projects / snapd.git / log
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
snapd.git
5 years agosnapd (2.45.2-1) unstable; urgency=high
commit | commitdiff | tree
Michael Vogt [Fri, 10 Jul 2020 18:06:29 +0000 (19:06 +0100)]
snapd (2.45.2-1) unstable; urgency=high

  * SECURITY UPDATE: sandbox escape vulnerability on snapctl xdg-open
    implementation
    - usersession/userd/launcher.go: remove XDG_DATA_DIRS environment
      variable modification when calling the system xdg-open. Patch
      thanks to James Henstridge
    - packaging/ubuntu-16.04/snapd.postinst: ensure "snap userd" is
      restarted. Patch thanks to Michael Vogt
    - CVE-2020-11934
  * SECURITY UPDATE: arbitrary code execution vulnerability on core
    devices with access to physical removable media
    - devicestate: Disable/restrict cloud-init after seeding.
    - CVE-2020-11933

[dgit import unpatched snapd 2.45.2-1]

5 years agoImport snapd_2.45.2.orig.tar.gz
commit | commitdiff | tree
Michael Vogt [Fri, 10 Jul 2020 18:06:29 +0000 (19:06 +0100)]
Import snapd_2.45.2.orig.tar.gz

[dgit import orig snapd_2.45.2.orig.tar.gz]

5 years agoImport snapd_2.45.2-1.debian.tar.xz
commit | commitdiff | tree
Michael Vogt [Fri, 10 Jul 2020 18:06:29 +0000 (19:06 +0100)]
Import snapd_2.45.2-1.debian.tar.xz

[dgit import tarball snapd 2.45.2-1 snapd_2.45.2-1.debian.tar.xz]

Unnamed repository; edit this file 'description' to name the repository.