A new release of the Ubuntu Cloud Images for stable Ubuntu release 20.04 LTS (Focal Fossa) is available at [1]. These new images superseded the existing images [2]. Images are available for download or immediate use on EC2 via publish AMI ids. Users who wish to update their existing installations can do so with: 'sudo apt-get update && sudo apt-get dist-upgrade && sudo reboot'. The following packages have been updated. Please see the full changelogs for a complete listing of changes: * alsa-ucm-conf: 1.2.2-1ubuntu0.9 => 1.2.2-1ubuntu0.10 * libssh: 0.9.3-2ubuntu2.1 => 0.9.3-2ubuntu2.2 * linux-meta: 5.4.0.81.85 => 5.4.0.84.88 * linux-signed: 5.4.0-81.91 => 5.4.0-84.94 * ntfs-3g: 1:2017.3.23AR.3-3ubuntu1 => 1:2017.3.23AR.3-3ubuntu1.1 * python-apt: 2.0.0ubuntu0.20.04.5 => 2.0.0ubuntu0.20.04.6 * squashfs-tools: 1:4.4-1 => 1:4.4-1ubuntu0.1 The following is a complete changelog for this image. new: {'linux-headers-5.4.0-84-generic': '5.4.0-84.94', 'linux-headers-5.4.0-84': '5.4.0-84.94', 'linux-modules-5.4.0-84-generic': '5.4.0-84.94'} removed: {'linux-headers-5.4.0-81': '5.4.0-81.91', 'linux-modules-5.4.0-81-generic': '5.4.0-81.91', 'linux-headers-5.4.0-81-generic': '5.4.0-81.91'} changed: ['alsa-ucm-conf', 'libntfs-3g883', 'libssh-4:amd64', 'linux-headers-generic', 'linux-headers-virtual', 'linux-image-5.4.0-84-generic', 'linux-image-virtual', 'linux-virtual', 'ntfs-3g', 'python-apt-common', 'python3-apt', 'squashfs-tools'] new snaps: {} removed snaps: {} changed snaps: [] ==== alsa-ucm-conf: 1.2.2-1ubuntu0.9 => 1.2.2-1ubuntu0.10 ==== ==== alsa-ucm-conf * d/p/0031-sof-soundwire-rt1316-DAC-L-and-R-is-replaced-by-DAC.patch The mixer name is changed in the codec driver rt1316-sdw.c, so need to handle the new mixer name. https://github.com/alsa-project/alsa-ucm-conf/pull/109 (LP: #1937980) * d/p/0032-sof-hda-dsp-Set-Capture-Switch-on-in-the-BootSequenc.patch The input volume of the external microphone is 0 by default for all machines with sof audio driver, that is because the capture switch is set to off by default, need to set it to on in the ucm. https://github.com/alsa-project/alsa-ucm-conf/pull/107 (LP: #1940788) ==== libssh: 0.9.3-2ubuntu2.1 => 0.9.3-2ubuntu2.2 ==== ==== libssh-4:amd64 * SECURITY UPDATE: possible heap-buffer overflow when rekeying - debian/patches/CVE-2021-3634.patch: create a separate length for session_id in include/libssh/crypto.h, src/gssapi.c, src/kdf.c, src/kex.c, src/libcrypto.c, src/messages.c, src/packet.c, src/pki.c, src/wrapper.c, tests/unittests/torture_session_keys.c. - CVE-2021-3634 ==== linux-meta: 5.4.0.81.85 => 5.4.0.84.88 ==== ==== linux-headers-generic linux-headers-virtual linux-image-virtual linux-virtual * Bump ABI 5.4.0-84 * Bump ABI 5.4.0-83 * Bump ABI 5.4.0-82 * Packaging resync (LP: #1786013) - [Packaging] resync debian/dkms-versions from main package ==== linux-signed: 5.4.0-81.91 => 5.4.0-84.94 ==== ==== linux-image-5.4.0-84-generic * Master version: 5.4.0-84.94 * Master version: 5.4.0-83.93 * Master version: 5.4.0-82.92 ==== ntfs-3g: 1:2017.3.23AR.3-3ubuntu1 => 1:2017.3.23AR.3-3ubuntu1.1 ==== ==== libntfs-3g883 ntfs-3g * SECURITY UPDATE: multiple security issues - debian/patches/aug2021-security.patch: backport fixes from new upstream version. - No CVE number ==== python-apt: 2.0.0ubuntu0.20.04.5 => 2.0.0ubuntu0.20.04.6 ==== ==== python-apt-common python3-apt * Update mirror lists ==== squashfs-tools: 1:4.4-1 => 1:4.4-1ubuntu0.1 ==== ==== squashfs-tools * SECURITY UPDATE: Directory traversal via relative paths in unsquashfs (LP: #1941790) - debian/patches/0001-CVE-2021-40153.patch: Treat squashfs images which contain files with names containing constructs like ../ as corrupted in unsquash-N.c - CVE-2021-40153 -- [1] http://cloud-images.ubuntu.com/releases/focal/release-20210907/ [2] http://cloud-images.ubuntu.com/releases/focal/release-20210825/