Unix News Tutorials Events and Stuff

Saturday, April 2, 2016

Updated Debian 8: 8.4 released

------------------------------------------------------------------------
The Debian Project https://www.debian.org/
Updated Debian 8: 8.4 released press@debian.org
April 2nd, 2016 https://www.debian.org/News/2016/20160402
------------------------------------------------------------------------

The Debian project is pleased to announce the fourth update of its
stable distribution Debian 8 (codename "jessie"). This update mainly
adds corrections for security problems to the stable release, along with
a few adjustments for serious problems. Security advisories were already
published separately and are referenced where available.

Please note that this update does not constitute a new version of Debian
8 but only updates some of the packages included. There is no need to
throw away old "jessie" CDs or DVDs but only to update via an up-to-date
Debian mirror after an installation, to cause any out of date packages
to be updated.

Those who frequently install updates from security.debian.org won't have
to update many packages and most updates from security.debian.org are
included in this update.

New installation media and CD and DVD images containing updated packages
will be available soon at the regular locations.

Upgrading to this revision online is usually done by pointing the
aptitude (or apt) package tool (see the sources.list(5) manual page) to
one of Debian's many FTP or HTTP mirrors. A comprehensive list of
mirrors is available at:

https://www.debian.org/mirror/list

Miscellaneous Bugfixes
----------------------

This stable update adds a few important corrections to the following
packages:

+--------------------------+------------------------------------------+
| Package | Reason |
+--------------------------+------------------------------------------+
| amavisd-new [1] | Set LC_ALL before running daemon |
| | |
| amd64-microcode [2] | Update AMD microcode patch firmware for |
| | AMD Family 15h Processors to fix bugs in |
| | prior microcode patch |
| | |
| apt [3] | apt-pkg/algorithms.cc: Avoid stack |
| | buffer overflow in KillList |
| | |
| aptdaemon [4] | Security fix [CVE-2015-1323] |
| | |
| ardour [5] | Repack to remove libs/pdb/dmalloc.cc |
| | |
| base-files [6] | Update for the point release |
| | |
| c-icap-modules [7] | Rebuild against libclamav7 |
| | |
| cairo [8] | Security fix [CVE-2016-3190] |
| | |
| cinnamon-settings- | Fix a minor security bug (missing polkit |
| daemon [9] | check) |
| | |
| clamav [10] | New upstream version; avoid unaligned |
| | memory access |
| | |
| conkeror [11] | Fix matching of module load error |
| | messages to work with Firefox 36 |
| | |
| dansguardian [12] | Rebuild against libclamav7 |
| | |
| debian-installer [13] | Rebuild against proposed-updates |
| | |
| debian-installer- | Rebuild against new debian-installer |
| netboot-images [14] | |
| | |
| dolibarr [15] | Multiple security fixes [CVE-2015-3935 |
| | CVE-2015-8685 CVE-2016-1912] |
| | |
| espeakup [16] | Make looking up available languages |
| | independent from file hierarchy; use |
| | Portuguese for Galician; synth.c: Fix |
| | looking up voices by language name |
| | |
| exactimage [17] | Security fix [CVE-2015-8366] |
| | |
| fglrx-driver [18] | libfglrx-amdxvba1: add Breaks+Replaces: |
| | xvba-va-driver (<< 0.8.0-9+deb) since we |
| | now ship fglrx_drv_video.so and |
| | xvba_drv_video.so |
| | |
| flash-kernel [19] | Use /dev/mtdN when flashing, rather than |
| | needlessly going through the mtdblock |
| | layer (which is problematic on some |
| | platforms/kernels); use nandwrite when |
| | writing to nand flash |
| | |
| fonts-sil-andika [20] | Really remove 65-andika.conf |
| | |
| giflib [21] | Bail out if Width > SWidth [CVE-2015- |
| | 7555] |
| | |
| glib2.0 [22] | Rebuild against updated pcre3 to pull in |
| | security updates |
| | |
| glibc [23] | Improve granpt when /dev/pts is not |
| | mounted with the correct options; don't |
| | build pt_chown [CVE-2013-2207] |
| | |
| gnome-shell-extension- | New upstream snapshot, compatible with |
| weather [24] | the new API of openweathermap.org |
| | |
| gnupg [25] | Correctly handle unknown subkey types |
| | |
| gtk+2.0 [26] | Avoid integer overflow when allocating a |
| | large block of memory [CVE-2013-7447] |
| | |
| gummi [27] | Update fix for predictable temporary |
| | filenames [CVE-2015-7758] to use |
| | upstream's fix |
| | |
| havp [28] | Rebuild against libclamav7 |
| | |
| imagemagick [29] | Security fixes |
| | |
| initramfs-tools [30] | Add missing drivers and various bugfixes |
| | |
| installation-guide [31] | Add QNAP TS-109, TS-209, TS-409 and |
| | TS-409U as supported models again |
| | |
| libclamunrar [32] | Rebuild for libclamav7 |
| | |
| libdatetime-timezone- | Update included timezone data to tzdata |
| perl [33] | 2016c |
| | |
| librsvg [34] | Fix out-of-bounds heap read when parsing |
| | SVG file [CVE-2015-7557] |
| | |
| libsndfile [35] | Fix denial of service through division |
| | by zero [CVE-2014-9756] and heap |
| | overflow in AIFF parser [CVE-2015-7805] |
| | |
| libvirt [36] | Don't allow allow '/' in filesystem |
| | volume [CVE-2015-5313]; libvirt-daemon: |
| | Expect qemu-bridge-helper in /usr/lib/ |
| | qemu |
| | |
| linux [37] | Update to new upstream release 3.16.7- |
| | ckt25; add dm-service-time to multipath- |
| | modules; add support for MIPS 5KE CPU |
| | |
| mongrel2 [38] | Comment out failing test caused by an |
| | expired certificate |
| | |
| mozilla-devscripts [39] | Update dh_xul-ext's substvar generation |
| | for the upcoming transitions in stable |
| | from iceweasel to firefox-esr, and from |
| | icedove to thunderbird |
| | |
| nettle [40] | Multiple security fixes [CVE-2015-8803 |
| | CVE-2015-8804 CVE-2015-8805] |
| | |
| nss-pam-ldapd [41] | Fix issues with daemonising nslcd and |
| | avoid a race condition in signal |
| | handling during start-up; fix password |
| | policy expiration warnings; ensure |
| | proper return code of init script |
| | |
| osmo [42] | Fix corrupt data backup on i386 |
| | |
| pagekite [43] | Add missing build dependency python- |
| | openssl to fix test failure |
| | |
| pam [44] | Rebuild to fix multi-arch co- |
| | installability |
| | |
| pcre3 [45] | Fix workspace overflow for (*ACCEPT) |
| | with deeply nested parentheses |
| | [CVE-2016-3191]; fix heap buffer |
| | overflow in handling of duplicate named |
| | groups [CVE-2016-1283]; fix an issue |
| | with nested table jumps [CVE-2014-9769] |
| | |
| pgplot5 [46] | Fix build failure by using multiarch |
| | path to zconf.h |
| | |
| php-dompdf [47] | Fix information disclosure vulnerability |
| | [CVE-2014-5011], denial of service |
| | [CVE-2014-5012] and remote code |
| | execution [CVE-2014-5013] |
| | |
| php-mail-mime [48] | Add missing dependency on php-pear |
| | |
| php-net-ldap2 [49] | Fix fatal error with newer PEAR versions |
| | |
| php5 [50] | New upstream stable release; revert PEAR |
| | version to last working version from PHP |
| | 5.6.14 |
| | |
| postgresql-9.1 [51] | New upstream release |
| | |
| postgresql-common [52] | pg_upgradecluster: Set default |
| | dynamic_shared_memory_type = mmap; this |
| | primarily avoids problems with upgrading |
| | existing clusters in a LXC container |
| | |
| python-clamav [53] | Rebuild against libclamav7 |
| | |
| python-rsa [54] | Fix possible signature forgery using |
| | Bleichenbacher'06 attack [CVE-2016-1494] |
| | |
| rdesktop [55] | Fix sigsegv while using credssp and |
| | Kerberos without specifying domainname |
| | as argument |
| | |
| rsnapshot [56] | Fix regression on --rsh with arguments |
| | |
| ruby-defaults [57] | ruby: make the conflict on ruby- |
| | activesupport-2.3 versioned on (<< 2:4) |
| | to allow the transitional package to be |
| | installed |
| | |
| ruby-standalone [58] | Install 'rubyX.Y' as a link to 'ruby' so |
| | that binaries installed by bundler work |
| | |
| ruby-tzinfo [59] | Load iso3166.tab and zone.tab as UTF-8 |
| | |
| s3ql [60] | Support upgrades from file systems |
| | created with the S3QL version in Debian |
| | Wheezy |
| | |
| sane-backends [61] | Rewrite debian/saned@.service to prevent |
| | errors with network scanning; prevent |
| | start via fallback script /etc/init.d/ |
| | saned |
| | |
| sitesummary [62] | Fix hanging postinst script, dangling |
| | symlink in Apache config after removal |
| | |
| stress [63] | Don't install info/dir.gz |
| | |
| subversion [64] | Fix segfault when using kwallet to store |
| | authentication information |
| | |
| suckless-tools [65] | slock: make cover window resize |
| | correctly when new screens are added or |
| | the resolution is changed while the lock |
| | is active |
| | |
| sus [66] | Update checksum of upstream tarball |
| | |
| systemd [67] | Make sure all swap units are ordered |
| | before the swap target. This avoids swap |
| | devices being stopped prematurely during |
| | shutdown; only skip the filesystem check |
| | for /usr if the /run/initramfs/fsck-usr |
| | flag file exists, avoiding issues when |
| | using dracut; fix --network-interface in |
| | systemd-nspawn to not fail when |
| | modifying an existing link; don't call |
| | addgroup with --quiet; debian/ |
| | udev.prerm: Add missing "deconfigure" |
| | action |
| | |
| torbrowser-launcher [68] | Disable certificate pinning, to avoid |
| | issues with upcoming certificate change; |
| | prevent signature verification attack by |
| | passing both data file as well as sig |
| | file into gpg [CVE-2016-3180] |
| | |
| tzdata [69] | New upstream release |
| | |
| unbound [70] | Update hints for H.ROOT-SERVERS.NET |
| | |
| user-mode-linux [71] | Rebuild against Linux kernel 3.16.7- |
| | ckt20-1+deb8u3 |
| | |
| vsftpd [72] | Fix config option "deny_file" not |
| | always being handled correctly |
| | [CVE-2015-1419]; set the default value |
| | of tunable_listen to the same value of |
| | listen from the man page vsftpd.conf |
| | |
| whatmaps [73] | Respect Jessie Apache package rename |
| | |
| xvba-video [74] | xvba-va-driver as a separate package has |
| | been obsoleted by fglrx-driver 1:15.9, |
| | turn it into an empty metapackage |
| | |
+--------------------------+------------------------------------------+

