apport (2.17.2-0ubuntu1) vivid; urgency=medium
* New upstream bug fix release:
- SECURITY UPDATE: Disable crash forwarding to containers. The previous
fix in 2.17.1 was not sufficient against all attack scenarios. By
binding to specially crafted sockes, a normal user program could forge
arbitrary entries in /proc/net/unix. We cannot currently rely on a
kernel-side solution for this; this feature will be re-enabled once it
gets re-done to be secure. (LP: #1444518)
- apport-kde: Fix crash when showing byte array values. Thanks Jonathan
Riddell. (LP: #1443659)
- Really create a better duplicate signature for recoverable problems,
using ExecutablePath. Thanks Brian Murray. (LP: #1316763)
* Disable Launchpad crash upload for final Ubuntu 15.04.
-- Martin Pitt <email address hidden> Thu, 16 Apr 2015 17:51:18 -0500