UnknownSec Bypass
403
:
/
var
/
www
/
jpsagrisolution
/
cpanel
/
product_images
/
sym
/
root
/
snap
/
core22
/
current
/
usr
/
share
/
doc
/ [
drwxr-xr-x
]
Menu
Upload
Mass depes
Mass delete
Terminal
Info server
About
name :
ChangeLog
08/04/2025, commit https://git.launchpad.net/snap-core22/tree/7c3b8a59559a1d01f35830501a6ef478213ae767 [ Changes in the core22 snap ] Philip Meulengracht (1): SECURITY.md: add our security policy (#320) [ Changes in primed packages ] cloud-init (built from cloud-init) updated from 24.4.1-0ubuntu0~22.04.1 to 24.4.1-0ubuntu0~22.04.2: cloud-init (24.4.1-0ubuntu0~22.04.2) jammy; urgency=medium * cherry-pick fixes for MAAS traceback (LP: #2100963) - cherry-pick c60771d8: test: pytestify test_url_helper.py - cherry-pick 8810a2dc: test: Remove CiTestCase from test_url_helper.py - cherry-pick 582f16c1: test: add OauthUrlHelper tests - cherry-pick 9311e066: fix: Update OauthUrlHelper to use readurl exception_cb -- James Falcon <james.falcon@canonical.com> Thu, 13 Mar 2025 13:50:56 -0500 libelf1:amd64 (built from elfutils) updated from 0.186-1build1 to 0.186-1ubuntu0.1: elfutils (0.186-1ubuntu0.1) jammy-security; urgency=medium * SECURITY UPDATE: null pointer dereference - debian/patches/CVE-2025-1372.patch: Skip trying to uncompress sections without a name. - CVE-2025-1372 * SECURITY UPDATE: null pointer dereference - debian/patches/CVE-2025-1377.patch: Verify symbol table is a real symbol table. - CVE-2025-1377 -- Fabian Toepfer <fabian.toepfer@canonical.com> Mon, 17 Mar 2025 17:11:50 +0100 libexpat1:amd64 (built from expat) updated from 2.4.7-1ubuntu0.5 to 2.4.7-1ubuntu0.6: expat (2.4.7-1ubuntu0.6) jammy-security; urgency=medium * SECURITY UPDATE: denial of service via stack overflow - debian/patches/CVE-2024-8176-pre.patch: Remove XML_DTD guards before is_param accesses - debian/patches/CVE-2024-8176-test-pre-1.patch: minicheck: Add fail_unless() macro - debian/patches/CVE-2024-8176-test-pre-2.patch: tests: Rename _fail_unless to _assert_true for clarity - debian/patches/CVE-2024-8176-test-pre-3.patch: minicheck: Add simple subtest support - debian/patches/CVE-2024-8176-1.patch: Resolve the recursion during entity processing to prevent stack overflow - debian/patches/CVE-2024-8176-2.patch: Stop updating event pointer on exit for reentry - CVE-2024-8176 -- Vyom Yadav <vyom.yadav@canonical.com> Mon, 07 Apr 2025 20:07:15 +0530 libfreetype6:amd64 (built from freetype) updated from 2.11.1+dfsg-1ubuntu0.2 to 2.11.1+dfsg-1ubuntu0.3: freetype (2.11.1+dfsg-1ubuntu0.3) jammy-security; urgency=medium * SECURITY UPDATE: OOB write via font subglyph structures parsing - debian/patches/CVE-2025-27363.patch: make sure limit doesn't overflow in src/truetype/ttgload.c. - CVE-2025-27363 -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Thu, 13 Mar 2025 08:41:20 -0400 gpgv (built from gnupg2) updated from 2.2.27-3ubuntu2.1 to 2.2.27-3ubuntu2.3: gnupg2 (2.2.27-3ubuntu2.3) jammy-security; urgency=medium * SECURITY UPDATE: verification DoS via crafted subkey data - debian/patches/CVE-2025-30258-1.patch: lookup key for merging/ inserting only by primary key in g10/getkey.c, g10/import.c, g10/keydb.h. - debian/patches/CVE-2025-30258-2.patch: remove a signature check function wrapper in g10/mainproc.c, g10/packet.h, g10/sig-check.c. - debian/patches/CVE-2025-30258-3.patch: fix a verification DoS due to a malicious subkey in the keyring in g10/getkey.c, g10/keydb.h, g10/mainproc.c, g10/packet.h, g10/sig-check.c, g10/pkclist.c. - debian/patches/CVE-2025-30258-4.patch: fix regression for the recent malicious subkey DoS fix in g10/getkey.c, g10/packet.h. - debian/patches/CVE-2025-30258-5.patch: fix double free of internal data in g10/sig-check.c. - CVE-2025-30258 -- Marc Deslauriers <marc.deslauriers@ubuntu.com> Fri, 28 Mar 2025 13:39:15 -0400 libpam-systemd:amd64, libsystemd0:amd64, libudev1:amd64, systemd, systemd-sysv, systemd-timesyncd, udev (built from systemd) updated from 249.11-0ubuntu3.12 to 249.11-0ubuntu3.15: systemd (249.11-0ubuntu3.15) jammy; urgency=medium * d/systemd.prerm: call d-s-h update-state for resolved on upgrades (LP: #2078555) -- Nick Rosbrook <enr0n@ubuntu.com> Thu, 20 Feb 2025 08:24:02 -0500 systemd (249.11-0ubuntu3.14) jammy; urgency=medium [ Ioanna Alifieraki ] * network: skip to reassign master ifindex if already set (LP: #2003250) [ Nick Rosbrook ] * network: do not bring down a bonding port interface when it is already joined (This is a follow-up commit required for LP: 2003250) * networkd-test: skip test_resolved_domain_restricted_dns (LP: #2009859) -- Nick Rosbrook <enr0n@ubuntu.com> Mon, 16 Dec 2024 15:23:18 -0500 systemd (249.11-0ubuntu3.13) jammy; urgency=medium [ Lukas Märdian ] * Fixing GRE6 and VTI6 on newer kernels (LP: #2037667) [ Nick Rosbrook ] * debian/tests/tests-in-lxd: update workaround patch (LP: #2055200) [ Chengen Du ] * udev: Handle PTP device symlink properly on udev action 'change' (LP: #2077779) -- Nick Rosbrook <enr0n@ubuntu.com> Thu, 17 Oct 2024 10:26:55 -0400 tzdata (built from tzdata) updated from 2024b-0ubuntu0.22.04.1 to 2025b-0ubuntu0.22.04: tzdata (2025b-0ubuntu0.22.04) jammy; urgency=medium * New upstream release (LP: #2104284): - New America/Coyhaique zone for Aysén Region in Chile, which moves from -04/-03 to -03. It will not change its clocks on 2025-04-05. - Improve historical data for Iran * Add America/Coyhaique to tzdata.install and debconf templates * Update English, French and Spanish debconf translations for Coyhaique * Add autopkgtest test case for 2025b release * No ICU data update yet as none is yet available upstream. -- Benjamin Drung <bdrung@ubuntu.com> Wed, 26 Mar 2025 18:44:41 +0100 tzdata (2025a-0ubuntu0.22.04) jammy; urgency=medium * New upstream release (LP: #2095233): - Paraguay adopts permanent -03 starting spring 2024 - No leap second on 2025-06-30 * Add autopkgtest test case for 2025a release * debian/rules: rename icu-data branch from master to main * Update the ICU timezone data to 2025a * Add autopkgtest test case for ICU timezone data 2025a * Drop unused translations * Override lintian's unused-debconf-template -- Benjamin Drung <bdrung@ubuntu.com> Fri, 14 Feb 2025 22:25:59 +0100 vim-common, vim-tiny, xxd (built from vim) updated from 2:8.2.3995-1ubuntu2.23 to 2:8.2.3995-1ubuntu2.24: vim (2:8.2.3995-1ubuntu2.24) jammy-security; urgency=medium * SECURITY UPDATE: Use after free when redirecting display command to register. - debian/patches/CVE-2025-26603.patch: Change redir_reg check to use vim_strchr command check in ./src/register.c. - CVE-2025-26603 -- Hlib Korzhynskyy <hlib.korzhynskyy@canonical.com> Wed, 02 Apr 2025 10:09:01 -0230
Copyright © 2025 - UnknownSec