Bazaar branches for Precise

Name Status Last Modified Last Commit
lp:ubuntu/precise-updates/mutt Mature 2014-03-13 21:56:07 UTC 2014-03-13
38. * SECURITY UPDATE: buffer overflow in...

Author: Steve Beattie
Revision Date: 2014-03-12 14:41:06 UTC

* SECURITY UPDATE: buffer overflow in header processing after
  address expansion.
  - debian/patches/ubuntu/mutt-CVE-2014-0467.patch
  - CVE-2014-0467

lp:ubuntu/precise-security/mutt Mature 2014-03-13 21:33:55 UTC 2014-03-13
38. * SECURITY UPDATE: buffer overflow in...

Author: Steve Beattie
Revision Date: 2014-03-12 14:41:06 UTC

* SECURITY UPDATE: buffer overflow in header processing after
  address expansion.
  - debian/patches/ubuntu/mutt-CVE-2014-0467.patch
  - CVE-2014-0467

lp:ubuntu/precise-updates/tzdata Mature 2014-03-13 17:44:33 UTC 2014-03-13
87. * New upstream release, with updated ...

Author: Adam Conrad
Revision Date: 2014-03-13 17:44:33 UTC

* New upstream release, with updated Turkish DST (LP: #1290193)
* Remove solar87, solar88, solar89, following upstream removal.

lp:ubuntu/precise-security/sudo bug Mature 2014-03-13 14:29:24 UTC 2014-03-13
57. * SECURITY UPDATE: security policy by...

Author: Marc Deslauriers
Revision Date: 2014-03-11 07:56:53 UTC

* SECURITY UPDATE: security policy bypass when env_reset is disabled
  - debian/patches/CVE-2014-0106.patch: fix logic inversion in
    plugins/sudoers/env.c.
  - CVE-2014-0106
* debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
  epoch in init scripts so they are properly invalidated. (LP: #1223297)

lp:ubuntu/precise-security/linux-signed-lts-raring Mature 2014-03-13 09:16:17 UTC 2014-03-13
24. Master Version 3.8.0-38.56

Author: Brad Figg
Revision Date: 2014-03-13 09:16:17 UTC

Master Version 3.8.0-38.56

lp:ubuntu/precise-updates/linux-signed-lts-raring Mature 2014-03-13 09:16:17 UTC 2014-03-13
24. Master Version 3.8.0-38.56

Author: Brad Figg
Revision Date: 2014-03-13 09:16:17 UTC

Master Version 3.8.0-38.56

lp:~utlemming/ubuntu/precise/udev/lp1274348 bug(Has a merge proposal) Development 2014-03-12 17:48:16 UTC 2014-03-12
222. hyperv-hwaddrs.patch: update ethernet...

Author: Ben Howard
Revision Date: 2014-03-12 17:48:16 UTC

hyperv-hwaddrs.patch: update ethernet exclusions for Hyper-V
(LP: #1274348).

lp:ubuntu/precise-updates/udev Mature 2014-03-12 14:01:42 UTC 2014-03-12
222. hyperv-hwaddrs.patch: update ethernet...

Author: Ben Howard
Revision Date: 2014-03-12 14:01:42 UTC

hyperv-hwaddrs.patch: update ethernet exclusions for Hyper-V
(LP: #1274348).

lp:ubuntu/precise-updates/linux-signed-lts-saucy Mature 2014-03-12 12:09:00 UTC 2014-03-12
9. Master Version 3.11.0-19.33

Author: Kamal Mostafa
Revision Date: 2014-03-12 12:09:00 UTC

Master Version 3.11.0-19.33

lp:ubuntu/precise-security/cups-filters Mature 2014-03-12 12:05:47 UTC 2014-03-12
21. * SECURITY UPDATE: arbitrary code exe...

Author: Marc Deslauriers
Revision Date: 2014-03-11 11:05:12 UTC

* SECURITY UPDATE: arbitrary code execution via overflows in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: use gmallocn and gmallocn3 in
    pdftoopvp/{oprs/OPVPSplash.cxx,OPVPOutputDev.cxx}.
  - CVE-2013-6474
  - CVE-2013-6475
* SECURITY UPDATE: arbitrary code execution via driver in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: restrict driver path in
    pdftoopvp/oprs/OPVPWrapper.cxx.
  - CVE-2013-6476

lp:ubuntu/precise-updates/linux-meta-lts-saucy Mature 2014-03-12 11:50:38 UTC 2014-03-12
7. Ubuntu-lts-3.11.0-19

Author: Kamal Mostafa
Revision Date: 2014-03-12 11:50:38 UTC

Ubuntu-lts-3.11.0-19

lp:~sdeziel/ubuntu/precise/xl2tpd/fix-for-lp1244780 bug(Has a merge proposal) Development 2014-03-11 13:19:52 UTC 2014-03-11
19. Explain the 3 patches in the changelog

Author: Simon Déziel
Revision Date: 2014-03-11 13:19:52 UTC

Explain the 3 patches in the changelog

lp:ubuntu/precise-updates/linux-signed-lts-quantal Mature 2014-03-11 13:01:15 UTC 2014-03-11
33. Master Version 3.5.0-48.72

Author: Brad Figg
Revision Date: 2014-03-11 13:01:15 UTC

Master Version 3.5.0-48.72

lp:ubuntu/precise-updates/linux-meta-lts-quantal Mature 2014-03-11 12:58:50 UTC 2014-03-11
31. Ubuntu-lts-3.5.0-48

Author: Brad Figg
Revision Date: 2014-03-11 12:58:50 UTC

Ubuntu-lts-3.5.0-48

lp:ubuntu/precise-updates/cups-filters Mature 2014-03-11 11:05:12 UTC 2014-03-11
21. * SECURITY UPDATE: arbitrary code exe...

Author: Marc Deslauriers
Revision Date: 2014-03-11 11:05:12 UTC

* SECURITY UPDATE: arbitrary code execution via overflows in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: use gmallocn and gmallocn3 in
    pdftoopvp/{oprs/OPVPSplash.cxx,OPVPOutputDev.cxx}.
  - CVE-2013-6474
  - CVE-2013-6475
* SECURITY UPDATE: arbitrary code execution via driver in pdftoopvp
  - debian/patches/CVE-2013-647x.patch: restrict driver path in
    pdftoopvp/oprs/OPVPWrapper.cxx.
  - CVE-2013-6476

lp:ubuntu/precise-security/net-snmp Mature 2014-03-11 10:08:53 UTC 2014-03-11
57. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2014-03-11 10:08:53 UTC