1: https://packages.debian.org/src:amavisd-new
2: https://packages.debian.org/src:amd64-microcode
3: https://packages.debian.org/src:apt
4: https://packages.debian.org/src:aptdaemon
5: https://packages.debian.org/src:ardour
6: https://packages.debian.org/src:base-files
7: https://packages.debian.org/src:c-icap-modules
8: https://packages.debian.org/src:cairo
9: https://packages.debian.org/src:cinnamon-settings-daemon
10: https://packages.debian.org/src:clamav
11: https://packages.debian.org/src:conkeror
12: https://packages.debian.org/src:dansguardian
13: https://packages.debian.org/src:debian-installer
14: https://packages.debian.org/src:debian-installer-netboot-images
15: https://packages.debian.org/src:dolibarr
16: https://packages.debian.org/src:espeakup
17: https://packages.debian.org/src:exactimage
18: https://packages.debian.org/src:fglrx-driver
19: https://packages.debian.org/src:flash-kernel
20: https://packages.debian.org/src:fonts-sil-andika
21: https://packages.debian.org/src:giflib
22: https://packages.debian.org/src:glib2.0
23: https://packages.debian.org/src:glibc
24: https://packages.debian.org/src:gnome-shell-extension-weather
25: https://packages.debian.org/src:gnupg
26: https://packages.debian.org/src:gtk+2.0
27: https://packages.debian.org/src:gummi
28: https://packages.debian.org/src:havp
29: https://packages.debian.org/src:imagemagick
30: https://packages.debian.org/src:initramfs-tools
31: https://packages.debian.org/src:installation-guide
32: https://packages.debian.org/src:libclamunrar
33: https://packages.debian.org/src:libdatetime-timezone-perl
34: https://packages.debian.org/src:librsvg
35: https://packages.debian.org/src:libsndfile
36: https://packages.debian.org/src:libvirt
37: https://packages.debian.org/src:linux
38: https://packages.debian.org/src:mongrel2
39: https://packages.debian.org/src:mozilla-devscripts
40: https://packages.debian.org/src:nettle
41: https://packages.debian.org/src:nss-pam-ldapd
42: https://packages.debian.org/src:osmo
43: https://packages.debian.org/src:pagekite
44: https://packages.debian.org/src:pam
45: https://packages.debian.org/src:pcre3
46: https://packages.debian.org/src:pgplot5
47: https://packages.debian.org/src:php-dompdf
48: https://packages.debian.org/src:php-mail-mime
49: https://packages.debian.org/src:php-net-ldap2
50: https://packages.debian.org/src:php5
51: https://packages.debian.org/src:postgresql-9.1
52: https://packages.debian.org/src:postgresql-common
53: https://packages.debian.org/src:python-clamav
54: https://packages.debian.org/src:python-rsa
55: https://packages.debian.org/src:rdesktop
56: https://packages.debian.org/src:rsnapshot
57: https://packages.debian.org/src:ruby-defaults
58: https://packages.debian.org/src:ruby-standalone
59: https://packages.debian.org/src:ruby-tzinfo
60: https://packages.debian.org/src:s3ql
61: https://packages.debian.org/src:sane-backends
62: https://packages.debian.org/src:sitesummary
63: https://packages.debian.org/src:stress
64: https://packages.debian.org/src:subversion
65: https://packages.debian.org/src:suckless-tools
66: https://packages.debian.org/src:sus
67: https://packages.debian.org/src:systemd
68: https://packages.debian.org/src:torbrowser-launcher
69: https://packages.debian.org/src:tzdata
70: https://packages.debian.org/src:unbound
71: https://packages.debian.org/src:user-mode-linux
72: https://packages.debian.org/src:vsftpd
73: https://packages.debian.org/src:whatmaps
74: https://packages.debian.org/src:xvba-video

Security Updates
----------------

This revision adds the following security updates to the stable release.
The Security Team has already released an advisory for each of these
updates:

