Debian GNU/Linux 6.0.4 verfügbar

Published by

Das vierte Update von Debian 6.0 wurde gerade veröffentlicht Um auf die aktuelle Version zu Upgraden genügt es:
apt-get update && apt-get upgrade


aufzurufen. CD und DVD Images sollen bald verfügbar sein.

Hier die Ankündigung:

------------------------------------------------------------------------
The Debian Project http://www.debian.org/
Updated Debian 6.0: 6.0.4 released [email]press@lists.debian.org[/email]
January 28th, 2012 http://www.debian.org/News/2012/20120128
------------------------------------------------------------------------
The Debian project is pleased to announce the fourth update of its
stable distribution Debian 6.0 (codename "squeeze" ). This update
mainly adds corrections for security problems to the stable release,
along with a few adjustments to serious problems. Security advisories
were already published separately and are referenced where available.

Please note that this update does not constitute a new version of
Debian 6.0 but only updates some of the packages included. There is no
need to throw away 6.0 CDs or DVDs but only to update via an up-to-date
Debian mirror after an installation, to cause any out of date packages
to be updated.

Those who frequently install updates from security.debian.org won't
have to update many packages and most updates from security.debian.org
are included in this update.

New installation media and CD and DVD images containing updated
packages will be available soon at the regular locations.

Upgrading to this revision online is usually done by pointing the
aptitude (or apt) package tool (see the sources.list(5) manual page) to
one of Debian's many FTP or HTTP mirrors. A comprehensive list of
mirrors is available at:


http://www.debian.org/mirror/list

Miscellaneous Bugfixes
----------------------
This stable update adds a few important corrections to the following
packages:


PackageReason

adolcRemove Visual C++ runtime from windows/
directory
backuppcFix data corruption in tarballs due to
logging to stdout and two XSS issues
base-filesUpdate /etc/debian_version for the
point release
base-installer Add POWER7 to the powerpc64 family
bti Fix identi.ca OAuth URLs
bugzillaSecurity fixes
byobu Correct postinst chmod semantics
bzip2 Fix CVE-2011-4089
c-aresFix encoded length for indirect root
cherokeeAvoid brute-forceable password in
cherokee-admin
cifs-utils Fix mtab corruption issues
clamavNew upstream version; fix potential DoS
clamz Handle unencrypted amz files
cpufrequtils Load powernow-k8 for AMD family 20
(i.e. AMD E-350 cpus); better support
3.0 kernels
debian-installerStop menu falling off the screen
debian-installer-netboot-imagesUpdate to d-i 20110106+squeeze4
dpkg Add armhf to {os,triplet}table; defer
hardlink renames; do not fail to unpack
shared directories missing on the file
system from packages being replaced by
other packages
eglibcNew upstream stable release plus fixes
from stable branch
erlangFix CVE-2011-0766 (cryptographic
weakness) in the erlang ssh application
etherape Null pointer dereferences
gimp Fix printing when used with libcairo
version 1.10 or above
gnutls26 Fix buffer overflow in
gnutls_session_get_data()
hplip Fix insecure use of temporary file
ia32-libs Update packages
ia32-libs-gtk Update packages
ifupdown-extraHandle moved location of ethtool; fix
handling of "rejects" in static-route;
use --tmpdir for temporary files; move
/etc/network/network-routes to
/e/n/routes; documentation updates
iotop Give a helpful error instead of
crashing when Linux denies permission
to read the taskstats files
jabberbot Bind callbacks after the roster has
been initialised
kernel-wedge Add et131x to nic-extra-modules; add
isci to scsi-extra-modules; add
xhci-hcd to usb-modules
killerUse DNS for mail domain rather than
NIS; stop cron job failing when package
is removed
ldap2zone Don't send mail on success; syslog
instead
libdata-formvalidator-perlFix possible passing of invalid data in
untaint mode
libdebian-installer Detect IBM pSeries platform as
powerpc/chrp_ibm
libdigest-perlFix unsafe use of eval in Digest->new()
libhtml-template-pro-perlFix XSS
libjifty-dbi-perlSQL injection
libmtpAdd support for Motorola Xoom devices
libpar-packer-perlFix use of unsafe and predictable
temporary directories
libpar-perl Fix use of unsafe and predictable
temporary directories
linux-2.6 Fixes for xen regression, GRO/GSO IPv6
forwarding, ppc vserver; add stable
releases 2.6.32.47-54, various fixes;
fix tg3 regression; xen fixes
linux-kernel-di-amd64-2.6Rebuild against linux-2.6 kernel
2.6.32-41
linux-kernel-di-armel-2.6Rebuild against linux-2.6 kernel
2.6.32-41
linux-kernel-di-i386-2.6Rebuild against linux-2.6 kernel
2.6.32-41
linux-kernel-di-ia64-2.6Rebuild against linux-2.6 kernel
2.6.32-41
linux-kernel-di-mips-2.6Rebuild against linux-2.6 kernel
2.6.32-41
linux-kernel-di-mipsel-2.6Rebuild against linux-2.6 kernel
2.6.32-41
linux-kernel-di-powerpc-2.6Rebuild against linux-2.6 kernel
2.6.32-41
linux-kernel-di-s390-2.6Rebuild against linux-2.6 kernel
2.6.32-41
linux-kernel-di-sparc-2.6Rebuild against linux-2.6 kernel
2.6.32-41
masqmail Fix improper seteuid() calls
mdadm Quieten some cron messages; don't break
when no scheduling class is specified
or no devices are active; LSB header
updates
mediawiki Fix unintended exposure of hidden
content through cache pollution;
disable CVE-2011-4360.patch; doesn't
apply to this version and causes errors
module-init-toolsSupport 3.0 kernels
multipath-toolsChange HP hardware handler to hp_sw;
update man pages
mutt Fix validation of commonname (gnutls)
nfs-utils Allow negotiated enctypes to be limited;
avoid corrupting mtab
nginx Fix compression pointer processing in
DNS response greater than 255 bytes
nss-pam-ldapd Correctly parse /etc/nsswitch.conf,
detect calling process identity and fix
disconnect logic
partman-targetStop treating ISO hybrid images on USB
sticks as real optical drives
pastebinit Fix support for user configuration
files
pbuilder Rename the /run script from --execute
to /runscript, for compatibility with
wheezy and later which have /run as a
directory replacing /var/run
perl Unregister signal handler before
destroying my_perl; fixes segfault;
minor security fixes
phppgadmin Fix XSS
pidginFix remote crash issues
postgresql-8.4New upstream micro-release
pure-ftpd Fix man in the middle attack on
encrypted sessions
python-debian Allow ":" as the first character of a
value
python3-defaultsIgnore binary files while checking
shebangs
qemu-kvm Fix NIC hotplug from libvirt
quasselFix missing translations
recollPlug conversion descriptor leak in
unac.c::convert() error path
rng-tools Work around VIA Nano xstore bug; add
3.0 kernel support
rpm Fix malformed header parsing
samba Allow using unencrypted passwords with
Windows clients with KB2536276
installed
shorewall Install missing
/usr/share/shorewall/helpers
shorewall-liteInstall missing
/usr/share/shorewall/helpers
shorewall6 Install missing
/usr/share/shorewall/helpers
shorewall6-liteInstall missing
/usr/share/shorewall/helpers
slbackup Fix path to configuration file in the
cron job
slbackup-php Fix login issues, deal with blanks in
filenames, fix last failed timestamp
tinyproxy Validate port number specified in
configuration
tzdataNew upstream version; add DST for
America/Bahia
user-mode-linuxRebuild against linux-source-2.6.32
(2.6.32-41)
webkitAvoid doing lots of needless NULL DNS
lookups
whatsnewfm Handle renaming of freshmeat
to freshcode
xorg-server GLX: add missing input sanitization;
fix a file disclosure vulnerability and
a file permission change vulnerability
xpdf Fix insecure temporary file usage

Security Updates
----------------
This revision adds the following security updates to the stable
release. The Security Team has already released an advisory for each of
these updates:


Advisory IDPackageCorrection(s)