* SECURITY UPDATE: denial of service via AgentX subagent timeout
  - debian/patches/CVE-2012-6151.patch: track cancelled sessions in
    agent/mibgroup/agentx/{master.c,master_admin.c}, agent/snmp_agent.c,
    include/net-snmp/agent/snmp_agent.h.
  - CVE-2012-6151
* SECURITY UPDATE: denial of service in perl trap handler
  - debian/patches/CVE-2014-2285.patch: handle empty community string in
    perl/TrapReceiver/TrapReceiver.xs.
  - CVE-2014-2285
* SECURITY UPDATE: denial of service via multiple-object requests
  - debian/patches/CVE-2014-2310.patch: fix lengths in
    agent/mibgroup/agentx/protocol.c.
  - CVE-2014-2310

lp:ubuntu/precise-updates/net-snmp Mature 2014-03-11 10:08:53 UTC 2014-03-11
57. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2014-03-11 10:08:53 UTC

* SECURITY UPDATE: denial of service via AgentX subagent timeout
  - debian/patches/CVE-2012-6151.patch: track cancelled sessions in
    agent/mibgroup/agentx/{master.c,master_admin.c}, agent/snmp_agent.c,
    include/net-snmp/agent/snmp_agent.h.
  - CVE-2012-6151
* SECURITY UPDATE: denial of service in perl trap handler
  - debian/patches/CVE-2014-2285.patch: handle empty community string in
    perl/TrapReceiver/TrapReceiver.xs.
  - CVE-2014-2285
* SECURITY UPDATE: denial of service via multiple-object requests
  - debian/patches/CVE-2014-2310.patch: fix lengths in
    agent/mibgroup/agentx/protocol.c.
  - CVE-2014-2310

lp:ubuntu/precise-updates/sudo Mature 2014-03-11 07:56:53 UTC 2014-03-11
57. * SECURITY UPDATE: security policy by...

Author: Marc Deslauriers
Revision Date: 2014-03-11 07:56:53 UTC

* SECURITY UPDATE: security policy bypass when env_reset is disabled
  - debian/patches/CVE-2014-0106.patch: fix logic inversion in
    plugins/sudoers/env.c.
  - CVE-2014-0106
* debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
  epoch in init scripts so they are properly invalidated. (LP: #1223297)

lp:ubuntu/precise-security/linux-meta-lts-raring Mature 2014-03-10 17:05:29 UTC 2014-03-10
21. Ubuntu-lts-3.8.0-38

Author: Kamal Mostafa
Revision Date: 2014-03-10 17:05:29 UTC

Ubuntu-lts-3.8.0-38

lp:ubuntu/precise-updates/linux-meta-lts-raring Mature 2014-03-10 17:05:29 UTC 2014-03-10
21. Ubuntu-lts-3.8.0-38

Author: Kamal Mostafa
Revision Date: 2014-03-10 17:05:29 UTC

Ubuntu-lts-3.8.0-38

lp:ubuntu/precise-security/udisks bug Mature 2014-03-10 12:06:33 UTC 2014-03-10
35. * SECURITY UPDATE: arbitrary code exe...

Author: Marc Deslauriers
Revision Date: 2014-03-06 09:27:39 UTC

* SECURITY UPDATE: arbitrary code execution via long path names
  (LP: #1288226)
  - debian/patches/CVE-2014-0004.patch: limit lengths and properly
    terminate in src/mount-monitor.c.
  - CVE-2014-0004

lp:ubuntu/precise-security/libssh Mature 2014-03-10 09:58:25 UTC 2014-03-10
22. * SECURITY UPDATE: PRNG state reuse o...

Author: Marc Deslauriers
Revision Date: 2014-03-10 09:58:25 UTC

* SECURITY UPDATE: PRNG state reuse on forking servers
  - debian/patches/CVE-2014-0017.patch: force reseed after fork in
    include/libssh/wrapper.h, src/bind.c, src/libcrypto.c,
    src/libgcrypt.c.
  - CVE-2014-0017

lp:ubuntu/precise-updates/libssh Mature 2014-03-10 09:58:25 UTC 2014-03-10
22. * SECURITY UPDATE: PRNG state reuse o...

Author: Marc Deslauriers
Revision Date: 2014-03-10 09:58:25 UTC

* SECURITY UPDATE: PRNG state reuse on forking servers
  - debian/patches/CVE-2014-0017.patch: force reseed after fork in
    include/libssh/wrapper.h, src/bind.c, src/libcrypto.c,
    src/libgcrypt.c.
  - CVE-2014-0017

lp:~ubuntu-cloud-archive/ubuntu/precise/juju-core/precise-ctools Development 2014-03-07 01:00:05 UTC 2014-03-07
32. releasing package juju-core version 1...

Author: Scott Moser
Revision Date: 2014-02-26 16:29:47 UTC

releasing package juju-core version 1.17.3-0ubuntu2~ctools0

lp:ubuntu/precise-proposed/vm-builder bug Mature 2014-03-06 21:05:09 UTC 2014-03-06
53. Add trusty to the list of valid ubunt...

Author: Serge Hallyn
Revision Date: 2014-03-04 16:52:51 UTC

Add trusty to the list of valid ubuntu suites. (LP: #1287943)

lp:ubuntu/precise-updates/libdvdnav Mature 2014-03-06 20:48:27 UTC 2014-03-06
14. * debian/patches/03-check-cellnr.patc...

Author: Benjamin Drung
Revision Date: 2013-07-20 00:46:43 UTC

* debian/patches/03-check-cellnr.patch: Check for new row being 0. Fixes
  issue where VLC (and Totem) crashes in dvdnav_describe_title_chapters().
  Thanks to Bryce Harrington <bryce@ubuntu.com>. (LP: #934471)
* debian/patches/04-Make-sure-pgc-is-valid.patch,
  debian/patches/05-Ignore-parts-where-the-pgc-start-byte-is-wrong.patch,
  debian/patches/06-Skip-PGCs-w-a-cell-number-of-0.patch: Validate PGC values
  before accessing them to avoid causing a crash.
* debian/patches/07-pgcn-bounds.patch: Check for out-of-bounds values for
  pgcn. Fixes a crash in dvdnav_describe_title_chapters() with vlc, lsdvd, and
  other video players. This occurs with the "Inside Man" DVD. Thanks to Bryce
  Harrington <bryce@ubuntu.com>. (LP: #1094499)

lp:ubuntu/precise-security/imagemagick Mature 2014-03-06 11:37:42 UTC 2014-03-06
36. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2014-03-06 11:37:42 UTC

* SECURITY UPDATE: denial of service and possible code execution via psd
  images processing rle decoding buffer overflow
  - debian/patches/CVE-2014-1958.patch: check lengths in coders/psd.c.
  - CVE-2014-1958
* SECURITY UPDATE: denial of service via jpeg images with specially-
  crafted restart markers
  - debian/patches/CVE-2014-2030.patch: don't overflow layer_name in
    coders/psd.c.
  - CVE-2014-2030
* SECURITY UPDATE: denial of service via crafted sequence of restart
  markers
  - debian/patches/CVE-2012-0260.patch: limit number of warnings in
    coders/jpeg.c.
  - CVE-2012-0260

lp:ubuntu/precise-updates/imagemagick Mature 2014-03-06 11:37:42 UTC 2014-03-06
36. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2014-03-06 11:37:42 UTC

* SECURITY UPDATE: denial of service and possible code execution via psd
  images processing rle decoding buffer overflow
  - debian/patches/CVE-2014-1958.patch: check lengths in coders/psd.c.
  - CVE-2014-1958
* SECURITY UPDATE: denial of service via jpeg images with specially-
  crafted restart markers
  - debian/patches/CVE-2014-2030.patch: don't overflow layer_name in
    coders/psd.c.
  - CVE-2014-2030
* SECURITY UPDATE: denial of service via crafted sequence of restart
  markers
  - debian/patches/CVE-2012-0260.patch: limit number of warnings in
    coders/jpeg.c.
  - CVE-2012-0260

lp:~james-page/ubuntu/precise/mongodb/arch-enablement bug Development 2014-03-06 10:11:00 UTC 2014-03-06
67. - d/control: Add arm64 to target ar...

Author: James Page
Revision Date: 2014-03-06 10:11:00 UTC

  - d/control: Add arm64 to target architectures, ignore libv8-dev for arm64.
  - d/rules: Disable scripting and drop mongo binary for arm64.

lp:ubuntu/precise-updates/udisks Mature 2014-03-06 09:27:39 UTC 2014-03-06
35. * SECURITY UPDATE: arbitrary code exe...

Author: Marc Deslauriers
Revision Date: 2014-03-06 09:27:39 UTC

* SECURITY UPDATE: arbitrary code execution via long path names
  (LP: #1288226)
  - debian/patches/CVE-2014-0004.patch: limit lengths and properly
    terminate in src/mount-monitor.c.
  - CVE-2014-0004

lp:~marcoceppi/ubuntu/precise/charm-tools/lp1223229 (Has a merge proposal) Development 2014-03-05 21:22:10 UTC 2014-03-05
14. Fix suggests and recommends for charm...

Author: Marco Ceppi
Revision Date: 2014-03-05 21:20:09 UTC

Fix suggests and recommends for charm-tools

lp:ubuntu/precise-proposed/ca-certificates bug Mature 2014-03-05 13:33:06 UTC 2014-03-05
30. * Update ca-certificates database to ...

Author: Marc Deslauriers
Revision Date: 2014-02-06 17:39:43 UTC

* Update ca-certificates database to 20130906 (LP: #1257265):
  - backport changes from the Ubuntu 14.04 20130906ubuntu1 package
  - No longer ship cacert.org certificates (LP: #1258286)
  - No longer ship obsolete debconf.org certificates
  - mozilla/certdata2pem.py: Work around openssl issue by shipping both
    versions of the same signed roots. Previously, the script would
    simply overwrite the first one found in the certdata.txt with the
    later one since they both have the same CKA_LABEL, resulting in
    identical filenames. (LP: #1014640, LP: #1031333)

lp:ubuntu/precise-security/tomcat6 Mature 2014-03-04 11:14:51 UTC 2014-03-04
49. * SECURITY UPDATE: request smuggling ...

Author: Marc Deslauriers
Revision Date: 2014-03-04 11:14:51 UTC

* SECURITY UPDATE: request smuggling attack via content-length headers
  - debian/patches/CVE-2013-4286.patch: handle multiple content lengths
    in java/org/apache/coyote/ajp/AbstractAjpProcessor.java,
    java/org/apache/coyote/ajp/AjpProcessor.java, handle content length
    and chunked encoding being both specified in
    java/org/apache/coyote/http11/Http11AprProcessor.java,
    java/org/apache/coyote/http11/Http11NioProcessor.java,
    java/org/apache/coyote/http11/Http11Processor.java.
  - CVE-2013-4286
* SECURITY UPDATE: denial of service via chunked transfer coding
  - debian/patches/CVE-2013-4322.patch: limit length of extension data in
    java/org/apache/coyote/Constants.java,
    java/org/apache/coyote/http11/filters/ChunkedInputFilter.java,
    webapps/docs/config/systemprops.xml.
  - CVE-2013-4322
* SECURITY UPDATE: session fixation attack via crafted URL
  - debian/patches/CVE-2014-0033.patch: properly handle
    disableURLRewriting in
    java/org/apache/catalina/connector/CoyoteAdapter.java.
  - CVE-2014-0033

lp:ubuntu/precise-updates/tomcat6 Mature 2014-03-04 11:14:51 UTC 2014-03-04
49. * SECURITY UPDATE: request smuggling ...

Author: Marc Deslauriers
Revision Date: 2014-03-04 11:14:51 UTC

* SECURITY UPDATE: request smuggling attack via content-length headers
  - debian/patches/CVE-2013-4286.patch: handle multiple content lengths
    in java/org/apache/coyote/ajp/AbstractAjpProcessor.java,
    java/org/apache/coyote/ajp/AjpProcessor.java, handle content length
    and chunked encoding being both specified in
    java/org/apache/coyote/http11/Http11AprProcessor.java,
    java/org/apache/coyote/http11/Http11NioProcessor.java,
    java/org/apache/coyote/http11/Http11Processor.java.
  - CVE-2013-4286
* SECURITY UPDATE: denial of service via chunked transfer coding
  - debian/patches/CVE-2013-4322.patch: limit length of extension data in
    java/org/apache/coyote/Constants.java,
    java/org/apache/coyote/http11/filters/ChunkedInputFilter.java,
    webapps/docs/config/systemprops.xml.
  - CVE-2013-4322
* SECURITY UPDATE: session fixation attack via crafted URL
  - debian/patches/CVE-2014-0033.patch: properly handle
    disableURLRewriting in
    java/org/apache/catalina/connector/CoyoteAdapter.java.
  - CVE-2014-0033

lp:ubuntu/precise-security/gnutls26 Mature 2014-03-03 14:16:13 UTC 2014-03-03
39. * SECURITY UPDATE: certificate valida...

Author: Marc Deslauriers
Revision Date: 2014-03-03 14:16:13 UTC

* SECURITY UPDATE: certificate validation bypass
  - debian/patches/CVE-2014-0092.patch: correct return codes in
    lib/x509/verify.c.
  - CVE-2014-0092

lp:ubuntu/precise-updates/gnutls26 Mature 2014-03-03 14:16:13 UTC 2014-03-03
39. * SECURITY UPDATE: certificate valida...

Author: Marc Deslauriers
Revision Date: 2014-03-03 14:16:13 UTC

* SECURITY UPDATE: certificate validation bypass
  - debian/patches/CVE-2014-0092.patch: correct return codes in
    lib/x509/verify.c.
  - CVE-2014-0092

lp:ubuntu/precise-updates/gwibber Mature 2014-03-03 13:38:17 UTC 2014-03-03
138. * debian/patches/lp_1287211.patch -...

