[Website] Debian 6.0.6
Hallo zusammen,
eine neue Zwischenveröffentlichung steht an, wozu es auch wieder eine Nachricht
nebst Übersetzung gibt.
Wer grad Zeit und Lust hat, kann sich ja mal die Übersetzung anschauen und ein
bisschen konstruktive Kritik üben – sie besteht allerdings zum größten Teil aus
Copy & Paste vom letzten Mal, ausgenommen den Abschnitt über rausgeflogene Pakete
und natürlich die Tabellen. Letztere hab ich wieder herausgenommen und als diff
angehängt.
Grueße
Erik
--
Linux User: 499744
Linux Machine: 434256
7c7
< <correction alpine "Fix crash in embedded UW-IMAP copy">
---
> <correction alpine "Absturz in eingebetteter UW-IMAP-Kopie behoben">
9c9
< <correction apache2 "mod_negotiation - fix CVE-2012-2687; mod_cache - don't cache partial connections; read timeouts should result in a 408">
---
> <correction apache2 "mod_negotiation - CVE-2012-2687 behoben; mod_cache - Zwischenspeicherung teilweiser Verbindungen behoben; Lese-Timeouts sollen in einem 408 resultieren">
11c11
< <correction automake1.10 "Fix CVE-2012-3386">
---
> <correction automake1.10 "CVE-2012-3386 behoben">
13c13
< <correction automake1.11 "Fix CVE-2012-3386">
---
> <correction automake1.11 "CVE-2012-3386 behoben">
15c15
< <correction automake1.7 "Fix CVE-2012-3386">
---
> <correction automake1.7 "CVE-2012-3386 behoben">
17c17
< <correction automake1.9 "Fix CVE-2012-3386">
---
> <correction automake1.9 "CVE-2012-3386 behoben">
19c19
< <correction base-files "Update /etc/debian_version for the point release">
---
> <correction base-files "/etc/debian_version auf die Zwischenveröffentlichung aktualisiert">
21c21
< <correction checkgmail "Fix GMail authentication issues">
---
> <correction checkgmail "Authentifizierungsprobleme bei GMail behoben">
23c23
< <correction clamav "New upstream release">
---
> <correction clamav "Neue Version der Originalautoren">
25c25
< <correction debian-archive-keyring "Add wheezy stable and archive signing keys">
---
> <correction debian-archive-keyring "Signierungsschlüssel für Wheezy-Stable und -Archiv hinzugefügt">
27c27
< <correction dpkg "Ensure a reliable unpack on SELinux systems">
---
> <correction dpkg "Zuverlässiges Entpacken auf SELinux-Systemen sicher gestellt">
29c29
< <correction eglibc "Really enable patches/any/cvs-dlopen-tls.diff; fix FORTIFY_SOURCE format string protection bypass; fix a DoS in RPC implementation">
---
> <correction eglibc "Korrekturen /any/cvs-dlopen-tls.diff wirklich übernommen; Bypass des FORTIFY_SOURCE-Formatzeichenketten-Schutzes beseitigt; DoS in RPC-Implementation behoben">
31c31
< <correction emesene "Update contact end-point to local-bay.contacts.msn.com">
---
> <correction emesene "Kontaktendpunkt auf local-bay.contacts.msn.com aktuaisiert">
33c33
< <correction geshi "Fix 'Local File Inclusion Vulnerability in contrib script'">
---
> <correction geshi "'Lokale Dateieinbindungs-Schwachstelle im Contrib-Skript' behoben">
35c35
< <correction gosa "Security fix (missing escaping)">
---
> <correction gosa "Sicherheitskorrektur (Fehlendes Escaping)">
37c37
< <correction ia32-libs "Update packages">
---
> <correction ia32-libs "Pakete aktualisiert">
39c39
< <correction libconfig-inifiles-perl "Fix insecure temporary file use">
---
> <correction libconfig-inifiles-perl "Unichere Handhabung der Temporärdateien behoben">
41c41
< <correction libgc "Check for integer overflow in internal malloc and calloc routines">
---
> <correction libgc "Prüft jetzt auf Integer-Überlauf in den internen malloc- und calloc-Routinen">
43c43
< <correction libmtp "Fix device flags for some devices; add support for new devices">
---
> <correction libmtp "Geräte-Flags für einige Geräte repariert; Unterstützung für neue Geräte hinzugefügt">
45c45
< <correction libxslt "Fix CVE-2011-1202, CVE-2011-3970, CVE-2012-2825">
---
> <correction libxslt "CVE-2011-1202, CVE-2011-3970 und CVE-2012-2825 behoben">
47c47
< <correction links2 "Security fixes">
---
> <correction links2 "Sicherheitskorrekturen">
49c49
< <correction linux-2.6 "DRM fixes; leap second fix; security fixes; various driver fixes">
---
> <correction linux-2.6 "DRM-Korrekturen; Korrektur für Schaltsekunde; Sicherheitskorrekturen; verschiedene Treiber repariert">
51c51
