[ubuntu/cosmic-proposed] procps 2:3.3.15-1ubuntu1 (Accepted)

Balint Reczey rbalint at ubuntu.com
Tue May 29 05:22:13 UTC 2018 

procps (2:3.3.15-1ubuntu1) cosmic; urgency=medium

  * Merge from Debian unstable.  Remaining changes:
    - debian/sysctl.d (Ubuntu-specific):
      + 10-console-messages.conf: stop low-level kernel messages on console.
      + 10-kernel-hardening.conf: add the kptr_restrict setting
      + 10-keyboard.conf.powerpc: mouse button emulation on PowerPC.
      + 10-ipv6-privacy.conf: add a file to sysctl.d to apply the defaults
        for IPv6 privacy extensions for interfaces. (LP: #176125, #841353)
      + 10-link-restrictions.conf: even though the Ubuntu
        kernel is built with these defaults in place, we want to make sure
        that people running stock kernels don't miss out.
      + 10-magic-sysrq.conf: Disable most magic sysrq by default, allowing
        critical sync, remount, reboot functions. (LP: #194676, LP: #1025467)
      + 10-network-security.conf: enable rp_filter.
      + 10-ptrace.conf: describe new PTRACE setting.
      + 10-zeropage.conf: safe mmap_min_addr value for graceful fall-back.
        for armhf, and arm64.
      + 10-qemu.conf.s390x for qemu.
      + README: describe how this directory is supposed to work.
    - debian/rules: Fix cross build
    - ignore_eaccess.patch: If we get eaccess when opening a sysctl file for
      writing, don't error out.  Otherwise package upgrades can fail,
      especially in containers.
    - ignore_erofs.patch: Same as ignore_eaccess but for the case where
      part of /proc is read/only.
  * Drop redundant setting of net.ipv4.tcp_syncookies=1, it is now the kernel's default
    (LP: #1773157)
  * Update README about new commands for reloading configuration (LP: #1719159)

procps (2:3.3.15-1) unstable; urgency=medium

  * New upstream release Closes: #899170
  * library: Fix integer overflow and LPE in file2strvec   CVE-2018-1124
  * library: Use size_t for alloc functions                CVE-2018-1126
  * pgrep: Fix stack-based buffer overflow                 CVE-2018-1125
  * ps: Fix buffer overflow in output buffer, causing DOS  CVE-2018-1123
  * Command Name increased from 16 to 64 characters

procps (2:3.3.14-1) unstable; urgency=medium

  * New upstream release
    - pgrep: Don't segfault on non match Closes: #894917
  * Fix init scripti, thanks GSR! Closes: #895005

procps (2:3.3.13-1) unstable; urgency=medium

  * New upstream release
    - doc: Document I idle state in ps.1 and top.1 Closes: #886967
    - kill: -l space between name parses correctly Closes: #854407
    - library: don't use vm_min_free on non Linux Closes: #831396
    - library: don't use SIGPWR on FreeBSD Closes: #832148
    - pkill: Return 0 only if we can kill process Closes: #852758
    - ps: avoid eip/esp address truncations Closes: #846361
    - top: address a wishlist man page NLS suggestion Closes: #865689
    - watch: define HOST_NAME_MAX where not defined Closes: #830734
  * Update sysctl.conf sysrq key comments Closes: #882121
  * Update the init script to use new LSB features

procps (2:3.3.12-4) unstable; urgency=medium

  * Add sysctl configuration file to protect hard and soft links
    This mitigates CVE-2017-18078 on non-Debian kernels Closes: #889098
  * Update Vcs to Salsa
  * Update notes about sysrq Closes: #882121
  * Update standards to 4.1.3

Date: Fri, 25 May 2018 12:09:30 +0200
Changed-By: Balint Reczey <rbalint at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/procps/2:3.3.15-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 25 May 2018 12:09:30 +0200
Source: procps
Binary: procps libprocps7 libprocps-dev
Architecture: source
Version: 2:3.3.15-1ubuntu1
Distribution: cosmic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Balint Reczey <rbalint at ubuntu.com>
Description:
 libprocps-dev - library for accessing process information from /proc
 libprocps7 - library for accessing process information from /proc
 procps     - /proc file system utilities
Closes: 830734 831396 832148 846361 852758 854407 865689 882121 886967 889098 894917 895005 899170
Launchpad-Bugs-Fixed: 176125 194676 841353 1025467 1719159 1773157
Changes:
 procps (2:3.3.15-1ubuntu1) cosmic; urgency=medium
 .
   * Merge from Debian unstable.  Remaining changes:
     - debian/sysctl.d (Ubuntu-specific):
       + 10-console-messages.conf: stop low-level kernel messages on console.
       + 10-kernel-hardening.conf: add the kptr_restrict setting
       + 10-keyboard.conf.powerpc: mouse button emulation on PowerPC.
       + 10-ipv6-privacy.conf: add a file to sysctl.d to apply the defaults
         for IPv6 privacy extensions for interfaces. (LP: #176125, #841353)
       + 10-link-restrictions.conf: even though the Ubuntu
         kernel is built with these defaults in place, we want to make sure
         that people running stock kernels don't miss out.
       + 10-magic-sysrq.conf: Disable most magic sysrq by default, allowing
         critical sync, remount, reboot functions. (LP: #194676, LP: #1025467)
       + 10-network-security.conf: enable rp_filter.
       + 10-ptrace.conf: describe new PTRACE setting.
       + 10-zeropage.conf: safe mmap_min_addr value for graceful fall-back.
         for armhf, and arm64.
       + 10-qemu.conf.s390x for qemu.
       + README: describe how this directory is supposed to work.
     - debian/rules: Fix cross build
     - ignore_eaccess.patch: If we get eaccess when opening a sysctl file for
       writing, don't error out.  Otherwise package upgrades can fail,
       especially in containers.
     - ignore_erofs.patch: Same as ignore_eaccess but for the case where
       part of /proc is read/only.
   * Drop redundant setting of net.ipv4.tcp_syncookies=1, it is now the kernel's default
     (LP: #1773157)
   * Update README about new commands for reloading configuration (LP: #1719159)
 .
 procps (2:3.3.15-1) unstable; urgency=medium
 .
   * New upstream release Closes: #899170
   * library: Fix integer overflow and LPE in file2strvec   CVE-2018-1124
   * library: Use size_t for alloc functions                CVE-2018-1126
   * pgrep: Fix stack-based buffer overflow                 CVE-2018-1125
   * ps: Fix buffer overflow in output buffer, causing DOS  CVE-2018-1123
   * Command Name increased from 16 to 64 characters
 .
 procps (2:3.3.14-1) unstable; urgency=medium
 .
   * New upstream release
     - pgrep: Don't segfault on non match Closes: #894917
   * Fix init scripti, thanks GSR! Closes: #895005
 .
 procps (2:3.3.13-1) unstable; urgency=medium
 .
   * New upstream release
     - doc: Document I idle state in ps.1 and top.1 Closes: #886967
     - kill: -l space between name parses correctly Closes: #854407
     - library: don't use vm_min_free on non Linux Closes: #831396
     - library: don't use SIGPWR on FreeBSD Closes: #832148
     - pkill: Return 0 only if we can kill process Closes: #852758
     - ps: avoid eip/esp address truncations Closes: #846361
     - top: address a wishlist man page NLS suggestion Closes: #865689
     - watch: define HOST_NAME_MAX where not defined Closes: #830734
   * Update sysctl.conf sysrq key comments Closes: #882121
   * Update the init script to use new LSB features
 .
 procps (2:3.3.12-4) unstable; urgency=medium
 .
   * Add sysctl configuration file to protect hard and soft links
     This mitigates CVE-2017-18078 on non-Debian kernels Closes: #889098
   * Update Vcs to Salsa
   * Update notes about sysrq Closes: #882121
   * Update standards to 4.1.3
Checksums-Sha1:
 5ad99d1abbf55c4d377da9145b29f814db067e8d 2240 procps_3.3.15-1ubuntu1.dsc
 3139aab2d7b746ecc4e8d44dd06aaa2cda3a24ed 903372 procps_3.3.15.orig.tar.xz
 b67ccf07696ece5d97ef21a254868bfce655feb3 31984 procps_3.3.15-1ubuntu1.debian.tar.xz
 916595df1415eb116faaf8d82edf94c5f1b640ea 6171 procps_3.3.15-1ubuntu1_source.buildinfo
Checksums-Sha256:
 9f1d888bb054207a8bb8774937ea3657e706cd2c91db2299a3c623fe47b9002d 2240 procps_3.3.15-1ubuntu1.dsc
 82e8aa55b65eac116eee05f00d2a884a6374760d57100edd429d6e9b4953458d 903372 procps_3.3.15.orig.tar.xz
 7629f7266951c5732837df72dc0129cf102bede37497f1a643476c1e94637eb4 31984 procps_3.3.15-1ubuntu1.debian.tar.xz
 04b74379569b11448f640932b48677c1dc24554dc8128f71778a55975c87b499 6171 procps_3.3.15-1ubuntu1_source.buildinfo
Files:
 7a5e7f89135fd6a295df2ffdb0ae517c 2240 admin optional procps_3.3.15-1ubuntu1.dsc
 14b2f6066d82c67387d7a4cbd37f6876 903372 admin optional procps_3.3.15.orig.tar.xz
 6bc88ea46526f9e99eb77b507ed1a2ba 31984 admin optional procps_3.3.15-1ubuntu1.debian.tar.xz
 86865069fe728506e3656f8d3171e24c 6171 admin optional procps_3.3.15-1ubuntu1_source.buildinfo
Original-Maintainer: Craig Small <csmall at debian.org>

-----BEGIN PGP SIGNATURE-----
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=GXKJ
-----END PGP SIGNATURE-----

More information about the Cosmic-changes mailing list