Author: Ken VanDine
Revision Date: 2014-03-03 13:38:17 UTC

* debian/patches/lp_1287211.patch
  - Facebook's data structure for likes has changed, fix for parsing
    and getting a count (LP: #1287211)
* debian/patches/lp_1286639.patch
  - Ensure all calls to twitter.com use SSL (LP: #1286639)

lp:ubuntu/precise-backports/scratch bug Mature 2014-03-02 19:29:04 UTC 2014-03-02
5. No-change backport to precise (LP: #1...

Author: Iain Lane
Revision Date: 2014-03-02 18:58:36 UTC

No-change backport to precise (LP: #1285394)

lp:~openstack-charmers/ubuntu/precise/serverstack-dns/trunk Development 2014-03-01 22:11:16 UTC 2014-03-01
13. Updates from kapil for fanout behaviour.

Author: James Page
Revision Date: 2014-03-01 22:11:16 UTC

Updates from kapil for fanout behaviour.

lp:~hazmat/ubuntu/precise/serverstack-dns/fanout Development 2014-03-01 14:37:41 UTC 2014-03-01
19. skip some more debug messages

Author: Kapil Thangavelu
Revision Date: 2014-03-01 14:37:41 UTC

skip some more debug messages

lp:ubuntu/precise-proposed/clamav bug Mature 2014-02-27 22:40:18 UTC 2014-02-27
118. * debian/common_functions - Fix slu...

Author: Louis Bouchard
Revision Date: 2014-02-10 17:54:42 UTC

* debian/common_functions
  - Fix slurp_config() that is sometimes not discriminative
  enough which leads to invalid configuration files (LP: #799623)

lp:ubuntu/precise-proposed/d-rats bug Mature 2014-02-27 21:27:41 UTC 2014-02-27
5. Depend on python-glade2 to fix crash ...

Author: Logan Rosen
Revision Date: 2014-02-22 23:16:02 UTC

Depend on python-glade2 to fix crash upon opening (LP: #917204).

lp:ubuntu/precise-security/python3.2 Mature 2014-02-27 14:28:16 UTC 2014-02-27
39. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2014-02-27 14:28:16 UTC

* SECURITY UPDATE: denial of service and possible code execution via
  buffer overflow in socket.recvfrom_into
  - debian/patches/CVE-2014-1912.diff: check buffer length in
    Modules/socketmodule.c, added tests to Lib/test/test_socket.py.
  - CVE-2014-1912

lp:ubuntu/precise-updates/python3.2 Mature 2014-02-27 14:28:16 UTC 2014-02-27
39. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2014-02-27 14:28:16 UTC

* SECURITY UPDATE: denial of service and possible code execution via
  buffer overflow in socket.recvfrom_into
  - debian/patches/CVE-2014-1912.diff: check buffer length in
    Modules/socketmodule.c, added tests to Lib/test/test_socket.py.
  - CVE-2014-1912

lp:ubuntu/precise-security/python2.7 Mature 2014-02-27 09:17:26 UTC 2014-02-27
59. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2014-02-27 09:17:26 UTC

* SECURITY UPDATE: denial of service and possible code execution via
  buffer overflow in socket.recvfrom_into
  - debian/patches/CVE-2014-1912.diff: check buffer length in
    Modules/socketmodule.c, added tests to Lib/test/test_socket.py.
  - CVE-2014-1912

lp:ubuntu/precise-updates/python2.7 Mature 2014-02-27 09:17:26 UTC 2014-02-27
59. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2014-02-27 09:17:26 UTC

* SECURITY UPDATE: denial of service and possible code execution via
  buffer overflow in socket.recvfrom_into
  - debian/patches/CVE-2014-1912.diff: check buffer length in
    Modules/socketmodule.c, added tests to Lib/test/test_socket.py.
  - CVE-2014-1912

lp:ubuntu/precise-security/postgresql-8.4 bug Mature 2014-02-25 19:52:00 UTC 2014-02-25
31. * New upstream security/bugfix releas...

Author: Martin Pitt
Revision Date: 2014-02-20 13:15:23 UTC

* New upstream security/bugfix release. (LP: #1282677)
  - Shore up GRANT ... WITH ADMIN OPTION restrictions.
    Granting a role without ADMIN OPTION is supposed to prevent the grantee
    from adding or removing members from the granted role, but this
    restriction was easily bypassed by doing SET ROLE first. The security
    impact is mostly that a role member can revoke the access of others,
    contrary to the wishes of his grantor. Unapproved role member additions
    are a lesser concern, since an uncooperative role member could provide
    most of his rights to others anyway by creating views or SECURITY
    DEFINER functions. (CVE-2014-0060)
  - Prevent privilege escalation via manual calls to PL validator functions.
    The primary role of PL validator functions is to be called implicitly
    during CREATE FUNCTION, but they are also normal SQL functions that a
    user can call explicitly. Calling a validator on a function actually
    written in some other language was not checked for and could be
    exploited for privilege-escalation purposes. The fix involves adding a
    call to a privilege-checking function in each validator function.
    Non-core procedural languages will also need to make this change to
    their own validator functions, if any. (CVE-2014-0061)
  - Avoid multiple name lookups during table and index DDL.
    If the name lookups come to different conclusions due to concurrent
    activity, we might perform some parts of the DDL on a different table
    than other parts. At least in the case of CREATE INDEX, this can be used
    to cause the permissions checks to be performed against a different
    table than the index creation, allowing for a privilege escalation
    attack. (CVE-2014-0062)
  - Prevent buffer overrun with long datetime strings.
    The MAXDATELEN constant was too small for the longest possible value of
    type interval, allowing a buffer overrun in interval_out(). Although the
    datetime input functions were more careful about avoiding buffer
    overrun, the limit was short enough to cause them to reject some valid
    inputs, such as input containing a very long timezone name. The ecpg
    library contained these vulnerabilities along with some of its own.
    (CVE-2014-0063)
  - Prevent buffer overrun due to integer overflow in size calculations.
    Several functions, mostly type input functions, calculated an allocation
    size without checking for overflow. If overflow did occur, a too-small
    buffer would be allocated and then written past. (CVE-2014-0064)
  - Prevent overruns of fixed-size buffers.
    Use strlcpy() and related functions to provide a clear guarantee that
    fixed-size buffers are not overrun. Unlike the preceding items, it is
    unclear whether these cases really represent live issues, since in most
    cases there appear to be previous constraints on the size of the input
    string. Nonetheless it seems prudent to silence all Coverity warnings of
    this type. (CVE-2014-0065)
  - Avoid crashing if crypt() returns NULL.
    There are relatively few scenarios in which crypt() could return NULL,
    but contrib/chkpass would crash if it did. One practical case in which
    this could be an issue is if libc is configured to refuse to execute
    unapproved hashing algorithms (e.g., "FIPS mode"). (CVE-2014-0066)
  - Document risks of make check in the regression testing instructions
    Since the temporary server started by make check uses "trust"
    authentication, another user on the same machine could connect to it as
    database superuser, and then potentially exploit the privileges of the
    operating-system user who started the tests. A future release will
    probably incorporate changes in the testing procedure to prevent this
    risk, but some public discussion is needed first. So for the moment,
    just warn people against using make check when there are untrusted users
    on the same machine. (CVE-2014-0067)
* The upstream tarballs no longer contain a plain HISTORY file, but point to
  the html documentation. Add 70-history.patch to note the location of these
  files in our changelog.gz file.

