All Ubuntu package versions


AllUtopicTrustySaucyPreciseLucidAll PPAs
DashboardRecent Search QueriesSearch Statistics
Alphabetical listSearchBugs
CommentsResqueStathatMemoryTracker

Latest updates with changelog for all releases

Show updated packages for:
All releases Lucid Precise Saucy Trusty Utopic
Include all PPAs Exclude daily builds PPAs Exclude all PPAs
Include levels: backportsproposedsecuritybaseupdates

Note: Only updates for "head" packages where the changelog is available are shown on this page (view all).

linux-backports-modules-3.2.0 03-05 23:06 UTC
Release: precise Repo: main Level: proposed New version: 3.2.0-78.70
Packages in group:  linux-backports-modules-cw-3.10-3.2.0-57-generic linux-backports-modules-cw-3.10-3.2.0-57-generic-pae linux-backports-modules-cw-3.10-3.2.0-57-virtual linux-backports-modules-cw-3.10-3.2.0-58-generic linux-backports-modules-cw-3.10-3.2.0-58-generic-pae linux-backports-modules-cw-3.10-3.2.0-58-virtual linux-backports-modules-cw-3.10-3.2.0-59-generic linux-backports-modules-cw-3.10-3.2.0-59-generic-pae linux-backports-modules-cw-3.10-3.2.0-59-virtual linux-backports-modules-cw-3.10-3.2.0-60-generic linux-backports-modules-cw-3.10-3.2.0-60-generic-pae (... see all)

  linux-backports-modules-3.2.0 (3.2.0-78.70) precise; urgency=low

  [ Seth Forshee ]

  * Bump ABI
 -- Seth Forshee <email address hidden> Tue, 03 Mar 2015 09:57:19 -0600


linux-meta 03-05 23:06 UTC
Release: precise Repo: main Level: proposed New version: 3.2.0.78.92
Packages in group:  linux linux-backports-modules-cw-3.10-precise-generic linux-backports-modules-cw-3.10-precise-generic-pae linux-backports-modules-cw-3.11-precise-generic linux-backports-modules-cw-3.11-precise-generic-pae linux-backports-modules-cw-3.12-precise-generic linux-backports-modules-cw-3.12-precise-generic-pae linux-backports-modules-cw-3.3-precise-generic linux-backports-modules-cw-3.3-precise-generic-pae linux-backports-modules-cw-3.4-precise-generic linux-backports-modules-cw-3.4-precise-generic-pae (... see all)

  linux-meta (3.2.0.78.92) precise; urgency=medium

  [ Seth Forshee ]

  * Bump ABI
 -- Seth Forshee <email address hidden> Tue, 03 Mar 2015 09:49:13 -0600


oxide-qt 03-05 19:08 UTC
This package belongs to a PPA: Ubuntu Mozilla Security
Release: trusty Repo: main Level: base New version: 1.5.5-0ubuntu0.14.04.2
Packages in group:  liboxideqtcore0 liboxideqt-qmlplugin liboxideqtquick0 oxideqmlscene oxideqt-chromedriver oxideqt-codecs oxideqt-codecs-dbg oxideqt-codecs-extra oxideqt-codecs-extra-dbg oxideqt-dbg

 oxide-qt (1.5.5-0ubuntu0.14.04.2) trusty-security; urgency=medium
 .
   * Update to v1.5.5 - see USN-2521-1
     - Bump Chromium rev to 41.0.2272.76
     - Fix LP: #1427828 - Crash in WebFrame.sendMessageNoReply
     - Fix LP: #1411159 - Add work-around for shutdown crash in
       content::GpuChannelHost::Send, by deliberately leaking the
       cc::ContextProvider referenced by any task posted to the UI thread if
       the task never got a chance to run and is destroyed when the main loop
       is torn down. Note that 1.6 has the longer term fix for this crash.
     - Fix LP: #1421339 - Two scrollbars shown on the phone at a page scale of 1.
       + This is fixed by disabling the outer viewport scrollbars when
         pinch-viewport is on (copying Chrome on Android).
       + Also style the pinch viewport overlay scrollbars like Chrome on Android,
         as opposed to using the default desktop style that are designed to be
         dragged with a pointer
     - Fix LP: #1423531 - LoadEvent.isError is false for the error page if the
       navigation is triggered from a session restore or reload
     - Fix LP: #1402975 - set a minimum viewport width of 980px on mobile
       for sites that don't specify a viewport width. Fixes layout of some
       desktop sites, and matches the behaviour of Chrome on Android
     - Fix LP: #1412981 - Geolocation permission requests from subframes are
       not cancelled if the frame is deleted or navigated to another site
     - Fix LP: #1379776 - Spoof Android for the purposes of GPU feature
       blacklisting on the phone. This means accelerated 2d canvas is now
       enabled on all devices that Chrome enables it on (including the Nexus 4),
       and other GPU features (eg, GPU rasterization) are enabled on devices
       where Chrome supports it
     - Fix LP: #1370366 - Add LocationBarController API, which allows the
       renderer compositor to calculate the position of the browser top header.
       This enables the header to be animated in sync with the content on
       scrolling
     - Fix LP: #1408136 - Committed LoadEvents fire for subframe loads when
       they shouldn't
     - Fix LP: #1377198 - CertificateError is not cancelled if you stop the
       pending navigation
     - Fix LP: #1373383 - The video player on Youtube does not resize correctly
       when transitioning from landscape to portrait. Ensure we correctly
       update the screen geometry and orientation visible to web content when
       the device orientation changes, and turn on orientation events
     - Really fix LP: #1337506 - Abort with
       "FATAL:texture_manager.cc(76)] Check failed: texture_count_ == 0u (1 vs. 0)"
       on shutdown
     - Fix LP: #1398044 - Fails to build with Qt 5.4
     - Fix LP: #1249387 - Add experimental support for playing audio through
       mediahub with the HTML media elements (Off by default. Video and
       MediaSource are not yet implemented. Not built yet because it depends
  

(See more...)
1417963 webbrowser-app autopilot test regression with Qt 5.4
1417042 pinch-to-unzoom gesture resets zoom level to max in google maps
1249387 hook Oxide into Ubuntu platform API for media-hub
1398044 oxide-qt fails to build against Qt 5.4.0
1337506 FATAL:texture_manager.cc(76)] Check failed: texture_count_ == 0u (1 vs. 0)
More...

apache2 03-05 19:06 UTC
Release: trusty Repo: universe Level: proposed New version: 1:2.4.7-1ubuntu4.2
Packages in group:  apache2-mpm-itk apache2-suexec apache2-suexec-custom apache2-suexec-pristine libapache2-mod-proxy-html

  apache2 (2.4.7-1ubuntu4.2) trusty; urgency=medium

  * d/p/ocsp-stapling-memory-corruption.patch: fix crash on startup due
    to memory corruption while modules are reloaded (LP: #1366174).
    Thanks to Alex Bligh for reporting, debugging, fixing upstream,
    backporting and driving this fix through to Trusty.
 -- Robie Basak <email address hidden> Thu, 26 Feb 2015 18:11:56 +0000

1366174 apache2 SEGV with multiple SSL sites

exo 03-05 19:06 UTC
Release: trusty Repo: universe Level: proposed New version: 0.10.2-3ubuntu1.14.04.2
Packages in group:  exo-utils exo-utils-dbg libexo-1-0 libexo-1-0-dbg libexo-1-dev libexo-common libexo-helpers

  exo (0.10.2-3ubuntu1.14.04.2) trusty-proposed; urgency=medium

  * Fix firefox helper being unable to open URLs (LP: #1425972)
 -- Sean Davis <email address hidden> Wed, 04 Mar 2015 19:02:35 -0500

