------------------------------------------------------------------------
The Debian Project https://www.debian.org/
Updated Debian 11: 11.7 released press@debian.org
April 29th, 2023 https://www.debian.org/News/2023/20230429
------------------------------------------------------------------------
The Debian project is pleased to announce the seventh update of its
stable distribution Debian 11 (codename "bullseye"). This point release
mainly adds corrections for security issues, along with a few
adjustments for serious problems. Security advisories have already been
published separately and are referenced where available.
Please note that the point release does not constitute a new version of
Debian 11 but only updates some of the packages included. There is no
need to throw away old "bullseye" media. After installation, packages
can be upgraded to the current versions using an up-to-date Debian
mirror.
Those who frequently install updates from security.debian.org won't have
to update many packages, and most such updates are included in the point
release.
New installation images will be available soon at the regular locations.
Upgrading an existing installation to this revision can be achieved by
pointing the package management system at one of Debian's many HTTP
mirrors. A comprehensive list of mirrors is available at:
https://www.debian.org/mirror/list
Miscellaneous Bugfixes
----------------------
This stable update adds a few important corrections to the following
packages:
+----------------------------+----------------------------------------+
| Package | Reason |
+----------------------------+----------------------------------------+
| akregator [1] | Fix validity checks, including fixing |
| | deletion of feeds and folders |
| | |
| apache2 [2] | Don't automatically enable apache2- |
| | doc.conf; fix regressions in http2 and |
| | mod_rewrite introduced in 2.4.56 |
| | |
| at-spi2-core [3] | Set stop timeout to 5 seconds, so as |
| | not to needlessly block system |
| | shutdowns |
| | |
| avahi [4] | Fix local denial of service issue |
| | [CVE-2021-3468] |
| | |
| base-files [5] | Update for the 11.7 point release |
| | |
| c-ares [6] | Prevent stack overflow and denial of |
| | service [CVE-2022-4904] |
| | |
| clamav [7] | New upstream stable release; fix |
| | possible remote code execution issue |
| | in the HFS+ file parser [CVE-2023- |
| | 20032], possible information leak in |
| | the DMG file parser [CVE-2023-20052] |
| | |
| command-not-found [8] | Add new non-free-firmware component, |
| | fixing upgrades to bookworm |
| | |
| containerd [9] | Fix denial of service issue [CVE-2023- |
| | 25153]; fix possible privilege |
| | escalation via incorrect setup of |
| | supplementary groups [CVE-2023-25173] |
| | |
| crun [10] | Fix capability escalation issue due to |
| | containers being incorrectly started |
| | with non-empty default permissions |
| | [CVE-2022-27650] |
| | |
| cwltool [11] | Add missing dependency on python3- |
| | distutils |
| | |
| debian-archive- | Add bookworm keys; move stretch keys |
| keyring [12] | to the removed keyring |
| | |
| debian-installer [13] | Increase Linux kernel ABI to 5.10.0- |
| | 22; rebuild against proposed-updates |
| | |
| debian-installer-netboot- | Rebuild against proposed-updates |
| images [14] | |
| | |
| debian-ports-archive- | Extend the 2023 signing key's |
| keyring [15] | expiration by one year; add 2024 |
| | signing key; move 2022 signing key to |
| | the removed keyring |
| | |
| dpdk [16] | New upstream stable release |
| | |
| duktape [17] | Fix crash issue [CVE-2021-46322] |
| | |
| e2tools [18] | Fix build failure by adding build |
| | dependency on e2fsprogs |
| | |
| erlang [19] | Fix client authentication bypass issue |
| | [CVE-2022-37026]; use -O1 optimization |
| | for armel because -O2 makes erl |
| | segfault on certain platforms, e.g. |
| | Marvell |
| | |
| exiv2 [20] | Security fixes [CVE-2021-29458 |
| | CVE-2021-29463 CVE-2021-29464 |
| | CVE-2021-29470 CVE-2021-29473 |
| | CVE-2021-29623 CVE-2021-32815 |
| | CVE-2021-34334 CVE-2021-34335 |
| | CVE-2021-3482 CVE-2021-37615 CVE-2021- |
| | 37616 CVE-2021-37618 CVE-2021-37619 |
| | CVE-2021-37620 CVE-2021-37621 |
| | CVE-2021-37622 CVE-2021-37623] |
| | |
| flask-security [21] | Fix open redirect vulnerability |
| | [CVE-2021-23385] |
| | |
| flatpak [22] | New upstream stable release; escape |
