** Changed in: ubuntu-mate
Status: New => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1427742
Title:
mate-menu package needs updating
To manage notifications about this bug go
mate-menu (5.6.3-0ubuntu1) vivid; urgency=medium
[ Martin Wimpress ]
* New upstream release.
+ Added translations.
+ Fixed shell code injection. Closes (LP: #1422402)
+ Removed package management features.
+ Removed useless imports and dead code.
+ Refactored some os.
Perfect, looking good and sponsored, thanks! :)
** Changed in: mate-menu (Ubuntu)
Status: New => Fix Committed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1427742
Title:
mate-menu package
As requested by Didier Roche I have attached a debdiff for the change
between 5.6.1 and 5.6.3.
** Patch added: "debdiff for mate-menu from 5.6.1 to 5.6.3"
https://bugs.launchpad.net/ubuntu/+source/mate-menu/+bug/1427742/+attachment/4336243/+files/mate-menu-revision.diff
--
You received this
After discussing with Iain Lane I have consolidated the changelog entry,
so the unreleased 5.6.2 version is no longer listed.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1427742
Title:
mate-menu p
There is a Shell Command Injection vulnerability in the version of MATE
Menu currently residing in the official Ubuntu archive. This issue is
described here:
* https://bugs.launchpad.net/ubuntu-mate/+bug/1422402
mate-menu 5.6.2 directly addresses the issue above, but as you point out
was not re
mate-menu (5.6.2-0ubuntu1) vivid; urgency=medium is in changelog and
doesn't appear to have been landed in vivid.
Also, I'm a bit concerned about what some of the entries mean in changelog:
++ Removed package management features.
++ Removed useless imports and dead code.
++ Refactored