+----------------+------------------------+
| Advisory ID | Package |
+----------------+------------------------+
| DSA-3426 [75] | ctdb [76] |
| | |
| DSA-3447 [77] | tomcat7 [78] |
| | |
| DSA-3448 [79] | linux [80] |
| | |
| DSA-3449 [81] | bind9 [82] |
| | |
| DSA-3450 [83] | ecryptfs-utils [84] |
| | |
| DSA-3451 [85] | fuse [86] |
| | |
| DSA-3452 [87] | claws-mail [88] |
| | |
| DSA-3453 [89] | mariadb-10.0 [90] |
| | |
| DSA-3454 [91] | virtualbox [92] |
| | |
| DSA-3455 [93] | curl [94] |
| | |
| DSA-3456 [95] | chromium-browser [96] |
| | |
| DSA-3457 [97] | iceweasel [98] |
| | |
| DSA-3459 [99] | mysql-5.5 [100] |
| | |
| DSA-3460 [101] | privoxy [102] |
| | |
| DSA-3462 [103] | radicale [104] |
| | |
| DSA-3463 [105] | prosody [106] |
| | |
| DSA-3464 [107] | rails [108] |
| | |
| DSA-3466 [109] | krb5 [110] |
| | |
| DSA-3467 [111] | tiff [112] |
| | |
| DSA-3468 [113] | polarssl [114] |
| | |
| DSA-3471 [115] | qemu [116] |
| | |
| DSA-3472 [117] | wordpress [118] |
| | |
| DSA-3474 [119] | libgcrypt20 [120] |
| | |
| DSA-3477 [121] | iceweasel [122] |
| | |
| DSA-3479 [123] | graphite2 [124] |
| | |
| DSA-3481 [125] | glibc [126] |
| | |
| DSA-3483 [127] | cpio [128] |
| | |
| DSA-3484 [129] | xdelta3 [130] |
| | |
| DSA-3485 [131] | didiwiki [132] |
| | |
| DSA-3486 [133] | chromium-browser [134] |
| | |
| DSA-3487 [135] | libssh2 [136] |
| | |
| DSA-3488 [137] | libssh [138] |
| | |
| DSA-3490 [139] | websvn [140] |
| | |
| DSA-3492 [141] | gajim [142] |
| | |
| DSA-3493 [143] | xerces-c [144] |
| | |
| DSA-3494 [145] | cacti [146] |
| | |
| DSA-3496 [147] | php-horde-core [148] |
| | |
| DSA-3497 [149] | php-horde [150] |
| | |
| DSA-3498 [151] | drupal7 [152] |
| | |
| DSA-3499 [153] | pillow [154] |
| | |
| DSA-3500 [155] | openssl [156] |
| | |
| DSA-3501 [157] | perl [158] |
| | |
| DSA-3502 [159] | roundup [160] |
| | |
| DSA-3503 [161] | linux [162] |
| | |
| DSA-3504 [163] | bsh [164] |
| | |
| DSA-3505 [165] | wireshark [166] |
| | |
| DSA-3506 [167] | libav [168] |
| | |
| DSA-3507 [169] | chromium-browser [170] |
| | |
| DSA-3508 [171] | jasper [172] |
| | |
| DSA-3509 [173] | rails [174] |
| | |
| DSA-3510 [175] | iceweasel [176] |
| | |
| DSA-3511 [177] | bind9 [178] |
| | |
| DSA-3512 [179] | libotr [180] |
| | |
| DSA-3513 [181] | chromium-browser [182] |
| | |
| DSA-3514 [183] | samba [184] |
| | |
| DSA-3515 [185] | graphite2 [186] |
| | |
| DSA-3516 [187] | wireshark [188] |
| | |
| DSA-3517 [189] | exim4 [190] |
| | |
| DSA-3518 [191] | spip [192] |
| | |
| DSA-3519 [193] | xen [194] |
| | |
| DSA-3521 [195] | git [196] |
| | |
| DSA-3522 [197] | squid3 [198] |
| | |
| DSA-3523 [199] | iceweasel [200] |
| | |
| DSA-3524 [201] | activemq [202] |
| | |
| DSA-3526 [203] | libmatroska [204] |
| | |
| DSA-3527 [205] | inspircd [206] |
| | |
| DSA-3528 [207] | pidgin-otr [208] |
| | |
| DSA-3529 [209] | redmine [210] |
| | |
| DSA-3531 [211] | chromium-browser [212] |
| | |
| DSA-3532 [213] | quagga [214] |
| | |
+----------------+------------------------+

75: https://www.debian.org/security/2016/dsa-3426
76: https://packages.debian.org/src:ctdb
77: https://www.debian.org/security/2016/dsa-3447
78: https://packages.debian.org/src:tomcat7
79: https://www.debian.org/security/2016/dsa-3448
80: https://packages.debian.org/src:linux
81: https://www.debian.org/security/2016/dsa-3449
82: https://packages.debian.org/src:bind9
83: https://www.debian.org/security/2016/dsa-3450
84: https://packages.debian.org/src:ecryptfs-utils
85: https://www.debian.org/security/2016/dsa-3451
86: https://packages.debian.org/src:fuse
87: https://www.debian.org/security/2016/dsa-3452
88: https://packages.debian.org/src:claws-mail
89: https://www.debian.org/security/2016/dsa-3453
90: https://packages.debian.org/src:mariadb-10.0
91: https://www.debian.org/security/2016/dsa-3454
92: https://packages.debian.org/src:virtualbox
93: https://www.debian.org/security/2016/dsa-3455
94: https://packages.debian.org/src:curl
95: https://www.debian.org/security/2016/dsa-3456
96: https://packages.debian.org/src:chromium-browser
97: https://www.debian.org/security/2016/dsa-3457
98: https://packages.debian.org/src:iceweasel
99: https://www.debian.org/security/2016/dsa-3459
100: https://packages.debian.org/src:mysql-5.5
101: https://www.debian.org/security/2016/dsa-3460
102: https://packages.debian.org/src:privoxy
103: https://www.debian.org/security/2016/dsa-3462
104: https://packages.debian.org/src:radicale
105: https://www.debian.org/security/2016/dsa-3463
106: https://packages.debian.org/src:prosody
107: https://www.debian.org/security/2016/dsa-3464
108: https://packages.debian.org/src:rails
109: https://www.debian.org/security/2016/dsa-3466
110: https://packages.debian.org/src:krb5
111: https://www.debian.org/security/2016/dsa-3467
112: https://packages.debian.org/src:tiff
113: https://www.debian.org/security/2016/dsa-3468
114: https://packages.debian.org/src:polarssl
115: https://www.debian.org/security/2016/dsa-3471
116: https://packages.debian.org/src:qemu
117: https://www.debian.org/security/2016/dsa-3472
118: https://packages.debian.org/src:wordpress
119: https://www.debian.org/security/2016/dsa-3474
120: https://packages.debian.org/src:libgcrypt20
121: https://www.debian.org/security/2016/dsa-3477
122: https://packages.debian.org/src:iceweasel
123: https://www.debian.org/security/2016/dsa-3479
124: https://packages.debian.org/src:graphite2
125: https://www.debian.org/security/2016/dsa-3481
126: https://packages.debian.org/src:glibc
127: https://www.debian.org/security/2016/dsa-3483
128: https://packages.debian.org/src:cpio
129: https://www.debian.org/security/2016/dsa-3484
130: https://packages.debian.org/src:xdelta3
131: https://www.debian.org/security/2016/dsa-3485
132: https://packages.debian.org/src:didiwiki
133: https://www.debian.org/security/2016/dsa-3486
134: https://packages.debian.org/src:chromium-browser
135: https://www.debian.org/security/2016/dsa-3487
136: https://packages.debian.org/src:libssh2
137: https://www.debian.org/security/2016/dsa-3488
138: https://packages.debian.org/src:libssh
139: https://www.debian.org/security/2016/dsa-3490
140: https://packages.debian.org/src:websvn
141: https://www.debian.org/security/2016/dsa-3492
142: https://packages.debian.org/src:gajim
143: https://www.debian.org/security/2016/dsa-3493
144: https://packages.debian.org/src:xerces-c
145: https://www.debian.org/security/2016/dsa-3494
146: https://packages.debian.org/src:cacti
147: https://www.debian.org/security/2016/dsa-3496
148: https://packages.debian.org/src:php-horde-core
149: https://www.debian.org/security/2016/dsa-3497
150: https://packages.debian.org/src:php-horde
151: https://www.debian.org/security/2016/dsa-3498
152: https://packages.debian.org/src:drupal7
153: https://www.debian.org/security/2016/dsa-3499
154: https://packages.debian.org/src:pillow
155: https://www.debian.org/security/2016/dsa-3500
156: https://packages.debian.org/src:openssl
157: https://www.debian.org/security/2016/dsa-3501
158: https://packages.debian.org/src:perl
159: https://www.debian.org/security/2016/dsa-3502
160: https://packages.debian.org/src:roundup
161: https://www.debian.org/security/2016/dsa-3503
162: https://packages.debian.org/src:linux
163: https://www.debian.org/security/2016/dsa-3504
164: https://packages.debian.org/src:bsh
165: https://www.debian.org/security/2016/dsa-3505
166: https://packages.debian.org/src:wireshark
167: https://www.debian.org/security/2016/dsa-3506
168: https://packages.debian.org/src:libav
169: https://www.debian.org/security/2016/dsa-3507
170: https://packages.debian.org/src:chromium-browser
171: https://www.debian.org/security/2016/dsa-3508
172: https://packages.debian.org/src:jasper
173: https://www.debian.org/security/2016/dsa-3509
174: https://packages.debian.org/src:rails
175: https://www.debian.org/security/2016/dsa-3510
176: https://packages.debian.org/src:iceweasel
177: https://www.debian.org/security/2016/dsa-3511
178: https://packages.debian.org/src:bind9
179: https://www.debian.org/security/2016/dsa-3512
180: https://packages.debian.org/src:libotr
181: https://www.debian.org/security/2016/dsa-3513
182: https://packages.debian.org/src:chromium-browser
183: https://www.debian.org/security/2016/dsa-3514
184: https://packages.debian.org/src:samba
185: https://www.debian.org/security/2016/dsa-3515
186: https://packages.debian.org/src:graphite2
187: https://www.debian.org/security/2016/dsa-3516
188: https://packages.debian.org/src:wireshark
189: https://www.debian.org/security/2016/dsa-3517
190: https://packages.debian.org/src:exim4
191: https://www.debian.org/security/2016/dsa-3518
192: https://packages.debian.org/src:spip
193: https://www.debian.org/security/2016/dsa-3519
194: https://packages.debian.org/src:xen
195: https://www.debian.org/security/2016/dsa-3521
196: https://packages.debian.org/src:git
197: https://www.debian.org/security/2016/dsa-3522
198: https://packages.debian.org/src:squid3
199: https://www.debian.org/security/2016/dsa-3523
200: https://packages.debian.org/src:iceweasel
201: https://www.debian.org/security/2016/dsa-3524
202: https://packages.debian.org/src:activemq
203: https://www.debian.org/security/2016/dsa-3526
204: https://packages.debian.org/src:libmatroska
205: https://www.debian.org/security/2016/dsa-3527
206: https://packages.debian.org/src:inspircd
207: https://www.debian.org/security/2016/dsa-3528
208: https://packages.debian.org/src:pidgin-otr
209: https://www.debian.org/security/2016/dsa-3529
210: https://packages.debian.org/src:redmine
211: https://www.debian.org/security/2016/dsa-3531
212: https://packages.debian.org/src:chromium-browser
213: https://www.debian.org/security/2016/dsa-3532
214: https://packages.debian.org/src:quagga

Removed packages
----------------

The following packages were removed due to circumstances beyond our
control:

+-------------------------+--------------+
| Package | Reason |
+-------------------------+--------------+
| gnome-gmail [215] | Broken |
| | |
| nautilus-pastebin [216] | Unmaintained |
| | |
+-------------------------+--------------+

215: https://packages.debian.org/src:gnome-gmail
216: https://packages.debian.org/src:nautilus-pastebin

Debian Installer
----------------

URLs
----

The complete lists of packages that have changed with this revision:

http://ftp.debian.org/debian/dists/jessie/ChangeLog

The current stable distribution:

http://ftp.debian.org/debian/dists/stable/

Proposed updates to the stable distribution:

http://ftp.debian.org/debian/dists/proposed-updates

stable distribution information (release notes, errata etc.):

https://www.debian.org/releases/stable/

Security announcements and information:

https://security.debian.org/ [217]

217: https://www.debian.org/security/

About Debian
------------

The Debian Project is an association of Free Software developers who
volunteer their time and effort in order to produce the completely free
operating system Debian.

Contact Information
-------------------

For further information, please visit the Debian web pages at
https://www.debian.org/, send mail to <press@debian.org>, or contact the
stable release team at <debian-release@lists.debian.org>.

Updated Debian 7: 7.10 released

------------------------------------------------------------------------
The Debian Project https://www.debian.org/
Updated Debian 7: 7.10 released press@debian.org
April 2nd, 2016 https://www.debian.org/News/2016/2016040202
------------------------------------------------------------------------

The Debian project is pleased to announce the tenth update of its
oldstable distribution Debian 7 (codename "wheezy"). This update mainly
adds corrections for security problems to the oldstable release, along
with a few adjustments for serious problems. Security advisories were
already published separately and are referenced where available.

Please note that this update does not constitute a new version of Debian
7 but only updates some of the packages included. There is no need to
throw away old "wheezy" CDs or DVDs but only to update via an up-to-date
Debian mirror after an installation, to cause any out of date packages
to be updated.

Those who frequently install updates from security.debian.org won't have
to update many packages and most updates from security.debian.org are
included in this update.

New installation media and CD and DVD images containing updated packages
will be available soon at the regular locations.

Upgrading to this revision online is usually done by pointing the
aptitude (or apt) package tool (see the sources.list(5) manual page) to
one of Debian's many FTP or HTTP mirrors. A comprehensive list of
mirrors is available at:

https://www.debian.org/mirror/list

Miscellaneous Bugfixes
----------------------

This oldstable update adds a few important corrections to the following
packages:

+--------------------------+------------------------------------------+
| Package | Reason |
+--------------------------+------------------------------------------+
| amd64-microcode [1] | Update AMD microcode patch firmware for |
| | AMD Family 15h Processors to fix bugs in |
| | prior microcode patch |
| | |
| aptdaemon [2] | Security fix [CVE-2015-1323] |
| | |
| base-files [3] | Update for the point release |
| | |
| c-icap [4] | Fix FTBFS with "newer" OpenSSL |
| | versions; rebuild against libclamav7 |
| | |
| c-icap-modules [5] | Rebuild against libclamav7 |
| | |
| calendarserver [6] | Fix POODLE; update zoneinfo to tzdata |
| | 2015g |
| | |
| clamav [7] | Avoid unaligned memory access; new |
| | upstream release |
| | |
| commons-httpclient [8] | Ensure HTTPS calls use |
| | http.socket.timeout during SSL Handshake |
| | [CVE-2015-5262] |
| | |
| dansguardian [9] | Rebuild against libclamav7 |
| | |
| dbconfig-common [10] | Fix permission of PostgreSQL backup |
| | files |
| | |
| debian-installer [11] | Rebuild against oldstable-proposed- |
| | updates |
| | |
| debian-installer- | Rebuild against new debian-installer |
| netboot-images [12] | |
| | |
| exfat-utils [13] | Fix buffer overflow and infinite loop |
| | |
| exim4 [14] | Fix defect in 89_02_Store-the-initial- |
| | working-directory.diff patch from the |
| | previous security upload |
| | |
| firebug [15] | Update for compatibility with newer |
| | Iceweasel versions |
| | |
| fuse-exfat [16] | Fix buffer overflow and infinite loop |
| | |
| giflib [17] | Bail out if Width > SWidth [CVE-2015- |
| | 7555] |
| | |
| gummi [18] | Avoid predictable naming of temporary |
| | files [CVE 2015-7758] |
| | |
| iptables-persistent [19] | Stop rules files being world-readable |
| | |
| libclamunrar [20] | Rebuild for libclamav7 |
| | |
| libdatetime-timezone- | Update included data to tzdata 2016c |
| perl [21] | |
| | |
| libhtml-scrubber- | Fix cross-site scripting vulnerability |
| perl [22] | in comments [CVE-2015-5667] |
| | |
| libiptables-parse- | Fix use of predictable names for |
| perl [23] | temporary files [CVE-2015-8326] |
| | |
| librsvg [24] | Fix out-of-bounds heap read when parsing |
| | SVG file [CVE-2015-7557] |
| | |
| libssh [25] | Fix "Double free on dangling pointers |
| | in initial key exchange |
| | packet" [CVE-2014-8132]; fix "null |
| | pointer dereference due to a logical |
| | error in the handling of a |
| | SSH_MSG_NEWKEYS and KEXDH_REPLY |
| | packets" [CVE-2015-3146] |
| | |
| linux [26] | update to new upstream stable release |
| | 3.2.78; drm, agp: Update to 3.4.110; rt: |
| | update to 3.2.77-rt111; ppp, slip: |
| | Validate VJ compression slot parameters |
| | completely [CVE-2015-7799]; KVM: svm: |
| | unconditionally intercept #DB [CVE-2015- |
| | 8104] |
| | |
| live-tools [27] | Depend on initramfs-tools |
| | |
| maven2 [28] | Rebuild with libmaven2-core-java 2.2.1- |
| | 8+deb7u1 to use a secure connection by |
| | default to download artifacts from the |
| | Maven Central repository |
| | |
| maven2-core [29] | Use a secure connection by default to |
| | download artifacts from the Maven |
| | Central repository |
| | |
| nvidia-graphics- | New upstream release [CVE-2015-5950]; |
| drivers [30] | fix Unsanitized User Mode Input issue |
| | [CVE-2015-7869] |
| | |
| nvidia-graphics- | Rebuild with nvidia-kernel-source |
| modules [31] | 304.131 |
| | |
| pykerberos [32] | Add KDC authenticity verification |
| | support [CVE-2015-3206] |
| | |
| python-clamav [33] | Rebuild against libclamav7 |
| | |
| sendmail [34] | Properly set the close-on-exec flag for |
| | file descriptors before executing |
| | mailers [CVE-2014-3956]; fix an |
| | incorrect assertion in libmilter; add |
| | support for OpenSSL options |
| | SSL_OP_NO_TLSv1_1 and SSL_OP_NO_TLSv1_2; |
| | fix A-only MX CNAME interface binding |
| | issues when using IPv6; raise MAXDAEMONS |
| | from 10 to 64; start sendmail after |
| | bind9 (or any other named) if it is |
| | installed; fix infinite loop in |
| | update_db |
| | |
| stk [35] | Install missing SKINI.msg and .tbl |
| | include files |
| | |
| tzdata [36] | New upstream release |
| | |
| zendframework [37] | Fix entropy issue with captcha [ZF2015- |
| | 09] |
| | |
+--------------------------+------------------------------------------+

