Re: [Website] News vom 08.10.
Hallo,
anbei eine korrigierte Fassung der Nachricht, mir ist da eine Kleinigkeit
aufgefallen.
Grueße
Erik
--
Linux User: 499744
Linux Machine: 434256
<define-tag pagetitle>Debian 6.0 aktualisiert: 6.0.3 veröffentlicht</define-tag>
<define-tag release_date>2011-10-08</define-tag>
#use wml::debian::news
# $Id: 20110113.wml,v 1.3 2011-03-15 20:04:03 ignatz-guest Exp $
#use wml::debian::translation-check translation="1.4"
# Translator: Erik Pfannenstein <DebianIgnatz@gmx.de>, 2011-10-10
<define-tag release>6.0</define-tag>
<define-tag codename>squeeze</define-tag>
<define-tag revision>6.0.3</define-tag>
<define-tag dsa>
<tr><td align="center"><a href="$(HOME)/security/%0/dsa-%1">DSA-%1</a></td>
<td align="center"><:
my @p = ();
for my $p (split (/,\s*/, "%2")) {
push (@p, sprintf ('<a href="http://packages.debian.org/src:%s";>%s</a>', $p, $p));
}
print join (", ", @p);
:></td><td align="left">%3</td></tr>
</define-tag>
<define-tag correction>
<tr><td><a href="http://packages.debian.org/src:%0";>%0</a></td> <td>%1</td></tr>
</define-tag>
<define-tag srcpkg><a href="http://packages.debian.org/src:%0";>%0</a></define-tag>
----
<p>The Debian project is pleased to announce the third update of its
stable distribution Debian 6.0 (codename <q><codename></q>).
This update mainly adds corrections for security problems to the stable
release, along with a few adjustments to serious problems. Security advisories
were already published separately and are referenced where available.</p>
<p>Das Debian-Projekt freut sich, die dritte Aktualisierung seiner
Stable-Distribution Debian 6.0 (Codename <q><codename></q>) ankündigen zu
dürfen. Diese Aktualisierung fügt der Stable-Veröffentlichung hauptsächlich
Sicherheitskorrekturen hinzu, zusammen mit Lösungen für einige
ernste Probleme. Für sie wurden bereits seperate Sicherheitsankündigungen
veröffentlicht, auf die, wenn möglich, verwiesen wird.</p>
----
<p>Please note that this update does not constitute a new version of Debian
6.0 but only updates some of the packages included. There is
no need to throw away 6.0 CDs or DVDs but only to update via an
up-to-date Debian mirror after an installation, to cause any out of date
packages to be updated.</p>
<p>Bitte beachten Sie, dass diese Aktualisierung keine neue Version von
Debian 6.0 darstellt, sondern nur einige der enthaltenen Pakete auffrischt.
Es gibt keinen Grund, Debian-6.0-CDs oder -DVDs wegzuwerfen, sondern nur für
den Abgleich neuer Installationen mit einem aktuellen Debian-Spiegelserver,
damit alle veralteten Pakete ausgetauscht werden.</p>
----
<p>Those who frequently install updates from security.debian.org won't have
to update many packages and most updates from security.debian.org are
included in this update.</p>
<p>Wer häufig Aktualisierungen von security.debian.org herunterlädt, wird
nicht viele Pakete auf den neuesten Stand bringen müssen und die meisten
Updates von security.debian.org sind in dieser Revision enthalten.</p>
----
<p>New installation media and CD and DVD images containing updated packages
will be available soon at the regular locations.</p>
<p>Neue Installationsmedien sowie CD- und DVD-Abbilder mit den neuen Paketen
können bald von den gewohnten Orten bezogen werden.</p>
----
<p>Upgrading to this revision online is usually done by pointing the
aptitude (or apt) package tool (see the sources.list(5) manual page) to
one of Debian's many FTP or HTTP mirrors. A comprehensive list of
mirrors is available at:</p>
<p>Für das Online-Upgrade auf diese Version wird in der Regel die Aptitude
(oder APT-) Paketverwaltung auf einen der vielen Debian'schen FTP- oder
HTTP-Spiegel verwiesen (siehe auch die Handbuchseite zu sources.list(5)).
Eine vollständige Liste der Spiegelserver findet sich unter:</p>
----
<div class="center">
<a href="$(HOME)/mirror/list">http://www.debian.org/mirror/list</a>
</div>
----
<h2>Miscellaneous Bugfixes</h2>
<h2>Verschiedene Fehlerkorrekturen</h2>
----
<p>This stable update adds a few important corrections to the following
packages:</p>
<p>Diese Stable-Aktualisierung fügt den folgenden Paketen einige wichtige
Korrekturen hinzu:</p>
----
<table border=0>
<tr><th>Package</th> <th>Reason</th></tr>
<correction ace "Rebuild to drop non-distributable files">
<correction akonadi "Support the use of network-mounted $HOME">
<correction amispammer "Update service used for discovering the local IP address">
<correction apache2 "Fix CVE-2011-3348: Possible denial of service in mod_proxy_ajp; various documentation and init script fixes">
<correction aptitude "Fix symlink attack in hierarchy editor">
<correction arcboot "Fix netinstall on IP22 / IP32">
<correction atop "Insecure use of temporary files">
<correction base-files "Update /etc/debian_version for the point release">
<correction brltty "Fix parsing brltty= when not all parameters are provided; setup gconf even if no table was specified">
<correction clamav "New upstream release; fix off-by-one and <q>opcode 20 not implemented</q> errors">
<correction clive "Adapt for youtube.com changes">
<correction conky "Fix file overwrite vulnerability">
<correction ctdb "Fix path to ethtool and activation of httpd service">
<correction debian-installer-utils "Set SUDO_FORCE_REMOVE=yes to allow sudo-ldap to be installed from d-i">
<correction deja-dup "Explicitly pass environment to subprocesses to ensure correct GPG operation on restores">
<correction dokuwiki "RSS XSS security fix">
<correction dput "Update backports configuration to use the new .d.o hosts">
<correction drupal6 "Security fix for XSS in color module">
<correction firmware-nonfree "Add VIA VT6656, Realtek RTL8105E-1 and RTL8168E-1/2/3 firmware">
<correction foo2zjs "Fix insecure use of temporary file">
<correction freebsd-libs "Move libsbuf.so.0 and libipx.so.2 to /lib">
<correction freebsd-utils "Provide config files and init.d script for devd; enable ieee80211 (wireless) in ifconfig">
<correction gajim "Fix high CPU load on connection">
<correction gdebi "Try to determine correct localized value for <q>Y</q>">
<correction gdm3 "Only show shutdown options when requested; fix double free; only set WINDOWPATH if not NULL; remove beep in PAM dialog patch">
<correction git "Fix off-by-one parsing commit subjects; prevent deadlock when shallow-cloning; documentation updates">
<correction grub-installer "Allow use of grub-legacy to be pre-seeded (if appropriate)">
<correction grub2 "Handle Xen split-partition disk image devices; ensure uniqueness of RAID array numbers; fix grub-probe detection for ATA devices using <q>ata</q> driver on kFreeBSD 9">
<correction heimdal "Allow DES to be used with NFS">
<correction httpcomponents-client "Fix bug causing Proxy-Authorization header to be passed to target hosts">
<correction ia32-libs "Refresh packages from stable and security">
<correction ia32-libs-gtk "Refresh packages from stable and security">
<correction ibid "Fix various security issues; make the HTTP source work again">
<correction ipmitool "Fix segfault">
<correction kde4libs "Prevent marked text being cut when switching documents in kate">
<correction kernel-wedge "Stop considering acpi.ko as part of the kernel for kFreeBSD">
<correction kfreebsd-8 "Fix net802.11 stack kernel memory disclosure (CVE-2011-2480); merge backported if_msk driver from 8-STABLE; re-enable building of some modules">
<correction kfreebsd-kernel-di-amd64 "Rebuild against kfreebsd-8 8.1+dfsg-8+squeeze1">
<correction kfreebsd-kernel-di-i386 "Rebuild against kfreebsd-8 8.1+dfsg-8+squeeze1">
<correction krb5 "Permit gss_set_allowable_enctypes to restrict acceptor enctypes, allowing newer clients to use a Squeeze NFS server without degrading security for non-NFS applications">
<correction kupfer "Don't crash if Evolution address book not present">
<correction libpcap "Fix corruption of snapshot length on live captures; fix device detection when bonding in use">
<correction lintian "Fix information disclosure issues">
<correction linux-2.6 "Update to long-term release 2.6.32.46; backport network driver changes">
<correction linux-kernel-di-amd64-2.6 "Rebuild against linux-2.6 2.6.32-38">
<correction linux-kernel-di-armel-2.6 "Rebuild against linux-2.6 2.6.32-38">
<correction linux-kernel-di-i386-2.6 "Rebuild against linux-2.6 2.6.32-38">
<correction linux-kernel-di-ia64-2.6 "Rebuild against linux-2.6 2.6.32-38">
<correction linux-kernel-di-mips-2.6 "Rebuild against linux-2.6 2.6.32-38">
<correction linux-kernel-di-mipsel-2.6 "Rebuild against linux-2.6 2.6.32-38">
<correction linux-kernel-di-powerpc-2.6 "Rebuild against linux-2.6 2.6.32-38">
<correction linux-kernel-di-s390-2.6 "Rebuild against linux-2.6 2.6.32-38">
<correction linux-kernel-di-sparc-2.6 "Rebuild against linux-2.6 2.6.32-38">
<correction mesa "GLX: suppress BadRequest from DRI2Connect (expected for non-local clients)">
<correction mod-gnutls "Fix segmentation faults">
<correction nagvis "Install documentation; properly apply FollowSymlinks; only call ucf if available">
<correction nss-pam-ldapd "Fix uninitialised memory while parsing the tls_ciphers; fix problem with partial attribute name matches in DN; make all string buffers able to represent 64-bit numbers; treat the <q>hard</q> value for tls_reqcert as if it was <q>demand</q>">
<correction openarena "Fix arbitrary code execution by malicious bytecode">
<correction opencv "Fix install path of opencv-doc; optimise i386 package for i486">
<correction openssh "Quieten logs when multiple from= restrictions are used in different authorized_keys lines for the same key">
<correction openssl "Fix CVE-2011-3210: SSL memory handling for (EC)DH ciphersuites">
<correction pianobar "Support XMLRPC API version 31">
<correction pmake "Fix symlink attack via temporary files">
<correction postgresql-8.4 "Fix regression due to <q>fix plpgsql's issues with dropped columns in rowtypes in 8.4 branch</q>">
<correction python-recaptcha "Update URLs for web service move to google.com">
<correction quassel "Fix DoS via CTCP">
<correction red5 "Add missing dependency on glassfish-javaee">
<correction sbcl "Fix reference to undefined asdf::split in the asdf-install module">
<correction shelldap "Exit with a nicer error message if IO::Socket::SSL isn't installed, but SSL/TLS was requested">
<correction system-tools-backends "Properly handle config file rename">
<correction tesseract "Fix file overwrite vulnerability by disabling xterm-based debug windows">
<correction typo3-src "Fix cache flooding via improper error handling">
<correction tzdata "New upstream version">
<correction update-inetd "Fix breakage with non-default inetd packages">
<correction usbutils "Update USB ID list; build-depend on libusb2-dev on kFreeBSD">
<correction user-mode-linux "Rebuild against linux-2.6 2.6.32-37">
<correction v86d "Fix CVE-2011-1070: failure to validate netlink message sender; do not include random kernel headers in CFLAGS">
<correction vftool "Fix a buffer overflow in linetoken() in parseAFM.c">
<correction vte "Fix DoS">
<correction widelands "Fix network play on official maps (regression introduced by previous update)">
<correction win32-loader "Add Built-Using header; allow suite-specific versions; document versions of embedded software">
<correction xapian-omega "Fix escaping issues in templates">
<correction zfsutils "Update LSB init headers to ensure clean startup/shutdown; add bash-completion script">
</table>
----
<p>Note that the krb5 change mentioned above requires a further update to the <q>nfs-common</q>
package before it will be effective. It is hoped that this update will be included in
the next point release.</p>
<p>Achten Sie darauf, dass die oben erwähnte krb5-Änderung eine weitere
Aktualisierung am Paket <q>nfs-common</q> erfordert, bevor sie wirkt. Es
besteht die Hoffnung, dass diese Aktualisierung in die nächste
Zwischenveröffentlichung einfließt.</p>
----
<p>During the final stages of the point release, it was noticed that the <q>quassel</q>
package no longer included any translation files. It is hoped that an update restoring
the translations will be available soon via <q>squeeze-updates</q> and included in the
next point release.</p>
<p>Während der letzten Schritte dieser Zwischenveröffentlichung wurde bemerkt,
dass das Paket <q>quassel</q> keine Übersetzungsdateien mehr enthält. Wir
hoffen, dass eine diesbezügliche Aktualisierung bald in <q>Squeeze-Updates</q>
auftaucht und in die nächste Revision aufgenommen werden kann.</p>
----
<h2>Security Updates</h2>
<h2>Sicherheitsaktualisierungen</h2>
----
<p>This revision adds the following security updates to the stable
release. The Security Team has already released an advisory for each of
these updates:</p>
<p>Diese Revision fügt der Stable-Veröffentlichung die folgenden
Sicherheitsaktualisierungen hinzu. Für jede davon wurde bereits eine
Ankündigung veröffentlicht:</p>
----
<table border=0>
<tr><th>Advisory ID</th> <th>Package</th> <th>Correction(s)</th></tr>
<dsa 2011 2188 webkit "Multiple issues">
<dsa 2011 2210 tiff "Multiple issues">
<dsa 2011 2228 iceweasel "Multiple issues">
<dsa 2011 2248 ejabberd "Denial of service">
<dsa 2011 2252 dovecot "Programming error">
<dsa 2011 2254 oprofile "Command injection">
<dsa 2011 2256 tiff "Buffer overflow">
<dsa 2011 2258 kolab-cyrus-imapd "Implementation error">
<dsa 2011 2266 php5 "Multiple issues">
<dsa 2011 2267 perl "Restriction bypass">
<dsa 2011 2268 iceweasel "Multiple issues">
<dsa 2011 2269 iceape "Multiple issues">
<dsa 2011 2270 qemu-kvm "Programming error">
<dsa 2011 2271 curl "Improper delegation of client credentials">
<dsa 2011 2272 bind9 "Denial of service">
<dsa 2011 2273 icedove "Multiple issues">
<dsa 2011 2274 wireshark "Multiple issues">
<dsa 2011 2276 asterisk "Multiple issues">
<dsa 2011 2277 xml-security-c "Buffer overflow">
<dsa 2011 2279 libapache2-mod-authnz-external "SQL injection">
<dsa 2011 2280 libvirt "Multiple issues">
<dsa 2011 2281 opie "Multiple issues">
<dsa 2011 2282 qemu-kvm "Multiple issues">
<dsa 2011 2285 mapserver "Multiple issues">
<dsa 2011 2287 libpng "Multiple issues">
<dsa 2011 2288 libsndfile "Integer overflow">
<dsa 2011 2289 typo3-src "Multiple issues">
<dsa 2011 2291 squirrelmail "Multiple issues">
<dsa 2011 2292 isc-dhcp "Denial of service">
<dsa 2011 2293 libxfont "Buffer overflow">
<dsa 2011 2294 freetype "Missing input sanitization">
<dsa 2011 2295 iceape "Multiple issues">
<dsa 2011 2296 iceweasel "Multiple issues">
<dsa 2011 2297 icedove "Multiple issues">
<dsa 2011 2298 apache2 "Denial of service">
<dsa 2011 2299 ca-certificates "Blacklist <q>DigiNotar Root CA</q>">
<dsa 2011 2300 nss "Compromised certificate authority">
<dsa 2011 2301 rails "Multiple issues">
<dsa 2011 2302 bcfg2 "Arbitrary code execution">
<dsa 2011 2303 user-mode-linux "Multiple issues">
<dsa 2011 2303 linux-2.6 "Multiple issues">
<dsa 2011 2304 squid3 "Buffer overflow">
<dsa 2011 2305 vsftpd "Denial of service">
<dsa 2011 2306 ffmpeg "Multiple issues">
<dsa 2011 2307 chromium-browser "Multiple issues">
<dsa 2011 2308 mantis "Multiple issues">
<dsa 2011 2309 openssl "Compromised certificate authority">
<dsa 2011 2312 iceape "Multiple issues">
<dsa 2011 2313 iceweasel "Multiple issues">
<dsa 2011 2314 puppet "Multiple issues">
<dsa 2011 2316 quagga "Multiple issues">
<dsa 2011 2317 icedove "Multiple issues">
</table>
----
<h2>Debian Installer</h2>
<h2>Debian-Installer</h2>
<p>The Debian Installer has been updated in this point release to
correct the following issues (among others):</p>
<p>Der Debian-Installer wurde in dieser Zwischenveröffentlichung aktualisiert,
um unter anderem die folgenden Schwierigkeiten zu beseitigen:</p>
----
<ul>
<li>fix netinstall on IP22 / IP32 (mips)</li>
<li>allow use of grub-legacy to be pre-seeded (if appropriate)</li>
</ul>
<ul>
<li>Netinstall unter IP22 / IP32 (MIPS) behoben</li>
<li></li>
</ul>
----
<p>The kernel image used by the installer has been updated to incorporate a
number of important and security-related fixes together with updates to the
e1000e, igb, igbvf, r8169, tg3, and broadcom network drivers to add
support for additional hardware.</p>
<p>Das vom Installer benutzte Kernel-Abbild wurde mit einer Anzahl von
wichtigen und sicherheitsbezogenen Korrekturen ausgestattet, zusammen mit
Aktualisierungen für die e1000e-, igb-, igbvf-, r8169, tg3- und
Broadcom-Netzwerktreiber, damit diese weitere Geräte unterstützen.</p>
----
<p>The GNU/kFreeBSD installer also incorporates an updated kernel image
including an updated if_msk Gigabit Ethernet driver.</p>
<p>Der GNU/kFreeBSD-Installer enthält ebenfalls ein aktualisiertes
Kernelabbild mit einem neuen if_msk-Gigabit-Ethernet-Treiber.</p>
----
<h2>URLs</h2>
<h2>URLs</h2>
----
<p>The complete lists of packages that have changed with this
revision:</p>
<p>Die vollständige Liste von Paketen, die sich mit dieser Revision geändert
haben:</p>
----
<div class="center">
<url "http://ftp.debian.org/debian/dists/<downcase <codename>>/ChangeLog">
</div>
----
<p>The current stable distribution:</p>
<p>Die derzeitige Stable-Distribution:</p>
<div class="center">
<url "http://ftp.debian.org/debian/dists/stable/";>
</div>
----
<p>Proposed updates to the stable distribution:</p>
<p>Vorgeschlagene Aktualisierungen für die Stable-Distribution:</p>
<div class="center">
<url "http://ftp.debian.org/debian/dists/proposed-updates";>
</div>
----
<p>Stable distribution information (release notes, errata etc.):</p>
<p>Informationen zur Stable-Distribution (Veröffentlichungshinzweise, Errata
usw.):</p>
----
<div class="center">
<a
href="$(HOME)/releases/stable/">http://www.debian.org/releases/stable/</a>
</div>
----
<p>Security announcements and information:</p>
<p>Sicherheitsankündigungen und -informationen</p>
----
<div class="center">
<a href="$(HOME)/security/">http://security.debian.org/</a>
</div>
----
<h2>About Debian</h2>
<p>The Debian Project is an association of Free Software developers who
volunteer their time and effort in order to produce the completely free
operating system Debian.</p>
<h2>Contact Information</h2>
<p>For further information, please visit the Debian web pages at <a
href="$(HOME)/">http://www.debian.org/</a>, send mail to
<press@debian.org>, or contact the stable release team at
<debian-release@lists.debian.org>.</p>
<h2>Über Debian</h2>
<p>Das Debian-Projekt ist eine Vereinigung von Entwicklern Freier Software,
die ihre Kraft und Zeit dafür opfern, das vollständig freie Betriebssystem
Debian zu erschaffen.</p>
<h2>Kontaktinformationen</h2>
<p>Für weitere Informationen besuchen Sie bitte die Debian-Websiten unter
<a href="$(HOME)/">http://www.debian.org/</a>, schicken eine E-Mail an
<press@debian.org>, oder kontaktieren das Stable-Release-Team
auf Englisch über <debian-release@lists.debian.org>.</p>
Reply to: