05-10 22:27:03 UTC

Import patches-applied version 2.20.7-0ubuntu3.9 to applied/ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: ea4c1de7230e4e73f95141b83db7eb0c6499c5ed
Unapplied parent: 8f24258dfb2d38ee14410c6b3094d0504a502cac

New changelog entries:
  * data/apport: Properly handle crashes originating from a PID namespace.
    (LP: #1746668)
    - CVE-2018-6552

Author: Brian Murray
Author Date: 2018-05-10 22:27:03 UTC

Import patches-applied version 2.20.7-0ubuntu3.9 to applied/ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: ea4c1de7230e4e73f95141b83db7eb0c6499c5ed
Unapplied parent: 8f24258dfb2d38ee14410c6b3094d0504a502cac

New changelog entries:
  * data/apport: Properly handle crashes originating from a PID namespace.
    (LP: #1746668)
    - CVE-2018-6552

Author: Brian Murray
Author Date: 2018-05-10 22:27:03 UTC

Import patches-unapplied version 2.20.7-0ubuntu3.9 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 665c728d41b6023944fa5f96326d38cb7ce48ebd

New changelog entries:
  * data/apport: Properly handle crashes originating from a PID namespace.
    (LP: #1746668)
    - CVE-2018-6552

Author: Brian Murray
Author Date: 2018-05-10 22:27:03 UTC

Import patches-unapplied version 2.20.7-0ubuntu3.9 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 665c728d41b6023944fa5f96326d38cb7ce48ebd

New changelog entries:
  * data/apport: Properly handle crashes originating from a PID namespace.
    (LP: #1746668)
    - CVE-2018-6552

Author: Brian Murray
Author Date: 2018-05-10 22:27:03 UTC

Import patches-unapplied version 2.20.7-0ubuntu3.9 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 665c728d41b6023944fa5f96326d38cb7ce48ebd

New changelog entries:
  * data/apport: Properly handle crashes originating from a PID namespace.
    (LP: #1746668)
    - CVE-2018-6552

Author: Brian Murray
Author Date: 2018-04-20 21:39:15 UTC

Import patches-applied version 2.20.1-0ubuntu2.17 to applied/ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 8009d770f3e1307df06c25f159794dd5d0b52aac
Unapplied parent: 8c2dc503b03053c7d89da2a2acc04e160d6029fd

New changelog entries:
  * apport/ui.py: Ensure the Date field exists in a report before using it in
    a comparison. (LP: #1658188)

Author: Brian Murray
Author Date: 2018-04-20 21:39:15 UTC

Import patches-unapplied version 2.20.1-0ubuntu2.17 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 9fe41d8996be092a46505ce6bf489dedcd5f8a83

New changelog entries:
  * apport/ui.py: Ensure the Date field exists in a report before using it in
    a comparison. (LP: #1658188)

Author: Mathieu Trudel-Lapierre
Author Date: 2018-04-24 20:02:54 UTC

Import patches-applied version 2.20.9-0ubuntu7 to applied/ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: d5bbd972b3316528cc160048469ce191afc813b5
Unapplied parent: 68b7c8a4e1d05866bc708736be3657504637baf1

New changelog entries:
  * debian/control: Drop x-terminal-emulator to Suggests: to avoid pulling
    it in unnecessarily when we only want it to support apport-retrace.
    (LP: #1766478)

Author: Mathieu Trudel-Lapierre
Author Date: 2018-04-24 20:02:54 UTC

Import patches-unapplied version 2.20.9-0ubuntu7 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: aad448ad5e2cfb8da7a080ac6b2a849780c97906

New changelog entries:
  * debian/control: Drop x-terminal-emulator to Suggests: to avoid pulling
    it in unnecessarily when we only want it to support apport-retrace.
    (LP: #1766478)

Author: Brian Murray
Author Date: 2018-03-30 16:43:05 UTC

Import patches-unapplied version 2.20.7-0ubuntu3.8 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: 7e1fe6410509aacf5583d2f036fb78cd3ea210f0

New changelog entries:
  * data/general-hooks/generic.py: Only include JournalErrors for apport-crash
    reports which are private by default. (LP: #1738581)

Author: Brian Murray
Author Date: 2018-03-30 16:43:05 UTC

Import patches-applied version 2.20.7-0ubuntu3.8 to applied/ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: 95f297eac40ee3ea5795168287d15ff1d406acaf
Unapplied parent: 665c728d41b6023944fa5f96326d38cb7ce48ebd

New changelog entries:
  * data/general-hooks/generic.py: Only include JournalErrors for apport-crash
    reports which are private by default. (LP: #1738581)

Author: Ubuntu Git Importer
Author Date: 2018-03-28 11:40:24 UTC

DSC file for 2.20.4-5

Author: Ritesh Raj Sarraf
Author Date: 2018-03-28 06:09:30 UTC

Import patches-applied version 2.20.4-5 to applied/debian/experimental

Imported using git-ubuntu import.

