Queue Overview for "proposed-updates"

DSA: 5499

Closes: 1042111

CVEs referenced: CVE-2023-4900 CVE-2023-4901 CVE-2023-4902 CVE-2023-4903 CVE-2023-4904 CVE-2023-4905 CVE-2023-4906 CVE-2023-4907 CVE-2023-4908 CVE-2023-4909

Binary debdiffs: amd64arm64ppc64el

Lintian issues: ppc64elsource

µdebs: present

DSA: 5501

Closes: 1052067

CVEs referenced: CVE-2023-43090

Closes: 1039700 1042083 1049410 1050215

DSA: 5492

µdebs: present

Closes: 1036744 1042753 1043564 1043585 1050622 1051163

CVEs referenced: CVE-2022-48502 CVE-2023-1206 CVE-2023-1989 CVE-2023-20588 CVE-2023-2430 CVE-2023-2898 CVE-2023-34319 CVE-2023-3611 CVE-2023-3772 CVE-2023-3773 CVE-2023-3776 CVE-2023-3777 CVE-2023-3863 CVE-2023-4004 CVE-2023-4015 CVE-2023-40283 CVE-2023-4128 CVE-2023-4132 CVE-2023-4147 CVE-2023-4155 CVE-2023-4194 CVE-2023-4206 CVE-2023-4207 CVE-2023-4208 CVE-2023-4273 CVE-2023-4569 CVE-2023-4622

Binary debdiffs: allamd64arm64armhfi386mips64elmipselppc64els390x

Lintian issues: allamd64arm64armhfi386mips64elmipselppc64els390x

DSA: 5492

µdebs: present

Closes: 1036744 1042753 1043564 1043585 1050622 1051163

CVEs referenced: CVE-2022-48502 CVE-2023-1206 CVE-2023-1989 CVE-2023-20588 CVE-2023-2430 CVE-2023-2898 CVE-2023-34319 CVE-2023-3611 CVE-2023-3772 CVE-2023-3773 CVE-2023-3776 CVE-2023-3777 CVE-2023-3863 CVE-2023-4004 CVE-2023-4015 CVE-2023-40283 CVE-2023-4128 CVE-2023-4132 CVE-2023-4147 CVE-2023-4155 CVE-2023-4194 CVE-2023-4206 CVE-2023-4207 CVE-2023-4208 CVE-2023-4273 CVE-2023-4569 CVE-2023-4622

Binary debdiffs: amd64

Lintian issues: amd64source

DSA: 5492

µdebs: present

Closes: 1036744 1042753 1043564 1043585 1050622 1051163

CVEs referenced: CVE-2022-48502 CVE-2023-1206 CVE-2023-1989 CVE-2023-20588 CVE-2023-2430 CVE-2023-2898 CVE-2023-34319 CVE-2023-3611 CVE-2023-3772 CVE-2023-3773 CVE-2023-3776 CVE-2023-3777 CVE-2023-3863 CVE-2023-4004 CVE-2023-4015 CVE-2023-40283 CVE-2023-4128 CVE-2023-4132 CVE-2023-4147 CVE-2023-4155 CVE-2023-4194 CVE-2023-4206 CVE-2023-4207 CVE-2023-4208 CVE-2023-4273 CVE-2023-4569 CVE-2023-4622

Binary debdiffs: arm64

Lintian issues: arm64source

DSA: 5492

µdebs: present

Closes: 1036744 1042753 1043564 1043585 1050622 1051163

CVEs referenced: CVE-2022-48502 CVE-2023-1206 CVE-2023-1989 CVE-2023-20588 CVE-2023-2430 CVE-2023-2898 CVE-2023-34319 CVE-2023-3611 CVE-2023-3772 CVE-2023-3773 CVE-2023-3776 CVE-2023-3777 CVE-2023-3863 CVE-2023-4004 CVE-2023-4015 CVE-2023-40283 CVE-2023-4128 CVE-2023-4132 CVE-2023-4147 CVE-2023-4155 CVE-2023-4194 CVE-2023-4206 CVE-2023-4207 CVE-2023-4208 CVE-2023-4273 CVE-2023-4569 CVE-2023-4622

Binary debdiffs: i386

Lintian issues: i386source

Closes: 1037158

CVEs referenced: CVE-2023-34416 CVE-2023-37202 CVE-2023-37211 CVE-2023-4046

Lintian issues: source

Closes: 1029002 1039873

µdebs: present

DSA: 5459

Closes: 1041863

CVEs referenced: CVE-2023-20593

Binary debdiffs: amd64i386

Reason: support configuring the onscreen keyboard theme via ArcticaGreeter's gsettings; use 'Compact' OSK layout (instead of Small) which includes special keys such as German Umlauts; fix display of authentication failure messages; use active theme rather then emerald