< <correction linux-kernel-di-amd64-2.6 "Rebuild against linux-2.6 2.6.32-46">
---
> <correction linux-kernel-di-amd64-2.6 "Neubau gegen linux-2.6 2.6.32-46">
53c53
< <correction linux-kernel-di-armel-2.6 "Rebuild against linux-2.6 2.6.32-46">
---
> <correction linux-kernel-di-armel-2.6 "Neubau gegen linux-2.6 2.6.32-46">
55c55
< <correction linux-kernel-di-i386-2.6 "Rebuild against linux-2.6 2.6.32-46">
---
> <correction linux-kernel-di-i386-2.6 "Neubau gegen linux-2.6 2.6.32-46">
57c57
< <correction linux-kernel-di-ia64-2.6 "Rebuild against linux-2.6 2.6.32-46">
---
> <correction linux-kernel-di-ia64-2.6 "Neubau gegen linux-2.6 2.6.32-46">
59c59
< <correction linux-kernel-di-mips-2.6 "Rebuild against linux-2.6 2.6.32-46">
---
> <correction linux-kernel-di-mips-2.6 "Neubau gegen linux-2.6 2.6.32-46">
61c61
< <correction linux-kernel-di-mipsel-2.6 "Rebuild against linux-2.6 2.6.32-46">
---
> <correction linux-kernel-di-mipsel-2.6 "Neubau gegen linux-2.6 2.6.32-46">
63c63
< <correction linux-kernel-di-powerpc-2.6 "Rebuild against linux-2.6 2.6.32-46">
---
> <correction linux-kernel-di-powerpc-2.6 "Neubau gegen linux-2.6 2.6.32-46">
65c65
< <correction linux-kernel-di-s390-2.6 "Rebuild against linux-2.6 2.6.32-46">
---
> <correction linux-kernel-di-s390-2.6 "Neubau gegen linux-2.6 2.6.32-46">
67c67
< <correction linux-kernel-di-sparc-2.6 "Rebuild against linux-2.6 2.6.32-46">
---
> <correction linux-kernel-di-sparc-2.6 "Neubau gegen linux-2.6 2.6.32-46">
69c69
< <correction lockfile-progs "Ensure the correct PID is used when creating lockfiles">
---
> <correction lockfile-progs "Sichergestellt, dass beim Erstellen von Sperrdateien die richtige PID genutzt wird.">
71c71
< <correction mysql-mmm "Add dependency on libpath-class-perl">
---
> <correction mysql-mmm "Abhängigkeit von libpath-class-perl hinzugefügt">
73c73
< <correction network-manager "Stop allowing ad-hoc WPA networks to be created; kernel bugs mean they get created as open networks">
---
> <correction network-manager "Erlaubt nicht mehr, Ad-Hoc-WPA-Netzwerke zu erstellen; Fehler im Kernel bedeuten, dass sie als offene Netzwerke erstellt werden">
75c75
< <correction nss-pam-ldapd "Support larger gecos values; reliability fixes">
---
> <correction nss-pam-ldapd "Unterstützt größere gecos-Werte; Zuverlässigkeit optimiert">
77c77
< <correction nvidia-graphics-drivers "Fix information leak in the kernel module; fix arbitrary memory access vulnerability; fix local privilege escalation through VGA window manipulation">
---
> <correction nvidia-graphics-drivers "Informationsleck im Kernel-Modul geschlossen; sporadische Speicherzugriffs-Schwachstelle geschlossen; lokale Privilegeskalation durch Manipulation von VGA-Fenstern behoben">
79c79
< <correction nvidia-graphics-modules "Rebuild against 195.36.31-6squeeze1 kernel modules for security fixes; rebuild to fix CVE-2012-4225">
---
> <correction nvidia-graphics-modules "Neubau gegen das 195.36.31-6squeeze1-Kernelmodul für Sicherheitskorrekturen, Neubau, um CVE-2012-4225 zu beheben">
81c81
< <correction php-memcached "Fix session.gc_maxlifetime handling">
---
> <correction php-memcached "Handhabung von session.gc_maxlifetime repariert">
83c83
< <correction plymouth "Fix the init script to not fail when the package is removed">
---
> <correction plymouth "Init-Skript repariert, damit es nicht fehlschlägt, wenn das Paket entfernt wird">
85c85
< <correction policyd-weight "Remove rfc-ignorant.org RBLs (due to upcoming shutdown) and rbl.ipv6-world.net">
---
> <correction policyd-weight "rfc-ignorant.org RBLs (wegen anstehender Abschaltung) und rbl.ipv6-world.net entfernt">
87c87
< <correction postgresql-common "Do not remove the PID file after SIGKILLing the postmaster in the "last-ditch effort to shut down" in --force mode">
---
> <correction postgresql-common "Entfernt die PID-Datei nach dem SIGKILLen des Postmasters beim »letzten Versuch«, im --force-Modus »herunterzufahren« nicht">
89c89
< <correction powertop "Fix segfault on newer kernels with large config files">
---
> <correction powertop "Speicherzugriffsfehler bei neueren Kernels mit großen Konfigurationsdateien behoben">
91c91
< <correction publican "Add dependency and build-dependency on libio-string-perl">
---
> <correction publican "Abhängigkeit und Bauabhängigkeit von libio-string-perl hinzugefügt">
93c93
< <correction rstatd "Support Linux 3.x kernels">
---
> <correction rstatd "Unterstützt nun Linux-3.x-Kernel">
95c95
< <correction spip "Fix base name disclosure; security fixes">
---
> <correction spip "Offenlegung des Basisnamen behoben, Sicherheitskorrekturen">
97c97
< <correction tor "New upstream; fix TLS 1.1/1.2 renegotiation with openssl 1.0.1; fix potential DOS; fix two crashes and an information disclosure issue">
---
> <correction tor "Neue Version der Originalautoren; TLS 1.1/1.2-Neuaushandlung mit Openssl 1.0.1 repariert; potenziellen DOS behoben; zwei Abstürze und ein Informationsoffenlegungs-Problem behoben">
99c99
< <correction ttb "Add dependency on python-glade2">
---
> <correction ttb "Abhängigkeit von python-glade2 behoben">
101c101
< <correction vte "Fix a memory exhaustion vulnerability">
---
> <correction vte "Speichererschöpfungs-Schwachstelle behoben">
103c103
< <correction wims "Fix installation problem">
---
> <correction wims "Installationsproblem behobne">
105c105
< <correction wireshark "Fix crashes in ANSI A detector and pcap / pcap-ng parsers">
---
> <correction wireshark "Abstürze in ANSI-A-Detektor und Pcap / Pcap-ng-Parsern behoben">
107c107
< <correction xserver-xorg-video-intel "UXA/glyphs: fall back instead of crashing on large strings">
---
> <correction xserver-xorg-video-intel "UXA/glyphs: Bei langen Zeichenketten zurückfallen, anstatt abzustürzen">
109c109
< <correction yaws "Fix RNG strength; fix mail config loading">
---
> <correction yaws "RNG-Stärke repariert; Mail-Config-Ladevorgang repariert">
119c119
< <tr><th>Advisory ID</th> <th>Package</th> <th>Correction(s)</th></tr>
---
> <tr><th>Anweisungs-ID</th> <th>Paket</th> <th>Korrektur(en)</th></tr>
125c125
< <dsa 2012 2457 iceweasel "Regression fix">
---
> <dsa 2012 2457 iceweasel "Rückschritts-Behebung">
127c127
< <dsa 2012 2458 iceape "Regression fix">
---
> <dsa 2012 2458 iceape "Rückschritts-Behebung">
129c129
< <dsa 2012 2465 php5 "Multiple issues">
---
> <dsa 2012 2465 php5 "Mehrere Probleme">
131c131
< <dsa 2012 2466 rails "Cross site scripting">
---
> <dsa 2012 2466 rails "Cross-Site-Scripting">
133c133
< <dsa 2012 2467 mahara "Insecure defaults">
---
> <dsa 2012 2467 mahara "Unsichere Voreinstellungen">
135c135
< <dsa 2012 2468 libjakarta-poi-java "Unbounded memory allocation">
---
> <dsa 2012 2468 libjakarta-poi-java "Unbegrenzte Speicherbelegung">
137c137
< <dsa 2012 2470 wordpress "Multiple issues">
---
> <dsa 2012 2470 wordpress "Mehrere Probleme">
139c139
< <dsa 2012 2471 ffmpeg "Multiple issues">
---
> <dsa 2012 2471 ffmpeg "Mehrere Probleme">
141c141
< <dsa 2012 2472 gridengine "Privilege escalation">
---
> <dsa 2012 2472 gridengine "Privilegeskalation">
143c143
< <dsa 2012 2473 openoffice.org "Buffer overflow">
---
> <dsa 2012 2473 openoffice.org "Pufferüberlauf">
145c145
< <dsa 2012 2474 ikiwiki "Cross-site scripting">
---
> <dsa 2012 2474 ikiwiki "Cross-Site-Scripting">
147c147
< <dsa 2012 2475 openssl "Integer underflow">
---
> <dsa 2012 2475 openssl "Integer-Unterlauf">
149c149
< <dsa 2012 2476 pidgin-otr "Format string vulnerability">
---
> <dsa 2012 2476 pidgin-otr "Formatzeichenketten-Schwachstelle">
151c151
< <dsa 2012 2477 sympa "Authorization bypass">
---
> <dsa 2012 2477 sympa "Authorisierungs-Bypass">
153c153
< <dsa 2012 2478 sudo "Parsing error">
---
> <dsa 2012 2478 sudo "Auswertungsfehler">
157c157
< <dsa 2012 2480 request-tracker3.8 "Regression">
---
> <dsa 2012 2480 request-tracker3.8 "Rückschritt">
159c159
< <dsa 2012 2481 arpwatch "Fails to drop supplementary groups">
---
> <dsa 2012 2481 arpwatch "Fehlschlag beim Löschen zusätzlicher Gruppen">
161c161
< <dsa 2012 2482 libgdata "No verification of TLS certificates against system root CA">
---
> <dsa 2012 2482 libgdata "Keine Überprüfung von TLS-Zertifikaten an Hand der System-Root-CA">
163c163
< <dsa 2012 2483 strongswan "Authentication bypass">
---
> <dsa 2012 2483 strongswan "Authentifizierungs-Bypass">
165c165
< <dsa 2012 2484 nut "Denial of service">
---
> <dsa 2012 2484 nut "Dienstblockade">
167c167
< <dsa 2012 2485 imp4 "Cross site scripting">
---
> <dsa 2012 2485 imp4 "Cross-Site-Scripting">
