A new release of the Ubuntu Cloud Images for stable Ubuntu release 18.04 LTS (Bionic Beaver) is available at [1]. These new images superseded the existing images [2]. Images are available for download or immediate use on EC2 via publish AMI ids. Users who wish to update their existing installations can do so with: 'sudo apt-get update && sudo apt-get dist-upgrade && sudo reboot'. The following packages have been updated. Please see the full changelogs for a complete listing of changes: * linux-meta: 4.15.0.134.121 => 4.15.0.135.122 * linux-signed: 4.15.0-134.138 => 4.15.0-135.139 * lshw: 02.18-0.1ubuntu6.18.04.1 => 02.18-0.1ubuntu6.18.04.2 * netplan.io: 0.99-0ubuntu3~18.04.3 => 0.99-0ubuntu3~18.04.4 * sudo: 1.8.21p2-3ubuntu1.3 => 1.8.21p2-3ubuntu1.4 * tzdata: 2020f-0ubuntu0.18.04 => 2021a-0ubuntu0.18.04 The following is a complete changelog for this image. new: {'linux-headers-4.15.0-135-generic': '4.15.0-135.139', 'linux-headers-4.15.0-135': '4.15.0-135.139', 'linux-modules-4.15.0-135-generic': '4.15.0-135.139'} removed: {'linux-headers-4.15.0-134': '4.15.0-134.138', 'linux-modules-4.15.0-134-generic': '4.15.0-134.138', 'linux-headers-4.15.0-134-generic': '4.15.0-134.138'} changed: ['libnetplan0:amd64', 'linux-headers-generic', 'linux-headers-virtual', 'linux-image-4.15.0-135-generic', 'linux-image-virtual', 'linux-virtual', 'lshw', 'netplan.io', 'nplan', 'sudo', 'tzdata'] new snaps: {} removed snaps: {} changed snaps: [] ==== linux-meta: 4.15.0.134.121 => 4.15.0.135.122 ==== ==== linux-headers-generic linux-headers-virtual linux-image-virtual linux-virtual * Bump ABI 4.15.0-135 ==== linux-signed: 4.15.0-134.138 => 4.15.0-135.139 ==== ==== linux-image-4.15.0-135-generic * Master version: 4.15.0-135.139 ==== lshw: 02.18-0.1ubuntu6.18.04.1 => 02.18-0.1ubuntu6.18.04.2 ==== ==== lshw * Backported patches for NMVe support (LP: #1826737): - d/p/lp1826737-code-clean-up.patch - d/p/lp1826737-implement-NVMe-scanning.patch - d/p/lp1826737-align-physical-ID-with-NVMe-namespace.patch - d/p/lp1826737-treat-NVMe-namespaces-like-disks.patch ==== netplan.io: 0.99-0ubuntu3~18.04.3 => 0.99-0ubuntu3~18.04.4 ==== ==== libnetplan0:amd64 netplan.io nplan * d/p/0001-Don-t-fail-if-same-primary-slave-was-set-before-LP-1.patch - Fix primary slave on the bond not getting set (LP: #1817651) ==== sudo: 1.8.21p2-3ubuntu1.3 => 1.8.21p2-3ubuntu1.4 ==== ==== sudo * SECURITY UPDATE: dir existence issue via sudoedit race - debian/patches/CVE-2021-23239.patch: fix potential directory existing info leak in sudoedit in src/sudo_edit.c. - CVE-2021-23239 * SECURITY UPDATE: heap-based buffer overflow - debian/patches/CVE-2021-3156-pre1.patch: check lock record size in plugins/sudoers/timestamp.c. - debian/patches/CVE-2021-3156-pre2.patch: sanity check size when converting the first record to TS_LOCKEXCL in plugins/sudoers/timestamp.c. - debian/patches/CVE-2021-3156-1.patch: reset valid_flags to MODE_NONINTERACTIVE for sudoedit in src/parse_args.c. - debian/patches/CVE-2021-3156-2.patch: add sudoedit flag checks in plugin in plugins/sudoers/policy.c. - debian/patches/CVE-2021-3156-3.patch: fix potential buffer overflow when unescaping backslashes in plugins/sudoers/sudoers.c. - debian/patches/CVE-2021-3156-4.patch: fix the memset offset when converting a v1 timestamp to TS_LOCKEXCL in plugins/sudoers/timestamp.c. - debian/patches/CVE-2021-3156-5.patch: don't assume that argv is allocated as a single flat buffer in src/parse_args.c. - CVE-2021-3156 * debian/control: added tzdata to Build-Depends so that the time zone data directory is present during builds. ==== tzdata: 2020f-0ubuntu0.18.04 => 2021a-0ubuntu0.18.04 ==== ==== tzdata * New upstream version (LP: #1913482), affecting the following future timestamp: - South Sudan changes from +03 to +02 on 2021-02-01 at 00:00. -- [1] http://cloud-images.ubuntu.com/releases/bionic/release-20210129/ [2] http://cloud-images.ubuntu.com/releases/bionic/release-20210125/