![]() New upstream stable release update ABI to 4.9.0-13 Security fixes security fixes fix a buffer read overflow and an unsigned integer overflow New upstream stable release add an unversioned meta-packageĬomment out _error_handler() call again, fixing issues with consumers ![]() Use explicit 4 digit years, fixing build and usage issues Tighten check on LDAP success/failure fix compatibility with newer PHP versions backport several other patches replace (un)serialize with json_encode/json_decode to mitigate PHP object injection ĭowngrade some microcodes to previously released revisions, working around hangs on boot on Skylake-U/Y and Skylake Xeon E3įix multiple security issues affecting BeanDeserializerFactory Return bad identity error if identity is unset įix memory corruption issue fix memory leak add support for zero length session tickets, fix connection errors on TLS1.2 sessions to some hosting providers New upstream release use a CNAME to redirect to the correct CDN for metadata do not abort startup if the XML metadata file is invalid add the Linux Foundation public GPG keys for firmware and metadata raise the metadata limit to 10MB Update support status of several packagesįix use of weak TLS ciphers įix denial of service issue fix over-restrictive fix for CVE-2018-10958 and CVE-2018-10999 ![]() New upstream stable release prevent a denial of service issue prevent use-after-free if two usernames share a uid New upstream version, compatible with newer Thunderbird versionsįix heap buffer overflow and the `ippReadIO` function may under-read an extension field Update Mozilla CA bundle to 2.40, blacklist distrusted Symantec roots and expired AddTrust External Root remove e-mail only certificatesįix XML External Entity injection issue Update /etc/debian_version for the point releaseįix server-side request forgery via xlink:href attributes Rebuild against recent golang to pick up security fixesĭvi: Mitigate command injection attacks by quoting filename fix overflow checks in tiff backend tiff: Handle failure from TIFFReadRGBAImageOriented Īdd transitional package bacula-director-common, avoiding loss of /etc/bacula/nf when purged make PID files owned by root This oldstable update adds a few important corrections to the following packages: Package Pointing the package management system at one of Debian's many HTTP mirrors.Ī comprehensive list of mirrors is available at: Upgrading an existing installation to this revision can be achieved by New installation images will be available soon at the regular locations. To update many packages, and most such updates are Those who frequently install updates from won't have Packages can be upgraded to the current versions using an up-to-date Debian Please note that the point release does not constitute a new version of Debianĩ but only updates some of the packages included. Should upgrade to Debian 10, or see for detailsĪbout the subset of architectures and packages covered by the Long Term Support Users wishing to continue to receive security support Have already been published separately and are referenced where available.Īfter this point release, Debian's Security and Release Teams will no longer be This point release mainly adds corrections for security issues,Īlong with a few adjustments for serious problems. Oldstable distribution Debian 9 (codename stretch). The Debian project is pleased to announce the thirteenth (and final) update of its
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |