------------------------------------------------------------------------
The Debian Project https://www.debian.org/
Debian Project News debian-publicity@lists.debian.org
August 14th, 2014 https://www.debian.org/News/weekly/2014/12/
------------------------------------------------------------------------
Welcome to this year's twelth issue of DPN, the newsletter for the
Debian community. Topics covered in this issue include:
* Debian Day 2014
* Help needed with ejabberd testing
* 2014-Debian Developers per Country
* OpenAmbit is now in unstable
* Debian arm64 port at 85%
* First steps towards source-only uploads
* Check the schedule for DebConf14
* Interviews
* Other news
* New Debian Contributors
* Important Debian Security Advisories
* New and noteworthy packages
* Work-needing packages
* Want to continue reading DPN?
Debian Day 2014
---------------
Debian Day [1] is celebrated on August 16 of each year and this year [2]
it falls on a Saturday. So far it looks as if sixteen towns or cities in
six countries will be celebrating Debian Day in 2014. If you have a
celebration planned, please register on the wiki and add a page about
it. If you don't yet have one planned, why not join us in celebrating
Debian?
1: https://wiki.debian.org/DebianDay
2: https://wiki.debian.org/DebianDay/2014
Help needed with ejabberd testing
---------------------------------
If you are a user of the ejabberd package (an XMPP server), Philipp
Huebner is looking [3] for help testing the latest version which he
recently uploaded.
3: https://lists.debian.org/53BECF23.2040706@debian.org
2014-Debian Developers per Country
----------------------------------
Christian Perrier's annual report [4] on the number of Debian Developers
per Country has been updated for 2014. The report includes data for each
year from 2009 to the present.
4: http://www.perrier.eu.org/weblog/2014/07/29#devel-countries-201308
OpenAmbit is now in unstable
----------------------------
As reported by Christian Perrier in a weblog entry [5], OpenAmbit, a
project which is developing open software for the Suunto Ambit sports
watch, is now in unstable.
5: http://www.perrier.eu.org/weblog/2014/07/18#openambit
Debian arm64 port at 85%
------------------------
Wookey posted to the Debian ARM list declaring the arm64 port open and
making a request for help [6]. The port is 84.5% built with 180 packages
currently queued, which places the overall project extremely close to
the 85% needed for qualification [7]. There are many packages not yet
built from Debian sources which need assistance towards the goal of
bootstrapping arm64 in time for Jessie. A list of the arm64 port
blocking packages [8] is generated once a day.
6: https://lists.debian.org/debian-arm/2014/08/msg00096.html
7: https://ftp-master.debian.org/archive-criteria.html
8: https://people.debian.org/~wookey/bootstrap/blockerlist
First steps towards source-only uploads
---------------------------------------
As a first step towards mandatory source-only uploads, Ansgar Burchardt
announced [9] that source-only uploads into the Debian archive are now
accepted, under some conditions: in particular, the source packages must
be already present in the archive and must not create new binary
packages, and only architecture specific binary packages can be dropped
from the list of files upload.
9: https://lists.debian.org/debian-devel-announce/2014/08/msg00002.html
Check the schedule for DebConf14
--------------------------------
DebConf, the annual conference of the Debian project, will be held this
year in Portland, Oregon, USA, from August 23 to August 31. For people
who cannot attend the conference, DebConf talks will be broadcast live
on the Internet where possible, and videos of the talks will be
published on the web along with the presentation slides. Please check
the full schedule [10] on the website [11] of the DebConf14 conference.
10: https://summit.debconf.org/debconf14/
11: http://debconf14.debconf.org/
Interviews
----------
There has been a DebianEdu interview [12] with Bernd Zeitzen [13] (in
English) who describes, among other things, how he got involved in
Debian Edu and his views about it.
12: http://people.skolelinux.org/pere/blog/tags/intervju/
13: http://people.skolelinux.org/pere/blog/Debian_Edu_interview__Bernd_Zeitzen.html
Other news
----------
The sixth update of the stable distribution of Debian (codename
"Wheezy") was released on July 12 [14].
14: https://www.debian.org/News/2014/20140712
The tenth and last update of the old stable distribution of Debian
(codename "Squeeze") was released on July 19 [15]. Squeeze will receive
no further security updates. Users of the amd64 and i386 architectures
who cannot upgrade to Wheezy should consider using the Squeeze-LTS
distribution [16].
15: https://www.debian.org/News/2014/20140719
16: https://wiki.debian.org/LTS/
The technical comittee [17] published their decision on the default
libjpeg implementation [18] and on continuing support for multiple init
systems [19].
17: https://www.debian.org/devel/tech-ctte
18: https://lists.debian.org/debian-devel-announce/2014/08/msg00000.html
19: https://lists.debian.org/debian-devel-announce/2014/08/msg00001.html
Lucas Nussbaum, Debian project leader, updated the DebConf Chairs
delegation [20]. Martín Ferrari and Tássia Camões replace Holger Levsen
and Gunnar Wolf, and will work together with Moray Allan and act as a
liaison and a constitutional link between the DebConf team and the
Debian probject to ensure the success of DebConf.
20: https://lists.debian.org/debian-devel-announce/2014/08/msg00004.html
New Debian Contributors
-----------------------
10 applicants have been accepted [21] as Debian Developers, 7 applicants
have have been [22] accepted [23] as Debian Maintainers, and 32 people
have started to maintain packages [24] since the previous issue of the
Debian Project News. Please welcome YunQiang Su, Andrey Rahmatullin,
Timo Aaltonen, Andreas Rönnquist, Christophe Siraut, Joao Eriberto Mota
Filho, Markus Frosch, Maarten Bernardus Lankhorst, Klee Dienes, Tobias
Frost, Sandro Knauß, Dimitri Fontaine, Brett Parker, Jean Schurger,
Louis Bouchard, Thomas Moulard, Daniel Jared Dominguez, Chen Baozi, Alin
Andrei, Hans Zandbelt, Samuel Lidén Borell, Jussi Pakkanen, Nigel
Kukard, Marcio de Souza Olivera, Sophie Brun, Alessio Garzi, Olivier
Aubert, Caitlin Matos, Sascha Steinbiss, Chris Cormack, Yoshino
Yoshihito, Evan Hanson, Jean Baptiste Favre, George Ormond Lorch III,
Alex Henrie, Harald Dunkel, Adrien Grellier, Breno Leitao, Arnd
Hannemann, Wolfgang Silbermayr, Alexandre Dantas, Kristof Ralovich,
Anthony F McInerney, Alessandro Ranellucci, Jesse Norell, Pierangelo
Mancusi, Ghislain Antony Vaillant, Joachim Bauch, and Mathieu Parent
into our project!
21: https://nm.debian.org/public/nmlist#done
22: https://lists.debian.org/debian-project/2014/07/msg00007.html
23: https://lists.debian.org/debian-project/2014/07/msg00021.html
24: http://udd.debian.org/cgi-bin/new-maintainers.cgi
Important Debian Security Advisories
------------------------------------
Debian's Security Team recently released advisories for these packages
(among others): dbus [25], linux [26], vlc [27], php5 [28],
phpmyadmin [29], eglibc [30], libav [31], libxml2 [32], fail2ban [33],
openjdk-6 [34], polarssl [35], ruby-activerecord-3.2 [36], drupal7 [37],
acpi-support [38], mysql-5.5 [39], iceweasel [40], openjdk-7 [41],
transmission [42], apache2 [43], cups [44], modsecurity-apache [45],
linux [46], tor [47], nss [48], lzo2 [49], icedove [50], reportbug [51],
openssl [52], drupal7 [53], krb5 [54], wordpress [55], wireshark [56],
libav [57], and kde4libs [58]. Please read them carefully and take the
proper measures.
25: https://www.debian.org/security/2014/dsa-2971
26: https://www.debian.org/security/2014/dsa-2972
27: https://www.debian.org/security/2014/dsa-2973
28: https://www.debian.org/security/2014/dsa-2974
29: https://www.debian.org/security/2014/dsa-2975
30: https://www.debian.org/security/2014/dsa-2976
31: https://www.debian.org/security/2014/dsa-2977
32: https://www.debian.org/security/2014/dsa-2978
33: https://www.debian.org/security/2014/dsa-2979
34: https://www.debian.org/security/2014/dsa-2980
35: https://www.debian.org/security/2014/dsa-2981
36: https://www.debian.org/security/2014/dsa-2982
37: https://www.debian.org/security/2014/dsa-2983
38: https://www.debian.org/security/2014/dsa-2984
39: https://www.debian.org/security/2014/dsa-2985
40: https://www.debian.org/security/2014/dsa-2986
41: https://www.debian.org/security/2014/dsa-2987
42: https://www.debian.org/security/2014/dsa-2988
43: https://www.debian.org/security/2014/dsa-2989
44: https://www.debian.org/security/2014/dsa-2990
45: https://www.debian.org/security/2014/dsa-2991
46: https://www.debian.org/security/2014/dsa-2992
47: https://www.debian.org/security/2014/dsa-2993
48: https://www.debian.org/security/2014/dsa-2994
49: https://www.debian.org/security/2014/dsa-2995
50: https://www.debian.org/security/2014/dsa-2996
51: https://www.debian.org/security/2014/dsa-2997
52: https://www.debian.org/security/2014/dsa-2998
53: https://www.debian.org/security/2014/dsa-2999
54: https://www.debian.org/security/2014/dsa-3000
55: https://www.debian.org/security/2014/dsa-3001
56: https://www.debian.org/security/2014/dsa-3002
57: https://www.debian.org/security/2014/dsa-3003
58: https://www.debian.org/security/2014/dsa-3004
Debian's Backports Team released an advisory for the package:
libreoffice [59]. Please read it carefully and take the proper
measures.
