------------------------------------------------------------------------ The Debian Project https://www.debian.org/ Updated Debian 11: 11.7 released press@debian.org April 29th, 2023 https://www.debian.org/News/2023/20230429 ------------------------------------------------------------------------ The Debian project is pleased to announce the seventh update of its stable distribution Debian 11 (codename "bullseye"). This point release mainly adds corrections for security issues, along with a few adjustments for serious problems. Security advisories have already been published separately and are referenced where available. Please note that the point release does not constitute a new version of Debian 11 but only updates some of the packages included. There is no need to throw away old "bullseye" media. After installation, packages can be upgraded to the current versions using an up-to-date Debian mirror. Those who frequently install updates from security.debian.org won't have to update many packages, and most such updates are included in the point release. New installation images will be available soon at the regular locations. Upgrading an existing installation to this revision can be achieved by pointing the package management system at one of Debian's many HTTP mirrors. A comprehensive list of mirrors is available at: https://www.debian.org/mirror/list Miscellaneous Bugfixes ---------------------- This stable update adds a few important corrections to the following packages: +----------------------------+----------------------------------------+ | Package | Reason | +----------------------------+----------------------------------------+ | akregator [1] | Fix validity checks, including fixing | | | deletion of feeds and folders | | | | | apache2 [2] | Don't automatically enable apache2- | | | doc.conf; fix regressions in http2 and | | | mod_rewrite introduced in 2.4.56 | | | | | at-spi2-core [3] | Set stop timeout to 5 seconds, so as | | | not to needlessly block system | | | shutdowns | | | | | avahi [4] | Fix local denial of service issue | | | [CVE-2021-3468] | | | | | base-files [5] | Update for the 11.7 point release | | | | | c-ares [6] | Prevent stack overflow and denial of | | | service [CVE-2022-4904] | | | | | clamav [7] | New upstream stable release; fix | | | possible remote code execution issue | | | in the HFS+ file parser [CVE-2023- | | | 20032], possible information leak in | | | the DMG file parser [CVE-2023-20052] | | | | | command-not-found [8] | Add new non-free-firmware component, | | | fixing upgrades to bookworm | | | | | containerd [9] | Fix denial of service issue [CVE-2023- | | | 25153]; fix possible privilege | | | escalation via incorrect setup of | | | supplementary groups [CVE-2023-25173] | | | | | crun [10] | Fix capability escalation issue due to | | | containers being incorrectly started | | | with non-empty default permissions | | | [CVE-2022-27650] | | | | | cwltool [11] | Add missing dependency on python3- | | | distutils | | | | | debian-archive- | Add bookworm keys; move stretch keys | | keyring [12] | to the removed keyring | | | | | debian-installer [13] | Increase Linux kernel ABI to 5.10.0- | | | 22; rebuild against proposed-updates | | | | | debian-installer-netboot- | Rebuild against proposed-updates | | images [14] | | | | | | debian-ports-archive- | Extend the 2023 signing key's | | keyring [15] | expiration by one year; add 2024 | | | signing key; move 2022 signing key to | | | the removed keyring | | | | | dpdk [16] | New upstream stable release | | | | | duktape [17] | Fix crash issue [CVE-2021-46322] | | | | | e2tools [18] | Fix build failure by adding build | | | dependency on e2fsprogs | | | | | erlang [19] | Fix client authentication bypass issue | | | [CVE-2022-37026]; use -O1 optimization | | | for armel because -O2 makes erl | | | segfault on certain platforms, e.g. | | | Marvell | | | | | exiv2 [20] | Security fixes [CVE-2021-29458 | | | CVE-2021-29463 CVE-2021-29464 | | | CVE-2021-29470 CVE-2021-29473 | | | CVE-2021-29623 CVE-2021-32815 | | | CVE-2021-34334 CVE-2021-34335 | | | CVE-2021-3482 CVE-2021-37615 CVE-2021- | | | 37616 CVE-2021-37618 CVE-2021-37619 | | | CVE-2021-37620 CVE-2021-37621 | | | CVE-2021-37622 CVE-2021-37623] | | | | | flask-security [21] | Fix