Forum: >>> Magnum BBS <<<

Updated Debian 7: 7.10 released (1/2)

From Ana Guerrero Lopez@21:1/5 to All on Sat Apr 2 17:10:02 2016

------------------------------------------------------------------------
The Debian Project https://www.debian.org/ Updated Debian 7: 7.10 released press@debian.org
April 2nd, 2016 https://www.debian.org/News/2016/2016040202 ------------------------------------------------------------------------

The Debian project is pleased to announce the tenth update of its
oldstable distribution Debian 7 (codename "wheezy"). This update mainly
adds corrections for security problems to the oldstable release, along
with a few adjustments for serious problems. Security advisories were
already published separately and are referenced where available.

Please note that this update does not constitute a new version of Debian
7 but only updates some of the packages included. There is no need to
throw away old "wheezy" CDs or DVDs but only to update via an up-to-date
Debian mirror after an installation, to cause any out of date packages
to be updated.

Those who frequently install updates from security.debian.org won't have
to update many packages and most updates from security.debian.org are
included in this update.

New installation media and CD and DVD images containing updated packages
will be available soon at the regular locations.

Upgrading to this revision online is usually done by pointing the
aptitude (or apt) package tool (see the sources.list(5) manual page) to
one of Debian's many FTP or HTTP mirrors. A comprehensive list of
mirrors is available at:

https://www.debian.org/mirror/list

Miscellaneous Bugfixes
----------------------

This oldstable update adds a few important corrections to the following packages:

+--------------------------+------------------------------------------+
| Package | Reason | +--------------------------+------------------------------------------+
| amd64-microcode�[1] | Update AMD microcode patch firmware for |
| | AMD Family 15h Processors to fix bugs in |
| | prior microcode patch |
| | |
| aptdaemon�[2] | Security fix [CVE-2015-1323] |
| | |
| base-files�[3] | Update for the point release |
| | |
| c-icap�[4] | Fix FTBFS with "newer" OpenSSL |
| | versions; rebuild against libclamav7 |
| | |
| c-icap-modules�[5] | Rebuild against libclamav7 |
| | |
| calendarserver�[6] | Fix POODLE; update zoneinfo to tzdata |
| | 2015g |
| | |
| clamav�[7] | Avoid unaligned memory access; new |
| | upstream release |
| | |
| commons-httpclient�[8] | Ensure HTTPS calls use |
| | http.socket.timeout during SSL Handshake |
| | [CVE-2015-5262] |
| | |
| dansguardian�[9] | Rebuild against libclamav7 |
| | |
| dbconfig-common�[10] | Fix permission of PostgreSQL backup |
| | files |
| | |
| debian-installer�[11] | Rebuild against oldstable-proposed- |
| | updates |
| | |
| debian-installer- | Rebuild against new debian-installer |
| netboot-images�[12] | |
| | |
| exfat-utils�[13] | Fix buffer overflow and infinite loop |
| | |
| exim4�[14] | Fix defect in 89_02_Store-the-initial- |
| | working-directory.diff patch from the |
| | previous security upload |
| | |
| firebug�[15] | Update for compatibility with newer |
| | Iceweasel versions |
| | |
| fuse-exfat�[16] | Fix buffer overflow and infinite loop |
| | |
| giflib�[17] | Bail out if Width > SWidth [CVE-2015- |
| | 7555] |
| | |
| gummi�[18] | Avoid predictable naming of temporary |
| | files [CVE 2015-7758] |
| | |
| iptables-persistent�[19] | Stop rules files being world-readable |
| | |
| libclamunrar�[20] | Rebuild for libclamav7 |
| | |
| libdatetime-timezone- | Update included data to tzdata 2016c |
| perl�[21] | |
| | |
| libhtml-scrubber- | Fix cross-site scripting vulnerability |
| perl�[22] | in comments [CVE-2015-5667] |
| | |
| libiptables-parse- | Fix use of predictable names for |
| perl�[23] | temporary files [CVE-2015-8326] |
| | |
| librsvg�[24] | Fix out-of-bounds heap read when parsing |
| | SVG file [CVE-2015-7557] |
| | |
| libssh�[25] | Fix "Double free on dangling pointers |
| | in initial key exchange |
| | packet" [CVE-2014-8132]; fix "null |
| | pointer dereference due to a logical |
| | error in the handling of a |
| | SSH_MSG_NEWKEYS and KEXDH_REPLY |
| | packets" [CVE-2015-3146] |
| | |
| linux�[26] | update to new upstream stable release |
| | 3.2.78; drm, agp: Update to 3.4.110; rt: |
| | update to 3.2.77-rt111; ppp, slip: |
| | Validate VJ compression slot parameters |
| | completely [CVE-2015-7799]; KVM: svm: |
| | unconditionally intercept #DB [CVE-2015- |
| | 8104] |
| | |
| live-tools�[27] | Depend on initramfs-tools |
| | |
| maven2�[28] | Rebuild with libmaven2-core-java 2.2.1- |
| | 8+deb7u1 to use a secure connection by |
| | default to download artifacts from the |
| | Maven Central repository |
| | |
| maven2-core�[29] | Use a secure connection by default to |
| | download artifacts from the Maven |
| | Central repository |
| | |
| nvidia-graphics- | New upstream release [CVE-2015-5950]; |
| drivers�[30] | fix Unsanitized User Mode Input issue |
| | [CVE-2015-7869] |
| | |
| nvidia-graphics- | Rebuild with nvidia-kernel-source |
| modules�[31] | 304.131 |
| | |
| pykerberos�[32] | Add KDC authenticity verification |
| | support [CVE-2015-3206] |
| | |
| python-clamav�[33] | Rebuild against libclamav7 |
| | |
| sendmail�[34] | Properly set the close-on-exec flag for |
| | file descriptors before executing |
| | mailers [CVE-2014-3956]; fix an |
| | incorrect assertion in libmilter; add |
| | support for OpenSSL options |
| | SSL_OP_NO_TLSv1_1 and SSL_OP_NO_TLSv1_2; |
| | fix A-only MX CNAME interface binding |
| | issues when using IPv6; raise MAXDAEMONS |
| | from 10 to 64; start sendmail after |
| | bind9 (or any other named) if it is |
| | installed; fix infinite loop in |
| | update_db |
| | |
| stk�[35] | Install missing SKINI.msg and .tbl |
| | include files |
| | |
| tzdata�[36] | New upstream release |
| | |
| zendframework�[37] | Fix entropy issue with captcha [ZF2015- |
| | 09] |
| | | +--------------------------+------------------------------------------+

