UbuntuUpdates.org

Package "libnetplan0"

Name: libnetplan0

Description:

YAML network configuration abstraction runtime library
Latest version: 0.106.1-7ubuntu0.22.04.4
Release: jammy (22.04)
Level: security
Repository: main
Head package: netplan.io
Homepage: https://netplan.io/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "libnetplan0"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "libnetplan0" in Jammy

Repository Area Version
base main 0.104-0ubuntu2
updates main 0.106.1-7ubuntu0.22.04.4
proposed main 0.107.1-3ubuntu0.22.04.2

Changelog

Version: 0.106.1-7ubuntu0.22.04.4 2024-06-28 22:07:15 UTC

  netplan.io (0.106.1-7ubuntu0.22.04.4) jammy-security; urgency=medium

  * SECURITY REGRESSION: failure on systems without dbus
    - debian/netplan.io.postinst: Don't call the generator if no networkd
      configuration file exists. (LP: #2071333)

 -- Sudhakar Verma <email address hidden> Fri, 28 Jun 2024 22:42:13 +0530
Source diff to previous version
2071333 netplan.io causes systemctl enable to fail on systems without dbus

Version: 0.106.1-7ubuntu0.22.04.3 2024-06-26 17:07:20 UTC

  netplan.io (0.106.1-7ubuntu0.22.04.3) jammy-security; urgency=medium

  * SECURITY UPDATE: weak permissions on secret files, command injection
    - d/p/lp2065738/0028-libnetplan-use-more-restrictive-file-permissions.patch:
      Use more restrictive file permissions to prevent unprivileged users to
      read sensitive data from back end files (LP: #2065738, #1987842)
    - CVE-2022-4968
    - d/p/lp2066258/0029-libnetplan-escape-control-characters.patch:
      Escape control characters in the parser and double quotes in backend
      files
    - d/p/lp2066258/0030-backends-escape-file-paths.patch:
      Escape special characters in file paths
    - d/p/lp2066258/0031-backends-escape-semicolons-in-service-units.patch:
      Escape isolated semicolons in systemd service units (LP: #2066258)
  * debian/netplan.io.postinst: Add a postinst maintainer script to call the
    generator. It's needed so the file permissions fixes will be applied
    automatically, thanks to danilogondolfo

 -- Sudhakar Verma <email address hidden> Mon, 24 Jun 2024 23:20:42 +0530
2065738 Leaks wireguard keys
CVE-2022-4968 netplan leaks the private key of wireguard to local users. A security fix will be released soon.


About   -   Send Feedback to @ubuntu_updates