open redirect vulnerability | | | [CVE-2021-23385] | | | | | flatpak [22] | New upstream stable release; escape | | | special characters when displaying | | | permissions and metadata [CVE-2023- | | | 28101]; don't allow copy/paste via the | | | TIOCLINUX ioctl when running in a | | | Linux virtual console [CVE-2023-28100] | | | | | galera-3 [23] | New upstream stable release | | | | | ghostscript [24] | Fix path for PostScript helper file in | | | ps2epsi | | | | | glibc [25] | Fix memory leak in printf-family | | | functions with long multibyte strings; | | | fix crash in printf-family due to | | | width/precision-dependent allocations; | | | fix segfault in printf handling | | | thousands separator; fix overflow in | | | the AVX2 implementation of wcsnlen | | | when crossing pages | | | | | golang-github-containers- | Fix parsing of | | common [26] | DBUS_SESSION_BUS_ADDRESS | | | | | golang-github-containers- | Do not enter the process user | | psgo [27] | namespace [CVE-2022-1227] | | | | | golang-github-containers- | Make previously internal functions | | storage [28] | publicly accessible, required to allow | | | fixing CVE-2022-1227 in other packages | | | | | golang-github-prometheus- | Patch tests to avoid race condition; | | exporter-toolkit [29] | fix authentication cache poisoning | | | issue [CVE-2022-46146] | | | | | grep [30] | Fix incorrect matching when the last | | | of multiple patterns includes a | | | backreference | | | | | gtk+3.0 [31] | Fix Wayland + EGL on GLES-only | | | platforms | | | | | guix [32] | Fix build failure due to expired keys | | | used in test suite | | | | | intel-microcode [33] | New upstream bug-fix release | | | | | isc-dhcp [34] | Fix IPv6 address lifetime handling | | | | | jersey1 [35] | Fix build failure with libjettison- | | | java 1.5.3 | | | | | joblib [36] | Fix arbitrary code execution issue | | | [CVE-2022-21797] | | | | | lemonldap-ng [37] | Fix URL validation bypass issue; fix | | | 2FA issue when using AuthBasic handler | | | [CVE-2023-28862] | | | | | libapache2-mod-auth- | Fix open redirect issue [CVE-2022- | | openidc [38] | 23527] | | | | | libapreq2 [39] | Fix buffer overflow issue [CVE-2022- | | | 22728] | | | | | libdatetime-timezone- | Update included data | | perl [40] | | | | | | libexplain [41] | Enhance compatibility with newer | | | kernel versions - Linux 5.11 no longer | | | has if_frad.h, termiox removed since | | | kernel 5.12 | | | | | libgit2 [42] | Enable SSH key verification by default | | | [CVE-2023-22742] | | | | | libpod [43] | Fix privilege escalation issue | | | [CVE-2022-1227]; fix capability | | | escalation issue due to containers | | | being incorrectly started with non- | | | empty default permissions [CVE-2022- | | | 27649]; fix parsing of | | | DBUS_SESSION_BUS_ADDRESS | | | | | libreoffice [44] | Change Croatia's default currency to | | | Euro; avoid empty -Djava.class.path= | | | [CVE-2022-38745] | | | | | libvirt [45] | Fix container reboot-related issues; | | | fix test failures when combined with | | | newer Xen versions | | | | | libxpm [46] | Fix infinite loop issues [CVE-2022- | | | 44617 CVE-2022-46285]; fix double free | | | issue in error handling code; fix | | | "compression commands depend on | | | PATH" [CVE-2022-4883] | | | | | libzen [47] | Fix null pointer dereference issue | | | [CVE-2020-36646] | | | | | linux [48] | New upstream stable release; increase | | | ABI to 22; [rt] update to 5.10.176- | | | rt86 | | | | | linux-signed-amd64 [49] | New upstream stable release; increase | | | ABI to 22; [rt] update to 5.10.176- | | | rt86 | | | | | linux-signed-arm64 [50] | New upstream stable release; increase | | | ABI to 22; [rt] update to 5.10.176- | | | rt86 | | | | | linux-signed-i386 [51] | New upstream stable release; increase | | | ABI to 22; [rt] update to 5.10.176- | | | rt86 | | | | | lxc [52] | Fix file existence oracle [CVE-2022- | | | 47952] | | | | | macromoleculebuilder [53] | Fix build failure by adding build | | | dependency on docbook-xsl | | | | | mariadb-10.5 [54] | New upstream stable release; revert | | | upstream libmariadb API change | | | | | mono [55] | Remove desktop file | | | | | ncurses [56] | Guard against corrupt terminfo data | | | [CVE-2022-29458]; fix tic crash on | | | very long tc/use clauses | | | | | needrestart [57] | Fix warnings when using "-b" option | | | | | node-cookiejar [58] | Guard against maliciously-sized | | | cookies [CVE-2022-25901] | | | | | node-webpack [59] | Avoid cross-realm object access | | | [CVE-2023-28154] | | | | | nvidia-graphics- | New upstream release; security fixes | | drivers [60] | [CVE-2023-0180 CVE-2023-0184 CVE-2023- | | | 0185 CVE-2023-0187 CVE-2023-0188 | | | CVE-2023-0189 CVE-2023-0190 CVE-2023- | | | 0191 CVE-2023-0194 CVE-2023-0195 | | | CVE-2023-0198 CVE-2023-0199] | | | | | nvidia-graphics-drivers- | New upstream release; security fixes | | tesla-450 [61] | [CVE-2023-0180 CVE-2023-0184 CVE-2023- | | | 0185 CVE-2023-0188 CVE-2023-0189 | | | CVE-2023-0190 CVE-2023-0191 CVE-2023- | | | 0194 CVE-2023-0195 CVE-2023-0198 | | | CVE-2023-0199] | | | | | nvidia-graphics-drivers- | New upstream release; security fixes | | tesla-470 [62] | [CVE-2023-0180 CVE-2023-0184 CVE-2023- | | | 0185 CVE-2023-0187 CVE-2023-0188 | | | CVE-2023-0189 CVE-2023-0190 CVE-2023- | | | 0191 CVE-2023-0194 CVE-2023-0195 | | | CVE-2023-0198 CVE-2023-0199] | | | | | nvidia-modprobe [63] | New upstream release | | | | | openvswitch [64] | Fix "openvswitch-switch update leaves | | | interfaces down" | | | | | passenger [65] | Fix compatibility with more recent | | | NodeJS versions | | | | | phyx [66] | Remove unnecessary build dependency on | | | libatlas-cpp | | | | | postfix [67] | New upstream stable release | | | | | postgis [68] | Fix wrong Polar stereographic axis | | | order | | | | | postgresql-13 [69] | New upstream stable release; fix | | | client memory disclosure issue | | | [CVE-2022-41862] | | | | | python-acme [70] | Fix version of created CSRs, to | | | prevent problems with strictly RFC- | | | complying implementations of the ACME | | | API | | | | | ruby-aws-sdk-core [71] | Fix generation of version file | | | | | ruby-cfpropertylist [72] | Fix some functionality by dropping | | | compatibility with Ruby 1.8 | | | | | shim [73] | New upstream release; new upstream | | | stable release; enable NX support at | | | build time; block Debian grub binaries | | | with sbat < 4 | | | | | shim-helpers-amd64- | New upstream stable release; enable NX | | signed [74] | support at build time; block Debian | | | grub binaries with sbat < 4 | | | | | shim-helpers-arm64- | New upstream stable release; enable NX | | signed [75] | support at build time; block Debian | | | grub binaries with sbat < 4 | | | | | shim-helpers-i386- | New upstream stable release; enable NX | | signed [76] | support at build time; block Debian | | | grub binaries with sbat < 4 | | | | | shim-signed [77] | New upstream stable release; enable NX | | | support at build time; block Debian | | | grub binaries with sbat < 4 | | | | | snakeyaml [78] | Fix denial of service issues | | | [CVE-2022-25857 CVE-2022-38749 | | | CVE-2022-38750 CVE-2022-38751]; add | | | documentation regarding security | | | support / issues | | | | | spyder [79] | Fix duplication of code when saving | | | | | symfony [80] | Remove private headers before storing | | | responses with HttpCache [CVE-2022- | | | 24894]; remove CSRF tokens from | | | storage on successful login [CVE-2022- | | | 24895] | | | | | systemd [81] | Fix information leak issue [CVE-2022- | | | 4415], denial of service issue | | | [CVE-2022-3821]; ata_id: fix getting | | | Response Code from SCSI Sense Data; | | | logind: fix getting property | | | OnExternalPower via D-Bus; fix crash | | | in systemd-machined | | | | | tomcat9 [82] | Add OpenJDK 17 support to JDK | | | detection | | | | | traceroute [83] | Interpret v4mapped-IPv6 addresses as | | | IPv4 | | | | | tzdata [84] | Update included data | | | | | unbound [85] | Fix Non-Responsive Delegation Attack | | | [CVE-2022-3204]; fix "ghost domain | | | names" issue [CVE-2022-30698 | | | CVE-2022-30699] | | | | | usb.ids [86] | Update included data | | | | | vagrant [87] | Add support for VirtualBox 7.0 | | | | | voms-api-java [88] | Fix build failures by disabling some | | | non-working tests | | | | | w3m [89] | Fix out-of-bounds write issue | | | [CVE-2022-38223] | | | | | x4d-icons [90] | Fix build failure with newer | | | imagemagick versions | | | | | xapian-core [91] | Prevent database corruption on