| | special characters when displaying |
| | permissions and metadata [CVE-2023- |
| | 28101]; don't allow copy/paste via the |
| | TIOCLINUX ioctl when running in a |
| | Linux virtual console [CVE-2023-28100] |
| | |
| galera-3 [23] | New upstream stable release |
| | |
| ghostscript [24] | Fix path for PostScript helper file in |
| | ps2epsi |
| | |
| glibc [25] | Fix memory leak in printf-family |
| | functions with long multibyte strings; |
| | fix crash in printf-family due to |
| | width/precision-dependent allocations; |
| | fix segfault in printf handling |
| | thousands separator; fix overflow in |
| | the AVX2 implementation of wcsnlen |
| | when crossing pages |
| | |
| golang-github-containers- | Fix parsing of |
| common [26] | DBUS_SESSION_BUS_ADDRESS |
| | |
| golang-github-containers- | Do not enter the process user |
| psgo [27] | namespace [CVE-2022-1227] |
| | |
| golang-github-containers- | Make previously internal functions |
| storage [28] | publicly accessible, required to allow |
| | fixing CVE-2022-1227 in other packages |
| | |
| golang-github-prometheus- | Patch tests to avoid race condition; |
| exporter-toolkit [29] | fix authentication cache poisoning |
| | issue [CVE-2022-46146] |
| | |
| grep [30] | Fix incorrect matching when the last |
| | of multiple patterns includes a |
| | backreference |
| | |
| gtk+3.0 [31] | Fix Wayland + EGL on GLES-only |
| | platforms |
| | |
| guix [32] | Fix build failure due to expired keys |
| | used in test suite |
| | |
| intel-microcode [33] | New upstream bug-fix release |
| | |
| isc-dhcp [34] | Fix IPv6 address lifetime handling |
| | |
| jersey1 [35] | Fix build failure with libjettison- |
| | java 1.5.3 |
| | |
| joblib [36] | Fix arbitrary code execution issue |
| | [CVE-2022-21797] |
| | |
| lemonldap-ng [37] | Fix URL validation bypass issue; fix |
| | 2FA issue when using AuthBasic handler |
| | [CVE-2023-28862] |
| | |
| libapache2-mod-auth- | Fix open redirect issue [CVE-2022- |
| openidc [38] | 23527] |
| | |
| libapreq2 [39] | Fix buffer overflow issue [CVE-2022- |
| | 22728] |
| | |
| libdatetime-timezone- | Update included data |
| perl [40] | |
| | |
| libexplain [41] | Enhance compatibility with newer |
| | kernel versions - Linux 5.11 no longer |
| | has if_frad.h, termiox removed since |
| | kernel 5.12 |
| | |
| libgit2 [42] | Enable SSH key verification by default |
| | [CVE-2023-22742] |
| | |
| libpod [43] | Fix privilege escalation issue |
| | [CVE-2022-1227]; fix capability |
| | escalation issue due to containers |
| | being incorrectly started with non- |
| | empty default permissions [CVE-2022- |
| | 27649]; fix parsing of |
| | DBUS_SESSION_BUS_ADDRESS |
| | |
| libreoffice [44] | Change Croatia's default currency to |
| | Euro; avoid empty -Djava.class.path= |
| | [CVE-2022-38745] |
| | |
| libvirt [45] | Fix container reboot-related issues; |
| | fix test failures when combined with |
| | newer Xen versions |
| | |
| libxpm [46] | Fix infinite loop issues [CVE-2022- |
| | 44617 CVE-2022-46285]; fix double free |
| | issue in error handling code; fix |
| | "compression commands depend on |
| | PATH" [CVE-2022-4883] |
| | |
| libzen [47] | Fix null pointer dereference issue |
| | [CVE-2020-36646] |
| | |
| linux [48] | New upstream stable release; increase |
| | ABI to 22; [rt] update to 5.10.176- |
| | rt86 |
| | |
| linux-signed-amd64 [49] | New upstream stable release; increase |
| | ABI to 22; [rt] update to 5.10.176- |
| | rt86 |
| | |
| linux-signed-arm64 [50] | New upstream stable release; increase |
| | ABI to 22; [rt] update to 5.10.176- |
| | rt86 |
| | |
| linux-signed-i386 [51] | New upstream stable release; increase |
| | ABI to 22; [rt] update to 5.10.176- |
| | rt86 |
| | |
| lxc [52] | Fix file existence oracle [CVE-2022- |
| | 47952] |
| | |
| macromoleculebuilder [53] | Fix build failure by adding build |
| | dependency on docbook-xsl |
| | |
| mariadb-10.5 [54] | New upstream stable release; revert |
| | upstream libmariadb API change |
| | |
| mono [55] | Remove desktop file |
| | |
| ncurses [56] | Guard against corrupt terminfo data |
| | [CVE-2022-29458]; fix tic crash on |
| | very long tc/use clauses |
| | |
| needrestart [57] | Fix warnings when using "-b" option |
| | |
| node-cookiejar [58] | Guard against maliciously-sized |
| | cookies [CVE-2022-25901] |
| | |
| node-webpack [59] | Avoid cross-realm object access |