lp:ubuntu/precise-security/linux-meta-lowlatency Mature 2014-02-24 12:00:51 UTC 2014-02-24
32. Bump ABI

Author: Kaj Ailomaa
Revision Date: 2014-02-24 12:00:51 UTC

Bump ABI

lp:ubuntu/precise-updates/linux-meta-lowlatency Mature 2014-02-24 12:00:51 UTC 2014-02-24
32. Bump ABI

Author: Kaj Ailomaa
Revision Date: 2014-02-24 12:00:51 UTC

Bump ABI

lp:~ubuntu-cloud-archive/ubuntu/precise/flask/precise-icehouse Development 2014-02-24 11:26:11 UTC 2014-02-24
19. Upload 0.10.1-1 as 0.10.1-2build1 to ...

Author: James Page
Revision Date: 2014-02-24 11:19:59 UTC

Upload 0.10.1-1 as 0.10.1-2build1 to avoid pulling in many extra dependencies
to the Ubuntu Cloud Archive to fulfil python3 requirementswhich are
not actually used.

lp:ubuntu/precise-security/freeradius Mature 2014-02-24 09:19:58 UTC 2014-02-24
40. * SECURITY UPDATE: incorrect password...

Author: Marc Deslauriers
Revision Date: 2014-02-24 09:19:58 UTC

* SECURITY UPDATE: incorrect password expiration check
  - debian/patches/CVE-2011-4966.patch: check for both account and
    password expiration in src/modules/rlm_unix/rlm_unix.c.
  - CVE-2011-4966
* SECURITY UPDATE: denial of service and possible code execution via
  buffer overflow in rlm_pap module
  - debian/patches/CVE-2013-2015.patch: properly handle buffer size in
    src/modules/rlm_pap/rlm_pap.c.
  - CVE-2014-2015

lp:ubuntu/precise-updates/freeradius Mature 2014-02-24 09:19:58 UTC 2014-02-24
40. * SECURITY UPDATE: incorrect password...

Author: Marc Deslauriers
Revision Date: 2014-02-24 09:19:58 UTC

* SECURITY UPDATE: incorrect password expiration check
  - debian/patches/CVE-2011-4966.patch: check for both account and
    password expiration in src/modules/rlm_unix/rlm_unix.c.
  - CVE-2011-4966
* SECURITY UPDATE: denial of service and possible code execution via
  buffer overflow in rlm_pap module
  - debian/patches/CVE-2013-2015.patch: properly handle buffer size in
    src/modules/rlm_pap/rlm_pap.c.
  - CVE-2014-2015

lp:~carjay/ubuntu/precise/gcc-4.6/backport_debug_PR_54793 Development 2014-02-22 19:44:50 UTC 2014-02-22
59. Backport of PR debug/54793, fixes inc...

Author: Carsten Juttner
Revision Date: 2014-02-22 19:05:11 UTC

Backport of PR debug/54793, fixes incorrect dwarf debuginfo being generated which makes function parameters unavailable in debugging tools like systemtap or gdb.

lp:ubuntu/precise-proposed/openvswitch bug Mature 2014-02-20 22:35:37 UTC 2014-02-20
32. d/p/0011-netdev-linux-Get-carrier-fro...

Author: Chris J Arges
Revision Date: 2014-02-14 12:38:07 UTC

d/p/0011-netdev-linux-Get-carrier-from-ioctl-instead-of-sysfs.patch:
d/p/0012-netdev-linux-Cache-flags-using-netlink.patch:
Fix latency issues between VMs using OVS. (LP: #1280370)

lp:ubuntu/precise-proposed/openvswitch-lts-saucy bug Mature 2014-02-20 21:11:52 UTC 2014-02-20
2. * Backport of 1.10.2 DKMS packages to...

Author: James Page
Revision Date: 2013-12-18 14:07:51 UTC

* Backport of 1.10.2 DKMS packages to Ubuntu 12.04 to support Linux 3.11
  LTS hardware enablement kernel (LP: #1262225):
  - d/control: Drop all packages apart from -source and -dkms, add lts-saucy
    identify to source and binary packages.
  - d/p/rename-packages-lts-saucy.patch: Patch upstream Makefile to use
    lts-saucy for dkms and source packages.
  - d/rules,*: Rework for new lts-saucy naming.
  - d/tests/ma,dkms: Update for new lts-saucy naming.
  - d/tests/control: Disable openflow test as mininet post-dates 12.04.

lp:ubuntu/precise-security/linux-meta-lts-saucy Mature 2014-02-20 09:45:46 UTC 2014-02-20
6. Ubuntu-lts-3.11.0-18

Author: Brad Figg
Revision Date: 2014-02-20 09:45:46 UTC

Ubuntu-lts-3.11.0-18

lp:ubuntu/precise-security/linux-signed-lts-saucy Mature 2014-02-20 09:40:34 UTC 2014-02-20
8. Master Version 3.11.0-18.32

Author: Brad Figg
Revision Date: 2014-02-20 09:40:34 UTC

Master Version 3.11.0-18.32

lp:ubuntu/precise-security/linux-signed-lts-quantal Mature 2014-02-19 13:56:26 UTC 2014-02-19
32. Master Version 3.5.0-47.71

Author: Brad Figg
Revision Date: 2014-02-19 13:56:26 UTC

Master Version 3.5.0-47.71

lp:ubuntu/precise-security/linux-backports-modules-3.2.0 bug Mature 2014-02-18 19:47:47 UTC 2014-02-18
41. [ Brad Figg ] Bump ABI

Author: Brad Figg
Revision Date: 2014-02-18 19:47:47 UTC

[ Brad Figg ]

Bump ABI

lp:ubuntu/precise-updates/linux-backports-modules-3.2.0 Mature 2014-02-18 19:47:47 UTC 2014-02-18
41. [ Brad Figg ] Bump ABI

Author: Brad Figg
Revision Date: 2014-02-18 19:47:47 UTC

[ Brad Figg ]

Bump ABI

lp:ubuntu/precise-security/linux-meta Mature 2014-02-18 19:42:30 UTC 2014-02-18
306. [ Brad Figg ] Bump ABI

Author: Brad Figg
Revision Date: 2014-02-18 19:42:30 UTC

[ Brad Figg ]

Bump ABI

lp:ubuntu/precise-updates/linux-meta Mature 2014-02-18 19:42:30 UTC 2014-02-18
306. [ Brad Figg ] Bump ABI

Author: Brad Figg
Revision Date: 2014-02-18 19:42:30 UTC

[ Brad Figg ]

Bump ABI

lp:ubuntu/precise-updates/openvpn Mature 2014-02-18 14:35:32 UTC 2014-02-18
51. d/p/lp992012-detect-openssl-properly....

Author: Nobuto MURATA
Revision Date: 2014-02-18 14:35:32 UTC

d/p/lp992012-detect-openssl-properly.patch: fix "openssl.cnf file
could be found" error using easy-rsa by parsing openssl version
properly. (LP: #992012)

lp:ubuntu/precise-updates/deja-dup Mature 2014-02-17 17:09:35 UTC 2014-02-17
70. * debian/patches/kill-lockfile.patch ...

Author: Louis Bouchard
Revision Date: 2014-02-17 17:09:35 UTC

* debian/patches/kill-lockfile.patch
  - Backport patch from trunk that removes the lockfile placed by
    duplicity to avoid concurrency. Deja-dup avoid concurrency using
    its own method using Dbus (LP: #1281066)

lp:~stub/ubuntu/precise/pgbadger/devel Development 2014-02-17 09:07:56 UTC 2014-02-17
5. Update to 5.0

Author: Stuart Bishop
Revision Date: 2014-02-17 09:04:28 UTC

Update to 5.0

lp:ubuntu/precise-updates/runit Mature 2014-02-14 08:41:20 UTC 2014-02-14
27. [ Christoph Mathys ] * Kill runsvdir ...

Author: Christoph Mathys
Revision Date: 2012-09-11 13:14:37 UTC

[ Christoph Mathys ]
* Kill runsvdir with SIGHUP when entering runlevel [016]. Fixes LP: #245728,
  LP: #315541 & LP: #539567.

[ Francis Russell ]
* Remove installation of runsvdir.conf in obsolete location /etc/event.d.
* Modify postinst script so that it doesn't to try to grep /etc/inittab on
  initial package install if it doesn't exist.

lp:ubuntu/precise-security/maas bug Mature 2014-02-13 19:32:55 UTC 2014-02-13
17. * SECURITY UPDATE: incorrect Content-...

Author: Seth Arnold
Revision Date: 2014-02-10 22:49:35 UTC

* SECURITY UPDATE: incorrect Content-type header allowed cross-site
  scripting vulnerability if an unknown API was used. (LP: #1251336)
  - debian/patches/CVE-2013-1070.patch: Use Content-type text/plain to force
    browsers to not render error messages as HTML.
  - CVE-2013-1070
* SECURITY UPDATE: /etc/maas/txlongpoll.yaml contained a publicly readable
  password. (LP: #1254034)
  - debian/maas-region-controller.postinst: chown and chmod
    /etc/maas/txlongpoll.yaml with correct permissions
  - CVE-2013-1069

lp:ubuntu/precise-proposed/jockey bug Mature 2014-02-12 13:46:49 UTC 2014-02-12
159. * jockey/oslib.py, jockey/xorg_driver...

Author: Alberto Milone
Revision Date: 2014-02-12 11:15:25 UTC

* jockey/oslib.py, jockey/xorg_driver.py:
  - Add code to fully enable hybrid graphics when using
    Saucy's LTS stack, and the future Trusty stack
    (LP: #1279229).
* tests/hybridgraphics.py:
  - Add tests which simulate the availability of Saucy's
    and Trusty's backported stacks.

lp:~ubuntu-cloud-archive/ubuntu/precise/subunit/precise-icehouse Development 2014-02-12 11:47:10 UTC 2014-02-12
29. releasing package subunit version 0.0...

Author: James Page
Revision Date: 2014-02-12 11:47:10 UTC

releasing package subunit version 0.0.18-0ubuntu6~cloud0

lp:ubuntu/precise-updates/jockey Mature 2014-02-12 11:15:25 UTC 2014-02-12
159. * jockey/oslib.py, jockey/xorg_driver...

Author: Alberto Milone
Revision Date: 2014-02-12 11:15:25 UTC

* jockey/oslib.py, jockey/xorg_driver.py:
  - Add code to fully enable hybrid graphics when using
    Saucy's LTS stack, and the future Trusty stack
    (LP: #1279229).
* tests/hybridgraphics.py:
  - Add tests which simulate the availability of Saucy's
    and Trusty's backported stacks.

lp:~baltix/ubuntu/precise/app-install-data-partner/fix-for-missing-applications-flashplugin-skype bug(Has a merge proposal) Development 2014-02-12 10:55:20 UTC 2014-02-12
17. fixed skype.desktop - changed Exec li...

Author: Mantas Kriaučiūnas
Revision Date: 2012-11-14 17:50:46 UTC

fixed skype.desktop - changed Exec line to 'Exec=skype'; added desktop/acroread.desktop and icons/acroread.png from lp:app-install-data-commercial rev.45 (12.11.04.2)

lp:ubuntu/precise-security/libav bug Mature 2014-02-11 17:03:13 UTC 2014-02-11
26. Update to 0.8.10 to fix multiple secu...

Author: Marc Deslauriers
Revision Date: 2014-02-06 12:10:23 UTC

Update to 0.8.10 to fix multiple security issues (LP: #1277173)

lp:ubuntu/precise-security/libav-extra Mature 2014-02-11 09:30:06 UTC 2014-02-11
27. * Rebuild against new libav - debia...

Author: Marc Deslauriers
Revision Date: 2014-02-11 09:30:06 UTC

* Rebuild against new libav
  - debian/control: bump Build-Depends

lp:ubuntu/precise-updates/libav-extra Mature 2014-02-11 09:30:06 UTC 2014-02-11
27. * Rebuild against new libav - debia...

Author: Marc Deslauriers
Revision Date: 2014-02-11 09:30:06 UTC

* Rebuild against new libav
  - debian/control: bump Build-Depends

lp:ubuntu/precise-updates/maas Mature 2014-02-10 22:49:35 UTC 2014-02-10
17. * SECURITY UPDATE: incorrect Content-...

Author: Seth Arnold
Revision Date: 2014-02-10 22:49:35 UTC

* SECURITY UPDATE: incorrect Content-type header allowed cross-site
  scripting vulnerability if an unknown API was used. (LP: #1251336)
  - debian/patches/CVE-2013-1070.patch: Use Content-type text/plain to force
    browsers to not render error messages as HTML.
  - CVE-2013-1070
* SECURITY UPDATE: /etc/maas/txlongpoll.yaml contained a publicly readable
  password. (LP: #1254034)
  - debian/maas-region-controller.postinst: chown and chmod
    /etc/maas/txlongpoll.yaml with correct permissions
  - CVE-2013-1069

lp:ubuntu/precise-updates/libgadu Mature 2014-02-10 18:50:56 UTC 2014-02-10
18. * SECURITY UPDATE: buffer overflow in...

Author: Marc Deslauriers
Revision Date: 2014-02-07 09:10:08 UTC

* SECURITY UPDATE: buffer overflow in gadu-gadu HTTP parsing
  - debian/patches/CVE-2013-6487.patch: limit length in src/http.c.
  - CVE-2013-6487

lp:ubuntu/precise-security/libgadu Mature 2014-02-10 18:07:45 UTC 2014-02-10
18. * SECURITY UPDATE: buffer overflow in...

Author: Marc Deslauriers
Revision Date: 2014-02-07 09:10:08 UTC

* SECURITY UPDATE: buffer overflow in gadu-gadu HTTP parsing
  - debian/patches/CVE-2013-6487.patch: limit length in src/http.c.
  - CVE-2013-6487

lp:~smoser/ubuntu/precise/cloud-init/precise-lp-1244355 (Has a merge proposal) Development 2014-02-10 16:00:56 UTC 2014-02-10
203. mark unreleased

Author: Scott Moser
Revision Date: 2014-02-10 16:00:04 UTC

mark unreleased

lp:ubuntu/precise-updates/lmms Mature 2014-02-07 12:52:35 UTC 2014-02-07
33. * Backported changes from 13.04's pac...

Author: Daniel T Chen
Revision Date: 2013-04-25 11:16:48 UTC

* Backported changes from 13.04's packaging:
  - installed desktop file so that the program is noticeable to users
    (LP: #863366);
  - adjusted versioned dependency on -common so that package upgrades
    can succeed (LP: #1152807).

lp:ubuntu/precise-updates/gnome-bluetooth Mature 2014-02-06 22:05:52 UTC 2014-02-06
76. debian/patches/99_add_microsoft_mice....

Author: Daniel Holbach
Revision Date: 2013-08-05 10:06:29 UTC

debian/patches/99_add_microsoft_mice.patch: add Microsoft Sculpt/Wedge
mouse (LP: #1094744, LP: #1158462). Thanks, Marcos Barbosa, Anton Anikin
and Anthony Wong for the patch.

lp:~pali/ubuntu/precise/llvm-toolchain-3.4/llvm-toolchain-3.4 Development 2014-02-06 16:14:52 UTC 2014-02-06
14. Do not fail on tests

Author: Pali
Revision Date: 2013-12-23 20:24:58 UTC

Do not fail on tests

lp:ubuntu/precise-proposed/fglrx-pxpress bug Mature 2014-02-06 13:57:37 UTC 2014-02-06
3. * debian/amd-config.conf: - Convert...

Author: Alberto Milone
Revision Date: 2014-02-06 14:09:34 UTC

* debian/amd-config.conf:
  - Convert to a task job, as this is just a short
    lived job.
* amd-xconfig{.in}:
  - Fix laptop detection. This was causing the job to
    get stuck in an endless loop (LP: #1277058).

lp:ubuntu/precise-updates/fglrx-pxpress Mature 2014-02-06 13:57:37 UTC 2014-02-06
3. * debian/amd-config.conf: - Convert...

Author: Alberto Milone
Revision Date: 2014-02-06 14:09:34 UTC

* debian/amd-config.conf:
  - Convert to a task job, as this is just a short
    lived job.
* amd-xconfig{.in}:
  - Fix laptop detection. This was causing the job to
    get stuck in an endless loop (LP: #1277058).

lp:ubuntu/precise-proposed/nginx bug Mature 2014-02-06 12:55:56 UTC 2014-02-06
57. Enable building of the http_stub_stat...

Author: Thomas Ward
Revision Date: 2014-01-31 11:02:23 UTC

Enable building of the http_stub_status_module in nginx-naxsi, which was
apparently not marked for compiling even though it's listed in the package
description. (LP: #1170586)

lp:ubuntu/precise-updates/libav Mature 2014-02-06 12:10:23 UTC 2014-02-06
26. Update to 0.8.10 to fix multiple secu...

Author: Marc Deslauriers
Revision Date: 2014-02-06 12:10:23 UTC

Update to 0.8.10 to fix multiple security issues (LP: #1277173)

lp:ubuntu/precise-updates/xubuntu-docs Mature 2014-02-05 15:43:33 UTC 2014-02-05
32. [ Pasi Lallinaho] * Backport the look...

Author: Sean Davis
Revision Date: 2014-01-25 07:02:36 UTC

[ Pasi Lallinaho]
* Backport the looks from 12.10+ documentation.

[ Jack Fromm ]
* Update application menu paths to reflect their state in 12.04
* Update application names and GUI labels
* Add or remove steps to instructions where applicable

[ Stephen Michael Kellat ]
* Prepare for Stable Release Update (Closes LP: #1207493)

[ Sean Davis ]
* Prepare packaging for SRU

lp:ubuntu/precise-updates/partman-crypto Mature 2014-02-03 18:18:35 UTC 2014-02-03
43. * Backport support for, and use by de...

Author: Dimitri John Ledkov
Revision Date: 2014-01-22 12:25:11 UTC

* Backport support for, and use by default, xts-plain64. (LP: #1263740) (closes: #482092)
  - Double key size if xts mode is selected.

lp:ubuntu/precise-updates/lightdm bug Mature 2014-02-03 12:13:23 UTC 2014-02-03
75. [ Robert Ancell ] * debian/patches/06...

Author: Alberto Milone
Revision Date: 2013-12-18 14:31:49 UTC

[ Robert Ancell ]
* debian/patches/06_config_directory.patch:
  - Backport conf.d configuration support (LP: #1190425)

[ Alberto Milone ]
* debian/patches/07_add_display-stopped-script.patch:
  - Backport support for the display-stopped-script entry
    in the configuration file (LP: #1259237)

lp:ubuntu/precise-updates/sl-modem Mature 2014-02-03 12:13:07 UTC 2014-02-03
32. * Backport fixes from trusty for comp...

Author: Steve Langasek
Revision Date: 2013-12-04 22:44:28 UTC

* Backport fixes from trusty for compatibility with current LTS kernels:
  - Added remove__devinitdata.diff patch (also refreshed
    08_ungrab_winmodem.diff) to remove __devinitdata, as it is no longer
    needed, and it causes build failures on 3.8.x kernels.
    Thanks to Marvin Stodolsky <marvin.stodolsky@gmail.com>.
    LP: #1155418.

lp:ubuntu/precise-updates/gnash Mature 2014-02-03 11:44:02 UTC 2014-02-03
41. * New upstream patch: + debian/patc...