disk | | | exhaustion | | | | | zfs-linux [92] | Add several stability improvements | | | | +----------------------------+----------------------------------------+ 1: https://packages.debian.org/src:akregator 2: https://packages.debian.org/src:apache2 3: https://packages.debian.org/src:at-spi2-core 4: https://packages.debian.org/src:avahi 5: https://packages.debian.org/src:base-files 6: https://packages.debian.org/src:c-ares 7: https://packages.debian.org/src:clamav 8: https://packages.debian.org/src:command-not-found 9: https://packages.debian.org/src:containerd 10: https://packages.debian.org/src:crun 11: https://packages.debian.org/src:cwltool 12: https://packages.debian.org/src:debian-archive-keyring 13: https://packages.debian.org/src:debian-installer 14: https://packages.debian.org/src:debian-installer-netboot-images 15: https://packages.debian.org/src:debian-ports-archive-keyring 16: https://packages.debian.org/src:dpdk 17: https://packages.debian.org/src:duktape 18: https://packages.debian.org/src:e2tools 19: https://packages.debian.org/src:erlang 20: https://packages.debian.org/src:exiv2 21: https://packages.debian.org/src:flask-security 22: https://packages.debian.org/src:flatpak 23: https://packages.debian.org/src:galera-3 24: https://packages.debian.org/src:ghostscript 25: https://packages.debian.org/src:glibc 26: https://packages.debian.org/src:golang-github-containers-common 27: https://packages.debian.org/src:golang-github-containers-psgo 28: https://packages.debian.org/src:golang-github-containers-storage 29: https://packages.debian.org/src:golang-github-prometheus-exporter-toolkit 30: https://packages.debian.org/src:grep 31: https://packages.debian.org/src:gtk+3.0 32: https://packages.debian.org/src:guix 33: https://packages.debian.org/src:intel-microcode 34: https://packages.debian.org/src:isc-dhcp 35: https://packages.debian.org/src:jersey1 36: https://packages.debian.org/src:joblib 37: https://packages.debian.org/src:lemonldap-ng 38: https://packages.debian.org/src:libapache2-mod-auth-openidc 39: https://packages.debian.org/src:libapreq2 40: https://packages.debian.org/src:libdatetime-timezone-perl 41: https://packages.debian.org/src:libexplain 42: https://packages.debian.org/src:libgit2 43: https://packages.debian.org/src:libpod 44: https://packages.debian.org/src:libreoffice 45: https://packages.debian.org/src:libvirt 46: https://packages.debian.org/src:libxpm 47: https://packages.debian.org/src:libzen 48: https://packages.debian.org/src:linux 49: https://packages.debian.org/src:linux-signed-amd64 50: https://packages.debian.org/src:linux-signed-arm64 51: https://packages.debian.org/src:linux-signed-i386 52: https://packages.debian.org/src:lxc 53: https://packages.debian.org/src:macromoleculebuilder 54: https://packages.debian.org/src:mariadb-10.5 55: https://packages.debian.org/src:mono 56: https://packages.debian.org/src:ncurses 57: https://packages.debian.org/src:needrestart 58: https://packages.debian.org/src:node-cookiejar 59: https://packages.debian.org/src:node-webpack 60: https://packages.debian.org/src:nvidia-graphics-drivers 61: https://packages.debian.org/src:nvidia-graphics-drivers-tesla-450 62: https://packages.debian.org/src:nvidia-graphics-drivers-tesla-470 63: https://packages.debian.org/src:nvidia-modprobe 64: https://packages.debian.org/src:openvswitch 65: https://packages.debian.org/src:passenger 66: https://packages.debian.org/src:phyx 67: https://packages.debian.org/src:postfix 68: https://packages.debian.org/src:postgis 69: https://packages.debian.org/src:postgresql-13 70: https://packages.debian.org/src:python-acme 71: https://packages.debian.org/src:ruby-aws-sdk-core 72: https://packages.debian.org/src:ruby-cfpropertylist 73: https://packages.debian.org/src:shim 74: https://packages.debian.org/src:shim-helpers-amd64-signed 75: https://packages.debian.org/src:shim-helpers-arm64-signed 76: https://packages.debian.org/src:shim-helpers-i386-signed 77: https://packages.debian.org/src:shim-signed 78: https://packages.debian.org/src:snakeyaml 79: https://packages.debian.org/src:spyder 80: https://packages.debian.org/src:symfony 81: https://packages.debian.org/src:systemd 82: https://packages.debian.org/src:tomcat9 83: https://packages.debian.org/src:traceroute 84: https://packages.debian.org/src:tzdata 85: https://packages.debian.org/src:unbound 86: https://packages.debian.org/src:usb.ids 87: https://packages.debian.org/src:vagrant 88: https://packages.debian.org/src:voms-api-java 89: https://packages.debian.org/src:w3m 90: https://packages.debian.org/src:x4d-icons 91: https://packages.debian.org/src:xapian-core 92: https://packages.debian.org/src:zfs-linux Security Updates ---------------- This revision adds the following security updates to the stable release. The Security Team has already released an advisory for each of these updates: +----------------+---------------------------------+ | Advisory ID | Package | +----------------+---------------------------------+ | DSA-5170 [93] | nodejs [94] | | | | | DSA-5237 [95] | firefox-esr [96] | | | | | DSA-5238 [97] | thunderbird [98] | | | | | DSA-5259 [99] | firefox-esr [100] | | | | | DSA-5262 [101] | thunderbird [102] | | | | | DSA-5282 [103] | firefox-esr [104] | | | | | DSA-5284 [105] | thunderbird [106] | | | | | DSA-5300 [107] | pngcheck [108] | | | | | DSA-5301 [109] | firefox-esr [110] | | | | | DSA-5302 [111] | chromium [112] | | | | | DSA-5303 [113] | thunderbird [114] | | | | | DSA-5304 [115] | xorg-server [116] | | | | | DSA-5305 [117] | libksba [118] | | | | | DSA-5306 [119] | gerbv [120] | | | | | DSA-5307 [121] | libcommons-net-java [122] | | | | | DSA-5308 [123] | webkit2gtk [124] | | | | | DSA-5309 [125] | wpewebkit [126] | | | | | DSA-5310 [127] | ruby-image-processing [128] | | | | | DSA-5311 [129] | trafficserver [130] | | | | | DSA-5312 [131] | libjettison-java [132] | | | | | DSA-5313 [133] | hsqldb [134] | | | | | DSA-5314 [135] | emacs [136] | | | | | DSA-5315 [137] | libxstream-java [138] | | | | | DSA-5316 [139] | netty [140] | | | | | DSA-5317 [141] | chromium [142] | | | | | DSA-5318 [143] | lava [144] | | | | | DSA-5319 [145] | openvswitch [146] | | | | | DSA-5320 [147] | tor [148] | | | | | DSA-5321 [149] | sudo [150] | | | | | DSA-5322 [151] | firefox-esr [152] | | | | | DSA-5323 [153] | libitext5-java [154] | | | | | DSA-5324 [155] | linux-signed-amd64 [156] | | | | | DSA-5324 [157] | linux-signed-arm64 [158] | | | | | DSA-5324 [159] | linux-signed-i386 [160] | | | | | DSA-5324 [161] | linux [162] | | | | | DSA-5325 [163] | spip [164] | | | | | DSA-5326 [165] | nodejs [166] | | | | | DSA-5327 [167] | swift [168] | | | | | DSA-5328 [169] | chromium [170] | | | | | DSA-5329 [171] | bind9 [172] | | | | | DSA-5330 [173] | curl [174] | | | | | DSA-5331 [175] | openjdk-11 [176] | | | | | DSA-5332 [177] | git [178] | | | | | DSA-5333 [179] | tiff [180] | | | | | DSA-5334 [181] | varnish [182] | | | | | DSA-5335 [183] | openjdk-17 [184] | | | | | DSA-5336 [185] | glance [186] | | | | | DSA-5337 [187] | nova [188] | | | | | DSA-5338 [189] | cinder [190] | | | | | DSA-5339 [191] | libhtml-stripscripts-perl [192] | | | | | DSA-5340 [193] | webkit2gtk [194] | | | | | DSA-5341 [195] | wpewebkit [196] | | | | | DSA-5342 [197] | xorg-server [198] | | | | | DSA-5343 [199] | openssl [200] | | | | | DSA-5344 [201] | heimdal [202] | | | | | DSA-5345 [203] | chromium [204] | | | | | DSA-5346 [205] | libde265 [206] | | | | | DSA-5347 [207] | imagemagick [208] | | | | | DSA-5348 [209] | haproxy [210] | | | | | DSA-5349 [211] | gnutls28 [212] | | | | | DSA-5350 [213] | firefox-esr [214] | | | | | DSA-5351 [215] | webkit2gtk [216] | | | | | DSA-5352 [217] | wpewebkit [218] | | | | | DSA-5353 [219] | nss [220] | | | | | DSA-5355 [221] | thunderbird [222] | | | | | DSA-5356 [223] | sox [224] | | | | | DSA-5357 [225] | git [226] | | | | | DSA-5358 [227] | asterisk [228] | | | | | DSA-5359 [229] | chromium [230] | | | | | DSA-5361 [231] | tiff [232] | | | | | DSA-5362 [233] | frr [234] | | | | | DSA-5363 [235] | php7.4 [236] | | | | | DSA-5364 [237] | apr-util [238] | | | | | DSA-5365 [239] | curl [240] | | | | | DSA-5366 [241] | multipath-tools [242] | | | | | DSA-5367 [243] | spip [244] | | | | | DSA-5368 [245] | libreswan [246] | | | | | DSA-5369 [247] | syslog-ng [248] | | | | | DSA-5370 [249] | apr [250] | | | | | DSA-5371 [251] | chromium [252] | | | | | DSA-5372 [253] | rails [254] | | | | | DSA-5373 [255] | node-sqlite3 [256] | | | | | DSA-5374 [257] | firefox-esr [258] | | | | | DSA-5375 [259] | thunderbird [260] | | | | | DSA-5376 [261] | apache2 [262] | | | | | DSA-5377 [263] | chromium [264] | | | | | DSA-5378 [265] | xen [266] | | | | | DSA-5379 [267] | dino-im [268] | | | | | DSA-5380 [269] | xorg-server [270] | | | | | DSA-5381 [271] | tomcat9 [272] | | | | | DSA-5382 [273] | cairosvg [274] | | | | | DSA-5383 [275] | ghostscript [276] | | | | | DSA-5384 [277] | openimageio [278] | | | | | DSA-5385 [279] | firefox-esr [280] | | | | | DSA-5386 [281] | chromium [282] | | | | | DSA-5387 [283] | openvswitch [284] | | | | | DSA-5388 [285] | haproxy [286] | | | | | DSA-5389 [287] | rails [288] | | | | | DSA-5390 [289] | chromium [290] | | | | | DSA-5391 [291] | libxml2 [292] | | | | | DSA-5392 [293] | thunderbird [294] | | | | | DSA-5393 [295] | chromium [296] | | | | +----------------+---------------------------------+ 93: https://www.debian.org/security/2022/dsa-5170 94: https://packages.debian.org/src:nodejs 95: https://www.debian.org/security/2022/dsa-5237 96: https://packages.debian.org/src:firefox-esr 97: https://www.debian.org/security/2022/dsa-5238 98: https://packages.debian.org/src:thunderbird 99: https://www.debian.org/security/2022/dsa-5259 100: https://packages.debian.org/src:firefox-esr 101: https://www.debian.org/security/2022/dsa-5262 102: https://packages.debian.org/src:thunderbird 103: https://www.debian.org/security/2022/dsa-5282 104: https://packages.debian.org/src:firefox-esr 105: https://www.debian.org/security/2022/dsa-5284 106: https://packages.debian.org/src:thunderbird 107: https://www.debian.org/security/2022/dsa-5300 108: https://packages.debian.org/src:pngcheck 109: https://www.debian.org/security/2022/dsa-5301 110: https://packages.debian.org/src:firefox-esr 111: https://www.debian.org/security/2022/dsa-5302 112: https://packages.debian.org/src:chromium 113: https://www.debian.org/security/2022/dsa-5303 114: https://packages.debian.org/src:thunderbird 115: https://www.debian.org/security/2022/dsa-5304 116: https://packages.debian.org/src:xorg-server 117: https://www.debian.org/security/2022/dsa-5305 118: https://packages.debian.org/src:libksba 119: https://www.debian.org/security/2022/dsa-5306 120: https://packages.debian.org/src:gerbv 121: https://www.debian.org/security/2022/dsa-5307 122: https://packages.debian.org/src:libcommons-net-java 123: https://www.debian.org/security/2022/dsa-5308 124: https://packages.debian.org/src:webkit2gtk 125: https://www.debian.org/security/2022/dsa-5309 126: https://packages.debian.org/src:wpewebkit 127: https://www.debian.org/security/2022/dsa-5310 128: https://packages.debian.org/src:ruby-image-processing 129: https://www.debian.org/security/2023/dsa-5311 130: https://packages.debian.org/src:trafficserver 131: https://www.debian.org/security/2023/dsa-5312 132: https://packages.debian.org/src:libjettison-java 133: https://www.debian.org/security/2023/dsa-5313 134: https://packages.debian.org/src:hsqldb 135: https://www.debian.org/security/2023/dsa-5314 136: https://packages.debian.org/src:emacs 137: https://www.debian.org/security/2023/dsa-5315 138: https://packages.debian.org/src:libxstream-java 139: https://www.debian.org/security/2023/dsa-5316 140: https://packages.debian.org/src:netty 141: https://www.debian.org/security/2023/dsa-5317 142: https://packages.debian.org/src:chromium 143: https://www.debian.org/security/2023/dsa-5318 144: https://packages.debian.org/src:lava 145: https://www.debian.org/security/2023/dsa-5319 146: https://packages.debian.org/src:openvswitch 147: https://www.debian.org/security/2023/dsa-5320 148: https://packages.debian.org/src:tor 149: https://www.debian.org/security/2023/dsa-5321 150: https://packages.debian.org/src:sudo 151: https://www.debian.org/security/2023/dsa-5322 152: https://packages.debian.org/src:firefox-esr 153: https://www.debian.org/security/2023/dsa-5323 154: https://packages.debian.org/src:libitext5-java 155: https://www.debian.org/security/2023/dsa-5324 156: https://packages.debian.org/src:linux-signed-amd64 157: https://www.debian.org/security/2023/dsa-5324 158: https://packages.debian.org/src:linux-signed-arm64 159: https://www.debian.org/security/2023/dsa-5324 160: https://packages.debian.org/src:linux-signed-i386 161: https://www.debian.org/security/2023/dsa-5324 162: https://packages.debian.org/src:linux 163: https://www.debian.org/security/2023/dsa-5325 164: https://packages.debian.org/src:spip 165: https://www.debian.org/security/2023/dsa-5326 166: https://packages.debian.org/src:nodejs 167: https://www.debian.org/security/2023/dsa-5327 168: https://packages.debian.org/src:swift 169: https://www.debian.org/security/2023/dsa-5328 170: https://packages.debian.org/src:chromium 171: https://www.debian.org/security/2023/dsa-5329 172: https://packages.debian.org/src:bind9 173: https://www.debian.org/security/2023/dsa-5330 174: https://packages.debian.org/src:curl 175: https://www.debian.org/security/2023/dsa-5331 176: https://packages.debian.org/src:openjdk-11 177: https://www.debian.org/security/2023/dsa-5332 178: https://packages.debian.org/src:git 179: https://www.debian.org/security/2023/dsa-5333 180: https://packages.debian.org/src:tiff 181: https://www.debian.org/security/2023/dsa-5334 182: https://packages.debian.org/src:varnish 183: https://www.debian.org/security/2023/dsa-5335 184: https://packages.debian.org/src:openjdk-17 185: https://www.debian.org/security/2023/dsa-5336 186: https://packages.debian.org/src:glance 187: https://www.debian.org/security/2023/dsa-5337 188: https://packages.debian.org/src:nova 189: https://www.debian.org/security/2023/dsa-5338 190: https://packages.debian.org/src:cinder 191: https://www.debian.org/security/2023/dsa-5339 192: https://packages.debian.org/src:libhtml-stripscripts-perl 193: https://www.debian.org/security/2023/dsa-5340 194: https://packages.debian.org/src:webkit2gtk 195: https://www.debian.org/security/2023/dsa-5341 196: https://packages.debian.org/src:wpewebkit 197: https://www.debian.org/security/2023/dsa-5342 198: https://packages.debian.org/src:xorg-server 199: https://www.debian.org/security/2023/dsa-5343 200: https://packages.debian.org/src:openssl 201: https://www.debian.org/security/2023/dsa-5344 202: https://packages.debian.org/src:heimdal 203: https://www.debian.org/security/2023/dsa-5345 204: https://packages.debian.org/src:chromium 205: https://www.debian.org/security/2023/dsa-5346 206: https://packages.debian.org/src:libde265 207: https://www.debian.org/security/2023/dsa-5347 208: https://packages.debian.org/src:imagemagick 209: https://www.debian.org/security/2023/dsa-5348 210: https://packages.debian.org/src:haproxy 211: https://www.debian.org/security/2023/dsa-5349 212: https://packages.debian.org/src:gnutls28 213: https://www.debian.org/security/2023/dsa-5350 214: https://packages.debian.org/src:firefox-esr 215: https://www.debian.org/security/2023/dsa-5351 216: https://packages.debian.org/src:webkit2gtk 217: https://www.debian.org/security/2023/dsa-5352 218: https://packages.debian.org/src:wpewebkit 219: https://www.debian.org/security/2023/dsa-5353 220: https://packages.debian.org/src:nss 221: https://www.debian.org/security/2023/dsa-5355 222: https://packages.debian.org/src:thunderbird 223: https://www.debian.org/security/2023/dsa-5356 224: https://packages.debian.org/src:sox 225: https://www.debian.org/security/2023/dsa-5357 226: https://packages.debian.org/src:git 227: https://www.debian.org/security/2023/dsa-5358 228: https://packages.debian.org/src:asterisk 229: https://www.debian.org/security/2023/dsa-5359 230: https://packages.debian.org/src:chromium 231: https://www.debian.org/security/2023/dsa-5361 232: https://packages.debian.org/src:tiff 233: https://www.debian.org/security/2023/dsa-5362 234: https://packages.debian.org/src:frr 235: https://www.debian.org/security/2023/dsa-5363 236: https://packages.debian.org/src:php7.4 237: https://www.debian.org/security/2023/dsa-5364 238: https://packages.debian.org/src:apr-util 239: https://www.debian.org/security/2023/dsa-5365 240: https://packages.debian.org/src:curl 241: https://www.debian.org/security/2023/dsa-5366 242: https://packages.debian.org/src:multipath-tools 243: https://www.debian.org/security/2023/dsa-5367 244: https://packages.debian.org/src:spip 245: https://www.debian.org/security/2023/dsa-5368 246: https://packages.debian.org/src:libreswan 247: https://www.debian.org/security/2023/dsa-5369 248: https://packages.debian.org/src:syslog-ng 249: https://www.debian.org/security/2023/dsa-5370 250: https://packages.debian.org/src:apr 251: https://www.debian.org/security/2023/dsa-5371 252: https://packages.debian.org/src:chromium 253: https://www.debian.org/security/2023/dsa-5372 254: https://packages.debian.org/src:rails 255: https://www.debian.org/security/2023/dsa-5373 256: https://packages.debian.org/src:node-sqlite3 257: https://www.debian.org/security/2023/dsa-5374 258: https://packages.debian.org/src:firefox-esr 259: https://www.debian.org/security/2023/dsa-5375 260: https://packages.debian.org/src:thunderbird 261: https://www.debian.org/security/2023/dsa-5376 262: https://packages.debian.org/src:apache2 263: https://www.debian.org/security/2023/dsa-5377 264: https://packages.debian.org/src:chromium 265: https://www.debian.org/security/2023/dsa-5378 266: https://packages.debian.org/src:xen 267: https://www.debian.org/security/2023/dsa-5379 268: https://packages.debian.org/src:dino-im 269: https://www.debian.org/security/2023/dsa-5380 270: https://packages.debian.org/src:xorg-server 271: https://www.debian.org/security/2023/dsa-5381 272: https://packages.debian.org/src:tomcat9 273: https://www.debian.org/security/2023/dsa-5382 274: https://packages.debian.org/src:cairosvg 275: https://www.debian.org/security/2023/dsa-5383 276: https://packages.debian.org/src:ghostscript 277: https://www.debian.org/security/2023/dsa-5384 278: https://packages.debian.org/src:openimageio 279: https://www.debian.org/security/2023/dsa-5385 280: https://packages.debian.org/src:firefox-esr 281: https://www.debian.org/security/2023/dsa-5386 282: https://packages.debian.org/src:chromium 283: https://www.debian.org/security/2023/dsa-5387 284: https://packages.debian.org/src:openvswitch 285: https://www.debian.org/security/2023/dsa-5388 286: https://packages.debian.org/src:haproxy 287: https://www.debian.org/security/2023/dsa-5389 288: https://packages.debian.org/src:rails 289: https://www.debian.org/security/2023/dsa-5390 290: https://packages.debian.org/src:chromium 291: https://www.debian.org/security/2023/dsa-5391 292: https://packages.debian.org/src:libxml2 293: https://www.debian.org/security/2023/dsa-5392 294: https://packages.debian.org/src:thunderbird 295: https://www.debian.org/security/2023/dsa-5393 296: https://packages.debian.org/src:chromium Removed packages ---------------- The following packages were removed due to circumstances beyond our control: +-------------------------+--------------------------------------------+ | Package | Reason | +-------------------------+--------------------------------------------+ | bind-dyndb-ldap [297] | Broken with newer bind9 versions; | | | unsupportable in stable | | | | | matrix-mirage [298] | Depends on to-be-removed python-matrix-nio | | | | | pantalaimon [299] | Depends on to-be-removed python-matrix-nio | | | | | python-matrix-nio [300] | Security issues; doesn't work with current | | | Matrix servers | | | | | weechat-matrix [301] | Depends on to-be-removed python-matrix-nio | | | | +-------------------------+--------------------------------------------+ 297: https://packages.debian.org/src:bind-dyndb-ldap 298: https://packages.debian.org/src:matrix-mirage 299: https://packages.debian.org/src:pantalaimon 300: https://packages.debian.org/src:python-matrix-nio 301: https://packages.debian.org/src:weechat-matrix Debian Installer ---------------- The installer has been updated to include the fixes incorporated into stable by the point release. URLs ---- The complete lists of packages that have changed with this revision: https://deb.debian.org/debian/dists/bullseye/ChangeLog The current stable distribution: https://deb.debian.org/debian/dists/stable/ Proposed updates to the stable distribution: https://deb.debian.org/debian/dists/proposed-updates stable distribution information (release notes, errata etc.): https://www.debian.org/releases/stable/ Security announcements and information: https://www.debian.org/security/ About Debian ------------ The Debian Project is an association of Free Software developers who volunteer their time and effort in order to produce the completely free operating system Debian. Contact Information ------------------- For further information, please visit the Debian web pages at https://www.debian.org/, send mail to <press@debian.org>, or contact the stable release team at <debian-release@lists.debian.org>.
Attachment:
signature.asc
Description: PGP signature