Changelog parent: 346d80f89fc03f413b63b9e334ae7f7bfbd5a7ab
Unapplied parent: 2bc429a5eb9c645a35829318fb47add23bfc6f1f

New changelog entries:
  * [db937c7] Update KDE dependency to python3-pyqt5 (Closes: #891454)
  * [57d2735] Add patch to fix java minimul classpath
  * [cf59742] Add patch to detect proper system backend
    (Closes: #876683)

Author: Ritesh Raj Sarraf
Author Date: 2018-03-28 06:09:30 UTC

Import patches-unapplied version 2.20.4-5 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: 1e52df0dbff3820408e33bf0a0166e533fd46afa

New changelog entries:
  * [db937c7] Update KDE dependency to python3-pyqt5 (Closes: #891454)
  * [57d2735] Add patch to fix java minimul classpath
  * [cf59742] Add patch to detect proper system backend
    (Closes: #876683)

Author: Ubuntu Git Importer
Author Date: 2018-03-06 01:17:41 UTC

pristine-tar data for apport_2.20.4.orig.tar.gz

Author: Ubuntu Git Importer
Author Date: 2018-03-05 22:22:15 UTC

pristine-tar data for apport_2.20.4.orig.tar.gz

Author: Brian Murray
Author Date: 2017-12-13 18:51:39 UTC

Import patches-applied version 2.20.4-0ubuntu4.10 to applied/ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: 921f5eb0942a53242f6a59e707159afef8b97dff
Unapplied parent: 2cd6bc6b872d4ec670c3d3f1cb29d8f9f5a1b701

New changelog entries:
  * REGRESSION UPDATE: Fix regression that caused a Traceback in the
    container support (LP: #1733366)
    - data/apport: add a second os.path.exists check to ensure we do not
      receive a Traceback in is_container_id() and add an exception handler in
      case either name space can not be found.

Author: Brian Murray
Author Date: 2017-12-13 18:51:39 UTC

Import patches-applied version 2.20.4-0ubuntu4.10 to applied/ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: 921f5eb0942a53242f6a59e707159afef8b97dff
Unapplied parent: 2cd6bc6b872d4ec670c3d3f1cb29d8f9f5a1b701

New changelog entries:
  * REGRESSION UPDATE: Fix regression that caused a Traceback in the
    container support (LP: #1733366)
    - data/apport: add a second os.path.exists check to ensure we do not
      receive a Traceback in is_container_id() and add an exception handler in
      case either name space can not be found.

Author: Brian Murray
Author Date: 2017-12-13 18:51:39 UTC

Import patches-applied version 2.20.4-0ubuntu4.10 to applied/ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: 921f5eb0942a53242f6a59e707159afef8b97dff
Unapplied parent: 2cd6bc6b872d4ec670c3d3f1cb29d8f9f5a1b701

New changelog entries:
  * REGRESSION UPDATE: Fix regression that caused a Traceback in the
    container support (LP: #1733366)
    - data/apport: add a second os.path.exists check to ensure we do not
      receive a Traceback in is_container_id() and add an exception handler in
      case either name space can not be found.

Author: Brian Murray
Author Date: 2017-12-13 18:51:39 UTC

Import patches-unapplied version 2.20.4-0ubuntu4.10 to ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: d8dd0968436297e866022e6ed3d9b28a524e7c09

New changelog entries:
  * REGRESSION UPDATE: Fix regression that caused a Traceback in the
    container support (LP: #1733366)
    - data/apport: add a second os.path.exists check to ensure we do not
      receive a Traceback in is_container_id() and add an exception handler in
      case either name space can not be found.

Author: Brian Murray
Author Date: 2017-12-13 18:51:39 UTC

Import patches-unapplied version 2.20.4-0ubuntu4.10 to ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: d8dd0968436297e866022e6ed3d9b28a524e7c09

New changelog entries:
  * REGRESSION UPDATE: Fix regression that caused a Traceback in the
    container support (LP: #1733366)
    - data/apport: add a second os.path.exists check to ensure we do not
      receive a Traceback in is_container_id() and add an exception handler in
      case either name space can not be found.

Author: Brian Murray
Author Date: 2017-12-13 18:51:39 UTC

Import patches-unapplied version 2.20.4-0ubuntu4.10 to ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: d8dd0968436297e866022e6ed3d9b28a524e7c09

New changelog entries:
  * REGRESSION UPDATE: Fix regression that caused a Traceback in the
    container support (LP: #1733366)
    - data/apport: add a second os.path.exists check to ensure we do not
      receive a Traceback in is_container_id() and add an exception handler in
      case either name space can not be found.

Author: Brian Murray
Author Date: 2017-11-27 23:24:59 UTC

Import patches-unapplied version 2.20.4-0ubuntu4.9 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: b609478ff5448fc4fca40f5decbd61b3c4ab9adc

New changelog entries:
  * bin/apport-cli: read until <enter> instead of a single character when # of
    apport options is non-unique with a single character. Thanks to Chad Smith
    for the patch. (LP: #1722564)

Author: Brian Murray
Author Date: 2017-11-27 23:24:59 UTC

Import patches-applied version 2.20.4-0ubuntu4.9 to applied/ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 99565ed02bf5e34f26a133cf5e2f210d9e15923f
Unapplied parent: d8dd0968436297e866022e6ed3d9b28a524e7c09

New changelog entries:
  * bin/apport-cli: read until <enter> instead of a single character when # of
    apport options is non-unique with a single character. Thanks to Chad Smith
    for the patch. (LP: #1722564)

Author: Brian Murray
Author Date: 2017-10-11 21:26:50 UTC

Import patches-unapplied version 2.20.7-0ubuntu3 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: 3efac84d7e5f93e294ebc36401c104cad07f9305

New changelog entries:
  * Make debian/apport.init a symlink to etc/init.d/apport so that
    dh_installinit creates a good postinst. (LP: #1722801)

Author: Brian Murray
Author Date: 2017-10-11 21:26:50 UTC

Import patches-applied version 2.20.7-0ubuntu3 to applied/ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: 36d2229106b6cc5a8157087a35067defa9c58952
Unapplied parent: 2a50b6fc26a634b043b443a765cff0010f246cbc

New changelog entries:
  * Make debian/apport.init a symlink to etc/init.d/apport so that
    dh_installinit creates a good postinst. (LP: #1722801)

Author: Leonidas S. Barbosa
Author Date: 2017-07-17 11:43:41 UTC

Import patches-applied version 2.20.3-0ubuntu8.7 to applied/ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: ba121b48eb11fca7bd4bba24efa50af8132a3003
Unapplied parent: b713eca694028b0b03c62c337baa977c394f47ed

New changelog entries:
  * SECURITY UPDATE: code execution through path traversal in
    .crash files (LP: #1700573)
    - apport/report.py, test/test_ui.py: fix traversal issue
      and add a test for that.
    - debian/apport.install, setup.py, xdg-mime/apport.xml: removes
      apport as a file handler for .crash files. Thanks to Brian
      Murray for the patch and Felix Wilhelm for discovering this.
    - CVE-2017-10708

Author: Leonidas S. Barbosa
Author Date: 2017-07-17 11:43:41 UTC

Import patches-unapplied version 2.20.3-0ubuntu8.7 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: fa077a4a576974f4012c890ea234c2df1fb5dcdf

New changelog entries:
  * SECURITY UPDATE: code execution through path traversal in
    .crash files (LP: #1700573)
    - apport/report.py, test/test_ui.py: fix traversal issue
      and add a test for that.
    - debian/apport.install, setup.py, xdg-mime/apport.xml: removes
      apport as a file handler for .crash files. Thanks to Brian
      Murray for the patch and Felix Wilhelm for discovering this.
    - CVE-2017-10708

Author: Leonidas S. Barbosa
Author Date: 2017-07-17 11:43:41 UTC

Import patches-unapplied version 2.20.3-0ubuntu8.7 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: fa077a4a576974f4012c890ea234c2df1fb5dcdf

New changelog entries:
  * SECURITY UPDATE: code execution through path traversal in
    .crash files (LP: #1700573)
    - apport/report.py, test/test_ui.py: fix traversal issue
      and add a test for that.
    - debian/apport.install, setup.py, xdg-mime/apport.xml: removes
      apport as a file handler for .crash files. Thanks to Brian
      Murray for the patch and Felix Wilhelm for discovering this.
    - CVE-2017-10708

Author: Leonidas S. Barbosa
Author Date: 2017-07-17 11:43:41 UTC

Import patches-unapplied version 2.20.3-0ubuntu8.7 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: fa077a4a576974f4012c890ea234c2df1fb5dcdf

New changelog entries:
  * SECURITY UPDATE: code execution through path traversal in
    .crash files (LP: #1700573)
    - apport/report.py, test/test_ui.py: fix traversal issue
      and add a test for that.
    - debian/apport.install, setup.py, xdg-mime/apport.xml: removes
      apport as a file handler for .crash files. Thanks to Brian
      Murray for the patch and Felix Wilhelm for discovering this.
    - CVE-2017-10708