1425972 Firefox no longer supports -remote parameter

apache2 03-05 19:06 UTC
Release: trusty Repo: main Level: proposed New version: 2.4.7-1ubuntu4.2
Packages in group:  apache2.2-bin apache2-bin apache2-data apache2-dbg apache2-dev apache2-doc apache2-mpm-event apache2-mpm-prefork apache2-mpm-worker apache2-utils libapache2-mod-macro (... see all)

  apache2 (2.4.7-1ubuntu4.2) trusty; urgency=medium

  * d/p/ocsp-stapling-memory-corruption.patch: fix crash on startup due
    to memory corruption while modules are reloaded (LP: #1366174).
    Thanks to Alex Bligh for reporting, debugging, fixing upstream,
    backporting and driving this fix through to Trusty.
 -- Robie Basak <email address hidden> Thu, 26 Feb 2015 18:11:56 +0000

1366174 apache2 SEGV with multiple SSL sites

openssl 03-05 19:06 UTC
Release: precise Repo: main Level: proposed New version: 1.0.1-4ubuntu5.22
Packages in group:  libssl1.0.0 libssl1.0.0-dbg libssl-dev libssl-doc

  openssl (1.0.1-4ubuntu5.22) precise; urgency=medium

  * Fix DTLS handshake on amd64 (LP: #1425914)
    - debian/patches/lp1425914.patch: backport upstream patch that fixes
      alignment issue causing an assert in ssl/ssl_ciph.c.
 -- Marc Deslauriers <email address hidden> Thu, 26 Feb 2015 13:05:15 -0500

1425914 DTLS handshake broken - precise x64

nautilus 03-05 18:06 UTC
Release: utopic Repo: main Level: updates New version: 1:3.10.1-0ubuntu15.1
Packages in group:  gir1.2-nautilus-3.0 libnautilus-extension1a libnautilus-extension-dev nautilus-data nautilus-dbg

  nautilus (1:3.10.1-0ubuntu15.1) utopic; urgency=medium

  * debian/patches/git_fix_copy_paste.patch:
    - "nautilus-list-view: Fix copy, paste not working randomly" (lp: #1322925)
 -- Miklos Juhasz <email address hidden> Thu, 08 Jan 2015 13:30:27 +0100

1322925 Copy, paste stops working randomly in Ubuntu 14.04 nautilus

oxide-qt 03-05 16:08 UTC
This package belongs to a PPA: Ubuntu Mozilla Security
Release: utopic Repo: main Level: base New version: 1.5.5-0ubuntu0.14.10.2
Packages in group:  liboxideqtcore0 liboxideqt-qmlplugin liboxideqtquick0 oxideqmlscene oxideqt-chromedriver oxideqt-codecs oxideqt-codecs-dbg oxideqt-codecs-extra oxideqt-codecs-extra-dbg oxideqt-dbg

 oxide-qt (1.5.5-0ubuntu0.14.10.2) utopic-security; urgency=medium
 .
   * Update to v1.5.5 - see USN-2521-1
     - Bump Chromium rev to 41.0.2272.76
     - Fix LP: #1427828 - Crash in WebFrame.sendMessageNoReply
     - Fix LP: #1411159 - Add work-around for shutdown crash in
       content::GpuChannelHost::Send, by deliberately leaking the
       cc::ContextProvider referenced by any task posted to the UI thread if
       the task never got a chance to run and is destroyed when the main loop
       is torn down. Note that 1.6 has the longer term fix for this crash.
     - Fix LP: #1421339 - Two scrollbars shown on the phone at a page scale of 1.
       + This is fixed by disabling the outer viewport scrollbars when
         pinch-viewport is on (copying Chrome on Android).
       + Also style the pinch viewport overlay scrollbars like Chrome on Android,
         as opposed to using the default desktop style that are designed to be
         dragged with a pointer
     - Fix LP: #1423531 - LoadEvent.isError is false for the error page if the
       navigation is triggered from a session restore or reload
     - Fix LP: #1402975 - set a minimum viewport width of 980px on mobile
       for sites that don't specify a viewport width. Fixes layout of some
       desktop sites, and matches the behaviour of Chrome on Android
     - Fix LP: #1412981 - Geolocation permission requests from subframes are
       not cancelled if the frame is deleted or navigated to another site
     - Fix LP: #1379776 - Spoof Android for the purposes of GPU feature
       blacklisting on the phone. This means accelerated 2d canvas is now
       enabled on all devices that Chrome enables it on (including the Nexus 4),
       and other GPU features (eg, GPU rasterization) are enabled on devices
       where Chrome supports it
     - Fix LP: #1370366 - Add LocationBarController API, which allows the
       renderer compositor to calculate the position of the browser top header.
       This enables the header to be animated in sync with the content on
       scrolling
     - Fix LP: #1408136 - Committed LoadEvents fire for subframe loads when
       they shouldn't
     - Fix LP: #1377198 - CertificateError is not cancelled if you stop the
       pending navigation
     - Fix LP: #1373383 - The video player on Youtube does not resize correctly
       when transitioning from landscape to portrait. Ensure we correctly
       update the screen geometry and orientation visible to web content when
       the device orientation changes, and turn on orientation events
     - Really fix LP: #1337506 - Abort with
       "FATAL:texture_manager.cc(76)] Check failed: texture_count_ == 0u (1 vs. 0)"
       on shutdown
     - Fix LP: #1398044 - Fails to build with Qt 5.4
     - Fix LP: #1249387 - Add experimental support for playing audio through
       mediahub with the HTML media elements (Off by default. Video and
       MediaSource are not yet implemented. Not built yet because it depends
  

(See more...)
1417963 webbrowser-app autopilot test regression with Qt 5.4
1417042 pinch-to-unzoom gesture resets zoom level to max in google maps
1249387 hook Oxide into Ubuntu platform API for media-hub
1398044 oxide-qt fails to build against Qt 5.4.0
1337506 FATAL:texture_manager.cc(76)] Check failed: texture_count_ == 0u (1 vs. 0)
More...

oracle-java8-installer 03-05 15:08 UTC
This package belongs to a PPA: Webupd8 Java
Release: utopic Repo: main Level: base New version: 8u40+8u33arm-1~webupd8~0
Packages in group:  oracle-java8-set-default oracle-java8-unlimited-jce-policy

 oracle-java8-installer (8u40+8u33arm-1~webupd8~0) lucid; urgency=medium
 .
   * New Java release


oracle-java8-installer 03-05 15:08 UTC
This package belongs to a PPA: Webupd8 Java
Release: trusty Repo: main Level: base New version: 8u40+8u33arm-1~webupd8~0
Packages in group:  oracle-java8-set-default oracle-java8-unlimited-jce-policy

 oracle-java8-installer (8u40+8u33arm-1~webupd8~0) lucid; urgency=medium
 .
   * New Java release


oracle-java8-installer 03-05 15:08 UTC
This package belongs to a PPA: Webupd8 Java
Release: precise Repo: main Level: base New version: 8u40+8u33arm-1~webupd8~0
Packages in group:  oracle-java8-set-default oracle-java8-unlimited-jce-policy

 oracle-java8-installer (8u40+8u33arm-1~webupd8~0) lucid; urgency=medium
 .
   * New Java release


icu 03-05 15:06 UTC
Release: utopic Repo: main Level: updates New version: 52.1-6ubuntu0.2
Packages in group:  icu-devtools icu-doc libicu52 libicu52-dbg libicu-dev