169c169
< <dsa 2012 2486 bind9 "Denial of service">
---
> <dsa 2012 2486 bind9 "Dienstblockade">
171c171
< <dsa 2012 2487 openoffice.org "Buffer overflow">
---
> <dsa 2012 2487 openoffice.org "Pufferüberlauf">
173c173
< <dsa 2012 2488 iceweasel "Multiple issues">
---
> <dsa 2012 2488 iceweasel "Mehrere Probleme">
175c175
< <dsa 2012 2489 iceape "Multiple issues">
---
> <dsa 2012 2489 iceape "Mehrere Probleme">
177c177
< <dsa 2012 2490 nss "Denial of service">
---
> <dsa 2012 2490 nss "Dienstblockade">
179c179
< <dsa 2012 2491 postgresql-8.4 "Multiple issues">
---
> <dsa 2012 2491 postgresql-8.4 "Mehrere Probleme">
181c181
< <dsa 2012 2492 php5 "Buffer overflow">
---
> <dsa 2012 2492 php5 "Pufferüberlauf">
183c183
< <dsa 2012 2493 asterisk "Denial of service">
---
> <dsa 2012 2493 asterisk "Dienstblockade">
185c185
< <dsa 2012 2494 ffmpeg "Multiple issues">
---
> <dsa 2012 2494 ffmpeg "Mehrere Probleme">
187c187
< <dsa 2012 2495 openconnect "Buffer overflow">
---
> <dsa 2012 2495 openconnect "Pufferüberlauf">
189c189
< <dsa 2012 2497 quagga "Denial of service">
---
> <dsa 2012 2497 quagga "Dienstblockade">
191c191
< <dsa 2012 2498 dhcpcd "Remote stack overflow">
---
> <dsa 2012 2498 dhcpcd "Entfernter Stapelüberlauf">
193c193
< <dsa 2012 2499 icedove "Multiple issues">
---
> <dsa 2012 2499 icedove "Mehrere Probleme">
195c195
< <dsa 2012 2500 mantis "Multiple issues">
---
> <dsa 2012 2500 mantis "Mehrere Probleme">
197c197
< <dsa 2012 2501 xen "Multiple issues">
---
> <dsa 2012 2501 xen "Mehrere Probleme">
199c199
< <dsa 2012 2502 python-crypto "Programming error">
---
> <dsa 2012 2502 python-crypto "Programmierfehler">
201c201
< <dsa 2012 2503 bcfg2 "Shell command injection">
---
> <dsa 2012 2503 bcfg2 "Injektion von Shell-Befehlen">
203c203
< <dsa 2012 2504 libspring-2.5-java "Information disclosure">
---
> <dsa 2012 2504 libspring-2.5-java "Informationsoffenlegung">
205c205
< <dsa 2012 2505 zendframework "Information disclosure">
---
> <dsa 2012 2505 zendframework "Informationsoffenlegung">
207c207
< <dsa 2012 2506 libapache-mod-security "Modsecurity bypass">
---
> <dsa 2012 2506 libapache-mod-security "Modsicherheits-Bypass">
209c209
< <dsa 2012 2507 openjdk-6 "Multiple issues">
---
> <dsa 2012 2507 openjdk-6 "Mehrere Probleme">
211c211
< <dsa 2012 2508 kfreebsd-8 "Privilege escalation">
---
> <dsa 2012 2508 kfreebsd-8 "Privilegeskalation">
213c213
< <dsa 2012 2509 pidgin "Remote code execution">
---
> <dsa 2012 2509 pidgin "Entfernte Codeausführung">
215c215
< <dsa 2012 2510 extplorer "Cross-site request forgery">
---
> <dsa 2012 2510 extplorer "Siteübergreifende Abfragefälschung">
217c217
< <dsa 2012 2511 puppet "Multiple issues">
---
> <dsa 2012 2511 puppet "Mehrere Probleme">
219c219
< <dsa 2012 2512 mono "Missing input sanitising">
---
> <dsa 2012 2512 mono "Fehlende Eingabeüberprüfung">
221c221
< <dsa 2012 2513 iceape "Multiple issues">
---
> <dsa 2012 2513 iceape "Mehrere Probleme">
223c223
< <dsa 2012 2514 iceweasel "Multiple issues">
---
> <dsa 2012 2514 iceweasel "Mehrere Probleme">
225c225
< <dsa 2012 2515 nsd3 "Null pointer dereference">
---
> <dsa 2012 2515 nsd3 "Nullzeiger-Dereferenzierung">
227c227
< <dsa 2012 2516 isc-dhcp "Denial of service">
---
> <dsa 2012 2516 isc-dhcp "Dienstblockade">
229c229
< <dsa 2012 2517 bind9 "Denial of service">
---
> <dsa 2012 2517 bind9 "Dienstblockade">
231c231
< <dsa 2012 2518 krb5 "Denial of service">
---
> <dsa 2012 2518 krb5 "Dienstblockade">
233c233
< <dsa 2012 2519 isc-dhcp "Denial of service">
---
> <dsa 2012 2519 isc-dhcp "Dienstblockade">
235c235
< <dsa 2012 2520 openoffice.org "Multiple heap-based buffer overflows">
---
> <dsa 2012 2520 openoffice.org "Mehrfache Heap-basierte Pufferüberläufe">
237c237
< <dsa 2012 2521 libxml2 "Integer overflows">
---
> <dsa 2012 2521 libxml2 "Integer-Überläufe">
239c239
< <dsa 2012 2522 fckeditor "Cross site scripting">
---
> <dsa 2012 2522 fckeditor "Cross-Site-Scripting">
241c241
< <dsa 2012 2523 globus-gridftp-server "Programming error">
---
> <dsa 2012 2523 globus-gridftp-server "Programmierfehler">
243c243
< <dsa 2012 2523 globus-gridftp-server-control "Programming error">
---
> <dsa 2012 2523 globus-gridftp-server-control "Programmierfehler">
245c245