59: https://lists.debian.org/debian-backports-announce/2014/06/msg00000.html
The Debian team in charge of squeeze long term support released a
security update announcement for these packages: openssl [60],
lxml [61], php5 [62], libemail-address-perl [63], gnupg [64], tiff [65],
phpmyadmin [66], linux-2.6 [67], cacti [68], libxml2 [69],
fail2ban [70], postgresql-8.4 [71], cups [72], python-scipy [73],
nss [74], poppler [75], file [76], python2.6 [77], and tor [78]. Please
read them carefully and take the proper measures.
60: https://lists.debian.org/debian-lts-announce/2014/06/msg00007.html
61: https://lists.debian.org/debian-lts-announce/2014/06/msg00008.html
62: https://lists.debian.org/debian-lts-announce/2014/06/msg00009.html
63: https://lists.debian.org/debian-lts-announce/2014/06/msg00010.html
64: https://lists.debian.org/debian-lts-announce/2014/06/msg00011.html
65: https://lists.debian.org/debian-lts-announce/2014/07/msg00000.html
66: https://lists.debian.org/debian-lts-announce/2014/07/msg00001.html
67: https://lists.debian.org/debian-lts-announce/2014/07/msg00002.html
68: https://lists.debian.org/debian-lts-announce/2014/07/msg00003.html
69: https://lists.debian.org/debian-lts-announce/2014/07/msg00004.html
70: https://lists.debian.org/debian-lts-announce/2014/07/msg00007.html
71: https://lists.debian.org/debian-lts-announce/2014/06/msg00008.html
72: https://lists.debian.org/debian-lts-announce/2014/06/msg00009.html
73: https://lists.debian.org/debian-lts-announce/2014/06/msg00010.html
74: https://lists.debian.org/debian-lts-announce/2014/06/msg00011.html
75: https://lists.debian.org/debian-lts-announce/2014/06/msg00012.html
76: https://lists.debian.org/debian-lts-announce/2014/06/msg00013.html
77: https://lists.debian.org/debian-lts-announce/2014/06/msg00014.html
78: https://lists.debian.org/debian-lts-announce/2014/06/msg00006.html
Please note that these are a selection of the more important security
advisories of the last weeks. If you need to be kept up to date about
security advisories released by the Debian Security Team, please
subscribe to the security mailing list [79] (and the separate backports
list [80], stable updates list [81], and long term support security
updates list [82]) for announcements.
79: https://lists.debian.org/debian-security-announce/
80: https://lists.debian.org/debian-backports-announce/
81: https://lists.debian.org/debian-stable-announce/
82: https://lists.debian.org/debian-lts-announce/
New and noteworthy packages
---------------------------
1037 packages were added to the unstable Debian archive recently. Among
many others [83] are:
* asciinema — Record and share your terminal sessions, the right way [84]
* dhcpy6d — MAC address aware DHCPv6 server written in Python [85]
* flowgrind — Distributed network performance measurement tool [86]
* powerline — ultimate statusline/prompt utility [87]
* ratpoints — find rational points on hyperelliptic curves [88]
* rt-app — Test application which simulates a real-time periodic load [89]
* smtpprox — simple efficient SMTP proxy in perl [90]
* stress-ng — tool to load and stress a computer [91]
* tcpcryptd — Opportunistically encrypt network transport [92]
* tiptop — performance monitoring tool for Linux [93]
83: https://packages.debian.org/unstable/main/newpkg
84: https://packages.debian.org/unstable/main/asciinema
85: https://packages.debian.org/unstable/main/dhcpy6d
86: https://packages.debian.org/unstable/main/flowgrind
87: https://packages.debian.org/unstable/main/powerline
88: https://packages.debian.org/unstable/main/ratpoints
89: https://packages.debian.org/unstable/main/rt-app
90: https://packages.debian.org/unstable/main/smtpprox
91: https://packages.debian.org/unstable/main/stress-ng
92: https://packages.debian.org/unstable/main/tcpcryptd
93: https://packages.debian.org/unstable/main/tiptop
Work-needing packages
---------------------
Currently [94] 596 packages are orphaned [95] and 139 packages are up
for adoption [96]: please visit the complete list of packages which need
your help [97].
94: https://lists.debian.org/debian-devel/2014/08/msg00135.html
95: https://www.debian.org/devel/wnpp/orphaned
96: https://www.debian.org/devel/wnpp/rfa
97: https://www.debian.org/devel/wnpp/help_requested
Want to continue reading DPN?
-----------------------------
Please help us create this newsletter. We still need more volunteer
writers to watch the Debian community and report about what is going on.
Please see the contributing page [98] to find out how to help. We're
looking forward to receiving your mail at
<debian-publicity@lists.debian.org>.
98: https://wiki.debian.org/ProjectNews/HowToContribute
This issue of Debian Project News was edited by Cédric Boutillier,
Donald Norwood, Justin B Rye and Paul Wise.
Attachment:
signature.asc
Description: Digital signature