Format: 1.8
Date: Fri, 21 Apr 2023 14:21:43 -0500
Source: cloud-init
Binary: cloud-init
Built-For-Profiles: noudeb
Architecture: all amd64_translations
Version: 23.1.2-0ubuntu0~22.10.1
Distribution: kinetic
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lcy02-amd64-066.buildd>
Changed-By: James Falcon <james.falcon@canonical.com>
Description:
 cloud-init - initialization and customization tool for cloud instances
Launchpad-Bugs-Fixed: 2013967
Changes:
 cloud-init (23.1.2-0ubuntu0~22.10.1) kinetic; urgency=medium
 .
   * SECURITY UPDATE: Make user/vendor data sensitive and remove log permissions
     Because user data and vendor data may contain sensitive information,
     this commit ensures that any user data or vendor data written to
     instance-data.json gets redacted and is only available to root user.
 .
     Also, modify the permissions of cloud-init.log to be 640, so that
     sensitive data leaked to the log isn't world readable.
     Additionally, remove the logging of user data and vendor data to
     cloud-init.log from the Vultr datasource.
 .
     This is based on upstream snapshot of 23.1.2 [(LP: #2013967)]
 .
     - d/cloud-init.postinst: postinst fixes for LP: #2013967
       Redact sensitive keys from world-readable instance-data.json on upgrade.
       Set perms 640 for /var/log/cloud-init.log on pkg upgrade.
       Redact sensitive Vultr messages from /var/log/cloud-init.log
     - (CVE-2023-1786)
Checksums-Sha1:
 9589fa5731d8ae21f96457f9cba11799865c6f53 521946 cloud-init_23.1.2-0ubuntu0~22.10.1_all.deb
 12ecf335db674577ef1f8b4e489c19324e8ebff0 8752 cloud-init_23.1.2-0ubuntu0~22.10.1_amd64.buildinfo
 32069568dc83df952d28fc1d4ef60b35332d0956 1409 cloud-init_23.1.2-0ubuntu0~22.10.1_amd64_translations.tar.gz
Checksums-Sha256:
 4d965f5403568771aebccc19cc1b1a793a167a23fad7c593760eef932c4ada3a 521946 cloud-init_23.1.2-0ubuntu0~22.10.1_all.deb
 edf337ef8ee996274a2430c900b90e7f020d6f7d1d43e22c69b35e521a1c44bb 8752 cloud-init_23.1.2-0ubuntu0~22.10.1_amd64.buildinfo
 27a1c41df11f345cf1024aefdf2e0c278798f6d954003335fe54b3f139987514 1409 cloud-init_23.1.2-0ubuntu0~22.10.1_amd64_translations.tar.gz
Files:
 d560db4b966a1154d49aea1cd195f86b 521946 admin optional cloud-init_23.1.2-0ubuntu0~22.10.1_all.deb
 15c1855353f16c0d2e85ab9e15674b0f 8752 admin optional cloud-init_23.1.2-0ubuntu0~22.10.1_amd64.buildinfo
 8bd9a0824a7b3490aa122d9020074f46 1409 raw-translations - cloud-init_23.1.2-0ubuntu0~22.10.1_amd64_translations.tar.gz