  icu (52.1-6ubuntu0.2) utopic-security; urgency=medium

  * SECURITY UPDATE: information disclosure via incorrect font file parsing
    - debian/patches/CVE-2014-65xx.patch: add checks to
      source/layout/ContextualSubstSubtables.cpp,
      source/layout/CursiveAttachmentSubtables.cpp,
      source/layout/Features.cpp,
      source/layout/LETableReference.h,
      source/layout/LigatureSubstSubtables.cpp,
      source/layout/MultipleSubstSubtables.cpp.
    - CVE-2014-6585
    - CVE-2014-6591
  * SECURITY UPDATE: denial of service or possible code execution in
    regular expressions
    - debian/patches/CVE-2014-7923.patch: add limits to
      source/i18n/regexcmp.cpp, add test to
      source/test/testdata/regextst.txt.
    - CVE-2014-7923
  * SECURITY UPDATE: denial of service or possible code execution in
    regular expressions
    - debian/patches/CVE-2014-7926.patch: fix incorrect optimization in
      source/i18n/regexcmp.cpp, fix comment in source/i18n/regexcmp.h,
      add test to source/test/testdata/regextst.txt.
    - CVE-2014-7926
  * SECURITY UPDATE: denial of service or possible code execution via
    uninitialized memory in the collator implementation
    - debian/patches/CVE-2014-7940.patch: properly handle memory in
      source/i18n/ucol.cpp.
    - CVE-2014-7940
  * SECURITY UPDATE: denial of service via incorrect pattern size limits
    - debian/patches/CVE-2014-9654.patch: check limits in
      source/common/unicode/utypes.h, source/common/utypes.c,
      source/i18n/regexcmp.cpp, source/i18n/regexcmp.h,
      source/i18n/regeximp.h, added test to
      source/test/intltest/regextst.cpp, source/test/intltest/regextst.h.
    - CVE-2014-9654
 -- Marc Deslauriers <email address hidden> Wed, 04 Mar 2015 11:33:14 -0500

CVE-2014-7940 The collator implementation in i18n/ucol.cpp in International Components for Unicode (ICU) 52 through SVN revision 293126, as used in Google Chrome b
CVE-2014-7926 The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.221
CVE-2014-7923 The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.221
CVE-2014-6591 Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality v
CVE-2014-6585 Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors reelat

icu 03-05 15:06 UTC
Release: trusty Repo: main Level: updates New version: 52.1-3ubuntu0.2
Packages in group:  icu-devtools icu-doc libicu52 libicu52-dbg libicu-dev

  icu (52.1-3ubuntu0.2) trusty-security; urgency=medium

  * SECURITY UPDATE: information disclosure via incorrect font file parsing
    - debian/patches/CVE-2014-65xx.patch: add checks to
      source/layout/ContextualSubstSubtables.cpp,
      source/layout/CursiveAttachmentSubtables.cpp,
      source/layout/Features.cpp,
      source/layout/LETableReference.h,
      source/layout/LigatureSubstSubtables.cpp,
      source/layout/MultipleSubstSubtables.cpp.
    - CVE-2014-6585
    - CVE-2014-6591
  * SECURITY UPDATE: denial of service or possible code execution in
    regular expressions
    - debian/patches/CVE-2014-7923.patch: add limits to
      source/i18n/regexcmp.cpp, add test to
      source/test/testdata/regextst.txt.
    - CVE-2014-7923
  * SECURITY UPDATE: denial of service or possible code execution in
    regular expressions
    - debian/patches/CVE-2014-7926.patch: fix incorrect optimization in
      source/i18n/regexcmp.cpp, fix comment in source/i18n/regexcmp.h,
      add test to source/test/testdata/regextst.txt.
    - CVE-2014-7926
  * SECURITY UPDATE: denial of service or possible code execution via
    uninitialized memory in the collator implementation
    - debian/patches/CVE-2014-7940.patch: properly handle memory in
      source/i18n/ucol.cpp.
    - CVE-2014-7940
  * SECURITY UPDATE: denial of service via incorrect pattern size limits
    - debian/patches/CVE-2014-9654.patch: check limits in
      source/common/unicode/utypes.h, source/common/utypes.c,
      source/i18n/regexcmp.cpp, source/i18n/regexcmp.h,
      source/i18n/regeximp.h, added test to
      source/test/intltest/regextst.cpp, source/test/intltest/regextst.h.
    - CVE-2014-9654
  * debian/patches/two-digit-year-test.patch: fix FTBFS caused by known
    test suite failure.
 -- Marc Deslauriers <email address hidden> Wed, 04 Mar 2015 11:30:28 -0500

CVE-2014-7940 The collator implementation in i18n/ucol.cpp in International Components for Unicode (ICU) 52 through SVN revision 293126, as used in Google Chrome b
CVE-2014-7926 The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.221
CVE-2014-7923 The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.221
CVE-2014-6591 Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality v
CVE-2014-6585 Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors reelat

icu 03-05 15:06 UTC
Release: precise Repo: main Level: updates New version: 4.8.1.1-3ubuntu0.3
Packages in group:  icu-doc libicu48 libicu48-dbg libicu-dev

  icu (4.8.1.1-3ubuntu0.3) precise-security; urgency=medium

  * SECURITY UPDATE: multiple issues via incorrect font file parsing
    - debian/patches/layoutengine-security.patch: backport a whole new
      layout engine to source/layout/*, as provided by upstream.
    - CVE-2013-1569
    - CVE-2013-2383
    - CVE-2013-2384
    - CVE-2013-2419
  * SECURITY UPDATE: information disclosure via incorrect font file parsing
    - debian/patches/CVE-2014-65xx.patch: add checks to
      source/layout/ContextualSubstSubtables.cpp,
      source/layout/CursiveAttachmentSubtables.cpp,
      source/layout/Features.cpp,
      source/layout/LETableReference.h,
      source/layout/LigatureSubstSubtables.cpp,
      source/layout/MultipleSubstSubtables.cpp.
    - CVE-2014-6585
    - CVE-2014-6591
  * SECURITY UPDATE: denial of service or possible code execution in
    regular expressions
    - debian/patches/CVE-2014-7923.patch: add limits to
      source/i18n/regexcmp.cpp, add test to
      source/test/testdata/regextst.txt.
    - CVE-2014-7923
  * SECURITY UPDATE: denial of service or possible code execution in
    regular expressions
    - debian/patches/CVE-2014-7926.patch: fix incorrect optimization in
      source/i18n/regexcmp.cpp, fix comment in source/i18n/regexcmp.h,
      add test to source/test/testdata/regextst.txt.
    - CVE-2014-7926
  * SECURITY UPDATE: denial of service or possible code execution via
    uninitialized memory in the collator implementation
    - debian/patches/CVE-2014-7940.patch: properly handle memory in
      source/i18n/ucol.cpp.
    - CVE-2014-7940
  * SECURITY UPDATE: denial of service via incorrect pattern size limits
    - debian/patches/CVE-2014-9654.patch: fix case insensitive matches and
      check limits in source/common/unicode/utypes.h,
      source/common/utypes.c,
      source/i18n/regexcmp.cpp, source/i18n/regexcmp.h,
      source/i18n/regeximp.h, source/i18n/i18n.vcxproj.filters,
      source/i18n/unicode/regex.h, source/i18n/regeximp.cpp,
      source/i18n/rematch.cpp, source/i18n/i18n.vcxproj,
      source/i18n/Makefile.in, added tests to
      source/test/intltest/regextst.cpp, source/test/intltest/regextst.h,
      source/test/testdata/regextst.txt.
    - CVE-2014-9654
  * debian/rules: added cdbs autotools rule and adjust DEB_SRCDIR so test
    suite gets run during build.
  * debian/patches/two-digit-year-test.patch: fix test suite failure.
 -- Marc Deslauriers <email address hidden> Wed, 04 Mar 2015 11:14:58 -0500

(See more...)
CVE-2014-7940 The collator implementation in i18n/ucol.cpp in International Components for Unicode (ICU) 52 through SVN revision 293126, as used in Google Chrome b
CVE-2014-7926 The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.221
CVE-2014-7923 The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.221
CVE-2014-6591 Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality v
CVE-2014-6585 Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors reelat
More...