| | [CVE-2023-28154] |
| | |
| nvidia-graphics- | New upstream release; security fixes |
| drivers [60] | [CVE-2023-0180 CVE-2023-0184 CVE-2023- |
| | 0185 CVE-2023-0187 CVE-2023-0188 |
| | CVE-2023-0189 CVE-2023-0190 CVE-2023- |
| | 0191 CVE-2023-0194 CVE-2023-0195 |
| | CVE-2023-0198 CVE-2023-0199] |
| | |
| nvidia-graphics-drivers- | New upstream release; security fixes |
| tesla-450 [61] | [CVE-2023-0180 CVE-2023-0184 CVE-2023- |
| | 0185 CVE-2023-0188 CVE-2023-0189 |
| | CVE-2023-0190 CVE-2023-0191 CVE-2023- |
| | 0194 CVE-2023-0195 CVE-2023-0198 |
| | CVE-2023-0199] |
| | |
| nvidia-graphics-drivers- | New upstream release; security fixes |
| tesla-470 [62] | [CVE-2023-0180 CVE-2023-0184 CVE-2023- |
| | 0185 CVE-2023-0187 CVE-2023-0188 |
| | CVE-2023-0189 CVE-2023-0190 CVE-2023- |
| | 0191 CVE-2023-0194 CVE-2023-0195 |
| | CVE-2023-0198 CVE-2023-0199] |
| | |
| nvidia-modprobe [63] | New upstream release |
| | |
| openvswitch [64] | Fix "openvswitch-switch update leaves |
| | interfaces down" |
| | |
| passenger [65] | Fix compatibility with more recent |
| | NodeJS versions |
| | |
| phyx [66] | Remove unnecessary build dependency on |
| | libatlas-cpp |
| | |
| postfix [67] | New upstream stable release |
| | |
| postgis [68] | Fix wrong Polar stereographic axis |
| | order |
| | |
| postgresql-13 [69] | New upstream stable release; fix |
| | client memory disclosure issue |
| | [CVE-2022-41862] |
| | |
| python-acme [70] | Fix version of created CSRs, to |
| | prevent problems with strictly RFC- |
| | complying implementations of the ACME |
| | API |
| | |
| ruby-aws-sdk-core [71] | Fix generation of version file |
| | |
| ruby-cfpropertylist [72] | Fix some functionality by dropping |
| | compatibility with Ruby 1.8 |
| | |
| shim [73] | New upstream release; new upstream |
| | stable release; enable NX support at |
| | build time; block Debian grub binaries |
| | with sbat < 4 |
| | |
| shim-helpers-amd64- | New upstream stable release; enable NX |
| signed [74] | support at build time; block Debian |
| | grub binaries with sbat < 4 |
| | |
| shim-helpers-arm64- | New upstream stable release; enable NX |
| signed [75] | support at build time; block Debian |
| | grub binaries with sbat < 4 |
| | |
| shim-helpers-i386- | New upstream stable release; enable NX |
| signed [76] | support at build time; block Debian |
| | grub binaries with sbat < 4 |
| | |
| shim-signed [77] | New upstream stable release; enable NX |
| | support at build time; block Debian |
| | grub binaries with sbat < 4 |
| | |
| snakeyaml [78] | Fix denial of service issues |
| | [CVE-2022-25857 CVE-2022-38749 |
| | CVE-2022-38750 CVE-2022-38751]; add |
| | documentation regarding security |
| | support / issues |
| | |
| spyder [79] | Fix duplication of code when saving |
| | |
| symfony [80] | Remove private headers before storing |
| | responses with HttpCache [CVE-2022- |
| | 24894]; remove CSRF tokens from |
| | storage on successful login [CVE-2022- |
| | 24895] |
| | |
| systemd [81] | Fix information leak issue [CVE-2022- |
| | 4415], denial of service issue |
| | [CVE-2022-3821]; ata_id: fix getting |
| | Response Code from SCSI Sense Data; |
| | logind: fix getting property |
| | OnExternalPower via D-Bus; fix crash |
| | in systemd-machined |
| | |
| tomcat9 [82] | Add OpenJDK 17 support to JDK |
| | detection |
| | |
| traceroute [83] | Interpret v4mapped-IPv6 addresses as |
| | IPv4 |
| | |
| tzdata [84] | Update included data |
| | |
| unbound [85] | Fix Non-Responsive Delegation Attack |
| | [CVE-2022-3204]; fix "ghost domain |
| | names" issue [CVE-2022-30698 |
| | CVE-2022-30699] |
| | |
| usb.ids [86] | Update included data |
| | |
| vagrant [87] | Add support for VirtualBox 7.0 |
| | |
| voms-api-java [88] | Fix build failures by disabling some |
| | non-working tests |
| | |
| w3m [89] | Fix out-of-bounds write issue |
| | [CVE-2022-38223] |
| | |
| x4d-icons [90] | Fix build failure with newer |
| | imagemagick versions |
| | |
| xapian-core [91] | Prevent database corruption on disk |
| | exhaustion |
| | |
| zfs-linux [92] | Add several stability improvements |
| | |
+----------------------------+----------------------------------------+
1: https://packages.debian.org/src:akregator
2: https://packages.debian.org/src:apache2
3: https://packages.debian.org/src:at-spi2-core
4: https://packages.debian.org/src:avahi
5: https://packages.debian.org/src:base-files