1: https://packages.debian.org/src:amd64-microcode
2: https://packages.debian.org/src:aptdaemon
3: https://packages.debian.org/src:base-files
4: https://packages.debian.org/src:c-icap
5: https://packages.debian.org/src:c-icap-modules
6: https://packages.debian.org/src:calendarserver
7: https://packages.debian.org/src:clamav
8: https://packages.debian.org/src:commons-httpclient
9: https://packages.debian.org/src:dansguardian
10: https://packages.debian.org/src:dbconfig-common
11: https://packages.debian.org/src:debian-installer
12: https://packages.debian.org/src:debian-installer-netboot-images
13: https://packages.debian.org/src:exfat-utils
14: https://packages.debian.org/src:exim4
15: https://packages.debian.org/src:firebug
16: https://packages.debian.org/src:fuse-exfat
17: https://packages.debian.org/src:giflib
18: https://packages.debian.org/src:gummi
19: https://packages.debian.org/src:iptables-persistent
20: https://packages.debian.org/src:libclamunrar
21: https://packages.debian.org/src:libdatetime-timezone-perl
22: https://packages.debian.org/src:libhtml-scrubber-perl
23: https://packages.debian.org/src:libiptables-parse-perl
24: https://packages.debian.org/src:librsvg
25: https://packages.debian.org/src:libssh
26: https://packages.debian.org/src:linux
27: https://packages.debian.org/src:live-tools
28: https://packages.debian.org/src:maven2
29: https://packages.debian.org/src:maven2-core
30: https://packages.debian.org/src:nvidia-graphics-drivers
31: https://packages.debian.org/src:nvidia-graphics-modules
32: https://packages.debian.org/src:pykerberos
33: https://packages.debian.org/src:python-clamav
34: https://packages.debian.org/src:sendmail
35: https://packages.debian.org/src:stk
36: https://packages.debian.org/src:tzdata
37: https://packages.debian.org/src:zendframework

Security Updates
----------------

This revision adds the following security updates to the oldstable
release. The Security Team has already released an advisory for each of
these updates:

+----------------+------------------------------------+
| Advisory ID | Package |
+----------------+------------------------------------+
| DSA-2722 [38] | openjdk-7 [39] |
| | |
| DSA-2923 [40] | openjdk-7 [41] |
| | |
| DSA-2987 [42] | openjdk-7 [43] |
| | |
| DSA-3080 [44] | openjdk-7 [45] |
| | |
| DSA-3132 [46] | icedove [47] |
| | |
| DSA-3144 [48] | openjdk-7 [49] |
| | |
| DSA-3173 [50] | libgtk2-perl [51] |
| | |
| DSA-3179 [52] | icedove [53] |
| | |
| DSA-3208 [54] | freexl [55] |
| | |
| DSA-3212 [56] | icedove [57] |
| | |
| DSA-3235 [58] | openjdk-7 [59] |
| | |
| DSA-3264 [60] | icedove [61] |
| | |
| DSA-3316 [62] | openjdk-7 [63] |
| | |
| DSA-3324 [64] | icedove [65] |
| | |
| DSA-3337 [66] | gdk-pixbuf [67] |
| | |
| DSA-3346 [68] | drupal7 [69] |
| | |
| DSA-3349 [70] | qemu-kvm [71] |
| | |
| DSA-3349 [72] | qemu [73] |
| | |
| DSA-3350 [74] | bind9 [75] |
| | |
| DSA-3352 [76] | screen [77] |
| | |
| DSA-3353 [78] | openslp-dfsg [79] |
| | |
| DSA-3355 [80] | libvdpau [81] |
| | |
| DSA-3358 [82] | php5 [83] |
| | |
| DSA-3359 [84] | virtualbox [85] |
| | |
| DSA-3361 [86] | qemu [87] |
| | |
| DSA-3362 [88] | qemu-kvm [89] |
| | |
| DSA-3364 [90] | linux [91] |
| | |
| DSA-3365 [92] | iceweasel [93] |
| | |
| DSA-3366 [94] | rpcbind [95] |
| | |
| DSA-3369 [96] | zendframework [97] |
| | |
| DSA-3370 [98] | freetype [99] |
| | |
| DSA-3371 [100] | spice [101] |
| | |
| DSA-3377 [102] | mysql-5.5 [103] |
| | |
| DSA-3378 [104] | gdk-pixbuf [105] |
| | |
| DSA-3379 [106] | miniupnpc [107] |
| | |
| DSA-3380 [108] | php5 [109] |
| | |
| DSA-3381 [110] | openjdk-7 [111] |
| | |
| DSA-3382 [112] | phpmyadmin [113] |
| | |
| DSA-3383 [114] | wordpress [115] |
| | |
| DSA-3384 [116] | virtualbox [117] |
| | |
| DSA-3386 [118] | unzip [119] |
| | |
| DSA-3387 [120] | openafs [121] |
| | |
| DSA-3388 [122] | ntp [123] |
| | |
| DSA-3390 [124] | xen [125] |
| | |
| DSA-3392 [126] | freeimage [127] |
| | |
| DSA-3393 [128] | iceweasel [129] |
| | |
| DSA-3395 [130] | krb5 [131] |
| | |
| DSA-3397 [132] | wpa [133] |
| | |
| DSA-3398 [134] | strongswan [135] |
| | |
| DSA-3399 [136] | libpng [137] |
| | |
| DSA-3401 [138] | openjdk-7 [139] |
| | |
| DSA-3403 [140] | libcommons-collections3-java [141] |
| | |
| DSA-3404 [142] | python-django [143] |
| | |
| DSA-3405 [144] | smokeping [145] |
| | |
| DSA-3406 [146] | nspr [147] |
| | |
| DSA-3407 [148] | dpkg [149] |
| | |
| DSA-3408 [150] | gnutls26 [151] |
| | |
| DSA-3409 [152] | putty [153] |
| | |
| DSA-3413 [154] | openssl [155] |
| | |
| DSA-3416 [156] | libphp-phpmailer [157] |
| | |
| DSA-3417 [158] | bouncycastle [159] |
| | |
| DSA-3420 [160] | bind9 [161] |
| | |
| DSA-3421 [162] | grub2 [163] |
| | |
| DSA-3422 [164] | iceweasel [165] |
| | |
| DSA-3423 [166] | cacti [167] |
| | |
| DSA-3426 [168] | linux [169] |
| | |
| DSA-3426 [170] | ctdb [171] |
| | |
| DSA-3427 [172] | blueman [173] |
| | |
| DSA-3429 [174] | foomatic-filters [175] |
| | |
| DSA-3430 [176] | libxml2 [177] |
| | |
| DSA-3431 [178] | ganeti [179] |
| | |
| DSA-3433 [180] | samba [181] |
| | |
| DSA-3434 [182] | linux [183] |
| | |
| DSA-3435 [184] | git [185] |
| | |
| DSA-3436 [186] | openssl [187] |
| | |
| DSA-3437 [188] | gnutls26 [189] |
| | |
| DSA-3438 [190] | xscreensaver [191] |
| | |
| DSA-3439 [192] | prosody [193] |
| | |
| DSA-3440 [194] | sudo [195] |
| | |
| DSA-3443 [196] | libpng [197] |
| | |
| DSA-3444 [198] | wordpress [199] |
| | |
| DSA-3445 [200] | pygments [201] |
| | |
| DSA-3446 [202] | openssh [203] |
| | |
| DSA-3447 [204] | tomcat7 [205] |
| | |
| DSA-3450 [206] | ecryptfs-utils [207] |
| | |
| DSA-3452 [208] | claws-mail [209] |
| | |
| DSA-3459 [210] | mysql-5.5 [211] |
| | |
| DSA-3460 [212] | privoxy [213] |
| | |
| DSA-3461 [214] | freetype [215] |
| | |
| DSA-3462 [216] | radicale [217] |
| | |
| DSA-3463 [218] | prosody [219] |
| | |
| DSA-3466 [220] | krb5 [221] |
| | |
| DSA-3468 [222] | polarssl [223] |
| | |
| DSA-3469 [224] | qemu [225] |
| | |
| DSA-3470 [226] | qemu-kvm [227] |
| | |
| DSA-3472 [228] | wordpress [229] |
| | |
| DSA-3473 [230] | nginx [231] |
| | |
| DSA-3478 [232] | libgcrypt11 [233] |
| | |
| DSA-3479 [234] | graphite2 [235] |
| | |
| DSA-3483 [236] | cpio [237] |
| | |
| DSA-3484 [238] | xdelta3 [239] |
| | |
| DSA-3485 [240] | didiwiki [241] |
| | |
| DSA-3487 [242] | libssh2 [243] |
| | |
| DSA-3488 [244] | libssh [245] |
| | |
| DSA-3489 [246] | lighttpd [247] |
| | |
| DSA-3490 [248] | websvn [249] |
| | |
| DSA-3492 [250] | gajim [251] |
| | |
| DSA-3493 [252] | xerces-c [253] |
| | |
| DSA-3494 [254] | cacti [255] |
| | |
| DSA-3498 [256] | drupal7 [257] |
| | |
| DSA-3499 [258] | python-imaging [259] |
| | |
| DSA-3500 [260] | openssl [261] |
| | |
| DSA-3501 [262] | perl [263] |
| | |
| DSA-3502 [264] | roundup [265] |
| | |
| DSA-3503 [266] | linux [267] |
| | |
| DSA-3504 [268] | bsh [269] |
| | |
| DSA-3505 [270] | wireshark [271] |
| | |
| DSA-3506 [272] | libav [273] |
| | |
| DSA-3508 [274] | jasper [275] |
| | |
| DSA-3511 [276] | bind9 [277] |
| | |
| DSA-3512 [278] | libotr [279] |
| | |
| DSA-3514 [280] | samba [281] |
| | |
| DSA-3516 [282] | wireshark [283] |
| | |
| DSA-3517 [284] | exim4 [285] |
| | |
| DSA-3518 [286] | spip [287] |
| | |
| DSA-3521 [288] | git [289] |
| | |
| DSA-3522 [290] | squid3 [291] |
| | |
| DSA-3524 [292] | activemq [293] |
| | |
| DSA-3525 [294] | pixman [295] |
| | |
| DSA-3526 [296] | libmatroska [297] |
| | |
| DSA-3527 [298] | inspircd [299] |
| | |
| DSA-3532 [300] | quagga [301] |
| | |
+----------------+------------------------------------+

