-------------------------------------------------------------------------
Debian Stable Updates Announcement SUA 61-1 https://www.debian.org/
debian-release@lists.debian.org Adam D. Barratt
July 14th, 2014
-------------------------------------------------------------------------
Upcoming Debian 6.0 Update (6.0.10)
The final update to Debian 6.0 is scheduled for Saturday, July 19th, 2014.
As of now it will include the following bug fixes. They can be found in
"squeeze-proposed-updates", which is carried by all official mirrors.
Please note that packages published through security.debian.org are not
listed, but will be included if possible. Some of the updates below are
also already available through "squeeze-updates".
Testing and feedback would be appreciated. Bugs should be filed in the
Debian Bug Tracking System, but please make the Release Team aware of
them by copying "debian-release@lists.debian.org" on your mails.
The point release will also include a rebuild of debian-installer.
Miscellaneous Bugfixes
----------------------
This oldstable update adds a few important corrections to the following
packages:
Package Reason
base-files Update for the point release
catfish Fix untrusted search path vulnerability [CVE-2014-2093 CVE-2014-2094 CVE-2014-2095 CVE-2014-2096]
clamav New upstream release
cups Fix XSS in the web interface
debian-edu-archive-keyring Update keyring to extend expiry on archive key
exim4 Robustness fix for the Dovecot authenticator; use exim's ${quote:xxx} operator when invoking spfquery to disallow bypassing of SPF validation by using special mailbox names
ia32-libs Update packages from oldstable and oldstable-security
libfinance-quote-perl Update URLs of Yahoo! Finance services
mobile-broadband-provider-info Update included data
postgresql-8.4 New upstream micro-release
spip Fix missing escaping; update security screen
suds Remove temporary directories on exit
tzdata New upstream release
A complete list of all accepted and rejected packages together with
rationale is on the preparation page for this revision:
<https://release.debian.org/proposed-updates/oldstable.html>
Removed packages
----------------
The following packages will be removed due to circumstances beyond our
control:
Package Reason
flashplugin-nonfree Security issues
whatsnewfm Obsolete as freecode.com is no longer accepting submissions
hlbrw Depends on to-be-removed hlbr
hlbr Broken
zabbix Security support removed
If you encounter any issues, please don't hesitate to get in touch with
the Debian Release Team at "debian-release@lists.debian.org".
Attachment:
signature.asc
Description: This is a digitally signed message part