quassel 0.12.2-0ubuntu0.1 was copied into wily, closing that task.
** Changed in: quassel (Ubuntu Wily)
Status: New => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1448911
Title:
This bug was fixed in the package quassel - 0.10.1-0ubuntu1.2
---
quassel (0.10.1-0ubuntu1.2) utopic-security; urgency=medium
* SECURITY UPDATE: stack consumption vulnerability in message splitting code
- debian/patches/CVE-2015-2778.patch: original patch from Michael Marley,
This bug was fixed in the package quassel - 0.10.0-0ubuntu2.2
---
quassel (0.10.0-0ubuntu2.2) trusty-security; urgency=medium
* SECURITY UPDATE: stack consumption vulnerability in message splitting code
- debian/patches/CVE-2015-2778.patch: original patch from Michael Marley,
** Changed in: quassel (Ubuntu Trusty)
Status: New => In Progress
** Changed in: quassel (Ubuntu Utopic)
Status: New => In Progress
** Changed in: quassel (Ubuntu Trusty)
Assignee: (unassigned) => Steve Beattie (sbeattie)
** Changed in: quassel (Ubuntu Utopic)
Assignee: (
This bug was fixed in the package quassel - 0.12.2-0ubuntu0.1
---
quassel (0.12.2-0ubuntu0.1) vivid; urgency=medium
* New upstream release
- LP: #1448911 Execute initDbSession() on DB reconnects
-- Jonathan Riddell Mon, 27 Apr 2015 10:11:13
+0200
** Changed in: quassel (Ubunt
As upstream advised I installed the new version from vivid-proposed, set
it up to use postgresql, connected and chatted. I restarted postgresql
then chatted some more. I then restarted the client and checked the
timestamps which were all correctly set.
** Tags removed: verification-needed
** Tag
I'll leave the security team to deal with Felix's updates for trusty and
utopic
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1448911
Title:
Execute initDbSession() on DB reconnects
To manage notif
** Description changed:
Bug fixed in 0.12.2 is an old CVE that re-occurred:
Previously, the initDbSession() function would only be run on the
initial connect. Since the initDbSession() code in PostgreSQL is
used to fix the CVE-2013-4422 SQL Injection bug, this means that
Quassel was
** Patch added: "quassel_0.10.1-0ubuntu1.2.debdiff"
https://bugs.launchpad.net/ubuntu/+source/quassel/+bug/1448911/+attachment/4389172/+files/quassel_0.10.1-0ubuntu1.2.debdiff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https:/
Attached are debdiffs that fix this vulnerability and
CVE-2015-2778/CVE-2015-2779 in trusty and utopic.
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2015-2778
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2015-2779
** Patch added: "quassel_0.10.0-0ubuntu2.2
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2015-3427
** Also affects: quassel (Ubuntu Utopic)
Importance: Undecided
Status: New
** Also affects: quassel (Ubuntu Trusty)
Importance: Undecided
Status: New
--
You received this bug notification because you
On 2015-04-29 01:07:19, Scott Kitterman wrote:
> On Tuesday, April 28, 2015 05:06:57 PM you wrote:
> > On 2015-04-28 00:16:15, Scott Kitterman wrote:
> > > On Monday, April 27, 2015 10:14:47 PM you wrote:
> > > > Hi Jonathan (and Scott) - This update fixes a security issue so it
> > > > should go t
On Tuesday, April 28, 2015 05:06:57 PM you wrote:
> On 2015-04-28 00:16:15, Scott Kitterman wrote:
> > On Monday, April 27, 2015 10:14:47 PM you wrote:
> > > Hi Jonathan (and Scott) - This update fixes a security issue so it
> > > should go through the -security sponsoring process rather than the S
On 2015-04-28 00:16:15, Scott Kitterman wrote:
> On Monday, April 27, 2015 10:14:47 PM you wrote:
> > Hi Jonathan (and Scott) - This update fixes a security issue so it
> > should go through the -security sponsoring process rather than the SRU
> > process. The Security Team will get it sponsored to
On Monday, April 27, 2015 10:14:47 PM you wrote:
> Hi Jonathan (and Scott) - This update fixes a security issue so it
> should go through the -security sponsoring process rather than the SRU
> process. The Security Team will get it sponsored to the security pocket
> once these steps are followed:
Hi Jonathan (and Scott) - This update fixes a security issue so it
should go through the -security sponsoring process rather than the SRU
process. The Security Team will get it sponsored to the security pocket
once these steps are followed:
https://wiki.ubuntu.com/SecurityTeam/SponsorsQueue#Notes_
Hello Jonathan, or anyone else affected,
Accepted into vivid-proposed. The package will build now and be
available in a few hours in the -proposed repository.
Please help us by testing this new package. See
https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to
enable and use -p
Uploaded quassel_0.12.2-0ubuntu0.1 to vivid, awaiting approval from
ubuntu-sru
** Also affects: quassel (Ubuntu Vivid)
Importance: Undecided
Status: New
** Also affects: quassel (Ubuntu W-series)
Importance: Undecided
Status: New
--
You received this bug notification becaus
It also Remove warning on startup due to a change in
Kdelibs4ConfigMigrator by moving the code to the right place
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1448911
Title:
Execute initDbSession()
19 matches
Mail list logo