telegram-purple 03-05 14:08 UTC
This package belongs to a PPA: Webupd8
Release: utopic Repo: main Level: base New version: 0.7.0-1~webupd8~utopic0
Packages in group: 

 telegram-purple (0.7.0-1~webupd8~utopic0) utopic; urgency=medium
 .
   * New upstream release
   * Disabled fix-makefile-create-folders.patch (fixed upstream)c


telegram-purple 03-05 14:08 UTC
This package belongs to a PPA: Webupd8
Release: trusty Repo: main Level: base New version: 0.7.0-1~webupd8~trusty0
Packages in group: 

 telegram-purple (0.7.0-1~webupd8~trusty0) trusty; urgency=medium
 .
   * New upstream release
   * Disabled fix-makefile-create-folders.patch (fixed upstream)c


oracle-java8-installer 03-05 14:08 UTC
This package belongs to a PPA: Webupd8 Java
Release: lucid Repo: main Level: base New version: 8u40+8u33arm-1~webupd8~0
Packages in group:  oracle-java8-set-default oracle-java8-unlimited-jce-policy

 oracle-java8-installer (8u40+8u33arm-1~webupd8~0) lucid; urgency=medium
 .
   * New Java release


telegram-purple 03-05 14:08 UTC
This package belongs to a PPA: Webupd8
Release: precise Repo: main Level: base New version: 0.7.0-1~webupd8~precise0
Packages in group: 

 telegram-purple (0.7.0-1~webupd8~precise0) precise; urgency=medium
 .
   * New upstream release
   * Disabled fix-makefile-create-folders.patch (fixed upstream)c


icu 03-05 14:06 UTC
Release: utopic Repo: main Level: security New version: 52.1-6ubuntu0.2
Packages in group:  icu-devtools icu-doc libicu52 libicu52-dbg libicu-dev

  icu (52.1-6ubuntu0.2) utopic-security; urgency=medium

  * SECURITY UPDATE: information disclosure via incorrect font file parsing
    - debian/patches/CVE-2014-65xx.patch: add checks to
      source/layout/ContextualSubstSubtables.cpp,
      source/layout/CursiveAttachmentSubtables.cpp,
      source/layout/Features.cpp,
      source/layout/LETableReference.h,
      source/layout/LigatureSubstSubtables.cpp,
      source/layout/MultipleSubstSubtables.cpp.
    - CVE-2014-6585
    - CVE-2014-6591
  * SECURITY UPDATE: denial of service or possible code execution in
    regular expressions
    - debian/patches/CVE-2014-7923.patch: add limits to
      source/i18n/regexcmp.cpp, add test to
      source/test/testdata/regextst.txt.
    - CVE-2014-7923
  * SECURITY UPDATE: denial of service or possible code execution in
    regular expressions
    - debian/patches/CVE-2014-7926.patch: fix incorrect optimization in
      source/i18n/regexcmp.cpp, fix comment in source/i18n/regexcmp.h,
      add test to source/test/testdata/regextst.txt.
    - CVE-2014-7926
  * SECURITY UPDATE: denial of service or possible code execution via
    uninitialized memory in the collator implementation
    - debian/patches/CVE-2014-7940.patch: properly handle memory in
      source/i18n/ucol.cpp.
    - CVE-2014-7940
  * SECURITY UPDATE: denial of service via incorrect pattern size limits
    - debian/patches/CVE-2014-9654.patch: check limits in
      source/common/unicode/utypes.h, source/common/utypes.c,
      source/i18n/regexcmp.cpp, source/i18n/regexcmp.h,
      source/i18n/regeximp.h, added test to
      source/test/intltest/regextst.cpp, source/test/intltest/regextst.h.
    - CVE-2014-9654
 -- Marc Deslauriers <email address hidden> Wed, 04 Mar 2015 11:33:14 -0500

CVE-2014-7940 The collator implementation in i18n/ucol.cpp in International Components for Unicode (ICU) 52 through SVN revision 293126, as used in Google Chrome b
CVE-2014-7926 The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.221
CVE-2014-7923 The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.221
CVE-2014-6591 Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality v
CVE-2014-6585 Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors reelat



About   -   Changelog   -   Send Feedback