[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SUA 34-1] Upcoming Debian GNU/Linux 7 Update (7.1)

Debian Stable Updates Announcement SUA 34-1       http://www.debian.org/
debian-release@lists.debian.org                          Adam D. Barratt
June 10th, 2013

Upcoming Debian GNU/Linux 7 Update (7.1)

An update to Debian GNU/Linux 7 is scheduled for Saturday, June 15th,
2013. As of now it will include the following bug fixes. They can be
found in “wheezy-proposed-updates”, which is carried by all official

Please note that packages published through security.debian.org are not
listed, but will be included if possible.

Testing and feedback would be appreciated. Bugs should be filed in the
Debian Bug Tracking System, but please make the Release Team aware of
them by copying “debian-release@lists.debian.org” on your mails.

The point release will also include a rebuild of debian-installer.

Miscellaneous Bugfixes

This stable update adds a few important corrections to the following

    Package                       Reason

    alsa-base                     Correctly use /etc/default/alsa-base for configuration, rather than /etc/default/alsa
    apt                           Do not propagate negative scores from rdepends; properly handle if-modfied-since with libcurl/https
    assaultcube-data              Fix updates from squeeze; add missing Breaks/Replaces
    atlas                         Add Breaks: octave3.2 to try and improve some squeeze to wheezy upgrade paths
    base-files                    Update for the point release
    brltty                        Enable accessibility on the installed system if enabled in the installer; enable sound events at gdm banner
    clutter-gst                   Restore multiarch co-installability
    cyrus-imapd-2.4               Fix dataloss during upgrades and links in documentation
    cyrus-sasl2                   Fix heavy CPU usage in saslauthd; fix garbage in output buffer when using canonuser_plugin: ldapdb
    debian-history                Updates for the wheezy release
    debootstrap                   Add support for jessie
    dh-make-drupal                Use HTTPS for connections to drupal.org
    distro-info-data              Update Debian data for the wheezy release; update Ubuntu data to add "saucy" and correct some dates
    empathy                       Handle readonly URL field in Google Talk vCards
    freebsd-utils                 Don't use --pidfile when starting/stopping daemons that don't create one; stop nfsd with the correct signal
    gcc-msp430                    Fix generation of wrong interrupt table for MSP430FR5xxx targets, resulting in blown security fuses
    get-iplayer                   Update SWF verification URL after changes by the BBC
    gitg                          Fix run-time crashes and drag'n'drop
    gnome-settings-daemon         Fix segfault on mipsel; fix crash when the "Disable touchpad while typing" option is activated
    gpsd                          Fix crash and potential DoS
    isc-dhcp                      Fix CVE-2013-2494; set --with-ldapcrypto to restore openssl support
    isdnutils                     Create isdnctrl symlink as /dev/isdnctrl and cleanup possibly misplaced symlink /isdnctrl
    keystone                      Fix CVE-2013-2059
    lapack                        Fix some routines which produce incorrect results in multithreaded environments
    libdatetime-timezone-perl     Update for 2013c timezone data
    libiodbc2                     Find odbc drivers in a system dir, fixing usability and co-installability with multiarch odbc drivers
    libnss-myhostname             Ignore link-local addresses
    libpam-mklocaluser            Fix runcmd()
    libquvi-scripts               New upstream release
    libreoffice                   Remove lib/servlet.jar; fix --view; remove python3-uno dependencies
    libvirt                       Fix leak in virStorageBackendLogicalMakeVol; allow xen toolstack to find its binaries
    linux                         Incorporate new upstream stable updates; update drm/agp to 3.4.47
    lsb                           Update for new X.Y stable versioning; add jessie
    modsecurity-apache            Fix NULL pointer dereference. CVE-2013-2765
    mozc                          Fix connection error running uim-mozc as root; fix dependencies of fcitx-mozc
    munin                         Fix several limit checks and crashes; ignore devtmpfs in df plugin
    nbd                           Fix handling of NBD_NAME by nbd-client initscript; several stability fixes
    nfs-utils                     Fix CVE-2013-1923, getopt handling for -R and hangs in mountd
    nvidia-graphics-drivers       Add missing dependency on nvidia-support
    octave                        Fix rcond function
    openblas                      Fix crashes and use of uninitialised data; fix FTBFS on powerpc machines with Power7 arch
    openvpn                       Fix use of non-constant-time memcmp in HMAC comparison. CVE-2013-2061
    pcsc-lite                     Fix upgrades from squeeze and check for running systemd
    php5                          Fix CVE-2013-1643 patch, crash in garbage collection, drops in FPM receiving data in FastCGI,
                                  libmagic detection of Microsoft Office documents, and mssql connector with Azure SQL;
                                  fix $_SERVER[REQUEST_TIME] in filter SAPI; make the Breaks on php5-suhosin versioned to allow backports
    pristine-tar                  Update list of allowed parameters for wheezy to support files created with newer versions
    profnet                       Fix fortran runtime error
    psqlodbc                      Versioned Breaks: libiodbc2 (<= 3.52.7-2), it is multiarch-aware now; fixes co-installability with KDE
    py3dns                        Fix regression in AAAA query result type
    readline5                     Fix multiarch paths
    rhash                         Fix incorrect SHA-512 hashes of some messages and incorrect GOST hashes on some architectures
    ruby-tmail                    Fix parsing of unquoted attachment filenames
    schleuder                     Fix -sendkey, plugin directory configuration and member listing
    sl-modem                      Add dummy empty prerm script to work around upgrade failures from squeeze
    smcroute                      Fix a NULL pointer dereferencing in interface vector initialization
    systemtap                     Support /sys/kernel/debug mounted 0700 to cope with new debugfs permissions introduced by linux 3.2.29-1
    tasksel                       Fix unintended auto-selection of ssh-server task on desktop machines
    tzdata                        New upstream version
    wdm                           Ignore pam_selinux.so failures when the module does not exist (e.g. on non-Linux architectures)
    win32-loader                  Rebuild to update the embedded dependencies
    xorg                          Add xserver-xorg-input-vmmouse to -all on i386 and amd64

A complete list of all accepted and rejected packages together with
rationale is on the preparation page for this revision:


If you encounter any issues, please don't hesitate to get in touch with
the Debian Release Team at “debian-release@lists.debian.org”.

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to: