[SRU] Please upgrade gui-ufw to 15.04.4
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
gui-ufw (Ubuntu) |
Fix Released
|
Low
|
Unassigned | ||
Vivid |
Won't Fix
|
Low
|
Unassigned |
Bug Description
[Impact]
Please upgrade gui-ufw to 15.04.4 (bugfix only release) in vivid.
[Test Case]
Please ensure various bugs are fixed in new version. Shell injection, and profiles with english language.
[Regression Potential]
This is a bugfix only release. And addresses specific issues.
--
CHANGELOG:
+ 15.04.4
- Fix: Migrate commands to subprocess > Fixing shell injection (LP: #1412554)
- Fix: Allow import profile with English language (LP: #1416631)
- Removed executable flag in config files (mask 600, not 700)
- Updated translations
+ 15.04.3
- Properly fix: Shell Command Injection (LP: #1410839)
+ 15.04.2
- Fix: Shell Injection in the IP & Ports values.
+ 15.04.1
- Fix: Shell Command Injection (LP: #1410839)
- Fix: Not allow one interface over the same interface (LP: #1402220)
- Fix: Not allow Both Protocol with a range of ports (LP: #1402232)
- Updated languages
EXPLANATION OF NEW UPSTREAM RELEASE (and -proposed):
As you can see in the changelog, this new upstream release is mostly a bug fixes release (some of them are important), other changes are only translations updates.
I uploaded a copy of this package to my PPA (gui-ufw 15.04.4-
@Marcos, can I please ask you to provide security issues patches (one for issue, keep them minimal only needed changes) for 14.10, 14.04 and 12.04 (if affected) so I can create packages and get them uploaded through security team? Thank you.
Related branches
Changed in gui-ufw (Ubuntu): | |
importance: | Undecided → Medium |
Changed in gui-ufw (Ubuntu Vivid): | |
importance: | Undecided → Medium |
Changed in gui-ufw (Ubuntu): | |
importance: | Medium → Low |
Changed in gui-ufw (Ubuntu Vivid): | |
importance: | Medium → Low |
Changed in gui-ufw (Ubuntu): | |
importance: | Low → Medium |
Changed in gui-ufw (Ubuntu Vivid): | |
importance: | Low → Medium |
Changed in gui-ufw (Ubuntu): | |
importance: | Medium → Low |
Changed in gui-ufw (Ubuntu Vivid): | |
importance: | Medium → Low |
Changed in gui-ufw (Ubuntu Vivid): | |
status: | Fix Committed → Won't Fix |
I uploaded the package in vivid-proposed.
I'm uploading here a filtered debdiff to show use changes in code (translations updates are excluded) generated with: 15.04.? /po/*' debdiff > filtered_debdiff
filterdiff -x 'gui-ufw-