38: https://www.debian.org/security/2013/dsa-2722
39: https://packages.debian.org/src:openjdk-7
40: https://www.debian.org/security/2014/dsa-2923
41: https://packages.debian.org/src:openjdk-7
42: https://www.debian.org/security/2014/dsa-2987
43: https://packages.debian.org/src:openjdk-7
44: https://www.debian.org/security/2014/dsa-3080
45: https://packages.debian.org/src:openjdk-7
46: https://www.debian.org/security/2015/dsa-3132
47: https://packages.debian.org/src:icedove
48: https://www.debian.org/security/2015/dsa-3144
49: https://packages.debian.org/src:openjdk-7
50: https://www.debian.org/security/2015/dsa-3173
51: https://packages.debian.org/src:libgtk2-perl
52: https://www.debian.org/security/2015/dsa-3179
53: https://packages.debian.org/src:icedove
54: https://www.debian.org/security/2015/dsa-3208
55: https://packages.debian.org/src:freexl
56: https://www.debian.org/security/2015/dsa-3212
57: https://packages.debian.org/src:icedove
58: https://www.debian.org/security/2015/dsa-3235
59: https://packages.debian.org/src:openjdk-7
60: https://www.debian.org/security/2015/dsa-3264
61: https://packages.debian.org/src:icedove
62: https://www.debian.org/security/2015/dsa-3316
63: https://packages.debian.org/src:openjdk-7
64: https://www.debian.org/security/2015/dsa-3324
65: https://packages.debian.org/src:icedove
66: https://www.debian.org/security/2015/dsa-3337
67: https://packages.debian.org/src:gdk-pixbuf
68: https://www.debian.org/security/2015/dsa-3346
69: https://packages.debian.org/src:drupal7
70: https://www.debian.org/security/2015/dsa-3349
71: https://packages.debian.org/src:qemu-kvm
72: https://www.debian.org/security/2015/dsa-3349
73: https://packages.debian.org/src:qemu
74: https://www.debian.org/security/2015/dsa-3350
75: https://packages.debian.org/src:bind9
76: https://www.debian.org/security/2015/dsa-3352
77: https://packages.debian.org/src:screen
78: https://www.debian.org/security/2015/dsa-3353
79: https://packages.debian.org/src:openslp-dfsg
80: https://www.debian.org/security/2015/dsa-3355
81: https://packages.debian.org/src:libvdpau
82: https://www.debian.org/security/2015/dsa-3358
83: https://packages.debian.org/src:php5
84: https://www.debian.org/security/2015/dsa-3359
85: https://packages.debian.org/src:virtualbox
86: https://www.debian.org/security/2015/dsa-3361
87: https://packages.debian.org/src:qemu
88: https://www.debian.org/security/2015/dsa-3362
89: https://packages.debian.org/src:qemu-kvm
90: https://www.debian.org/security/2015/dsa-3364
91: https://packages.debian.org/src:linux
92: https://www.debian.org/security/2015/dsa-3365
93: https://packages.debian.org/src:iceweasel
94: https://www.debian.org/security/2015/dsa-3366
95: https://packages.debian.org/src:rpcbind
96: https://www.debian.org/security/2015/dsa-3369
97: https://packages.debian.org/src:zendframework
98: https://www.debian.org/security/2015/dsa-3370
99: https://packages.debian.org/src:freetype
100: https://www.debian.org/security/2015/dsa-3371
101: https://packages.debian.org/src:spice
102: https://www.debian.org/security/2015/dsa-3377
103: https://packages.debian.org/src:mysql-5.5
104: https://www.debian.org/security/2015/dsa-3378
105: https://packages.debian.org/src:gdk-pixbuf
106: https://www.debian.org/security/2015/dsa-3379
107: https://packages.debian.org/src:miniupnpc
108: https://www.debian.org/security/2015/dsa-3380
109: https://packages.debian.org/src:php5
110: https://www.debian.org/security/2015/dsa-3381
111: https://packages.debian.org/src:openjdk-7
112: https://www.debian.org/security/2015/dsa-3382
113: https://packages.debian.org/src:phpmyadmin
114: https://www.debian.org/security/2015/dsa-3383
115: https://packages.debian.org/src:wordpress
116: https://www.debian.org/security/2015/dsa-3384
117: https://packages.debian.org/src:virtualbox
118: https://www.debian.org/security/2015/dsa-3386
119: https://packages.debian.org/src:unzip
120: https://www.debian.org/security/2015/dsa-3387
121: https://packages.debian.org/src:openafs
122: https://www.debian.org/security/2015/dsa-3388
123: https://packages.debian.org/src:ntp
124: https://www.debian.org/security/2015/dsa-3390
125: https://packages.debian.org/src:xen
126: https://www.debian.org/security/2015/dsa-3392
127: https://packages.debian.org/src:freeimage
128: https://www.debian.org/security/2015/dsa-3393
129: https://packages.debian.org/src:iceweasel
130: https://www.debian.org/security/2015/dsa-3395
131: https://packages.debian.org/src:krb5
132: https://www.debian.org/security/2015/dsa-3397
133: https://packages.debian.org/src:wpa
134: https://www.debian.org/security/2015/dsa-3398
135: https://packages.debian.org/src:strongswan
136: https://www.debian.org/security/2015/dsa-3399
137: https://packages.debian.org/src:libpng
138: https://www.debian.org/security/2015/dsa-3401
139: https://packages.debian.org/src:openjdk-7
140: https://www.debian.org/security/2015/dsa-3403
141: https://packages.debian.org/src:libcommons-collections3-java
142: https://www.debian.org/security/2015/dsa-3404
143: https://packages.debian.org/src:python-django
144: https://www.debian.org/security/2015/dsa-3405
145: https://packages.debian.org/src:smokeping
146: https://www.debian.org/security/2015/dsa-3406
147: https://packages.debian.org/src:nspr
148: https://www.debian.org/security/2015/dsa-3407
149: https://packages.debian.org/src:dpkg
150: https://www.debian.org/security/2015/dsa-3408
151: https://packages.debian.org/src:gnutls26
152: https://www.debian.org/security/2015/dsa-3409
153: https://packages.debian.org/src:putty
154: https://www.debian.org/security/2015/dsa-3413
155: https://packages.debian.org/src:openssl
156: https://www.debian.org/security/2015/dsa-3416
157: https://packages.debian.org/src:libphp-phpmailer
158: https://www.debian.org/security/2015/dsa-3417
159: https://packages.debian.org/src:bouncycastle
160: https://www.debian.org/security/2015/dsa-3420
161: https://packages.debian.org/src:bind9
162: https://www.debian.org/security/2015/dsa-3421
163: https://packages.debian.org/src:grub2
164: https://www.debian.org/security/2015/dsa-3422
165: https://packages.debian.org/src:iceweasel
166: https://www.debian.org/security/2015/dsa-3423
167: https://packages.debian.org/src:cacti
168: https://www.debian.org/security/2015/dsa-3426
169: https://packages.debian.org/src:linux