6: https://packages.debian.org/src:c-ares
7: https://packages.debian.org/src:clamav
8: https://packages.debian.org/src:command-not-found
9: https://packages.debian.org/src:containerd
10: https://packages.debian.org/src:crun
11: https://packages.debian.org/src:cwltool
12: https://packages.debian.org/src:debian-archive-keyring
13: https://packages.debian.org/src:debian-installer
14: https://packages.debian.org/src:debian-installer-netboot-images
15: https://packages.debian.org/src:debian-ports-archive-keyring
16: https://packages.debian.org/src:dpdk
17: https://packages.debian.org/src:duktape
18: https://packages.debian.org/src:e2tools
19: https://packages.debian.org/src:erlang
20: https://packages.debian.org/src:exiv2
21: https://packages.debian.org/src:flask-security
22: https://packages.debian.org/src:flatpak
23: https://packages.debian.org/src:galera-3
24: https://packages.debian.org/src:ghostscript
25: https://packages.debian.org/src:glibc
26: https://packages.debian.org/src:golang-github-containers-common
27: https://packages.debian.org/src:golang-github-containers-psgo
28: https://packages.debian.org/src:golang-github-containers-storage
29: https://packages.debian.org/src:golang-github-prometheus-exporter-toolkit
30: https://packages.debian.org/src:grep
31: https://packages.debian.org/src:gtk+3.0
32: https://packages.debian.org/src:guix
33: https://packages.debian.org/src:intel-microcode
34: https://packages.debian.org/src:isc-dhcp
35: https://packages.debian.org/src:jersey1
36: https://packages.debian.org/src:joblib
37: https://packages.debian.org/src:lemonldap-ng
38: https://packages.debian.org/src:libapache2-mod-auth-openidc
39: https://packages.debian.org/src:libapreq2
40: https://packages.debian.org/src:libdatetime-timezone-perl
41: https://packages.debian.org/src:libexplain
42: https://packages.debian.org/src:libgit2
43: https://packages.debian.org/src:libpod
44: https://packages.debian.org/src:libreoffice
45: https://packages.debian.org/src:libvirt
46: https://packages.debian.org/src:libxpm
47: https://packages.debian.org/src:libzen
48: https://packages.debian.org/src:linux
49: https://packages.debian.org/src:linux-signed-amd64
50: https://packages.debian.org/src:linux-signed-arm64
51: https://packages.debian.org/src:linux-signed-i386
52: https://packages.debian.org/src:lxc
53: https://packages.debian.org/src:macromoleculebuilder
54: https://packages.debian.org/src:mariadb-10.5
55: https://packages.debian.org/src:mono
56: https://packages.debian.org/src:ncurses
57: https://packages.debian.org/src:needrestart
58: https://packages.debian.org/src:node-cookiejar
59: https://packages.debian.org/src:node-webpack
60: https://packages.debian.org/src:nvidia-graphics-drivers
61: https://packages.debian.org/src:nvidia-graphics-drivers-tesla-450
62: https://packages.debian.org/src:nvidia-graphics-drivers-tesla-470
63: https://packages.debian.org/src:nvidia-modprobe
64: https://packages.debian.org/src:openvswitch
65: https://packages.debian.org/src:passenger
66: https://packages.debian.org/src:phyx
67: https://packages.debian.org/src:postfix
68: https://packages.debian.org/src:postgis
69: https://packages.debian.org/src:postgresql-13
70: https://packages.debian.org/src:python-acme
71: https://packages.debian.org/src:ruby-aws-sdk-core
72: https://packages.debian.org/src:ruby-cfpropertylist
73: https://packages.debian.org/src:shim
74: https://packages.debian.org/src:shim-helpers-amd64-signed
75: https://packages.debian.org/src:shim-helpers-arm64-signed
76: https://packages.debian.org/src:shim-helpers-i386-signed
77: https://packages.debian.org/src:shim-signed
78: https://packages.debian.org/src:snakeyaml
79: https://packages.debian.org/src:spyder
80: https://packages.debian.org/src:symfony
81: https://packages.debian.org/src:systemd
82: https://packages.debian.org/src:tomcat9
83: https://packages.debian.org/src:traceroute
84: https://packages.debian.org/src:tzdata
85: https://packages.debian.org/src:unbound
86: https://packages.debian.org/src:usb.ids
87: https://packages.debian.org/src:vagrant
88: https://packages.debian.org/src:voms-api-java
89: https://packages.debian.org/src:w3m
90: https://packages.debian.org/src:x4d-icons
91: https://packages.debian.org/src:xapian-core
92: https://packages.debian.org/src:zfs-linux
Security Updates
----------------
This revision adds the following security updates to the stable release.
The Security Team has already released an advisory for each of these
updates:
+----------------+---------------------------------+
| Advisory ID | Package |
+----------------+---------------------------------+
| DSA-5170 [93] | nodejs [94] |
| | |
| DSA-5237 [95] | firefox-esr [96] |
| | |
| DSA-5238 [97] | thunderbird [98] |
| | |
| DSA-5259 [99] | firefox-esr [100] |
| | |
| DSA-5262 [101] | thunderbird [102] |
| | |
| DSA-5282 [103] | firefox-esr [104] |
| | |
| DSA-5284 [105] | thunderbird [106] |
| | |
| DSA-5300 [107] | pngcheck [108] |
| | |
| DSA-5301 [109] | firefox-esr [110] |
| | |
| DSA-5302 [111] | chromium [112] |
| | |
| DSA-5303 [113] | thunderbird [114] |
| | |
| DSA-5304 [115] | xorg-server [116] |
| | |
| DSA-5305 [117] | libksba [118] |
| | |
| DSA-5306 [119] | gerbv [120] |
| | |
| DSA-5307 [121] | libcommons-net-java [122] |
| | |
| DSA-5308 [123] | webkit2gtk [124] |
| | |
| DSA-5309 [125] | wpewebkit [126] |
| | |
| DSA-5310 [127] | ruby-image-processing [128] |
| | |
| DSA-5311 [129] | trafficserver [130] |
| | |
| DSA-5312 [131] | libjettison-java [132] |
| | |
| DSA-5313 [133] | hsqldb [134] |
| | |
| DSA-5314 [135] | emacs [136] |
| | |
| DSA-5315 [137] | libxstream-java [138] |
| | |
| DSA-5316 [139] | netty [140] |
| | |
| DSA-5317 [141] | chromium [142] |
| | |
| DSA-5318 [143] | lava [144] |
| | |
| DSA-5319 [145] | openvswitch [146] |
| | |
| DSA-5320 [147] | tor [148] |
| | |
| DSA-5321 [149] | sudo [150] |
| | |
| DSA-5322 [151] | firefox-esr [152] |
| | |
| DSA-5323 [153] | libitext5-java [154] |
| | |
| DSA-5324 [155] | linux-signed-amd64 [156] |
| | |
| DSA-5324 [157] | linux-signed-arm64 [158] |
| | |
| DSA-5324 [159] | linux-signed-i386 [160] |
| | |
| DSA-5324 [161] | linux [162] |
| | |
| DSA-5325 [163] | spip [164] |
| | |
| DSA-5326 [165] | nodejs [166] |
| | |
| DSA-5327 [167] | swift [168] |
| | |
| DSA-5328 [169] | chromium [170] |
| | |
| DSA-5329 [171] | bind9 [172] |
| | |
| DSA-5330 [173] | curl [174] |
| | |
| DSA-5331 [175] | openjdk-11 [176] |
| | |
| DSA-5332 [177] | git [178] |
| | |
| DSA-5333 [179] | tiff [180] |
| | |
| DSA-5334 [181] | varnish [182] |
| | |
| DSA-5335 [183] | openjdk-17 [184] |
| | |
| DSA-5336 [185] | glance [186] |
| | |
| DSA-5337 [187] | nova [188] |
| | |
| DSA-5338 [189] | cinder [190] |
| | |
| DSA-5339 [191] | libhtml-stripscripts-perl [192] |
| | |
| DSA-5340 [193] | webkit2gtk [194] |
| | |
| DSA-5341 [195] | wpewebkit [196] |
| | |
| DSA-5342 [197] | xorg-server [198] |
| | |
| DSA-5343 [199] | openssl [200] |
| | |
| DSA-5344 [201] | heimdal [202] |
| | |
| DSA-5345 [203] | chromium [204] |
| | |
| DSA-5346 [205] | libde265 [206] |
| | |
| DSA-5347 [207] | imagemagick [208] |
| | |
| DSA-5348 [209] | haproxy [210] |
| | |
| DSA-5349 [211] | gnutls28 [212] |
| | |
| DSA-5350 [213] | firefox-esr [214] |
| | |
| DSA-5351 [215] | webkit2gtk [216] |
| | |
| DSA-5352 [217] | wpewebkit [218] |
| | |
| DSA-5353 [219] | nss [220] |
| | |
| DSA-5355 [221] | thunderbird [222] |
| | |
| DSA-5356 [223] | sox [224] |
| | |
| DSA-5357 [225] | git [226] |
| | |
| DSA-5358 [227] | asterisk [228] |
| | |
| DSA-5359 [229] | chromium [230] |
| | |
| DSA-5361 [231] | tiff [232] |
| | |
| DSA-5362 [233] | frr [234] |
| | |
| DSA-5363 [235] | php7.4 [236] |
| | |
| DSA-5364 [237] | apr-util [238] |
| | |
| DSA-5365 [239] | curl [240] |
| | |
| DSA-5366 [241] | multipath-tools [242] |
| | |
| DSA-5367 [243] | spip [244] |
| | |
| DSA-5368 [245] | libreswan [246] |
| | |
| DSA-5369 [247] | syslog-ng [248] |
| | |
| DSA-5370 [249] | apr [250] |
| | |
| DSA-5371 [251] | chromium [252] |
| | |
| DSA-5372 [253] | rails [254] |
| | |
| DSA-5373 [255] | node-sqlite3 [256] |
| | |
| DSA-5374 [257] | firefox-esr [258] |
| | |
| DSA-5375 [259] | thunderbird [260] |
| | |
| DSA-5376 [261] | apache2 [262] |
| | |
| DSA-5377 [263] | chromium [264] |
| | |
| DSA-5378 [265] | xen [266] |
| | |
| DSA-5379 [267] | dino-im [268] |
| | |
| DSA-5380 [269] | xorg-server [270] |
| | |
| DSA-5381 [271] | tomcat9 [272] |
| | |
| DSA-5382 [273] | cairosvg [274] |
| | |
| DSA-5383 [275] | ghostscript [276] |
| | |
| DSA-5384 [277] | openimageio [278] |
| | |