1: https://packages.debian.org/src:amd64-microcode
2: https://packages.debian.org/src:aptdaemon
3: https://packages.debian.org/src:base-files
4: https://packages.debian.org/src:c-icap
5: https://packages.debian.org/src:c-icap-modules
6: https://packages.debian.org/src:calendarserver
7: https://packages.debian.org/src:clamav
8: https://packages.debian.org/src:commons-httpclient
9: https://packages.debian.org/src:dansguardian
10: https://packages.debian.org/src:dbconfig-common
11: https://packages.debian.org/src:debian-installer
12: https://packages.debian.org/src:debian-installer-netboot-images
13: https://packages.debian.org/src:exfat-utils
14: https://packages.debian.org/src:exim4
15: https://packages.debian.org/src:firebug
16: https://packages.debian.org/src:fuse-exfat
17: https://packages.debian.org/src:giflib
18: https://packages.debian.org/src:gummi
19: https://packages.debian.org/src:iptables-persistent
20: https://packages.debian.org/src:libclamunrar
21: https://packages.debian.org/src:libdatetime-timezone-perl
22: https://packages.debian.org/src:libhtml-scrubber-perl
23: https://packages.debian.org/src:libiptables-parse-perl
24: https://packages.debian.org/src:librsvg
25: https://packages.debian.org/src:libssh
26: https://packages.debian.org/src:linux
27: https://packages.debian.org/src:live-tools
28: https://packages.debian.org/src:maven2
29: https://packages.debian.org/src:maven2-core
30: https://packages.debian.org/src:nvidia-graphics-drivers
31: https://packages.debian.org/src:nvidia-graphics-modules
32: https://packages.debian.org/src:pykerberos
33: https://packages.debian.org/src:python-clamav
34: https://packages.debian.org/src:sendmail
35: https://packages.debian.org/src:stk
36: https://packages.debian.org/src:tzdata
37: https://packages.debian.org/src:zendframework

Security Updates
----------------

This revision adds the following security updates to the oldstable
release. The Security Team has already released an advisory for each of
these updates:

