Ubuntu 16.04.1 LTS (Xenial Xerus) is the first 16.04 point release, with 16.04 Kernel. Ubuntu 16.04.1 is released with hardware support, updates and fixes.
In addition to the bug-fixes, Ubuntu 16.04.1 update includes all security updates from the Ubuntu Security Notice list affecting Ubuntu 16.04 LTS that were released up to and including July 19, 2016. The last update included was USN-3039-1 (Django vulnerability).
Ubuntu 16.04.1 Updates
Ubuntu 16.04.1 LTS (Xenial Xerus) update brings:
- Installation bug fixes
- Upgrade bug fixes
- Desktop fixes
- Server and Cloud related fixes
- Kernel and Hardware support updates
- Unsorted changes
Some of the changes are:
- Backport upstream fix to make hybrid disk work again, should resolve some disks like video DVDs not showing in the desktop interface
- Make the app folder dialog work again
- Enable the Snappy backend
- Make sure file manager icon is not removed when unpinned.
- UnitySettings: Add dconf keys for disabling multitouch gestures
- Views: Toggle animators durations based on low-gfx setting
- Properly remove SoftwareCenterLauncherIcon in case of failure.
- Adds Terminal specific CSS to change tab colours making it easier to distinguish the current selected tab from the others. Design have reviewed and ack’d.
- Update the theme to work with recent Empathy
- Samba: Updated to 4.3.9 to fix multiple regressions in the previous security updates
- Use upstream solution for avoiding /dev/mem accesses on !x86, fixing a memory size detection regression
Ubuntu security notices
In addition to the bugs listed below, this update includes all security updates from the Ubuntu Security Notice list affecting Ubuntu 16.04 LTS that were released up to and including July 19, 2016. The last update included was USN-3039-1 (Django vulnerability).
Some of the prominent security notices for Ubuntu 16.04 are:
USN-3040-1: MySQL vulnerabilities – Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been updated to 5.5.50 in Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. Ubuntu 15.10 has been updated to MySQL 5.6.31. Ubuntu 16.04 LTS has been updated to MySQL 5.7.13.
USN-3039-1: Django vulnerability – It was discovered that Django incorrectly handled the admin’s add/change related popup. A remote attacker could possibly use this issue to perform a cross-site scripting attack.
USN-3038-1: Apache HTTP Server vulnerability – It was discovered that the Apache HTTP Server would set the HTTP_PROXY environment variable based on the contents of the Proxy header from HTTP requests. A remote attacker could possibly use this issue in combination with CGI scripts that honour the HTTP_PROXY variable to redirect outgoing HTTP requests.
USN-3032-1: eCryptfs vulnerability – It was discovered that eCryptfs incorrectly configured the encrypted swap partition for certain drive types. An attacker could use this issue to discover sensitive
USN-3022-1: LibreOffice vulnerability – It was discovered that LibreOffice incorrectly handled RTF document files. If a user were tricked into opening a specially crafted RTF document, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code.
For more information please visit:
- https://wiki.ubuntu.com/XenialXerus/ReleaseNotes/ChangeSummary/16.04.1
- http://www.ubuntu.com/usn/xenial/