| DSA-5385 [279] | firefox-esr [280] |
| | |
| DSA-5386 [281] | chromium [282] |
| | |
| DSA-5387 [283] | openvswitch [284] |
| | |
| DSA-5388 [285] | haproxy [286] |
| | |
| DSA-5389 [287] | rails [288] |
| | |
| DSA-5390 [289] | chromium [290] |
| | |
| DSA-5391 [291] | libxml2 [292] |
| | |
| DSA-5392 [293] | thunderbird [294] |
| | |
| DSA-5393 [295] | chromium [296] |
| | |
+----------------+---------------------------------+
93: https://www.debian.org/security/2022/dsa-5170
94: https://packages.debian.org/src:nodejs
95: https://www.debian.org/security/2022/dsa-5237
96: https://packages.debian.org/src:firefox-esr
97: https://www.debian.org/security/2022/dsa-5238
98: https://packages.debian.org/src:thunderbird
99: https://www.debian.org/security/2022/dsa-5259
100: https://packages.debian.org/src:firefox-esr
101: https://www.debian.org/security/2022/dsa-5262
102: https://packages.debian.org/src:thunderbird
103: https://www.debian.org/security/2022/dsa-5282
104: https://packages.debian.org/src:firefox-esr
105: https://www.debian.org/security/2022/dsa-5284
106: https://packages.debian.org/src:thunderbird
107: https://www.debian.org/security/2022/dsa-5300
108: https://packages.debian.org/src:pngcheck
109: https://www.debian.org/security/2022/dsa-5301
110: https://packages.debian.org/src:firefox-esr
111: https://www.debian.org/security/2022/dsa-5302
112: https://packages.debian.org/src:chromium
113: https://www.debian.org/security/2022/dsa-5303
114: https://packages.debian.org/src:thunderbird
115: https://www.debian.org/security/2022/dsa-5304
116: https://packages.debian.org/src:xorg-server
117: https://www.debian.org/security/2022/dsa-5305
118: https://packages.debian.org/src:libksba
119: https://www.debian.org/security/2022/dsa-5306
120: https://packages.debian.org/src:gerbv
121: https://www.debian.org/security/2022/dsa-5307
122: https://packages.debian.org/src:libcommons-net-java
123: https://www.debian.org/security/2022/dsa-5308
124: https://packages.debian.org/src:webkit2gtk
125: https://www.debian.org/security/2022/dsa-5309
126: https://packages.debian.org/src:wpewebkit
127: https://www.debian.org/security/2022/dsa-5310
128: https://packages.debian.org/src:ruby-image-processing
129: https://www.debian.org/security/2023/dsa-5311
130: https://packages.debian.org/src:trafficserver
131: https://www.debian.org/security/2023/dsa-5312
132: https://packages.debian.org/src:libjettison-java
133: https://www.debian.org/security/2023/dsa-5313
134: https://packages.debian.org/src:hsqldb
135: https://www.debian.org/security/2023/dsa-5314
136: https://packages.debian.org/src:emacs
137: https://www.debian.org/security/2023/dsa-5315
138: https://packages.debian.org/src:libxstream-java
139: https://www.debian.org/security/2023/dsa-5316
140: https://packages.debian.org/src:netty
141: https://www.debian.org/security/2023/dsa-5317
142: https://packages.debian.org/src:chromium
143: https://www.debian.org/security/2023/dsa-5318
144: https://packages.debian.org/src:lava
145: https://www.debian.org/security/2023/dsa-5319
146: https://packages.debian.org/src:openvswitch
147: https://www.debian.org/security/2023/dsa-5320
148: https://packages.debian.org/src:tor
149: https://www.debian.org/security/2023/dsa-5321
150: https://packages.debian.org/src:sudo
151: https://www.debian.org/security/2023/dsa-5322
152: https://packages.debian.org/src:firefox-esr
153: https://www.debian.org/security/2023/dsa-5323
154: https://packages.debian.org/src:libitext5-java
155: https://www.debian.org/security/2023/dsa-5324
156: https://packages.debian.org/src:linux-signed-amd64
157: https://www.debian.org/security/2023/dsa-5324
158: https://packages.debian.org/src:linux-signed-arm64
159: https://www.debian.org/security/2023/dsa-5324
160: https://packages.debian.org/src:linux-signed-i386
161: https://www.debian.org/security/2023/dsa-5324
162: https://packages.debian.org/src:linux
163: https://www.debian.org/security/2023/dsa-5325
164: https://packages.debian.org/src:spip
165: https://www.debian.org/security/2023/dsa-5326
166: https://packages.debian.org/src:nodejs
167: https://www.debian.org/security/2023/dsa-5327
168: https://packages.debian.org/src:swift
169: https://www.debian.org/security/2023/dsa-5328
170: https://packages.debian.org/src:chromium
171: https://www.debian.org/security/2023/dsa-5329
172: https://packages.debian.org/src:bind9
173: https://www.debian.org/security/2023/dsa-5330
174: https://packages.debian.org/src:curl
175: https://www.debian.org/security/2023/dsa-5331
176: https://packages.debian.org/src:openjdk-11
177: https://www.debian.org/security/2023/dsa-5332
178: https://packages.debian.org/src:git
179: https://www.debian.org/security/2023/dsa-5333
180: https://packages.debian.org/src:tiff
181: https://www.debian.org/security/2023/dsa-5334
182: https://packages.debian.org/src:varnish
183: https://www.debian.org/security/2023/dsa-5335
184: https://packages.debian.org/src:openjdk-17
185: https://www.debian.org/security/2023/dsa-5336
186: https://packages.debian.org/src:glance
187: https://www.debian.org/security/2023/dsa-5337
188: https://packages.debian.org/src:nova
189: https://www.debian.org/security/2023/dsa-5338
190: https://packages.debian.org/src:cinder
191: https://www.debian.org/security/2023/dsa-5339
192: https://packages.debian.org/src:libhtml-stripscripts-perl
193: https://www.debian.org/security/2023/dsa-5340
194: https://packages.debian.org/src:webkit2gtk
195: https://www.debian.org/security/2023/dsa-5341
196: https://packages.debian.org/src:wpewebkit
197: https://www.debian.org/security/2023/dsa-5342
198: https://packages.debian.org/src:xorg-server
199: https://www.debian.org/security/2023/dsa-5343
200: https://packages.debian.org/src:openssl
201: https://www.debian.org/security/2023/dsa-5344
202: https://packages.debian.org/src:heimdal
203: https://www.debian.org/security/2023/dsa-5345
204: https://packages.debian.org/src:chromium
205: https://www.debian.org/security/2023/dsa-5346
206: https://packages.debian.org/src:libde265
207: https://www.debian.org/security/2023/dsa-5347
208: https://packages.debian.org/src:imagemagick
209: https://www.debian.org/security/2023/dsa-5348
210: https://packages.debian.org/src:haproxy
211: https://www.debian.org/security/2023/dsa-5349
212: https://packages.debian.org/src:gnutls28
213: https://www.debian.org/security/2023/dsa-5350
214: https://packages.debian.org/src:firefox-esr
215: https://www.debian.org/security/2023/dsa-5351
216: https://packages.debian.org/src:webkit2gtk
217: https://www.debian.org/security/2023/dsa-5352
218: https://packages.debian.org/src:wpewebkit
219: https://www.debian.org/security/2023/dsa-5353
220: https://packages.debian.org/src:nss
221: https://www.debian.org/security/2023/dsa-5355
222: https://packages.debian.org/src:thunderbird
223: https://www.debian.org/security/2023/dsa-5356
224: https://packages.debian.org/src:sox
225: https://www.debian.org/security/2023/dsa-5357
226: https://packages.debian.org/src:git
227: https://www.debian.org/security/2023/dsa-5358
228: https://packages.debian.org/src:asterisk
229: https://www.debian.org/security/2023/dsa-5359
230: https://packages.debian.org/src:chromium
231: https://www.debian.org/security/2023/dsa-5361
232: https://packages.debian.org/src:tiff
233: https://www.debian.org/security/2023/dsa-5362
234: https://packages.debian.org/src:frr
235: https://www.debian.org/security/2023/dsa-5363
236: https://packages.debian.org/src:php7.4
237: https://www.debian.org/security/2023/dsa-5364
238: https://packages.debian.org/src:apr-util
239: https://www.debian.org/security/2023/dsa-5365
240: https://packages.debian.org/src:curl
241: https://www.debian.org/security/2023/dsa-5366
242: https://packages.debian.org/src:multipath-tools
243: https://www.debian.org/security/2023/dsa-5367
244: https://packages.debian.org/src:spip
245: https://www.debian.org/security/2023/dsa-5368
246: https://packages.debian.org/src:libreswan
247: https://www.debian.org/security/2023/dsa-5369
248: https://packages.debian.org/src:syslog-ng
249: https://www.debian.org/security/2023/dsa-5370
250: https://packages.debian.org/src:apr
251: https://www.debian.org/security/2023/dsa-5371
252: https://packages.debian.org/src:chromium
253: https://www.debian.org/security/2023/dsa-5372
254: https://packages.debian.org/src:rails