< <dsa 2012 2524 openttd "Multiple issues">
---
> <dsa 2012 2524 openttd "Mehrere Probleme">
247c247
< <dsa 2012 2525 expat "Multiple issues">
---
> <dsa 2012 2525 expat "Mehrere Probleme">
249c249
< <dsa 2012 2526 libotr "Buffer overflow">
---
> <dsa 2012 2526 libotr "Pufferüberlauf">
251c251
< <dsa 2012 2527 php5 "Multiple issues">
---
> <dsa 2012 2527 php5 "Mehrere Probleme">
253c253
< <dsa 2012 2528 icedove "Multiple issues">
---
> <dsa 2012 2528 icedove "Mehrere Probleme">
255c255
< <dsa 2012 2529 python-django "Multiple issues">
---
> <dsa 2012 2529 python-django "Mehrere Probleme">
257c257
< <dsa 2012 2530 rssh "Shell command injection">
---
> <dsa 2012 2530 rssh "Injektion von Shell-Befehlen">
259c259
< <dsa 2012 2531 xen "Denial of service">
---
> <dsa 2012 2531 xen "Dienstblockade">
261c261
< <dsa 2012 2532 libapache2-mod-rpaf "Denial of service">
---
> <dsa 2012 2532 libapache2-mod-rpaf "Dienstblockade">
263c263
< <dsa 2012 2533 pcp "Multiple issues">
---
> <dsa 2012 2533 pcp "Mehrere Probleme">
265c265
< <dsa 2012 2534 postgresql-8.4 "Multiple issues">
---
> <dsa 2012 2534 postgresql-8.4 "Mehrere Probleme">
267c267
< <dsa 2012 2535 rtfm "Cross-site scripting">
---
> <dsa 2012 2535 rtfm "Cross-Site-Scripting">
269c269
< <dsa 2012 2536 otrs2 "Cross-site scripting">
---
> <dsa 2012 2536 otrs2 "Cross-Site-Scripting">
271c271
< <dsa 2012 2537 typo3-src "Multiple issues">
---
> <dsa 2012 2537 typo3-src "Mehrere Probleme">
273c273
< <dsa 2012 2538 moin "Privilege escalation">
---
> <dsa 2012 2538 moin "Privilegeskalation">
275c275
< <dsa 2012 2539 zabbix "SQL injection">
---
> <dsa 2012 2539 zabbix "SQL-Injektion">
277c277
< <dsa 2012 2540 mahara "Cross-site scripting">
---
> <dsa 2012 2540 mahara "Cross-Site-Scripting">
279c279
< <dsa 2012 2541 beaker "Information disclosure">
---
> <dsa 2012 2541 beaker "Informationsoffenlegung">
281c281
< <dsa 2012 2542 qemu-kvm "Multiple issues">
---
> <dsa 2012 2542 qemu-kvm "Mehrere Probleme">
283c283
< <dsa 2012 2543 xen-qemu-dm-4.0 "Multiple issues">
---
> <dsa 2012 2543 xen-qemu-dm-4.0 "Mehrere Probleme">
285c285
< <dsa 2012 2544 xen "Denial of service">
---
> <dsa 2012 2544 xen "Dienstblockade">
287c287
< <dsa 2012 2545 qemu "Multiple issues">
---
> <dsa 2012 2545 qemu "Mehrere Probleme">
289c289
< <dsa 2012 2546 freeradius "Code execution">
---
> <dsa 2012 2546 freeradius "Codeausführung">
291c291
< <dsa 2012 2547 bind9 "Improper assert">
---
> <dsa 2012 2547 bind9 "Ungünstige Annahme">
293c293
< <dsa 2012 2548 tor "Multiple issues">
---
> <dsa 2012 2548 tor "Mehrere Probleme">
295c295
< <dsa 2012 2549 devscripts "Multiple issues">
---
> <dsa 2012 2549 devscripts "Mehrere Probleme">
<define-tag pagetitle>Updated Debian 6.0: 6.0.6 released</define-tag>
<define-tag release_date>2012-09-29</define-tag>
#use wml::debian::news
# $Id:
<define-tag release>6.0</define-tag>
<define-tag codename>squeeze</define-tag>
<define-tag revision>6.0.6</define-tag>
<define-tag dsa>
<tr><td align="center"><a href="$(HOME)/security/%0/dsa-%1">DSA-%1</a></td>
<td align="center"><:
my @p = ();
for my $p (split (/,\s*/, "%2")) {
push (@p, sprintf ('<a href="http://packages.debian.org/src:%s";>%s</a>', $p, $p));
}
print join (", ", @p);
:></td><td align="left">%3</td></tr>
</define-tag>
<define-tag correction>
<tr><td><a href="http://packages.debian.org/src:%0";>%0</a></td> <td>%1</td></tr>
</define-tag>
<define-tag srcpkg><a href="http://packages.debian.org/src:%0";>%0</a></define-tag>
<p>The Debian project is pleased to announce the sixth update of its
stable distribution Debian <release> (codename <q><codename></q>).
This update mainly adds corrections for security problems to the stable
release, along with a few adjustments for serious problems. Security advisories
were already published separately and are referenced where available.</p>
<p>
Das Debian-Projekt freut sich, die fünfte Aktualisierung seiner
Stable-Distribution Debian <release> (Codename <q><codename></q>) ankündigen zu
dürfen. Diese Aktualisierung fügt der Stable-Veröffentlichung hauptsächlich
Sicherheitskorrekturen hinzu, zusammen mit Lösungen für einige
ernste Probleme. Für sie sind bereits separate Sicherheitsankündigungen
veröffentlicht worden, auf die, wenn möglich, verwiesen wird.
