[SRU] 2.37.4
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
snapd (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Trusty |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Unassigned | ||
Cosmic |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
This is a new bugfix release of snapd - it fixes some corner case regressions we found in the 2.37 release series.
The changelog is available here https:/
The travis logs for 2.37.4 can be found here: https:/
We currently have no autopkgtest logs before snapd hits -proposed because we got asked to disable our autopkgtest integration as it was using too many resources from the autopkgtest infrastructure.
The snappy team released a new release that we want SRU into xenial. The new process described in https:/
= PACKAGING CHANGES =
1. debian/rules: Fix the apparmor loading order, this change ensures that the new apparmor profiles are loaded *before* snapd is restarted. The old behaviour was buggy and when jumping from a very old version of snapd the old behaviour would cause snap services to fail to start.
2. debian/rules: Disable /usr/lib/
3. debian/postinst: Remove leftover /etc/apparmor.
= TEST CASE =
1. This is tested in tests/main/
2. This is tested in tests/main/
3. This is tested in tests/main/
= REGRESSION POTENTIAL =
1. low regression potential, the order of the snippets is changed only, no new code or removed code in postinst
2. low regression risk, worst case is that the chmod does not work and we break PATH again - we have an automated test for this
3. low regression potential: removing the snap-confine file has the risk that someone who downgrades the deb from 2.37 to 2.15 has a missing conffile now and snap-confine does not run properly anymore.
CVE References
Changed in snapd (Ubuntu Bionic): | |
status: | New → Incomplete |
description: | updated |
tags: | removed: verification-done |
tags: | added: verification-needed |
tags: |
added: verification-done verification-done-trusty removed: verification-needed verification-needed-trusty |
This bug was fixed in the package snapd - 2.37.4+19.04
---------------
snapd (2.37.4+19.04) disco; urgency=medium
* New upstream release, LP: #1817949 ifacestate: fix migration of connections on upgrade from
- squashfs: unset SOURCE_DATE_EPOCH in the TestBuildDate test
- overlord/
ubuntu-core
- tests: fix upgrade-from-2.15 with kernel 4.15
- interfaces/seccomp: increase filter precision
- tests: remove snapweb from tests
-- Michael Vogt <email address hidden> Wed, 27 Feb 2019 19:53:36 +0100