DSA-2181subversionDenial of service
DSA-2251 subversionMultiple issues
DSA-2283 krb5-applProgramming error
DSA-2284 opensaml2Implementation error
DSA-2301 railsMultiple issues
DSA-2311 openjdk-6Multiple issues
DSA-2315 openoffice.orgMultiple issues
DSA-2318 cyrus-imapd-2.2Multiple issues
DSA-2322 bugzillaMultiple issues
DSA-2323 radvdMultiple issues
DSA-2324 wiresharkProgramming error
DSA-2325 kfreebsd-8Privilege escalation/denial
of service
DSA-2326 pamMultiple issues
DSA-2327 libfcgi-perlAuthentication bypass
DSA-2328 freetypeMissing input sanitising
DSA-2329 torqueBuffer overflow
DSA-2330 simplesamlphpMultiple issues
DSA-2331 torMultiple issues
DSA-2332 python-djangoMultiple issues
DSA-2333 phpldapadminMultiple issues
DSA-2334 maharaMultiple issues
DSA-2335 man2htmlMissing input sanitization
DSA-2337 xenMultiple issues
DSA-2338 moodleMultiple issues
DSA-2339 nssMultiple issues
DSA-2340 postgresql-8.4Weak password hashing
DSA-2341 iceweaselMultiple issues
DSA-2342 iceapeMultiple issues
DSA-2343 opensslCA trust revocation
DSA-2344python-django-pistonDeserialization vulnerability
DSA-2345 icedoveMultiple issues
DSA-2346 proftpd-dfsgMultiple issues
DSA-2347 bind9Improper assert
DSA-2348 systemtapMultiple issues
DSA-2349spipMultiple issues
DSA-2350freetypeMissing input sanitising
DSA-2351wiresharkBuffer overflow
DSA-2353ldnsBuffer overflow
DSA-2354cupsMultiple issues
DSA-2355clearsilverFormat string vulnerability
DSA-2356openjdk-6Multiple issues
DSA-2357evinceMultiple issues
DSA-2361chasenBuffer overflow
DSA-2362acpidMultiple issues
DSA-2363torBuffer overflow
DSA-2364xorgIncorrect permission check
DSA-2366mediawikiMultiple issues
DSA-2367asteriskMultiple issues
DSA-2368lighttpdMultiple issues
DSA-2369libsoup2.4Directory traversal
DSA-2370unboundMultiple issues
DSA-2371jasperBuffer overflows
DSA-2372heimdalBuffer overflow
DSA-2373inetutilsBuffer overflow
DSA-2374openswanImplementation error
DSA-2375krb5-applBuffer overflow
DSA-2376ipmitoolInsecure pid file
DSA-2377cyrus-imapd-2.2Denial of service
DSA-2378ffmpegMultiple issues
DSA-2379krb5Multiple issues
DSA-2380foomatic-filtersShell command injection
DSA-2381squid3Invalid memory deallocation
DSA-2382ecryptfs-utilsMultiple issues
DSA-2383superBuffer overflow
DSA-2384cactiMultiple issues
DSA-2385pdnsPacket loop
DSA-2386openttdMultiple issues
DSA-2387simplesamlphpCross site scripting
DSA-2388t1libMultiple issues
DSA-2390opensslMultiple issues
DSA-2391phpmyadminMultiple issues
DSA-2392opensslOut-of-bounds read
DSA-2393bipBuffer overflow

Debian Installer
----------------
The installer has been updated with this point release to add support
for installing on POWER7 machines and to adjust the dimensions of the
initial boot menu to avoid issues with some screens.

The kernel used by the installer has been updated to include various
security fixes and to add support for Agere ET-1310-based network cards
(et131x driver), Intel C600-series SAS/SATA controllers (isci driver)
and USB 3.0 controllers (xhci driver).

Removed packages
----------------
The following packages were removed due to circumstances beyond our
control:


PackageReason
partlibrary Non-distributable
cad Non-distributable

URLs
----
The complete lists of packages that have changed with this revision:


http://ftp.debian.org/debian/dists/squeeze/ChangeLog

The current stable distribution:


http://ftp.debian.org/debian/dists/stable/

Proposed updates to the stable distribution:


http://ftp.debian.org/debian/dists/proposed-updates

Stable distribution information (release notes, errata etc.):


http://www.debian.org/releases/stable/

Security announcements and information:


http://security.debian.org/

About Debian
------------
The Debian Project is an association of Free Software developers who
volunteer their time and effort in order to produce the completely free
operating system Debian.