Author: Thomas Ward
Revision Date: 2014-01-24 12:54:40 UTC

* New upstream patch:
  + debian/patches/fix-ffmpeg-media-handler.patch:
    - Include upstream patch and changes to fix an issue where the ffmpeg
      media handler does not work due to deprecated api. (LP: #1253468)

lp:ubuntu/precise-updates/nginx Mature 2014-01-31 11:02:23 UTC 2014-01-31
57. Enable building of the http_stub_stat...

Author: Thomas Ward
Revision Date: 2014-01-31 11:02:23 UTC

Enable building of the http_stub_status_module in nginx-naxsi, which was
apparently not marked for compiling even though it's listed in the package
description. (LP: #1170586)

lp:ubuntu/precise-security/curl bug Mature 2014-01-31 08:35:16 UTC 2014-01-31
64. * SECURITY UPDATE: information disclo...

Author: Marc Deslauriers
Revision Date: 2014-01-31 08:35:16 UTC

* SECURITY UPDATE: information disclosure via incorrect NTLM credential
  reuse
  - debian/patches/CVE-2014-0015.patch: don't reuse connections if NTLM
    auth is used in lib/url.c.
  - CVE-2014-0015

lp:ubuntu/precise-updates/curl Mature 2014-01-31 08:35:16 UTC 2014-01-31
64. * SECURITY UPDATE: information disclo...

Author: Marc Deslauriers
Revision Date: 2014-01-31 08:35:16 UTC

* SECURITY UPDATE: information disclosure via incorrect NTLM credential
  reuse
  - debian/patches/CVE-2014-0015.patch: don't reuse connections if NTLM
    auth is used in lib/url.c.
  - CVE-2014-0015

lp:ubuntu/precise-security/libotr bug Mature 2014-01-30 02:49:49 UTC 2014-01-30
14. * SECURITY UPDATE: disable insecure O...

Author: Felix Geyer
Revision Date: 2014-01-04 13:22:42 UTC

* SECURITY UPDATE: disable insecure OTRv1 protocol to prevent downgrade
  attacks (LP: #1266016)
  - Add disable_otr_v1.patch, patch taken from Debian

lp:~utlemming/ubuntu/precise/cloud-init/lp1272115 bug Development 2014-01-28 21:39:32 UTC 2014-01-28
200. * debian/patches/lp-1272115-fix_smart...

Author: Ben Howard
Revision Date: 2014-01-28 19:43:59 UTC

* debian/patches/lp-1272115-fix_smartos_compliance.patch: Fix compliance for
  SmartOS data handling (LP: #1272115):
  - cloud-init user-data is now named spaced as "cloud-init:user-data"
  - user-data is written to /var/db/mdata-user-data
  - user-scripts are fetched and executed each boot
  - datacenter/region is now named spaced as "sdc:datacenter"

lp:ubuntu/precise-updates/stunnel4 Mature 2014-01-28 18:34:22 UTC 2014-01-28
13. * SECURITY UPDATE: arbitrary code exe...

Author: Marc Deslauriers
Revision Date: 2014-01-28 07:47:59 UTC

* SECURITY UPDATE: arbitrary code execution via NTLM auth (LP: #1150150)
  - debian/patches/CVE-2013-1762.patch: properly handle length in
    src/protocol.c.
  - CVE-2013-1762

lp:ubuntu/precise-security/stunnel4 bug Mature 2014-01-28 17:55:35 UTC 2014-01-28
13. * SECURITY UPDATE: arbitrary code exe...

Author: Marc Deslauriers
Revision Date: 2014-01-28 07:47:59 UTC

* SECURITY UPDATE: arbitrary code execution via NTLM auth (LP: #1150150)
  - debian/patches/CVE-2013-1762.patch: properly handle length in
    src/protocol.c.
  - CVE-2013-1762

lp:ubuntu/precise-proposed/gnash bug Mature 2014-01-28 17:28:09 UTC 2014-01-28
41. * New upstream patch: + debian/patc...

Author: Thomas Ward
Revision Date: 2014-01-24 12:54:40 UTC

* New upstream patch:
  + debian/patches/fix-ffmpeg-media-handler.patch:
    - Include upstream patch and changes to fix an issue where the ffmpeg
      media handler does not work due to deprecated api. (LP: #1253468)

lp:ubuntu/precise-proposed/fglrx-installer-experimental-13 bug Mature 2014-01-28 10:46:15 UTC 2014-01-28
4. * New upstream release (LP: #1272311)...

Author: Alberto Milone
Revision Date: 2014-01-24 16:30:19 UTC

* New upstream release (LP: #1272311):
  - Added support for the following products:
    AMD A10-7850K Desktop APU with AMD Radeon R7 Series graphics
    AMD A10-7700K Desktop APU with AMD Radeon R5 Series graphics
* debian/fglrx.postinst.in:
  Select the discrete card on first installation on intel+amd.
* debian/dkms.conf.in,
  debian/dkms/patches/buildfix_kernel_3.12.patch,
  debian/dkms/patches/buildfix_kernel_3.13.patch:
  - Add support for Linux 3.11-3.13 (LP: #1262238).
  - Drop replace_old_procfs_calls.patch.
* debian/fglrx-experimental-13.dirs.in:
  - Add /usr/share/applications
* debian/substvars:
  - Add support for X ABI 14 and xserver-xorg-core-lts-saucy.

lp:ubuntu/precise-proposed/fglrx-installer bug Mature 2014-01-28 10:45:01 UTC 2014-01-28
87. * New upstream release: - Add suppo...

Author: Alberto Milone
Revision Date: 2013-12-18 17:50:31 UTC

* New upstream release:
  - Add support for AMD A10, A8, A6, and A4 Series APUs.
  - Add GLX_EXT_buffer_age extension support.
  - Add Xserver 1.14 Support.
  - [371937] Fix black screen while entering Team
    Fortress 2 under cinnamon desktop environment.
  - [366812] Fix tearing for some OpenGL applications
    with VSYNC on or off.
  - [373575] Fix taskbar missing after UVD playback
    on Ubuntu 12.04.
  - [370955] Fix corruption in Team Fortress 2 when
    running Dustbowl map.
  - [377199] Fix the error for APL initialization
    failure.
  - [378086] Fix screen corruption when kill X on
    Ubuntu 13.04.
  - [374657] Fix some WebGL conformance test
    failures.
  - [377379] Fix the regression of performance drop
    with XBMC for UVD playback.
* debian/substvars:
  - Add support for X ABI up to 14 and xservers up to
    xserver-xorg-core-lts-saucy.
* debian/rules:
  - Sign the driver to remove the watermark.
* debian/dkms.conf.in, buildfix_kernel_3.12.patch:
  - Add support for Linux 3.12.
  - Add proper support for Linux 3.11 (LP: #1262238).

101200 of 28005 results