170: https://www.debian.org/security/2016/dsa-3426
171: https://packages.debian.org/src:ctdb
172: https://www.debian.org/security/2015/dsa-3427
173: https://packages.debian.org/src:blueman
174: https://www.debian.org/security/2015/dsa-3429
175: https://packages.debian.org/src:foomatic-filters
176: https://www.debian.org/security/2015/dsa-3430
177: https://packages.debian.org/src:libxml2
178: https://www.debian.org/security/2016/dsa-3431
179: https://packages.debian.org/src:ganeti
180: https://www.debian.org/security/2016/dsa-3433
181: https://packages.debian.org/src:samba
182: https://www.debian.org/security/2016/dsa-3434
183: https://packages.debian.org/src:linux
184: https://www.debian.org/security/2016/dsa-3435
185: https://packages.debian.org/src:git
186: https://www.debian.org/security/2016/dsa-3436
187: https://packages.debian.org/src:openssl
188: https://www.debian.org/security/2016/dsa-3437
189: https://packages.debian.org/src:gnutls26
190: https://www.debian.org/security/2016/dsa-3438
191: https://packages.debian.org/src:xscreensaver
192: https://www.debian.org/security/2016/dsa-3439
193: https://packages.debian.org/src:prosody
194: https://www.debian.org/security/2016/dsa-3440
195: https://packages.debian.org/src:sudo
196: https://www.debian.org/security/2016/dsa-3443
197: https://packages.debian.org/src:libpng
198: https://www.debian.org/security/2016/dsa-3444
199: https://packages.debian.org/src:wordpress
200: https://www.debian.org/security/2016/dsa-3445
201: https://packages.debian.org/src:pygments
202: https://www.debian.org/security/2016/dsa-3446
203: https://packages.debian.org/src:openssh
204: https://www.debian.org/security/2016/dsa-3447
205: https://packages.debian.org/src:tomcat7
206: https://www.debian.org/security/2016/dsa-3450
207: https://packages.debian.org/src:ecryptfs-utils
208: https://www.debian.org/security/2016/dsa-3452
209: https://packages.debian.org/src:claws-mail
210: https://www.debian.org/security/2016/dsa-3459
211: https://packages.debian.org/src:mysql-5.5
212: https://www.debian.org/security/2016/dsa-3460
213: https://packages.debian.org/src:privoxy
214: https://www.debian.org/security/2016/dsa-3461
215: https://packages.debian.org/src:freetype
216: https://www.debian.org/security/2016/dsa-3462
217: https://packages.debian.org/src:radicale
218: https://www.debian.org/security/2016/dsa-3463
219: https://packages.debian.org/src:prosody
220: https://www.debian.org/security/2016/dsa-3466
221: https://packages.debian.org/src:krb5
222: https://www.debian.org/security/2016/dsa-3468
223: https://packages.debian.org/src:polarssl
224: https://www.debian.org/security/2016/dsa-3469
225: https://packages.debian.org/src:qemu
226: https://www.debian.org/security/2016/dsa-3470
227: https://packages.debian.org/src:qemu-kvm
228: https://www.debian.org/security/2016/dsa-3472
229: https://packages.debian.org/src:wordpress
230: https://www.debian.org/security/2016/dsa-3473
231: https://packages.debian.org/src:nginx
232: https://www.debian.org/security/2016/dsa-3478
233: https://packages.debian.org/src:libgcrypt11
234: https://www.debian.org/security/2016/dsa-3479
235: https://packages.debian.org/src:graphite2
236: https://www.debian.org/security/2016/dsa-3483
237: https://packages.debian.org/src:cpio
238: https://www.debian.org/security/2016/dsa-3484
239: https://packages.debian.org/src:xdelta3
240: https://www.debian.org/security/2016/dsa-3485
241: https://packages.debian.org/src:didiwiki
242: https://www.debian.org/security/2016/dsa-3487
243: https://packages.debian.org/src:libssh2
244: https://www.debian.org/security/2016/dsa-3488
245: https://packages.debian.org/src:libssh
246: https://www.debian.org/security/2016/dsa-3489
247: https://packages.debian.org/src:lighttpd
248: https://www.debian.org/security/2016/dsa-3490
249: https://packages.debian.org/src:websvn
250: https://www.debian.org/security/2016/dsa-3492
251: https://packages.debian.org/src:gajim
252: https://www.debian.org/security/2016/dsa-3493
253: https://packages.debian.org/src:xerces-c
254: https://www.debian.org/security/2016/dsa-3494
255: https://packages.debian.org/src:cacti
256: https://www.debian.org/security/2016/dsa-3498
257: https://packages.debian.org/src:drupal7
258: https://www.debian.org/security/2016/dsa-3499
259: https://packages.debian.org/src:python-imaging
260: https://www.debian.org/security/2016/dsa-3500
261: https://packages.debian.org/src:openssl
262: https://www.debian.org/security/2016/dsa-3501
263: https://packages.debian.org/src:perl
264: https://www.debian.org/security/2016/dsa-3502
265: https://packages.debian.org/src:roundup
266: https://www.debian.org/security/2016/dsa-3503
267: https://packages.debian.org/src:linux
268: https://www.debian.org/security/2016/dsa-3504
269: https://packages.debian.org/src:bsh
270: https://www.debian.org/security/2016/dsa-3505
271: https://packages.debian.org/src:wireshark
272: https://www.debian.org/security/2016/dsa-3506
273: https://packages.debian.org/src:libav
274: https://www.debian.org/security/2016/dsa-3508
275: https://packages.debian.org/src:jasper
276: https://www.debian.org/security/2016/dsa-3511
277: https://packages.debian.org/src:bind9
278: https://www.debian.org/security/2016/dsa-3512
279: https://packages.debian.org/src:libotr
280: https://www.debian.org/security/2016/dsa-3514
281: https://packages.debian.org/src:samba
282: https://www.debian.org/security/2016/dsa-3516
283: https://packages.debian.org/src:wireshark
284: https://www.debian.org/security/2016/dsa-3517
285: https://packages.debian.org/src:exim4
286: https://www.debian.org/security/2016/dsa-3518
287: https://packages.debian.org/src:spip
288: https://www.debian.org/security/2016/dsa-3521
289: https://packages.debian.org/src:git
290: https://www.debian.org/security/2016/dsa-3522
291: https://packages.debian.org/src:squid3
292: https://www.debian.org/security/2016/dsa-3524
293: https://packages.debian.org/src:activemq
294: https://www.debian.org/security/2016/dsa-3525
295: https://packages.debian.org/src:pixman
296: https://www.debian.org/security/2016/dsa-3526
297: https://packages.debian.org/src:libmatroska
298: https://www.debian.org/security/2016/dsa-3527
299: https://packages.debian.org/src:inspircd
300: https://www.debian.org/security/2016/dsa-3532
301: https://packages.debian.org/src:quagga

