Aggiornamenti di sicurezza importanti per Ubuntu 11.10 Oneiric Ocelot: Unity appmenu, Adobe Flash Player plugin installer e PNG library.

Sappiamo tutti quanto sia importante mantenere aggiornato il proprio sistema operativo, ma è parimenti esperienza comune che spesso siano proprio gli aggiornamenti a introdurre nuovi bug. Ubuntu segue delle linee guida ben precise per gestire questa situazione.

La chiave di volta dell’intero discorso è che, una volta rilasciata la release, gli aggiornamenti non si fanno affatto, a meno che non riguardino vulnerabilità di sicurezza o bug particolarmente significativi.

Addirittura, nell’ottica di stabilizzare la release, già durante le ultime fasi di sviluppo l’ingresso di nuovi pacchetti dei vari software è sottoposto ad un controllo particolarmente rigido (una fase nota agli sviluppatori come “Feature Freeze”, appunto).

Gli aggiornamenti proposti a continuazione fanno parte del bollettino di sicurezza settimanale rilasciato da Canonical e riguardano in particolare:

• Safe and easy web browser from Mozilla.
• Safe and easy web browser from Mozilla Gnome support.
• Unity appmenu.
• English language pack for Firefox.
• Italian language pack for Firefox.
• Adobe Flahs Player plugin installer.

Safe and easy web browser from Mozilla

Modifiche per le versioni:

Versione installata: 10.0.1+build1-0ubuntu0.11.10.1

Versione disponibile: 10.0.2+build1-0ubuntu0.11.10.1

Versione 10.0.2+build1-0ubuntu0.11.10.1:

* New upstream stable release (FIREFOX_10_0_2_BUILD1)

• see LP: #933293 for USN information

Firefox delivers safe, easy web browsing. A familiar user interface, enhanced security features including protection from online identity theft, and integrated search let you get the most out of the web.

Safe and easy web browser from Mozilla Gnome support

Modifiche per le versioni:

Versione installata: 10.0.1+build1-0ubuntu0.11.10.1

Versione disponibile: 10.0.2+build1-0ubuntu0.11.10.1

Versione 10.0.2+build1-0ubuntu0.11.10.1:

* New upstream stable release (FIREFOX_10_0_2_BUILD1)

- see LP: #933293 for USN information

Firefox delivers safe, easy web browsing. A familiar user interface, enhanced security features including protection from online identity theft, and integrated search let you get the most out of the web.

This package depends on the GNOME libraries which allow Firefox to take advantage of technologies such as GConf, GIO libnotify

Unity appmenu.

Modifiche per le versioni:

Versione installata: 10.0.1+build1-0ubuntu0.11.10.1

Versione disponibile: 10.0.2+build1-0ubuntu0.11.10.1

Versione 10.0.2+build1-0ubuntu0.11.10.1:

* New upstream stable release (FIREFOX_10_0_2_BUILD1)

• see LP: #933293 for USN information

This package provides an extension which adds support for the Unity appmenu to Firefox

English language pack for Firefox

Modifiche per le versioni:

Versione installata: 10.0.1+build1-0ubuntu0.11.10.1

Versione disponibile: 10.0.2+build1-0ubuntu0.11.10.1

Versione 10.0.2+build1-0ubuntu0.11.10.1:

* New upstream stable release (FIREFOX_10_0_2_BUILD1)

- see LP: #933293 for USN information

This package contains English translations and search plugins for Firefox

Italian language pack for Firefox

Modifiche per le versioni:

Versione installata: 10.0.1+build1-0ubuntu0.11.10.1

Versione disponibile: 10.0.2+build1-0ubuntu0.11.10.1

Versione 10.0.2+build1-0ubuntu0.11.10.1:

* New upstream stable release (FIREFOX_10_0_2_BUILD1)

• see LP: #933293 for USN information

Adobe Flahs Player plugin installer (transitional package)

Modifiche per le versioni:

Versione installata: 11.1.102.55ubuntu0.11.10.1

Versione disponibile: 11.1.102.62ubuntu0.11.10.2

Versione 11.1.102.62ubuntu0.11.10.2:

* Fix use of dpkg-reconfigure by not using $DPKG_MAINTSCRIPT_ARCH

(LP: #933484)

- debian/flashplugin-installer.postinst.in: renamed from

flashplugin-installer.postinst and replaced $DPKG_MAINTSCRIPT_ARCH

with #ARCH#.

- debian/rules: replace #ARCH# in flashplugin-installer.postinst.in

with $DEB_HOST_ARCH during build.

- debian/flashplugin-installer.prerm: also clean out subdirectories in

/var/cache/flashplugin-installer.

* flashplugin-installer.postinst.in: use "mega" style by default so we

stop filling up log files. (LP: #872723)

Versione 11.1.102.62ubuntu0.11.10.1:

* New upstream release 11.1.102.62

- debian/flashplugin-installer.{config,postinst}: Updated version and

sha256sums.

- CVE-2012-0752

- CVE-2012-0753

- CVE-2012-0754

- CVE-2012-0755

- CVE-2012-0756

- CVE-2012-0757

* Add native amd64 support (LP: #870835):

- debian/control: change flashplugin-downloader to a transitional

package, and switch flashplugin-installer back to the package that

downloads and installs the binary so we can properly upgrade

multiarch. Adjust Homepage.

- debian/flashplugin-installer.postinst: use $DPKG_MAINTSCRIPT_ARCH to

copy the right binary, remove old nspluginwrapper alternatives.

- debian/rules: remove nspluginwrapper files.

- debian/flashplugin-installer.*: remove flashplugin-installer-unpackdir

directory migration, this was before hardy.

This package is a transitional package that can safely be removed after you installed flashplugin-installer.

Adobe Flash Player plugin installer

Modifiche per le versioni:

Versione installata: 11.1.102.55ubuntu0.11.10.1

Versione disponibile: 11.1.102.62ubuntu0.11.10.2

Versione 11.1.102.62ubuntu0.11.10.2:

* Fix use of dpkg-reconfigure by not using $DPKG_MAINTSCRIPT_ARCH

(LP: #933484)

- debian/flashplugin-installer.postinst.in: renamed from

flashplugin-installer.postinst and replaced $DPKG_MAINTSCRIPT_ARCH

with #ARCH#.

- debian/rules: replace #ARCH# in flashplugin-installer.postinst.in

with $DEB_HOST_ARCH during build.

- debian/flashplugin-installer.prerm: also clean out subdirectories in

/var/cache/flashplugin-installer.

* flashplugin-installer.postinst.in: use "mega" style by default so we

stop filling up log files. (LP: #872723)

Versione 11.1.102.62ubuntu0.11.10.1:

* New upstream release 11.1.102.62

- debian/flashplugin-installer.{config,postinst}: Updated version and

sha256sums.

- CVE-2012-0752

- CVE-2012-0753

- CVE-2012-0754

- CVE-2012-0755

- CVE-2012-0756

- CVE-2012-0757

* Add native amd64 support (LP: #870835):

- debian/control: change flashplugin-downloader to a transitional

package, and switch flashplugin-installer back to the package that

downloads and installs the binary so we can properly upgrade

multiarch. Adjust Homepage.

- debian/flashplugin-installer.postinst: use $DPKG_MAINTSCRIPT_ARCH to

copy the right binary, remove old nspluginwrapper alternatives.

- debian/rules: remove nspluginwrapper files.

- debian/flashplugin-installer.*: remove flashplugin-installer-unpackdir

directory migration, this was before hardy.

Downloads and Installs the Adobe Flash Player plugin. The Adobe Flash Player plugin supports playing of media and other dynamic content online.

The Adobe Flash Player plugin will work with a range of web-browsers including, limited to:

* Firefox

* Chromium

* SeaMonkey

* Iceweasel

* Iceape

* Galeon

* Epiphany

* Konqueror WARNING: Installing this Ubuntu package causes the Adobe Flash Player plugin to be downloaded from the Canonical partner archive. The distribution license of the Adobe Flash Player plugin is available at www.adobe.com. Installing this Ubuntu package implies that you have accepted the terms of that license.

PNG Library Runtime

Modifiche per le versioni:

Versione installata: 1.2.46-3ubuntu1

Versione disponibile: 1.2.46-3ubuntu1.1

Versione 1.2.46-3ubuntu1.1:

* SECURITY UPDATE: fix integer overflow / truncation

- debian/patches/CVE-2011-3026.patch: adjust pngrutil.c to verify size

when allocating memory in png_decompress_chunk()

- CVE-2011-3026 

Ricerca personalizzata

Se ti è piaciuto l'articolo , iscriviti al feed cliccando sull'immagine sottostante per tenerti sempre aggiornato sui nuovi contenuti del blog: