A new release of the Ubuntu Cloud Images for stable Ubuntu release 18.04 LTS (Bionic Beaver) is available at [1]. These new images superseded the existing images [2]. Images are available for download or immediate use on EC2 via publish AMI ids. Users who wish to update their existing installations can do so with: 'sudo apt-get update && sudo apt-get dist-upgrade && sudo reboot'. The following packages have been updated. Please see the full changelogs for a complete listing of changes: * cyrus-sasl2: 2.1.27~101-g0780600+dfsg-3ubuntu2.1 => 2.1.27~101-g0780600+dfsg-3ubuntu2.3 * linux-meta: 4.15.0.129.116 => 4.15.0.130.117 * linux-signed: 4.15.0-129.132 => 4.15.0-130.134 * p11-kit: 0.23.9-2 => 0.23.9-2ubuntu0.1 * tzdata: 2020d-0ubuntu0.18.04 => 2020f-0ubuntu0.18.04 * ubuntu-release-upgrader: 1:18.04.41 => 1:18.04.42 * update-notifier: 3.192.1.7 => 3.192.1.9 The following is a complete changelog for this image. new: {'linux-headers-4.15.0-130': '4.15.0-130.134', 'linux-modules-4.15.0-130-generic': '4.15.0-130.134', 'linux-headers-4.15.0-130-generic': '4.15.0-130.134'} removed: {'linux-headers-4.15.0-129-generic': '4.15.0-129.132', 'linux-modules-4.15.0-129-generic': '4.15.0-129.132', 'linux-headers-4.15.0-129': '4.15.0-129.132'} changed: ['libp11-kit0:amd64', 'libsasl2-2:amd64', 'libsasl2-modules-db:amd64', 'libsasl2-modules:amd64', 'linux-headers-generic', 'linux-headers-virtual', 'linux-image-4.15.0-130-generic', 'linux-image-virtual', 'linux-virtual', 'python3-distupgrade', 'tzdata', 'ubuntu-release-upgrader-core', 'update-notifier-common'] new snaps: {} removed snaps: {} changed snaps: [] ==== cyrus-sasl2: 2.1.27~101-g0780600+dfsg-3ubuntu2.1 => 2.1.27~101-g0780600+dfsg-3ubuntu2.3 ==== ==== libsasl2-2:amd64 libsasl2-modules-db:amd64 libsasl2-modules:amd64 * d/p/lp-1906627-01-Fix-GSS-SPNEGO-mechanism-s-incompatible-behavior.patch: d/p/lp-1906627-02-Drop-unused-parameter-from-gssapi_spnego_ssf.patch: - Fix GSS-SPNEGO implementation to be inter-operable with Microsoft Active Directory, fixing the source of the recent adcli regression. (LP: #1906627) ==== linux-meta: 4.15.0.129.116 => 4.15.0.130.117 ==== ==== linux-headers-generic linux-headers-virtual linux-image-virtual linux-virtual * Bump ABI 4.15.0-130 * Packaging resync (LP: #1786013) - [Packaging] resync debian/dkms-versions from main package ==== linux-signed: 4.15.0-129.132 => 4.15.0-130.134 ==== ==== linux-image-4.15.0-130-generic * Master version: 4.15.0-130.134 ==== p11-kit: 0.23.9-2 => 0.23.9-2ubuntu0.1 ==== ==== libp11-kit0:amd64 * SECURITY UPDATE: multiple integer overflows - debian/patches/CVE-2020-29361-1.patch: check for arithmetic overflows before allocating in p11-kit/iter.c, p11-kit/lists.c, p11-kit/proxy.c, p11-kit/rpc-message.c, p11-kit/rpc-message.h, p11-kit/rpc-server.c, trust/index.c. - debian/patches/CVE-2020-29361-2.patch: follow-up to arithmetic overflow fix in common/compat.c, p11-kit/rpc-message.c. - CVE-2020-29361 * SECURITY UPDATE: heap over-read in the RPC protocol - debian/patches/CVE-2020-29362.patch: fix bounds check in p11-kit/rpc-message.c. - CVE-2020-29362 * SECURITY UPDATE: heap overflow in RPC protocol - debian/patches/CVE-2020-29363.patch: check attribute length against buffer size in p11-kit/rpc-message.c. - CVE-2020-29363 ==== tzdata: 2020d-0ubuntu0.18.04 => 2020f-0ubuntu0.18.04 ==== ==== tzdata * New upstream version (LP: #1909698), affecting the following timestamp: - Volgograd switches to Moscow time on 2020-12-27 at 02:00. ==== ubuntu-release-upgrader: 1:18.04.41 => 1:18.04.42 ==== ==== python3-distupgrade ubuntu-release-upgrader-core * check-new-release, check-new-release-gtk: Do not indicate that a release upgrade is available for systems that are running on i386 architecture. (LP: #1901725) ==== update-notifier: 3.192.1.7 => 3.192.1.9 ==== ==== update-notifier-common * data/apt_check.py: Update UA Infra: ESM product name and doc url (LP: #1901627) - data/apt_check.py: Update name and URL - tests/test_motd.py: adapt unittests to match new behavior - po/*.po: translation files with intltool-update -r * Fix pep8/pyflakes autopkgtest failures (LP: #1906436) - d/control: add explicit pep8 build-requires dependency - test_motd.py: remove unused imports - pyflakes: data/backend_helper fix unittests for unreferenced variables - data/apt_check & data/backend_helper: resolve underindent pep8 issues backport of 9e0f7ee50 [ Brian Murray ] - data/apt_check.py, data/package-data-downloader, tests/test_pep8.py: + update the code formating to be not hit W504 warnings, change to ignore W503 and be consistent with update-manager. [ Andrea Azzarone ] - INSTALL, data/hooks.py, tests/test_package-data-downloader.py: Fix E117 over-indented pep issues. [ Gianfranco Costamagna ] - test_motd.py: Remove unused imports [ Julian Andres Klode ] - pyflakes: data/backend_helper fix unittests for unreferenced variables [ Andreas Hasenack ] * data/apt_check.py: Update ESM security pockets names (LP: #1881632) - the UbuntuESM pocket was renamed from -security to -infra-security - new origin UbuntuESMApps, with a corresponding pocket of -apps-security [ Brian Murray ] * data/apt_check.py: modify wording and output regarding ESM support. (LP: #1842508) [ Julian Andres Klode ] * Handle missing cases of LP: #1822340, where we told people ESM is not enabled, but not how to enable it. * Fix multiple disabled ESM repositories being counted as enabled ones. -- [1] http://cloud-images.ubuntu.com/releases/bionic/release-20210108/ [2] http://cloud-images.ubuntu.com/releases/bionic/release-20210105/