Ubuntu
update-manager package

lp://qastaging/ubuntu/natty-updates/update-manager

Natty (11.04)
natty-updates

Created by James Westby on 2011-05-10 and last modified on 2012-05-31

Get this branch:: bzr branch lp://qastaging/ubuntu/natty-updates/update-manager

Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

No branches dependent on this one.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Mature

Recent revisions

333. By Marc Deslauriers on 2012-05-31: * SECURITY UPDATE: Incomplete fix for CVE-2012-0949 (LP: #1004503)
  - DistUpgrade/DistUpgradeApport.py: use a whitelist of files so we
    don't upload system_state archives.
  - tests/test_apport_crash.py: add test.
  - CVE-2012-0950
332. By Marc Deslauriers on 2012-05-16: * SECURITY UPDATE: Incorrect permissions on system_state archive may
  expose repo passwords (LP: #954483)
  - DistUpgrade/DistUpgradeMain.py: create file with proper permissions.
  - debian/update-manager-core.postinst: clean up permissions on existing
    files.
  - CVE-2012-0948
* SECURITY UPDATE: Apport hook may upload system_state archive containing
  repo passwords (LP: #954483)
  - debian/source_update-manager.py: don't upload system_state archives.
  - CVE-2012-0949
331. By Marc Deslauriers on 2012-02-15: * REGRESSION FIX:
- DistUpgrade/DistUpgradeViewKDE.py: fix regression caused by improper
return value handling. (LP: #933225)
330. By Marc Deslauriers on 2011-11-23: * SECURITY UPDATE: arbitrary code execution via directory traversal
  (LP: #881548)
  - UpdateManager/Core/DistUpgradeFetcherCore.py: verify signature before
    unpacking the tarball.
  - CVE-2011-3152
* SECURITY UPDATE: information leak via insecure temp file (LP: #881541)
  - DistUpgrade/DistUpgradeViewKDE.py: use mkstemp instead of mktemp.
  - CVE-2011-3154
329. By Brian Murray on 2011-10-19: update apport package hook to the same one as in Oneiric (LP: #878585)
328. By Michael Vogt on 2011-04-20: * DistUpgrade/DistUpgradeQuirks.py, tests/test_quirks.py:
  - don't print a error for already patched files, this removes
    a misleading error from the upgrade logs
  - update tests
327. By Michael Vogt on 2011-04-15: * AutoUpgradeTester/profile/{euca-cloud,euca-nc,xubuntu}/DistUpgrade.cfg:
  - updated for maverick->natty now that the auto-upgrade-test server
    has more diskspace
* DistUpgrade/DistUpgradeController.py, DistUpgrade/DistUpgradeMain.py:
  - make running-under-ssh check more robust by looking for sshd parent
* DistUpgrade/DistUpgradeViewText.py:
  - make user confirm information() messages before continuing
    (important for e.g. the "sshd has started" message)
* DistUpgrade/DistUpgradeQuirks.py, DistUpgrade/DistUpgradeController.py:
  - ensure that new recommends are installed on a desktop mode upgrade
    even if that got disabled e.g. via synaptic (LP: #759262)
  - add test for this feature
326. By Michael Vogt on 2011-04-08: * DistUpgrade/DistUpgradeController.py, DistUpgrade/DistUpgradeMain.py:
- fix ssh detection (LP: #744995)
325. By Jonathan Riddell on 2011-04-07: * DistUpgrade/DistUpgradeViewKDE.py
- Allow to view differences in conf file changes LP: #746431
324. By Michael Vogt on 2011-04-06: * merged lp:~evfool/update-manager/fix665173 (LP: #665173),
  many thanks to Robert Roth (update the test a bit)
* merged lp:~evfool/update-manager/fix150677 (LP: #150677),
  many thanks to Robert Roth
* merged lp:~evfool/update-manager/fix727069 (LP: #727069),
  many thanks to Robert Roth

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp://qastaging/ubuntu/oneiric/update-manager

This branch contains Public information

Everyone can see this information.

Subscribers

Ubuntu branches

Ubuntuupdate-manager package