</p>
-----
<p>Please note that this update does not constitute a new version of Debian
<release> but only updates some of the packages included. There is
no need to throw away <release> CDs or DVDs but only to update via an
up-to-date Debian mirror after an installation, to cause any out of date
packages to be updated.</p>
<p>Bitte beachten Sie, dass diese Aktualisierung keine neue Version von
Debian <release> darstellt, sondern nur einige der enthaltenen Pakete
auffrischt. Es gibt keinen Grund, <release>-CDs oder -DVDs wegzuwerfen,
sondern nur für den Abgleich neuer Installationen mit einem aktuellen
Debian-Spiegelserver, damit alle veralteten Pakete ausgetauscht werden.</p>
-----
<p>Those who frequently install updates from security.debian.org won't have
to update many packages and most updates from security.debian.org are
included in this update.</p>
<p>Wer häufig Aktualisierungen von security.debian.org herunterlädt, wird
nicht viele Pakete auf den neuesten Stand bringen müssen und die meisten
Aktualisierungen von security.debian.org sind in dieser Revision enthalten.</p>
-----
<p>New installation media and CD and DVD images containing updated packages
will be available soon at the regular locations.</p>
<p>Neue Installationsmedien sowie CD- und DVD-Abbilder mit den neuen Paketen
können bald von den gewohnten Orten bezogen werden.</p>
-----
<p>Upgrading to this revision online is usually done by pointing the
aptitude (or apt) package tool (see the sources.list(5) manual page) to
one of Debian's many FTP or HTTP mirrors. A comprehensive list of
mirrors is available at:</p>
<div class="center">
<a href="$(HOME)/mirror/list">http://www.debian.org/mirror/list</a>
</div>
<p>Für das Online-Upgrade auf diese Version wird in der Regel die Aptitude-
(oder APT-) Paketverwaltung auf einen der vielen Debian-FTP- oder
HTTP-Spiegel verwiesen (siehe auch die Handbuchseite zu sources.list(5)).
Eine vollständige Liste der Spiegelserver findet sich unter:</p>
<div class="center">
<a href="$(HOME)/mirror/list">http://www.debian.org/mirror/list</a>
</div>
-----
<h2>Miscellaneous Bugfixes</h2>
<p>This stable update adds a few important corrections to the following
packages:</p>
<h2>Verschiedene Fehlerkorrekturen</h2>
<p>Diese Stable-Aktualisierung nimmt an den folgenden Paketen einige wichtige
Korrekturen vor:</p>
-----
<table border=0>
<tr><th>Package</th> <th>Reason</th></tr>
<correction alpine "Fix crash in embedded UW-IMAP copy">
<correction apache2 "mod_negotiation - fix CVE-2012-2687; mod_cache - don't cache partial connections; read timeouts should result in a 408">
<correction automake1.10 "Fix CVE-2012-3386">
<correction automake1.11 "Fix CVE-2012-3386">
<correction automake1.7 "Fix CVE-2012-3386">
<correction automake1.9 "Fix CVE-2012-3386">
<correction base-files "Update /etc/debian_version for the point release">
<correction checkgmail "Fix GMail authentication issues">
<correction clamav "New upstream release">
<correction debian-archive-keyring "Add wheezy stable and archive signing keys">
<correction dpkg "Ensure a reliable unpack on SELinux systems">
<correction eglibc "Really enable patches/any/cvs-dlopen-tls.diff; fix FORTIFY_SOURCE format string protection bypass; fix a DoS in RPC implementation">
<correction emesene "Update contact end-point to local-bay.contacts.msn.com">
<correction geshi "Fix 'Local File Inclusion Vulnerability in contrib script'">
<correction gosa "Security fix (missing escaping)">
<correction ia32-libs "Update packages">
<correction libconfig-inifiles-perl "Fix insecure temporary file use">
<correction libgc "Check for integer overflow in internal malloc and calloc routines">
<correction libmtp "Fix device flags for some devices; add support for new devices">
<correction libxslt "Fix CVE-2011-1202, CVE-2011-3970, CVE-2012-2825">
<correction links2 "Security fixes">
<correction linux-2.6 "DRM fixes; leap second fix; security fixes; various driver fixes">
<correction linux-kernel-di-amd64-2.6 "Rebuild against linux-2.6 2.6.32-46">
<correction linux-kernel-di-armel-2.6 "Rebuild against linux-2.6 2.6.32-46">
<correction linux-kernel-di-i386-2.6 "Rebuild against linux-2.6 2.6.32-46">
<correction linux-kernel-di-ia64-2.6 "Rebuild against linux-2.6 2.6.32-46">
<correction linux-kernel-di-mips-2.6 "Rebuild against linux-2.6 2.6.32-46">
<correction linux-kernel-di-mipsel-2.6 "Rebuild against linux-2.6 2.6.32-46">
<correction linux-kernel-di-powerpc-2.6 "Rebuild against linux-2.6 2.6.32-46">
<correction linux-kernel-di-s390-2.6 "Rebuild against linux-2.6 2.6.32-46">
<correction linux-kernel-di-sparc-2.6 "Rebuild against linux-2.6 2.6.32-46">
<correction lockfile-progs "Ensure the correct PID is used when creating lockfiles">
<correction mysql-mmm "Add dependency on libpath-class-perl">
<correction network-manager "Stop allowing ad-hoc WPA networks to be created; kernel bugs mean they get created as open networks">
<correction nss-pam-ldapd "Support larger gecos values; reliability fixes">
<correction nvidia-graphics-drivers "Fix information leak in the kernel module; fix arbitrary memory access vulnerability; fix local privilege escalation through VGA window manipulation">
<correction nvidia-graphics-modules "Rebuild against 195.36.31-6squeeze1 kernel modules for security fixes; rebuild to fix CVE-2012-4225">
<correction php-memcached "Fix session.gc_maxlifetime handling">
<correction plymouth "Fix the init script to not fail when the package is removed">
<correction policyd-weight "Remove rfc-ignorant.org RBLs (due to upcoming shutdown) and rbl.ipv6-world.net">
<correction postgresql-common "Do not remove the PID file after SIGKILLing the postmaster in the "last-ditch effort to shut down" in --force mode">
<correction powertop "Fix segfault on newer kernels with large config files">
<correction publican "Add dependency and build-dependency on libio-string-perl">
<correction rstatd "Support Linux 3.x kernels">
<correction spip "Fix base name disclosure; security fixes">
<correction tor "New upstream; fix TLS 1.1/1.2 renegotiation with openssl 1.0.1; fix potential DOS; fix two crashes and an information disclosure issue">
<correction ttb "Add dependency on python-glade2">
<correction vte "Fix a memory exhaustion vulnerability">
<correction wims "Fix installation problem">
<correction wireshark "Fix crashes in ANSI A detector and pcap / pcap-ng parsers">
<correction xserver-xorg-video-intel "UXA/glyphs: fall back instead of crashing on large strings">
<correction yaws "Fix RNG strength; fix mail config loading">
</table>
<h2>Security Updates</h2>
-----
<p>This revision adds the following security updates to the stable
release. The Security Team has already released an advisory for each of
these updates:</p>
<h2>Sicherheitsaktualisierungen</h2>
<p>Diese Revision fügt der Stable-Veröffentlichung die folgenden
Sicherheitsaktualisierungen hinzu. Das Sicherheits-Team hat bereits für jede
davon eine Ankündigung veröffentlicht:</p>
-----
<table border=0>
<tr><th>Advisory ID</th> <th>Package</th> <th>Correction(s)</th></tr>
<dsa 2012 2457 iceweasel "Regression fix">
<dsa 2012 2458 iceape "Regression fix">
<dsa 2012 2465 php5 "Multiple issues">
<dsa 2012 2466 rails "Cross site scripting">
<dsa 2012 2467 mahara "Insecure defaults">
<dsa 2012 2468 libjakarta-poi-java "Unbounded memory allocation">
<dsa 2012 2470 wordpress "Multiple issues">
<dsa 2012 2471 ffmpeg "Multiple issues">
<dsa 2012 2472 gridengine "Privilege escalation">
<dsa 2012 2473 openoffice.org "Buffer overflow">
<dsa 2012 2474 ikiwiki "Cross-site scripting">
<dsa 2012 2475 openssl "Integer underflow">
<dsa 2012 2476 pidgin-otr "Format string vulnerability">
<dsa 2012 2477 sympa "Authorization bypass">
<dsa 2012 2478 sudo "Parsing error">
<dsa 2012 2479 libxml2 "Off-by-one">
<dsa 2012 2480 request-tracker3.8 "Regression">
<dsa 2012 2481 arpwatch "Fails to drop supplementary groups">
<dsa 2012 2482 libgdata "No verification of TLS certificates against system root CA">
<dsa 2012 2483 strongswan "Authentication bypass">
<dsa 2012 2484 nut "Denial of service">
<dsa 2012 2485 imp4 "Cross site scripting">
<dsa 2012 2486 bind9 "Denial of service">
<dsa 2012 2487 openoffice.org "Buffer overflow">
<dsa 2012 2488 iceweasel "Multiple issues">
<dsa 2012 2489 iceape "Multiple issues">
<dsa 2012 2490 nss "Denial of service">
<dsa 2012 2491 postgresql-8.4 "Multiple issues">
<dsa 2012 2492 php5 "Buffer overflow">
<dsa 2012 2493 asterisk "Denial of service">
<dsa 2012 2494 ffmpeg "Multiple issues">
<dsa 2012 2495 openconnect "Buffer overflow">
<dsa 2012 2497 quagga "Denial of service">
<dsa 2012 2498 dhcpcd "Remote stack overflow">
<dsa 2012 2499 icedove "Multiple issues">
<dsa 2012 2500 mantis "Multiple issues">
<dsa 2012 2501 xen "Multiple issues">
<dsa 2012 2502 python-crypto "Programming error">
<dsa 2012 2503 bcfg2 "Shell command injection">
<dsa 2012 2504 libspring-2.5-java "Information disclosure">
<dsa 2012 2505 zendframework "Information disclosure">
<dsa 2012 2506 libapache-mod-security "Modsecurity bypass">
<dsa 2012 2507 openjdk-6 "Multiple issues">
<dsa 2012 2508 kfreebsd-8 "Privilege escalation">
<dsa 2012 2509 pidgin "Remote code execution">
<dsa 2012 2510 extplorer "Cross-site request forgery">
<dsa 2012 2511 puppet "Multiple issues">
<dsa 2012 2512 mono "Missing input sanitising">
<dsa 2012 2513 iceape "Multiple issues">
<dsa 2012 2514 iceweasel "Multiple issues">
<dsa 2012 2515 nsd3 "Null pointer dereference">
<dsa 2012 2516 isc-dhcp "Denial of service">
