Update debian/changelog

author: Robert Ancell <robert.ancell@canonical.com> 2017-04-05 09:34:11 +1200
committer: Robert Ancell <robert.ancell@canonical.com> 2017-04-05 09:34:11 +1200
commit: aafebcf9202b20529f7a1b81556ac932278516cf (patch)
tree: d73c07a4be36537967f8c90354350d9d2c5a346d
parent: 70f642a9e9fdef8d9b25ddab98337d5ed313cb24 (diff)
download: lightdm-git-aafebcf9202b20529f7a1b81556ac932278516cf.tar.gz
1 files changed, 10 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog
index a18f84f6..16a620c8 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,13 @@
+lightdm (1.18.3-0ubuntu1.1) xenial-security; urgency=medium
+
+  * SECURITY UPDATE: Directory traversal allowing arbitrary directory
+    ownership and privilege escalation (LP: #1677924)
+    - debian/guest-account.sh: Detect existing malicious guest user home dirs
+      before proceeding with guest user creation
+    - CVE-2017-7358
+
+ -- Tyler Hicks <tyhicks@canonical.com>  Fri, 31 Mar 2017 16:04:04 +0000
+
 lightdm (1.18.3-0ubuntu1) xenial; urgency=medium
 
   * New upstream release:
author	Robert Ancell <robert.ancell@canonical.com>	2017-04-05 09:34:11 +1200
committer	Robert Ancell <robert.ancell@canonical.com>	2017-04-05 09:34:11 +1200
commit	aafebcf9202b20529f7a1b81556ac932278516cf (patch)
tree	d73c07a4be36537967f8c90354350d9d2c5a346d
parent	70f642a9e9fdef8d9b25ddab98337d5ed313cb24 (diff)
download	lightdm-git-aafebcf9202b20529f7a1b81556ac932278516cf.tar.gz