255: https://www.debian.org/security/2023/dsa-5373
256: https://packages.debian.org/src:node-sqlite3
257: https://www.debian.org/security/2023/dsa-5374
258: https://packages.debian.org/src:firefox-esr
259: https://www.debian.org/security/2023/dsa-5375
260: https://packages.debian.org/src:thunderbird
261: https://www.debian.org/security/2023/dsa-5376
262: https://packages.debian.org/src:apache2
263: https://www.debian.org/security/2023/dsa-5377
264: https://packages.debian.org/src:chromium
265: https://www.debian.org/security/2023/dsa-5378
266: https://packages.debian.org/src:xen
267: https://www.debian.org/security/2023/dsa-5379
268: https://packages.debian.org/src:dino-im
269: https://www.debian.org/security/2023/dsa-5380
270: https://packages.debian.org/src:xorg-server
271: https://www.debian.org/security/2023/dsa-5381
272: https://packages.debian.org/src:tomcat9
273: https://www.debian.org/security/2023/dsa-5382
274: https://packages.debian.org/src:cairosvg
275: https://www.debian.org/security/2023/dsa-5383
276: https://packages.debian.org/src:ghostscript
277: https://www.debian.org/security/2023/dsa-5384
278: https://packages.debian.org/src:openimageio
279: https://www.debian.org/security/2023/dsa-5385
280: https://packages.debian.org/src:firefox-esr
281: https://www.debian.org/security/2023/dsa-5386
282: https://packages.debian.org/src:chromium
283: https://www.debian.org/security/2023/dsa-5387
284: https://packages.debian.org/src:openvswitch
285: https://www.debian.org/security/2023/dsa-5388
286: https://packages.debian.org/src:haproxy
287: https://www.debian.org/security/2023/dsa-5389
288: https://packages.debian.org/src:rails
289: https://www.debian.org/security/2023/dsa-5390
290: https://packages.debian.org/src:chromium
291: https://www.debian.org/security/2023/dsa-5391
292: https://packages.debian.org/src:libxml2
293: https://www.debian.org/security/2023/dsa-5392
294: https://packages.debian.org/src:thunderbird
295: https://www.debian.org/security/2023/dsa-5393
296: https://packages.debian.org/src:chromium
Removed packages
----------------
The following packages were removed due to circumstances beyond our
control:
+-------------------------+--------------------------------------------+
| Package | Reason |
+-------------------------+--------------------------------------------+
| bind-dyndb-ldap [297] | Broken with newer bind9 versions; |
| | unsupportable in stable |
| | |
| matrix-mirage [298] | Depends on to-be-removed python-matrix-nio |
| | |
| pantalaimon [299] | Depends on to-be-removed python-matrix-nio |
| | |
| python-matrix-nio [300] | Security issues; doesn't work with current |
| | Matrix servers |
| | |
| weechat-matrix [301] | Depends on to-be-removed python-matrix-nio |
| | |
+-------------------------+--------------------------------------------+
297: https://packages.debian.org/src:bind-dyndb-ldap
298: https://packages.debian.org/src:matrix-mirage
299: https://packages.debian.org/src:pantalaimon
300: https://packages.debian.org/src:python-matrix-nio
301: https://packages.debian.org/src:weechat-matrix
Debian Installer
----------------
The installer has been updated to include the fixes incorporated into
stable by the point release.
URLs
----
The complete lists of packages that have changed with this revision:
https://deb.debian.org/debian/dists/bullseye/ChangeLog
The current stable distribution:
https://deb.debian.org/debian/dists/stable/
Proposed updates to the stable distribution:
https://deb.debian.org/debian/dists/proposed-updates
stable distribution information (release notes, errata etc.):
https://www.debian.org/releases/stable/
Security announcements and information:
https://www.debian.org/security/
About Debian
------------
The Debian Project is an association of Free Software developers who
volunteer their time and effort in order to produce the completely free
operating system Debian.
Contact Information
-------------------
For further information, please visit the Debian web pages at
https://www.debian.org/, send mail to <press@debian.org>, or contact the
stable release team at <debian-release@lists.debian.org>.
Attachment:
signature.asc
Description: PGP signature