<dsa 2012 2517 bind9 "Denial of service">
<dsa 2012 2518 krb5 "Denial of service">
<dsa 2012 2519 isc-dhcp "Denial of service">
<dsa 2012 2520 openoffice.org "Multiple heap-based buffer overflows">
<dsa 2012 2521 libxml2 "Integer overflows">
<dsa 2012 2522 fckeditor "Cross site scripting">
<dsa 2012 2523 globus-gridftp-server "Programming error">
<dsa 2012 2523 globus-gridftp-server-control "Programming error">
<dsa 2012 2524 openttd "Multiple issues">
<dsa 2012 2525 expat "Multiple issues">
<dsa 2012 2526 libotr "Buffer overflow">
<dsa 2012 2527 php5 "Multiple issues">
<dsa 2012 2528 icedove "Multiple issues">
<dsa 2012 2529 python-django "Multiple issues">
<dsa 2012 2530 rssh "Shell command injection">
<dsa 2012 2531 xen "Denial of service">
<dsa 2012 2532 libapache2-mod-rpaf "Denial of service">
<dsa 2012 2533 pcp "Multiple issues">
<dsa 2012 2534 postgresql-8.4 "Multiple issues">
<dsa 2012 2535 rtfm "Cross-site scripting">
<dsa 2012 2536 otrs2 "Cross-site scripting">
<dsa 2012 2537 typo3-src "Multiple issues">
<dsa 2012 2538 moin "Privilege escalation">
<dsa 2012 2539 zabbix "SQL injection">
<dsa 2012 2540 mahara "Cross-site scripting">
<dsa 2012 2541 beaker "Information disclosure">
<dsa 2012 2542 qemu-kvm "Multiple issues">
<dsa 2012 2543 xen-qemu-dm-4.0 "Multiple issues">
<dsa 2012 2544 xen "Denial of service">
<dsa 2012 2545 qemu "Multiple issues">
<dsa 2012 2546 freeradius "Code execution">
<dsa 2012 2547 bind9 "Improper assert">
<dsa 2012 2548 tor "Multiple issues">
<dsa 2012 2549 devscripts "Multiple issues">
</table>
-----
<h2>Debian Installer</h2>
<p>
The installer has been rebuilt to include the fixes incorporated
into stable by the point release.
</p>
<h2>Debian-Installer</h2>
<p>
Der Installer wurde neu gebaut, damit er die Fehlerkorrekturen enthält, welche
diese Zwischenveröffentlichung in Stable eingebracht hat.
</p>
-----
<h2>Removed packages</h2>
<p>The following packages were removed due to circumstances beyond our
control:</p>
<table border=0>
<tr><th>Package</th> <th>Reason</th></tr>
<correction blockade "Non-distributable data files">
<correction kcheckgmail "Unmaintained; broken by Google changes">
<correction libtrash "Unmaintained; broken">
</table>
<h2>Entfernte Pakete</h2>
<p>
Die folgenden Pakete wurden auf Grund von Umständen entfernt, die außerhalb
unserer Kontrolle liegen:
</p>
<table border=0>
<tr><th>Paket</th> <th>Grund</th></tr>
<correction blockade "Nichtverteilbare Datendateien">
<correction kcheckgmail "Nicht betreut; durch Änderungen bei Google beschädigt">
<correction libtrash "Nicht betreut; defekt">
</table>
-----
<h2>URLs</h2>
<p>The complete lists of packages that have changed with this
revision:</p>
<h2>URLs</h2>
<p>Die vollständige Liste von Paketen, die sich mit dieser Revision geändert
haben:</p>
-----
<div class="center">
<url "http://ftp.debian.org/debian/dists/<downcase <codename>>/ChangeLog">
</div>
-----
<p>The current stable distribution:</p>
<p>Die derzeitige Stable-Distribution:</p>
------
<div class="center">
<url "http://ftp.debian.org/debian/dists/stable/";>
</div>
-----
<p>Proposed updates to the stable distribution:</p>
<p>Vorgeschlagene Aktualisierungen für die Stable-Distribution:</p>
-----
<div class="center">
<url "http://ftp.debian.org/debian/dists/proposed-updates";>
</div>
-----
<p>stable distribution information (release notes, errata etc.):</p>
<p>Informationen zur Stable-Distribution (Veröffentlichungshinweise, Errata
usw.):</p>
-----
<div class="center">
<a
href="$(HOME)/releases/stable/">http://www.debian.org/releases/stable/</a>
</div>
-----
<p>Security announcements and information:</p>
<p>Sicherheitsankündigungen und -informationen</p>
-----
<div class="center">
<a href="$(HOME)/security/">http://security.debian.org/</a>
</div>
-----
<h2>About Debian</h2>
<p>The Debian Project is an association of Free Software developers who
volunteer their time and effort in order to produce the completely free
operating system Debian.</p>
<h2>Contact Information</h2>
<p>For further information, please visit the Debian web pages at <a
href="$(HOME)/">http://www.debian.org/</a>, send mail to
<press@debian.org>, or contact the stable release team at
<debian-release@lists.debian.org>.</p>
<h2>Über Debian</h2>
<p>Das Debian-Projekt ist eine Vereinigung von Entwicklern Freier Software,
die ihre Kraft und Zeit dafür opfern, das vollständig freie Betriebssystem
Debian zu erschaffen.</p>
<h2>Kontaktinformationen</h2>
<p>Für weitere Informationen besuchen Sie bitte die Debian-Webseiten unter
<a href="$(HOME)/">http://www.debian.org/</a>, schicken eine E-Mail an
<press@debian.org>, oder kontaktieren das Stable-Release-Team
auf Englisch über <debian-release@lists.debian.org>.</p>
Reply to: