------------------------------------------------------------------------- Debian Stable Updates Announcement SUA 61-1 https://www.debian.org/ debian-release@lists.debian.org Adam D. Barratt July 14th, 2014 ------------------------------------------------------------------------- Upcoming Debian 6.0 Update (6.0.10) The final update to Debian 6.0 is scheduled for Saturday, July 19th, 2014. As of now it will include the following bug fixes. They can be found in "squeeze-proposed-updates", which is carried by all official mirrors. Please note that packages published through security.debian.org are not listed, but will be included if possible. Some of the updates below are also already available through "squeeze-updates". Testing and feedback would be appreciated. Bugs should be filed in the Debian Bug Tracking System, but please make the Release Team aware of them by copying "debian-release@lists.debian.org" on your mails. The point release will also include a rebuild of debian-installer. Miscellaneous Bugfixes ---------------------- This oldstable update adds a few important corrections to the following packages: Package Reason base-files Update for the point release catfish Fix untrusted search path vulnerability [CVE-2014-2093 CVE-2014-2094 CVE-2014-2095 CVE-2014-2096] clamav New upstream release cups Fix XSS in the web interface debian-edu-archive-keyring Update keyring to extend expiry on archive key exim4 Robustness fix for the Dovecot authenticator; use exim's ${quote:xxx} operator when invoking spfquery to disallow bypassing of SPF validation by using special mailbox names ia32-libs Update packages from oldstable and oldstable-security libfinance-quote-perl Update URLs of Yahoo! Finance services mobile-broadband-provider-info Update included data postgresql-8.4 New upstream micro-release spip Fix missing escaping; update security screen suds Remove temporary directories on exit tzdata New upstream release A complete list of all accepted and rejected packages together with rationale is on the preparation page for this revision: <https://release.debian.org/proposed-updates/oldstable.html> Removed packages ---------------- The following packages will be removed due to circumstances beyond our control: Package Reason flashplugin-nonfree Security issues whatsnewfm Obsolete as freecode.com is no longer accepting submissions hlbrw Depends on to-be-removed hlbr hlbr Broken zabbix Security support removed If you encounter any issues, please don't hesitate to get in touch with the Debian Release Team at "debian-release@lists.debian.org".
Attachment:
signature.asc
Description: This is a digitally signed message part