-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Mon, 26 Jan 2015 09:12:02 -0600
Source: cgmanager
Binary: cgmanager cgmanager-tests libcgmanager0 libcgmanager-dev
Architecture: source amd64 all
Version: 0.33-2+deb8u1
Distribution: jessie
Urgency: medium
Maintainer: Serge Hallyn <serge.hallyn@ubuntu.com>
Changed-By: Serge Hallyn <serge.hallyn@ubuntu.com>
Description:
cgmanager - Central cgroup manager daemon
cgmanager-tests - Central cgroup manager daemon (tests)
libcgmanager-dev - Central cgroup manager daemon (dev)
libcgmanager0 - Central cgroup manager daemon (client library)
Changes:
cgmanager (0.33-2+deb8u1) testing-proposed-updates; urgency=medium
.
* SECURITY UPDATE: Cross-cgroup resource control bypass.
- debian/patches/0003-make-sure-to-check-cgroup-hierarchy.patch, modify
cgmanager.c to verify that requests are allowed under the caller's
cgroup.
- CVE-2014-1425
* 0004-chown-stop-cgmanager-crash-on-chown-of-bad-file.patch and
0005-prevent-some-cgmanager-asserts.patch: prevent cgmanager
crashing on unhandled asserts or dbus error (LP: #1407787)
* 0006-fix-subdirectory-check: further fix to the previous patch for
CVE-2014-1425.
Checksums-Sha1:
f1f4f9a13a48b3b6b321954b9f34d9230666ba97 2080 cgmanager_0.33-2+deb8u1.dsc
74d406a3c2fd8f89904adfc289c2d47401cef460 13640 cgmanager_0.33-2+deb8u1.debian.tar.xz
35f5002f1ceddf2ef0cea473cc87478952d7c3a4 77666 cgmanager_0.33-2+deb8u1_amd64.deb
c07edd62b1aa2f1d5fbc958cdf2c0469c310fa2f 13628 cgmanager-tests_0.33-2+deb8u1_all.deb
3491621e38edbb52c91d502796d9da98f94ab679 40580 libcgmanager0_0.33-2+deb8u1_amd64.deb
dd25d990380f6b13455ae04bd41342dffb5cdf29 10826 libcgmanager-dev_0.33-2+deb8u1_amd64.deb
Checksums-Sha256:
a3a417db6682a06e9f0543925c4f626d8c30dbabef564ceeb04e3e076dfe7b17 2080 cgmanager_0.33-2+deb8u1.dsc
018a944c8e6cf05a65de3b0e49a8473301f37273a0117e3226e6b1da97bb7158 13640 cgmanager_0.33-2+deb8u1.debian.tar.xz
3510e866c5f1ba5dadd239c5729efc6e1295bbaa80b1aa987996f08cb5e8f63e 77666 cgmanager_0.33-2+deb8u1_amd64.deb
af6279254cae7cd2b529e31837f312f235a5573bb62c3ea6389ff41a9bc476e2 13628 cgmanager-tests_0.33-2+deb8u1_all.deb
13ede22603463e445476d79aaa87dae54a15955f7870a8f6d4b1d1a2f059fc41 40580 libcgmanager0_0.33-2+deb8u1_amd64.deb
565c5198ef99239c5245fa4c1d57ebd6052ba31ec6d3fa0c34b1bf83a6128e51 10826 libcgmanager-dev_0.33-2+deb8u1_amd64.deb
Files:
9c32457a05673125fca1e340a13ac54a 2080 admin optional cgmanager_0.33-2+deb8u1.dsc
2385b0e7881ee1f367816955183d54b9 13640 admin optional cgmanager_0.33-2+deb8u1.debian.tar.xz
d25075f1155fa942be464e8f06ca5bc8 77666 admin optional cgmanager_0.33-2+deb8u1_amd64.deb
e259acbce4efe15a039e3946c7cb66da 13628 admin optional cgmanager-tests_0.33-2+deb8u1_all.deb
89bf342c23d0ca2349fe23568aef091a 40580 admin optional libcgmanager0_0.33-2+deb8u1_amd64.deb
cc1d7b36c0672441ad18d8d6495810c3 10826 libdevel optional libcgmanager-dev_0.33-2+deb8u1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQIcBAEBCAAGBQJU4v/7AAoJENFO8V2v4RNHUvgP/jVVK3ZzHNbQGvv2g2u4beMH
LgBZdxfRG1UOj8ZOmXS7jmuyQOlMJF29nxlTnV19adXx+hELW28wqczx8f/uOWWt
WgtDZ8KwWRrubf2DjNNhC1LX8RJoIrf51xU2bVUcfZlB19A1tVxA8PXgghDaXeh0
tPI77sE88EO+7UfRbSps5N2pvWjgUxtIvm/Px56JABDKEtJNx7iQB3VLyQ3fxZ0K
qFkv9J7S4OQYhCYLgHsmzEw4CULZX7y6Y0c5sBl91Uq8IXzieRyx4abYW9Q7yQgO
1P40H8UOx77sWjHN2uW4FZy1Iue0DCFdisJ2ABpIlAI1IH6QFAgl2980LK1Oi4GA
XVRKkHPeoQqOfVh6wt7WNWn6SzpeGckSK1xd5Dp6ZjB5RlpRi0UbDjWhh8QRqZf3
WJLl6Z+/WypQ7g1sRnO9LJNHDIlC4TXwuBfp5LC6IB+W8FHWwOBgQo7LzteIJJ2+
cY12kmerFdfAXCU8hF/OBlGaSt3/X8XmtKxOm63R3BvvRD1W1Wju5QvN7SBBi+zJ
gpk5wLDkKPGtiqruBhIp+TUzg1Jhj1qYh0CciuQPikD9ggs6+bjo98n03PFRWk2M
nGsehQISyDROK377faOMnFvo1pLPG8LZUIM9qjWNUg1M7MVoHIlmzBEaqXfKcB2s
8tQMZVXpcN/6Ex+wwaj1
=1BC1
-----END PGP SIGNATURE-----
