{ "summary": { "snap": { "added": [], "removed": [], "diff": [] }, "deb": { "added": [], "removed": [], "diff": [ "libssl3t64:s390x", "openssl", "python3-distupgrade", "python3-idna", "ubuntu-release-upgrader-core" ] } }, "diff": { "deb": [ { "name": "libssl3t64:s390x", "from_version": { "source_package_name": "openssl", "source_package_version": "3.0.13-0ubuntu3", "version": "3.0.13-0ubuntu3" }, "to_version": { "source_package_name": "openssl", "source_package_version": "3.0.13-0ubuntu3.1", "version": "3.0.13-0ubuntu3.1" }, "cves": [], "launchpad_bugs_fixed": [ 2054090 ], "changes": [ { "cves": [], "log": [ "", " * SECURITY UPDATE: Implicit rejection for RSA PKCS#1 (LP: #2054090)", " - debian/patches/openssl-pkcs1-implicit-rejection.patch:", " Return deterministic random output instead of an error in case", " there is a padding error in crypto/cms/cms_env.c,", " crypto/evp/ctrl_params_translate.c, crypto/pkcs7/pk7_doit.c,", " crypto/rsa/rsa_ossl.c, crypto/rsa/rsa_pk1.c,", " crypto/rsa/rsa_pmeth.c, doc/man1/openssl-pkeyutl.pod.in,", " doc/man1/openssl-rsautl.pod.in, doc/man3/EVP_PKEY_CTX_ctrl.pod,", " doc/man3/EVP_PKEY_decrypt.pod,", " doc/man3/RSA_padding_add_PKCS1_type_1.pod,", " doc/man3/RSA_public_encrypt.pod, doc/man7/provider-asym_cipher.pod,", " include/crypto/rsa.h, include/openssl/core_names.h,", " include/openssl/rsa.h,", " providers/implementations/asymciphers/rsa_enc.c and", " test/recipes/30-test_evp_data/evppkey_rsa_common.txt.", "" ], "package": "openssl", "version": "3.0.13-0ubuntu3.1", "urgency": "medium", "distributions": "noble-security", "launchpad_bugs_fixed": [ 2054090 ], "author": "David Fernandez Gonzalez ", "date": "Tue, 14 May 2024 11:06:27 +0200" } ], "notes": null }, { "name": "openssl", "from_version": { "source_package_name": "openssl", "source_package_version": "3.0.13-0ubuntu3", "version": "3.0.13-0ubuntu3" }, "to_version": { "source_package_name": "openssl", "source_package_version": "3.0.13-0ubuntu3.1", "version": "3.0.13-0ubuntu3.1" }, "cves": [], "launchpad_bugs_fixed": [ 2054090 ], "changes": [ { "cves": [], "log": [ "", " * SECURITY UPDATE: Implicit rejection for RSA PKCS#1 (LP: #2054090)", " - debian/patches/openssl-pkcs1-implicit-rejection.patch:", " Return deterministic random output instead of an error in case", " there is a padding error in crypto/cms/cms_env.c,", " crypto/evp/ctrl_params_translate.c, crypto/pkcs7/pk7_doit.c,", " crypto/rsa/rsa_ossl.c, crypto/rsa/rsa_pk1.c,", " crypto/rsa/rsa_pmeth.c, doc/man1/openssl-pkeyutl.pod.in,", " doc/man1/openssl-rsautl.pod.in, doc/man3/EVP_PKEY_CTX_ctrl.pod,", " doc/man3/EVP_PKEY_decrypt.pod,", " doc/man3/RSA_padding_add_PKCS1_type_1.pod,", " doc/man3/RSA_public_encrypt.pod, doc/man7/provider-asym_cipher.pod,", " include/crypto/rsa.h, include/openssl/core_names.h,", " include/openssl/rsa.h,", " providers/implementations/asymciphers/rsa_enc.c and", " test/recipes/30-test_evp_data/evppkey_rsa_common.txt.", "" ], "package": "openssl", "version": "3.0.13-0ubuntu3.1", "urgency": "medium", "distributions": "noble-security", "launchpad_bugs_fixed": [ 2054090 ], "author": "David Fernandez Gonzalez ", "date": "Tue, 14 May 2024 11:06:27 +0200" } ], "notes": null }, { "name": "python3-distupgrade", "from_version": { "source_package_name": "ubuntu-release-upgrader", "source_package_version": "1:24.04.16", "version": "1:24.04.16" }, "to_version": { "source_package_name": "ubuntu-release-upgrader", "source_package_version": "1:24.04.18", "version": "1:24.04.18" }, "cves": [], "launchpad_bugs_fixed": [ 2065229, 2065051, 2061891, 2063464, 2064090 ], "changes": [ { "cves": [], "log": [ "", " [ Nick Rosbrook ]", " * tests: fix un-templated expected ubuntu.sources", " * DistUpgradeQuirks: prevent upgrades of TPM FDE desktops (LP: #2065229)", " * Run pre-build.sh: updating mirrors, demotions, and translations.", "", " [ Dave Jones ]", " * New quirk to add KMS overlay on Pi Server images (LP: #2065051)", "" ], "package": "ubuntu-release-upgrader", "version": "1:24.04.18", "urgency": "medium", "distributions": "noble", "launchpad_bugs_fixed": [ 2065229, 2065051 ], "author": "Nick Rosbrook ", "date": "Thu, 09 May 2024 15:39:56 -0400" }, { "cves": [], "log": [ "", " [ Nick Rosbrook ]", " * Revert \"DistUpgrade.cfg.jammy: keep {netfilter,iptables}-persistent installed\"", " * DistUpgradeQuirks: keep {netfilter,iptables}-persistent instead of ufw", " (LP: #2061891)", "", " [ Julian Andres Klode ]", " * DistUpgrade.cfg.jammy: Add systemd-resolved to PostUpgradeInstall", " (LP: #2063464)", " * Transition the automatically installed bit to t64 libraries, and", " do not write automatically installed bit in simulation (LP: #2064090)", " * Run pre-build.sh: updating mirrors, demotions, and translations.", "" ], "package": "ubuntu-release-upgrader", "version": "1:24.04.17", "urgency": "medium", "distributions": "noble", "launchpad_bugs_fixed": [ 2061891, 2063464, 2064090 ], "author": "Julian Andres Klode ", "date": "Mon, 29 Apr 2024 16:26:40 +0200" } ], "notes": null }, { "name": "python3-idna", "from_version": { "source_package_name": "python-idna", "source_package_version": "3.6-2", "version": "3.6-2" }, "to_version": { "source_package_name": "python-idna", "source_package_version": "3.6-2ubuntu0.1", "version": "3.6-2ubuntu0.1" }, "cves": [ { "cve": "CVE-2024-3651", "url": "https://ubuntu.com/security/CVE-2024-3651", "cve_description": "[potential DoS via resource consumption via specially crafted inputs to idna.encode()]", "cve_priority": "medium", "cve_public_date": "2024-04-23" } ], "launchpad_bugs_fixed": [], "changes": [ { "cves": [ { "cve": "CVE-2024-3651", "url": "https://ubuntu.com/security/CVE-2024-3651", "cve_description": "[potential DoS via resource consumption via specially crafted inputs to idna.encode()]", "cve_priority": "medium", "cve_public_date": "2024-04-23" } ], "log": [ "", " * SECURITY UPDATE: resource exhaustion", " - debian/patches/CVE-2024-3651.patch: checks input before processing", " - CVE-2024-3651", "" ], "package": "python-idna", "version": "3.6-2ubuntu0.1", "urgency": "medium", "distributions": "noble-security", "launchpad_bugs_fixed": [], "author": "Jorge Sancho Larraz ", "date": "Fri, 10 May 2024 10:55:01 +0200" } ], "notes": null }, { "name": "ubuntu-release-upgrader-core", "from_version": { "source_package_name": "ubuntu-release-upgrader", "source_package_version": "1:24.04.16", "version": "1:24.04.16" }, "to_version": { "source_package_name": "ubuntu-release-upgrader", "source_package_version": "1:24.04.18", "version": "1:24.04.18" }, "cves": [], "launchpad_bugs_fixed": [ 2065229, 2065051, 2061891, 2063464, 2064090 ], "changes": [ { "cves": [], "log": [ "", " [ Nick Rosbrook ]", " * tests: fix un-templated expected ubuntu.sources", " * DistUpgradeQuirks: prevent upgrades of TPM FDE desktops (LP: #2065229)", " * Run pre-build.sh: updating mirrors, demotions, and translations.", "", " [ Dave Jones ]", " * New quirk to add KMS overlay on Pi Server images (LP: #2065051)", "" ], "package": "ubuntu-release-upgrader", "version": "1:24.04.18", "urgency": "medium", "distributions": "noble", "launchpad_bugs_fixed": [ 2065229, 2065051 ], "author": "Nick Rosbrook ", "date": "Thu, 09 May 2024 15:39:56 -0400" }, { "cves": [], "log": [ "", " [ Nick Rosbrook ]", " * Revert \"DistUpgrade.cfg.jammy: keep {netfilter,iptables}-persistent installed\"", " * DistUpgradeQuirks: keep {netfilter,iptables}-persistent instead of ufw", " (LP: #2061891)", "", " [ Julian Andres Klode ]", " * DistUpgrade.cfg.jammy: Add systemd-resolved to PostUpgradeInstall", " (LP: #2063464)", " * Transition the automatically installed bit to t64 libraries, and", " do not write automatically installed bit in simulation (LP: #2064090)", " * Run pre-build.sh: updating mirrors, demotions, and translations.", "" ], "package": "ubuntu-release-upgrader", "version": "1:24.04.17", "urgency": "medium", "distributions": "noble", "launchpad_bugs_fixed": [ 2061891, 2063464, 2064090 ], "author": "Julian Andres Klode ", "date": "Mon, 29 Apr 2024 16:26:40 +0200" } ], "notes": null } ], "snap": [] }, "added": { "deb": [], "snap": [] }, "removed": { "deb": [], "snap": [] }, "notes": "Changelog diff for Ubuntu 24.04 noble image from daily image serial 20240521 to 20240523.1", "from_series": "noble", "to_series": "noble", "from_serial": "20240521", "to_serial": "20240523.1", "from_manifest_filename": "daily_manifest.previous", "to_manifest_filename": "manifest.current" }