Removed packages
----------------

The following packages were removed due to circumstances beyond our
control:

+-------------------+--------------------------------------------+
| Package | Reason |
+-------------------+--------------------------------------------+
| gnome-gmail [302] | Broken |
| | |
| libnsbmp [303] | Security issues, unmaintained |
| | |
| libnsgif [304] | Security issues, unmaintained |
| | |
| tlslite [305] | Unmaintained, outdated |
| | |
| vimperator [306] | Incompatible with newer iceweasel versions |
| | |
+-------------------+--------------------------------------------+

302: https://packages.debian.org/src:gnome-gmail
303: https://packages.debian.org/src:libnsbmp
304: https://packages.debian.org/src:libnsgif
305: https://packages.debian.org/src:tlslite
306: https://packages.debian.org/src:vimperator

Debian Installer
----------------

URLs
----

The complete lists of packages that have changed with this revision:

http://ftp.debian.org/debian/dists/wheezy/ChangeLog

The current oldstable distribution:

http://ftp.debian.org/debian/dists/oldstable/

Proposed updates to the oldstable distribution:

http://ftp.debian.org/debian/dists/oldstable-proposed-updates

oldstable distribution information (release notes, errata etc.):

https://www.debian.org/releases/oldstable/

Security announcements and information:

https://security.debian.org/ [307]

307: https://www.debian.org/security/

About Debian
------------

The Debian Project is an association of Free Software developers who
volunteer their time and effort in order to produce the completely free
operating system Debian.

Contact Information
-------------------

For further information, please visit the Debian web pages at
https://www.debian.org/, send mail to <press@debian.org>, or contact the
stable release team at <debian-release@lists.debian.org>.

Friday, April 1, 2016

Re: No Rich boolean deps in Requires/Recommends for f24

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iEYEARECAAYFAlb+1cIACgkQeiVVYja6o6NpjACeIZWHyu5YSKxKcTvZfsl+x6pS
m+YAn0a3Asl9AFlM0XuSzUoxJQhOrh6+
=CMeb
-----END PGP SIGNATURE-----
On 04/01/2016 02:51 PM, Kevin Fenzi wrote:
> Greetings.
>
> Recently FPC oked the use of rich boolean deps. However, we have run
> into an issue where the tools used to push updates are not able to
> correctly handle these new dependencies.
>
> At today's FESCo meeting we decided to ask maintainers to not use rich
> boolean Requires/Recommends for the time being until tooling can catch
> up and allow us to push updates with them.
>
> Thanks for your cooperation.
>
> kevin
> --
> https://fedoraproject.org/wiki/Packaging:Guidelines#Rich.2FBoolean_dependencies
> https://fedorahosted.org/fpc/ticket/593
> https://meetbot.fedoraproject.org/fedora-meeting/2016-04-01/fesco.2016-04-01-17.00.log.html
>

To clarify, the use of rich dependencies is banned from use for Requires: and
Recommends: dependencies. It is safe for use on Suggests:, Enhances: and
Supplements:. In particular, this means that it is still acceptable to generate
language subpackages using Supplements.

("Rich dependencies" refers to dependencies that specify "and" or "or" for
extended rule-processing).

[1] https://fedoraproject.org/wiki/Packaging:Langpacks

No Rich boolean deps in Requires/Recommends for f24

Greetings.

Recently FPC oked the use of rich boolean deps. However, we have run
into an issue where the tools used to push updates are not able to
correctly handle these new dependencies.

At today's FESCo meeting we decided to ask maintainers to not use rich
boolean Requires/Recommends for the time being until tooling can catch
up and allow us to push updates with them.

Thanks for your cooperation.

kevin
--
https://fedoraproject.org/wiki/Packaging:Guidelines#Rich.2FBoolean_dependencies
https://fedorahosted.org/fpc/ticket/593
https://meetbot.fedoraproject.org/fedora-meeting/2016-04-01/fesco.2016-04-01-17.00.log.html

[announce] NYC*BUG: April 6, Debugging with LLVM

Wednesday, April 6, 645 PM
Debugging with LLVM, John Wolfe
Stone Creek Bar & Lounge: 140 E 27th St

Abstract

"LLDB is a next generation, high-performance debugger. It is built as a
set of reusable components which highly leverage existing libraries in
the larger LLVM Project, such as the Clang expression parser and LLVM
disassembler."

There is a new debugger in town. Developed by Apple for Mac OS X, it is
now available on FreeBSD, Linux and Windows. We will take a brief look
at LLDB's history and its modular design, delve into the commands with a
comparison to GDB's commands, checkout the python interface and put it
all to use to debug a program.

Speaker Bio

John moved to New Jersey when he joined the software development tools
group at AT&T's Unix System Labs in the early 90's. He has been working
on compilers, optimizers, debuggers, and performance tools since then.

***

There's a new BSD user group in Knoxville, TN. Join their mailing list
at http://lists.nycbug.org/mailman/listinfo/knoxbug-talk

Other Upcoming Events

May 4 - Urchin: Unix-style tests, Thomas Levine

June 10-11 - BSDCan Ottawa, Canada, https://www.bsdcan.org/

June 15 - Adventures in HardenedBSD, Shawn Webb

July 6 - Meet the Smallest BSDs: RetroBSD and LiteBSD, Brian Callahan

August 3 - BSD Installfest

September 7 - Teaching FreeBSD, George Neville-Neil

September 22-23 - EuroBSDCon Belgrade, Serbia, https://2016.eurobsdcon.org/

_______________________________________________
announce mailing list
announce@lists.nycbug.org
http://lists.nycbug.org/mailman/listinfo/announce

lists.linuxfromscratch.org mailing list memberships reminder

This is a reminder, sent out once a month, about your
lists.linuxfromscratch.org mailing list memberships. It includes your
subscription info and how to use it to change it or unsubscribe from a
list.

You can visit the URLs to change your membership status or
configuration, including unsubscribing, setting digest-style delivery
or disabling delivery altogether (e.g., for a vacation), and so on.

In addition to the URL interfaces, you can also use email to make such
changes. For more info, send a message to the '-request' address of
the list (for example, mailman-request@lists.linuxfromscratch.org)
containing just the word 'help' in the message body, and an email
message will be sent to you with instructions.

If you have questions, problems, comments, etc, send them to
mailman-owner@lists.linuxfromscratch.org. Thanks!

Passwords for reallost1.fbsd2233449@blogger.com:

List Password // URL
---- --------
lfs-announce@lists.linuxfromscratch.org vaozebru
http://lists.linuxfromscratch.org/options/lfs-announce/reallost1.fbsd2233449%40blogger.com

reallost1.fbsd2233449:“经营之神”----稻盛和夫 bmpk

reallost1.fbsd2233449：您好

附件中的内容希望能帮助到您的工作,给您解决工作中的烦恼！

所谓阿米巴经营模式就是将整个公司分割成许多个被称为阿米巴的小型组织，每个小型组织都作为一个独立的利润中心，按照小企业、小商店的方式进行独立经营。以各个"阿米巴"为核心，自行制订经营计划，独立核算，持续自主成长，让每一位员工成为主角，全员参与经营。实施阿米巴经营模式结合中国本土文化能很好地将市场竞争压力传导给全员，解决员工的动力问题.

oeajq8

经幻蓝