lp:~ubuntu-core-dev/ubuntu/bionic/apport/ubuntu

Created by Brian Murray on 2017-11-08 and last modified on 2017-12-15
Get this branch:
bzr branch lp:~ubuntu-core-dev/ubuntu/bionic/apport/ubuntu
Members of Ubuntu Core Development Team can upload to this branch. Log in for directions.

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu Core Development Team
Status:
Development

Recent revisions

2602. By Brian Murray on 2017-12-15

releasing package apport version 2.20.8-0ubuntu5

2601. By Brian Murray on 2017-12-15

data/apport: add an exception handler in case either name space can not be
found.

2600. By Brian Murray on 2017-12-13

releasing package apport version 2.20.8-0ubuntu4

2599. By Brian Murray on 2017-12-13

Merge in doko's python3 upload

2598. By Brian Murray on 2017-12-13

releasing package apport version 2.20.8-0ubuntu3

2597. By Brian Murray on 2017-12-13

data/apport: add a second os.path.exists check to ensure we do not
receive a Traceback in is_container_id(). (LP: #1733366)

2596. By Brian Murray on 2017-11-20

releasing package apport version 2.20.8-0ubuntu2

2595. By Brian Murray on 2017-11-20

* REGRESSION UPDATE: Fix regression in previous upload by re-enabling
  container support. (LP: #1732518)
* Add code preventing a user from confusing apport by using
  a manually crafted filesystem inside a combination of a user and mount
  namespace.
* Add a check in apport receiver for the number of arguments so that
  should another argument be added later, the receiver will simply ignore
  the crash until it itself gets updated.

2594. By Brian Murray on 2017-11-15

releasing package apport version 2.20.8-0ubuntu1

2593. By Brian Murray on 2017-11-15

 * New upstream release:
   - SECURITY UPDATE: Denial of service via resource exhaustion and
     privilege escalation when handling crashes of tainted processes.
   - When /proc/sys/fs/suid_dumpable is set to 2, do not assume that
     the user and group owning the /proc/<PID>/stat file is the same
     owner and group that started the process. Rather check the dump
     mode of the crashed process and do not write a core file if its
     value is 2. Thanks to Sander Bos for discovering this issue!
     (CVE-2017-14177, LP: #1726372)
   - SECURITY UPDATE: Denial of service via resource exhaustion,
     privilege escalation, and possible container escape when handling
     crashes of processes inside PID namespaces.
   - Change the method for determining if a crash is from a container
     so that there are no false positives from software using PID
     namespaces. Additionally, disable container crash forwarding by
     ignoring crashes that occur in a PID namespace. This functionality
     may be re-enabled in a future update. Thanks to Sander Bos for
     discovering this issue!
     (CVE-2017-14180, LP: #1726372)
 * apport/hookutils.py: modify package_versions to return an empty string if
   packages is empty. (LP: #1723822)

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
This branch contains Public information 
Everyone can see this information.