UbuntuUpdates.org

Latest Changelogs for all releases

All releases Bionic Focal Jammy Lunar Mantic Noble Precise Trusty Xenial
Include all PPAs Exclude daily builds PPAs Exclude all PPAs
Include levels: securityupdatesbackportsproposedbase

Note: Only updates for "head" packages where the changelog is available are shown on this page (view all).

gce-compute-image-packages Apr 26th 00:07
Release: jammy Repo: main Level: updates New version: 20230808.00-0ubuntu1~22.04.1
Packages in group:  google-compute-engine

  gce-compute-image-packages (20230808.00-0ubuntu1~22.04.1) jammy; urgency=medium

  * debian/99-gce.rules:
    * The previous rule forced an I/O scheduler on all disk types. This
      has now been re-scoped to only affect HDDs.
    * The I/O scheduler has also been changed from "NOOP" to "NONE"
      which performed much better in testing.
    * LP: #2045708.

 -- Chloé 'kajiya' Smith <email address hidden> Tue, 09 Jan 2024 23:19:03 +0000
2045708 [SRU] Improve debian/99-gce.rules to set schedulers based on disk

nghttp2 Apr 26th 00:07
Release: jammy Repo: main Level: security New version: 1.43.0-1ubuntu0.2
Packages in group:  libnghttp2-14 libnghttp2-dev libnghttp2-doc

  nghttp2 (1.43.0-1ubuntu0.2) jammy-security; urgency=medium

  * SECURITY UPDATE: HTTP/2 protocol denial of service
    - debian/patches/CVE-2024-28182-1.patch: Add
      nghttp2_option_set_max_continuations
    - debian/patches/CVE-2024-28182-2.patch: Limit CONTINUATION frames
      following an incoming HEADER frame
    - CVE-2024-28182

 -- Fabian Toepfer <email address hidden> Thu, 18 Apr 2024 09:14:38 +0200
CVE-2024-28182 nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. The nghttp2 library prior to version 1.61.0 keeps reading the unbound

nghttp2 Apr 26th 00:07
Release: focal Repo: universe Level: updates New version: 1.40.0-1ubuntu0.3
Packages in group:  nghttp2-client nghttp2-proxy nghttp2-server

  nghttp2 (1.40.0-1ubuntu0.3) focal-security; urgency=medium

  * SECURITY UPDATE: HTTP/2 protocol denial of service
    - debian/patches/CVE-2024-28182-1.patch: Add
      nghttp2_option_set_max_continuations
    - debian/patches/CVE-2024-28182-2.patch: Limit CONTINUATION frames
      following an incoming HEADER frame
    - CVE-2024-28182

 -- Fabian Toepfer <email address hidden> Thu, 18 Apr 2024 09:15:36 +0200
CVE-2024-28182 nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. The nghttp2 library prior to version 1.61.0 keeps reading the unbound

nghttp2 Apr 26th 00:07
Release: focal Repo: universe Level: security New version: 1.40.0-1ubuntu0.3
Packages in group:  nghttp2-client nghttp2-proxy nghttp2-server

  nghttp2 (1.40.0-1ubuntu0.3) focal-security; urgency=medium

  * SECURITY UPDATE: HTTP/2 protocol denial of service
    - debian/patches/CVE-2024-28182-1.patch: Add
      nghttp2_option_set_max_continuations
    - debian/patches/CVE-2024-28182-2.patch: Limit CONTINUATION frames
      following an incoming HEADER frame
    - CVE-2024-28182

 -- Fabian Toepfer <email address hidden> Thu, 18 Apr 2024 09:15:36 +0200
CVE-2024-28182 nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. The nghttp2 library prior to version 1.61.0 keeps reading the unbound

nghttp2 Apr 26th 00:07
Release: focal Repo: main Level: updates New version: 1.40.0-1ubuntu0.3
Packages in group:  libnghttp2-14 libnghttp2-dev libnghttp2-doc

  nghttp2 (1.40.0-1ubuntu0.3) focal-security; urgency=medium

  * SECURITY UPDATE: HTTP/2 protocol denial of service
    - debian/patches/CVE-2024-28182-1.patch: Add
      nghttp2_option_set_max_continuations
    - debian/patches/CVE-2024-28182-2.patch: Limit CONTINUATION frames
      following an incoming HEADER frame
    - CVE-2024-28182

 -- Fabian Toepfer <email address hidden> Thu, 18 Apr 2024 09:15:36 +0200
CVE-2024-28182 nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. The nghttp2 library prior to version 1.61.0 keeps reading the unbound

nghttp2 Apr 26th 00:07
Release: focal Repo: main Level: security New version: 1.40.0-1ubuntu0.3
Packages in group:  libnghttp2-14 libnghttp2-dev libnghttp2-doc

  nghttp2 (1.40.0-1ubuntu0.3) focal-security; urgency=medium

  * SECURITY UPDATE: HTTP/2 protocol denial of service
    - debian/patches/CVE-2024-28182-1.patch: Add
      nghttp2_option_set_max_continuations
    - debian/patches/CVE-2024-28182-2.patch: Limit CONTINUATION frames
      following an incoming HEADER frame
    - CVE-2024-28182

 -- Fabian Toepfer <email address hidden> Thu, 18 Apr 2024 09:15:36 +0200
CVE-2024-28182 nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. The nghttp2 library prior to version 1.61.0 keeps reading the unbound

gce-compute-image-packages Apr 25th 23:07
Release: mantic Repo: main Level: updates New version: 20230808.00-0ubuntu2~23.10.0
Packages in group:  google-compute-engine

  gce-compute-image-packages (20230808.00-0ubuntu2~23.10.0) mantic; urgency=medium

  * debian/99-gce.rules:
    * The previous rule forced an I/O scheduler on all disk types. This
      has now been re-scoped to only affect HDDs.
    * The I/O scheduler has also been changed from "NOOP" to "NONE"
      which performed much better in testing.
    * LP: #2045708

 -- Chloé 'kajiya' Smith <email address hidden> Tue, 09 Jan 2024 22:50:47 +0000
2045708 [SRU] Improve debian/99-gce.rules to set schedulers based on disk

google-compute-engine-oslogin Apr 25th 23:07
Release: mantic Repo: main Level: updates New version: 20231004.00-0ubuntu1~23.10.3
Packages in group: 

  google-compute-engine-oslogin (20231004.00-0ubuntu1~23.10.3) mantic; urgency=medium

  * d/control: There must be a dependency on `google-guest-agent`
    to match the (upstream) Google managed d/control file (LP: #2052438)

 -- Chloé 'kajiya' Smith <email address hidden> Tue, 06 Feb 2024 13:18:51 +0000
2052438 Update d/control file with a dependency on google-guest-agent

pathological Apr 25th 23:07
Release: jammy Repo: universe Level: updates New version: 1.1.3-16ubuntu0.1
Packages in group: 

  pathological (1.1.3-16ubuntu0.1) jammy; urgency=medium

  * Fix Python3 compatibility. (LP: #1976312)

 -- Sudip Mukherjee <email address hidden> Fri, 29 Mar 2024 10:13:29 +0000
1976312 [SRU] Pathological wont accept any input

crun Apr 25th 23:07
Release: jammy Repo: universe Level: updates New version: 0.17+dfsg-1.1ubuntu0.1
Packages in group: 

  crun (0.17+dfsg-1.1ubuntu0.1) jammy; urgency=medium

  * lp2056442-ignore-enotsup-when-chmod-symlink.patch: Ignore ENOTSUP
    when chmod a symlink (LP: #2056442)

 -- Julian Andres Klode <email address hidden> Thu, 07 Mar 2024 14:17:06 +0100
2056442 Podman (crun) regression in Ubuntu 22.04: OCI runtime error: chmod `run/shm`: Operation not supported

nfs-utils Apr 25th 22:08
Release: focal Repo: main Level: updates New version: 1:1.3.4-2.5ubuntu3.7
Packages in group:  nfs-common nfs-kernel-server

  nfs-utils (1:1.3.4-2.5ubuntu3.7) focal; urgency=medium

  * Fix minor version parsing when '-t nfs4' and '-o vers=4.x' or
    '-o vers=4,minorversion=x' are all used together. This fixes a
    regression caused by the changes to version negotiation included
    in the previous release. (LP: #2059197)
    - d/p/lp-2059197-1-mount-move-handling-of-t-nfs4-into-nfs_nfs_version.patch
    - d/p/lp-2059197-2-mount-Fix-problems-with-parsing-minorversion.patch
    - d/p/lp-2059197-3-mount.nfs-minorversion-setting-is-being-ignored-wit.patch
    - d/p/lp-2059197-4-mount.nfs-Fix-auto-protocol-negotiation.patch

 -- Matthew Ruffell <email address hidden> Wed, 03 Apr 2024 14:57:55 +1300
2059197 mount.nfs: Fix minor version parsing when '-t nfs4' and '-o vers=4.x' are used together

gce-compute-image-packages Apr 25th 22:08
Release: focal Repo: main Level: updates New version: 20230808.00-0ubuntu1~20.04.1
Packages in group:  google-compute-engine google-compute-engine-oslogin python3-google-compute-engine

  gce-compute-image-packages (20230808.00-0ubuntu1~20.04.1) focal; urgency=medium

  * debian/99-gce.rules:
    * The previous rule forced an I/O scheduler on all disk types. This
      has now been re-scoped to only affect HDDs.
    * The I/O scheduler has also been changed from "NOOP" to "NONE"
      which performed much better in testing.
    * LP: #2045708.

 -- Chloé 'kajiya' Smith <email address hidden> Tue, 09 Jan 2024 23:46:16 +0000
2045708 [SRU] Improve debian/99-gce.rules to set schedulers based on disk

google-compute-engine-oslogin Apr 25th 21:09
Release: jammy Repo: main Level: updates New version: 20231004.00-0ubuntu1~22.04.3
Packages in group: 

  google-compute-engine-oslogin (20231004.00-0ubuntu1~22.04.3) jammy; urgency=medium

  * d/control: There must be a dependency on `google-guest-agent`
    to match the (upstream) Google managed d/control file (LP: #2052438)

 -- Chloé 'kajiya' Smith <email address hidden> Tue, 06 Feb 2024 14:06:11 +0000
2052438 Update d/control file with a dependency on google-guest-agent

google-guest-agent Apr 25th 21:09
Release: focal Repo: main Level: updates New version: 20231004.02-0ubuntu1~20.04.3
Packages in group: 

  google-guest-agent (20231004.02-0ubuntu1~20.04.3) focal-security; urgency=medium

  * d/control: Add a dependency on `google-compute-engine-oslogin`
    (LP: #2050956)

 -- Chloé 'kajiya' Smith <email address hidden> Sat, 27 Jan 2024 01:44:03 +0000
2050956 [SRU] Update d/control file with dependencies

google-guest-agent Apr 25th 21:09
Release: focal Repo: main Level: security New version: 20231004.02-0ubuntu1~20.04.3
Packages in group: 

  google-guest-agent (20231004.02-0ubuntu1~20.04.3) focal-security; urgency=medium

  * d/control: Add a dependency on `google-compute-engine-oslogin`
    (LP: #2050956)

 -- Chloé 'kajiya' Smith <email address hidden> Sat, 27 Jan 2024 01:44:03 +0000
2050956 [SRU] Update d/control file with dependencies


About   -   Send Feedback to @ubuntu_updates