+----------------+------------------------------------+
| Advisory ID | Package | +----------------+------------------------------------+
| DSA-2722�[38] | openjdk-7�[39] |
| | |
| DSA-2923�[40] | openjdk-7�[41] |
| | |
| DSA-2987�[42] | openjdk-7�[43] |
| | |
| DSA-3080�[44] | openjdk-7�[45] |
| | |
| DSA-3132�[46] | icedove�[47] |
| | |
| DSA-3144�[48] | openjdk-7�[49] |
| | |
| DSA-3173�[50] | libgtk2-perl�[51] |
| | |
| DSA-3179�[52] | icedove�[53] |
| | |
| DSA-3208�[54] | freexl�[55] |
| | |
| DSA-3212�[56] | icedove�[57] |
| | |
| DSA-3235�[58] | openjdk-7�[59] |
| | |
| DSA-3264�[60] | icedove�[61] |
| | |
| DSA-3316�[62] | openjdk-7�[63] |
| | |
| DSA-3324�[64] | icedove�[65] |
| | |
| DSA-3337�[66] | gdk-pixbuf�[67] |
| | |
| DSA-3346�[68] | drupal7�[69] |
| | |
| DSA-3349�[70] | qemu-kvm�[71] |
| | |
| DSA-3349�[72] | qemu�[73] |
| | |
| DSA-3350�[74] | bind9�[75] |
| | |
| DSA-3352�[76] | screen�[77] |
| | |
| DSA-3353�[78] | openslp-dfsg�[79] |
| | |
| DSA-3355�[80] | libvdpau�[81] |
| | |
| DSA-3358�[82] | php5�[83] |
| | |
| DSA-3359�[84] | virtualbox�[85] |
| | |
| DSA-3361�[86] | qemu�[87] |
| | |
| DSA-3362�[88] | qemu-kvm�[89] |
| | |
| DSA-3364�[90] | linux�[91] |
| | |
| DSA-3365�[92] | iceweasel�[93] |
| | |
| DSA-3366�[94] | rpcbind�[95] |
| | |
| DSA-3369�[96] | zendframework�[97] |
| | |
| DSA-3370�[98] | freetype�[99] |
| | |
| DSA-3371�[100] | spice�[101] |
| | |
| DSA-3377�[102] | mysql-5.5�[103] |
| | |
| DSA-3378�[104] | gdk-pixbuf�[105] |
| | |
| DSA-3379�[106] | miniupnpc�[107] |
| | |
| DSA-3380�[108] | php5�[109] |
| | |
| DSA-3381�[110] | openjdk-7�[111] |
| | |
| DSA-3382�[112] | phpmyadmin�[113] |
| | |
| DSA-3383�[114] | wordpress�[115] |
| | |
| DSA-3384�[116] | virtualbox�[117] |
| | |
| DSA-3386�[118] | unzip�[119] |
| | |
| DSA-3387�[120] | openafs�[121] |
| | |
| DSA-3388�[122] | ntp�[123] |
| | |
| DSA-3390�[124] | xen�[125] |
| | |
| DSA-3392�[126] | freeimage�[127] |
| | |
| DSA-3393�[128] | iceweasel�[129] |
| | |
| DSA-3395�[130] | krb5�[131] |
| | |
| DSA-3397�[132] | wpa�[133] |
| | |
| DSA-3398�[134] | strongswan�[135] |
| | |
| DSA-3399�[136] | libpng�[137] |
| | |
| DSA-3401�[138] | openjdk-7�[139] |
| | |
| DSA-3403�[140] | libcommons-collections3-java�[141] |
| | |
| DSA-3404�[142] | python-django�[143] |
| | |
| DSA-3405�[144] | smokeping�[145] |
| | |
| DSA-3406�[146] | nspr�[147] |
| | |
| DSA-3407�[148] | dpkg�[149] |
| | |
| DSA-3408�[150] | gnutls26�[151] |
| | |
| DSA-3409�[152] | putty�[153] |
| | |
| DSA-3413�[154] | openssl�[155] |
| | |
| DSA-3416�[156] | libphp-phpmailer�[157] |
| | |
| DSA-3417�[158] | bouncycastle�[159] |
| | |
| DSA-3420�[160] | bind9�[161] |
| | |
| DSA-3421�[162] | grub2�[163] |
| | |
| DSA-3422�[164] | iceweasel�[165] |
| | |
| DSA-3423�[166] | cacti�[167] |
| | |
| DSA-3426�[168] | linux�[169] |
| | |
| DSA-3426�[170] | ctdb�[171] |
| | |
| DSA-3427�[172] | blueman�[173] |
| | |
| DSA-3429�[174] | foomatic-filters�[175] |
| | |
| DSA-3430�[176] | libxml2�[177] |
| | |
| DSA-3431�[178] | ganeti�[179] |
| | |
| DSA-3433�[180] | samba�[181] |
| | |
| DSA-3434�[182] | linux�[183] |
| | |
| DSA-3435�[184] | git�[185] |
| | |
| DSA-3436�[186] | openssl�[187] |
| | |
| DSA-3437�[188] | gnutls26�[189] |
| | |
| DSA-3438�[190] | xscreensaver�[191] |
| | |
| DSA-3439�[192] | prosody�[193] |
| | |
| DSA-3440�[194] | sudo�[195] |
| | |
| DSA-3443�[196] | libpng�[197] |
| | |
| DSA-3444�[198] | wordpress�[199] |
| | |
| DSA-3445�[200] | pygments�[201] |
| | |
| DSA-3446�[202] | openssh�[203] |
| | |
| DSA-3447�[204] | tomcat7�[205] |
| | |
| DSA-3450�[206] | ecryptfs-utils�[207] |
| | |
| DSA-3452�[208] | claws-mail�[209] |
| | |
| DSA-3459�[210] | mysql-5.5�[211] |
| | |
| DSA-3460�[212] | privoxy�[213] |
| | |
| DSA-3461�[214] | freetype�[215] |
| | |
| DSA-3462�[216] | radicale�[217] |
| | |
| DSA-3463�[218] | prosody�[219] |
| | |
| DSA-3466�[220] | krb5�[221] |
| | |
| DSA-3468�[222] | polarssl�[223] |
| | |
| DSA-3469�[224] | qemu�[225] |
| | |
| DSA-3470�[226] | qemu-kvm�[227] |
| | |
| DSA-3472�[228] | wordpress�[229] |
| | |
| DSA-3473�[230] | nginx�[231] |
| | |
| DSA-3478�[232] | libgcrypt11�[233] |
| | |
| DSA-3479�[234] | graphite2�[235] |
| | |
| DSA-3483�[236] | cpio�[237] |
| | |
| DSA-3484�[238] | xdelta3�[239] |
| | |
| DSA-3485�[240] | didiwiki�[241] |
| | |
| DSA-3487�[242] | libssh2�[243] |
| | |
| DSA-3488�[244] | libssh�[245] |
| | |
| DSA-3489�[246] | lighttpd�[247] |
| | |
| DSA-3490�[248] | websvn�[249] |
| | |
| DSA-3492�[250] | gajim�[251] |
| | |
| DSA-3493�[252] | xerces-c�[253] |
| | |
| DSA-3494�[254] | cacti�[255] |
| | |
| DSA-3498�[256] | drupal7�[257] |
| | |
| DSA-3499�[258] | python-imaging�[259] |
| | |
| DSA-3500�[260] | openssl�[261] |
| | |
| DSA-3501�[262] | perl�[263] |
| | |
| DSA-3502�[264] | roundup�[265] |
| | |
| DSA-3503�[266] | linux�[267] |
| | |
| DSA-3504�[268] | bsh�[269] |
| | |
| DSA-3505�[270] | wireshark�[271] |
| | |
| DSA-3506�[272] | libav�[273] |
| | |
| DSA-3508�[274] | jasper�[275] |
| | |
| DSA-3511�[276] | bind9�[277] |
| | |
| DSA-3512�[278] | libotr�[279] |
| | |
| DSA-3514�[280] | samba�[281] |
| | |
| DSA-3516�[282] | wireshark�[283] |
| | |
| DSA-3517�[284] | exim4�[285] |
| | |
| DSA-3518�[286] | spip�[287] |
| | |
| DSA-3521�[288] | git�[289] |
| | |
| DSA-3522�[290] | squid3�[291] |
| | |
| DSA-3524�[292] | activemq�[293] |
| | |
| DSA-3525�[294] | pixman�[295] |
| | |
| DSA-3526�[296] | libmatroska�[297] |
| | |
| DSA-3527�[298] | inspircd�[299] |
| | |
| DSA-3532�[300] | quagga�[301] |
| | | +----------------+------------------------------------+

38: https://www.debian.org/security/2013/dsa-2722
39: https://packages.debian.org/src:openjdk-7
40: https://www.debian.org/security/2014/dsa-2923
41: https://packages.debian.org/src:openjdk-7
42: https://www.debian.org/security/2014/dsa-2987
43: https://packages.debian.org/src:openjdk-7
44: https://www.debian.org/security/2014/dsa-3080
45: https://packages.debian.org/src:openjdk-7
46: https://www.debian.org/security/2015/dsa-3132
47: https://packages.debian.org/src:icedove
48: https://www.debian.org/security/2015/dsa-3144
49: https://packages.debian.org/src:openjdk-7
50: https://www.debian.org/security/2015/dsa-3173
51: https://packages.debian.org/src:libgtk2-perl
52: https://www.debian.org/security/2015/dsa-3179
53: https://packages.debian.org/src:icedove
54: https://www.debian.org/security/2015/dsa-3208
55: https://packages.debian.org/src:freexl
56: https://www.debian.org/security/2015/dsa-3212
57: https://packages.debian.org/src:icedove
58: https://www.debian.org/security/2015/dsa-3235
59: https://packages.debian.org/src:openjdk-7
60: https://www.debian.org/security/2015/dsa-3264
61: https://packages.debian.org/src:icedove
62: https://www.debian.org/security/2015/dsa-3316
63: https://packages.debian.org/src:openjdk-7
64: https://www.debian.org/security/2015/dsa-3324
65: https://packages.debian.org/src:icedove
66: https://www.debian.org/security/2015/dsa-3337
67: https://packages.debian.org/src:gdk-pixbuf
68: https://www.debian.org/security/2015/dsa-3346
69: https://packages.debian.org/src:drupal7
70: https://www.debian.org/security/2015/dsa-3349
71: https://packages.debian.org/src:qemu-kvm
72: https://www.debian.org/security/2015/dsa-3349
73: https://packages.debian.org/src:qemu
74: https://www.debian.org/security/2015/dsa-3350
75: https://packages.debian.org/src:bind9
76: https://www.debian.org/security/2015/dsa-3352
77: https://packages.debian.org/src:screen
78: https://www.debian.org/security/2015/dsa-3353
79: https://packages.debian.org/src:openslp-dfsg
80: https://www.debian.org/security/2015/dsa-3355
81: https://packages.debian.org/src:libvdpau
82: https://www.debian.org/security/2015/dsa-3358
83: https://packages.debian.org/src:php5
84: https://www.debian.org/security/2015/dsa-3359
85: https://packages.debian.org/src:virtualbox
86: https://www.debian.org/security/2015/dsa-3361
87: https://packages.debian.org/src:qemu
88: https://www.debian.org/security/2015/dsa-3362
89: https://packages.debian.org/src:qemu-kvm
90: https://www.debian.org/security/2015/dsa-3364
91: https://packages.debian.org/src:linux
92: https://www.debian.org/security/2015/dsa-3365
93: https://packages.debian.org/src:iceweasel
94: https://www.debian.org/security/2015/dsa-3366
95: https://packages.debian.org/src:rpcbind
96: https://www.debian.org/security/2015/dsa-3369
97: https://packages.debian.org/src:zendframework
98: https://www.debian.org/security/2015/dsa-3370
99: https://packages.debian.org/src:freetype
100: https://www.debian.org/security/2015/dsa-3371
101: https://packages.debian.org/src:spice
102: https://www.debian.org/security/2015/dsa-3377
103: https://packages.debian.org/src:mysql-5.5
104: https://www.debian.org/security/2015/dsa-3378
105: https://packages.debian.org/src:gdk-pixbuf
106: https://www.debian.org/security/2015/dsa-3379
107: https://packages.debian.org/src:miniupnpc
108: https://www.debian.org/security/2015/dsa-3380
109: https://packages.debian.org/src:php5
110: https://www.debian.org/security/2015/dsa-3381

[continued in next message]

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Who's Online
Recent Visitors
- Logan
  Sun Jun 8 15:24:00 2025
  from Adelaide via Telnet
- Plume
  Sun Jun 8 14:13:27 2025
  from Uk via SSH
- Bob Worm
  Sun Jun 8 13:48:17 2025
  from Wales, Uk via Telnet
- Jack
  Sun Jun 8 06:41:19 2025
  from Mississipi via Telnet
- Centurion
  Sun Jun 8 00:08:04 2025
  from Berea, Ohio via Telnet
- Centurion
  Sat Jun 7 21:52:22 2025
  from Berea, Ohio via Telnet
- Tnmoc
  Sat Jun 7 13:44:20 2025
  from Milton Keynes via Telnet
- Tnmoc
  Sat Jun 7 13:40:01 2025
  from Milton Keynes via Telnet

System Info

Sysop:	Keyop
Location:	Huddersfield, West Yorkshire, UK
Users:	488
Nodes:	16 (2 / 14)
Uptime:	03:36:20
Calls:	9,663
Calls today:	5
Files:	13,709
Messages:	6,166,710
Posted today:	2

Updated Debian 7: 7.10 released (1/2)

Who's Online

Recent Visitors

System Info