Request: 1050457

Reason: fix regression determining reachability on dual-stack hosts

Request: 1043269

Closes: 1041051

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Reason: no longer install https-everywhere for Firefox

Request: 1041446

Reason: xbrlapi: Do not try to start brltty with ba+a2 when unavailable; fix cursor routing and braille panning in Orca when xbrlapi is installed but the a2 screen driver is not

Request: 1051569

µdebs: present

Binary debdiffs: all

Lintian issues: all

Reason: work around unconfigured jre during new installations

Request: 1040925

Closes: 1039472

Binary debdiffs: all

Lintian issues: source

Reason: handle data: URLs in safe mode

Request: 1051936

Closes: 1050643

Reason: fix export feature

Request: 1041854

Closes: 1041779

Lintian issues: allamd64arm64armhfi386

DSA: 5491

CVEs referenced: CVE-2023-4761 CVE-2023-4762 CVE-2023-4763 CVE-2023-4764

This upload was superseded by a more current one.

DSA: 5487

Closes: 1024981

CVEs referenced: CVE-2023-4572

Binary debdiffs: amd64arm64armhfi386ppc64el

Lintian issues: amd64arm64armhfi386ppc64el

This upload was superseded by a more current one.

DSA: 5483

CVEs referenced: CVE-2023-4427 CVE-2023-4428 CVE-2023-4429 CVE-2023-4430 CVE-2023-4431

Binary debdiffs: amd64arm64armhfi386ppc64el

This upload was superseded by a more current one.

DSA: 5479

Binary debdiffs: amd64i386ppc64el

This upload was superseded by a more current one.

DSA: 5467

CVEs referenced: CVE-2023-4068 CVE-2023-4069 CVE-2023-4070 CVE-2023-4071 CVE-2023-4072 CVE-2023-4073 CVE-2023-4074 CVE-2023-4075 CVE-2023-4076 CVE-2023-4077 CVE-2023-4078

Lintian issues: ppc64el

This upload was superseded by a more current one.

DSA: 5456

CVEs referenced: CVE-2023-3727 CVE-2023-3728 CVE-2023-3730 CVE-2023-3732 CVE-2023-3733 CVE-2023-3734 CVE-2023-3735 CVE-2023-3736 CVE-2023-3737 CVE-2023-3738 CVE-2023-3740

Lintian issues: ppc64el

DSA: 5472

Closes: 1041423

CVEs referenced: CVE-2023-37464

Reason: new upstream stable release

Request: 1050639

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

This upload was superseded by a more current one.

Reason: new upstream stable release; security fixes [CVE-2023-20197 CVE-2023-20212]

Request: 1050639

Closes: 1030171 1044136 1050057 949100

CVEs referenced: CVE-2023-20197 CVE-2023-20212

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Reason: avoid memory initialisation issues in command line parser

Request: 1041166

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Reason: build with OpenLDAP to correct improper fetch of binary LDAP attributes

Request: 1042848

Closes: 1041964

This upload was superseded by a more current one.

DSA: 5460

Closes: 1041812

CVEs referenced: CVE-2023-32001

Reason: ensure mailboxes are not lost on upgrades from bullseye

Request: 1050730

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Reason: clean up leftover keyrings in trusted.gpg.d

Request: 1042711

µdebs: present

Binary debdiffs: all

Reason: new upstream release; adjust D-I auto-partitioning sizes

Request: 1050838

µdebs: present

Binary debdiffs: all

Lintian issues: all

Reason: rebuild with newer boxer-data; no longer depend on webext-https-everywhere

Closes: 1041350

Binary debdiffs: all

Reason: fix duplicate entries in /etc/shells; manage /bin/sh in the state file; fix canonicalization of shells in aliased locations

Request: 1040206

Closes: 1035820

Reason: use the old /updates security map only for buster

Request: 1050301

Closes: 1050179

Reason: version higher than testing; should be ~deb12u1 - as discussed

Reason: fix version in cleanup script

Binary debdiffs: allamd64arm64armelarmhfi386mips64elmipselppc64els390x

This upload was superseded by a more current one.

Reason: ease upgrades with leftovers from wheezy; drop deprecated ntpd integration

Request: 1040951

Closes: 1037190

Reason: update permitted upload targets; fix failure to build from source

Request: 1051143

Closes: 1042271 1051142

Binary debdiffs: all

Reason: fix Insufficient or missing validation and sanitization of input from untrustworthy bootloader environment files [CVE-2023-39950]

Request: 1049862

Closes: 1049436

CVEs referenced: CVE-2023-39950

DSA: 5481

Closes: 1043548

CVEs referenced: CVE-2023-39534 CVE-2023-39945 CVE-2023-39946 CVE-2023-39947 CVE-2023-39948 CVE-2023-39949

Lintian issues: source

Reason: fiz crash when removing filetypes from list

Request: 1049336

Closes: 1043556

Lintian issues: alli386

This upload was superseded by a more current one.

Reason: fix builds for 32-bit architectures

Request: 1043398

DSA: 5496

CVEs referenced: CVE-2023-4863

Lintian issues: armhfi386

This upload was superseded by a more current one.

DSA: 5485

CVEs referenced: CVE-2023-4573 CVE-2023-4574 CVE-2023-4575 CVE-2023-4581 CVE-2023-4584

Lintian issues: armhfi386

This upload was superseded by a more current one.

DSA: 5464

CVEs referenced: CVE-2023-4045 CVE-2023-4046 CVE-2023-4047 CVE-2023-4048 CVE-2023-4049 CVE-2023-4050 CVE-2023-4055 CVE-2023-4056

Lintian issues: armhfi386

Reason: use n= in apt preferences for smooth upgrades

Request: 1049379

Closes: 1043969

Reason: ensure TLS-Client-Cert-Common-Name contains correct data

Request: 1050180

Closes: 1043282

DSA: 5495

Binary debdiffs: all

Lintian issues: source

Reason: avoid infinite loops of idle callbacks if an idle handler is called during GC

Request: 1051576

Closes: 1034356

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Reason: silence deprecation warnings in web interface

Request: 1043442

Closes: 1038683

Reason: fix management of DHCP/DNS entries in default theme

Request: 1043444

Closes: 1041619

DSA: 5476

Lintian issues: source

Reason: new upstream stable release; fix several crashes; show more information in the "inspector" debugging interface; silence GFileInfo warnings if used with a backported version of GLib; use a light colour for the caret in dark themes, making it much easier to see in some apps, in particular Evince

Request: 1051580

µdebs: present

Closes: 1043000

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: mips64elmipsel

Reason: fix truncation in places sidebar with large text accessibility setting

Request: 1051578

µdebs: present

Closes: 1043261

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Reason: fix double free in init_index when the M argument is a large integer [CVE-2023-37365]

Request: 1041468

Closes: 1041426

CVEs referenced: CVE-2023-37365

Reason: fix open redirect issue [CVE-2022-45582]

Request: 1051257

Closes: 1050518

CVEs referenced: CVE-2022-45582

Reason: suppress undesirable deprecation notices

Request: 1043378

Closes: 1037925

Reason: fix preservation of alpha channel flag

Request: 1050311

Closes: 1041406

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Reason: fix out of buffer read; fix buffer overwrite [CVE-2023-40305]

Request: 1050697

Closes: 1049366

CVEs referenced: CVE-2023-40305

Reason: check return values when dropping privileges [CVE-2023-40303]

Request: 1050331

Closes: 1049365

CVEs referenced: CVE-2023-40303

Reason: fix nnrpd hangs when compression is enabled; add support for high-precision syslog timestamps; make inn-{radius,secrets}.conf not world readable

Request: 1050681

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390x

DSA: 5474

Closes: 1043305

CVEs referenced: CVE-2022-40982 CVE-2022-41804 CVE-2023-23908

DSA: 5455

Closes: 1040830

DSA: 5454

Closes: 1036874 1037167 1040265

CVEs referenced: CVE-2023-32685 CVE-2023-33956 CVE-2023-33968 CVE-2023-33969 CVE-2023-33970 CVE-2023-36813

Reason: fix segfault in libshark-tepdata; fix capturing when target directory contains a space

Request: 1051084

Closes: 1028585 1049866

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: mips64elmipsel

Reason: fix freeing of uninitialised pointer [CVE-2023-36054]

Request: 1049373

Closes: 1043431

CVEs referenced: CVE-2023-36054

Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390x

Reason: new upstream stable release

Request: 1051509

Closes: 964554

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: source

DSA: 5471

CVEs referenced: CVE-2023-34624

Binary debdiffs: all

Lintian issues: all

DSA: 5484

Closes: 1041810

CVEs referenced: CVE-2023-38633

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390x

DSA: 5497

CVEs referenced: CVE-2023-4863

Reason: new source package split from nvidia-settings

Request: 1040768

Binary debdiffs: arm64-neededarmel-neededarmhf-neededi386-neededmips64el-neededmipsel-neededppc64el-neededs390x-needed

Lintian issues: amd64arm64-neededarmel-neededarmhf-neededi386-neededmips64el-neededmipsel-neededppc64el-neededs390x-needed

DSA: 5475

µdebs: present

Binary debdiffs: allamd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: amd64arm64armhfi386mips64elmipselppc64els390x

This upload was superseded by a more current one.

DSA: 5475

µdebs: present

CVEs referenced: CVE-2022-40982 CVE-2023-20569

Binary debdiffs: allamd64i386

Lintian issues: amd64i386

This upload was superseded by a more current one.

DSA: 5462

µdebs: present

CVEs referenced: CVE-2023-20593

DSA: 5475

µdebs: present

Binary debdiffs: amd64

Lintian issues: source

This upload was superseded by a more current one.

DSA: 5475

µdebs: present

CVEs referenced: CVE-2022-40982 CVE-2023-20569

This upload was superseded by a more current one.

DSA: 5462

µdebs: present

CVEs referenced: CVE-2023-20593

DSA: 5475

µdebs: present

Binary debdiffs: arm64

Lintian issues: arm64source

This upload was superseded by a more current one.

DSA: 5462

µdebs: present

CVEs referenced: CVE-2023-20593

DSA: 5475

µdebs: present

Binary debdiffs: i386

Lintian issues: source

This upload was superseded by a more current one.

DSA: 5462

µdebs: present

CVEs referenced: CVE-2023-20593

Reason: avoid using mv on init symlink

Request: 1050090

Closes: 1049397

Lintian issues: source

Reason: only enable compositing if it is available

Request: 1050126

Binary debdiffs: all

Reason: new upstream bugfix release

Request: 1037107

Closes: 1035949

Binary debdiffs: allamd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: source

Reason: fix broken audio in libretro core; fix crash on hardware incapable of OpenGL 3.2

Request: 1042795

Closes: 1036829

Reason: handle relocated configuration file; translation updates

Request: 1040860

Closes: 1039103

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

DSA: 5494

Closes: 1051563

CVEs referenced: CVE-2023-4874 CVE-2023-4875

Reason: re-enable udunits2 support

Request: 1043422

Closes: 1043409

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Reason: FIXME

Request: 1043151

Does not match proposed diff, larger than expected version bump
         

Reason: fix incorrect bytecode generation hit with new kernel check that rejects adding rules to bound chains

Request: 1052021

Closes: 1051592

Reason: security fix (prototype pollution) [CVE-2023-26132]

Request: 1040678

Closes: 1040592

CVEs referenced: CVE-2023-26132

DSA: 5466

Closes: 1038422

Reason: new upstream bugfix release

Missing builds: armel armhf i386 mips64el mipsel ppc64el s390x

Request: 1040770

Binary debdiffs: amd64arm64

Lintian issues: amd64arm64

Reason: new upstream bugfix release

Request: 1040890

Binary debdiffs: amd64arm64ppc64el

Lintian issues: amd64arm64ppc64el

Reason: fix missing symlink /usr/share/nx/fonts; fix manual

Request: 1050649

Closes: 1006662

Binary debdiffs: all

Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390x

Reason: load correct firmware

Request: 1043229

Closes: 1038684

Binary debdiffs: all

DSA: 5493

Closes: 1050970

CVEs referenced: CVE-2023-20867 CVE-2023-20900

Reason: fix memory handling issues

Request: 1050542

Closes: 1050542

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390x

DSA: 5458

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390xsource

Reason: fix arbitrary code execution issue [CVE-2023-37476]

Request: 1051429

Closes: 1041422

CVEs referenced: CVE-2023-37476

Reason: fix dependencies of openscap-utils and python3-openscap

Request: 1041554

Closes: 1040936

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: amd64

Reason: new upstream stable release; security fixes [CVE-2023-2975 CVE-2023-3446 CVE-2023-3817]

Request: 1050572

µdebs: present

Closes: 1041817 1041818

CVEs referenced: CVE-2023-2975 CVE-2023-3446 CVE-2023-3817

Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390x

DSA: 5473

Closes: 1040597

CVEs referenced: CVE-2023-33466

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

DSA: 5465

Closes: 1040225

CVEs referenced: CVE-2023-36053

Binary debdiffs: all

Reason: upstream bugfix release [CVE-2023-40477]

Request: 1050612

CVEs referenced: CVE-2023-40477

Reason: fix race condition when using external decompressors

Request: 1050334

Closes: 1050321

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Reason: fix error in other packages caused by invalid python package version

Request: 1040939

Closes: 1040179

Binary debdiffs: allamd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: all

Reason: dhclient: don't hardcode use of eth1

Request: 1050722

DSA: 5477

Closes: 1041043

CVEs referenced: CVE-2022-2127 CVE-2023-3347 CVE-2023-34966 CVE-2023-34967 CVE-2023-34968

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Reason: new upstream release; fix installation of sitesummary-maintenance CRON/systemd-timerd script; fix insecure temporary file and directory creation

Request: 1050721

Binary debdiffs: all

Lintian issues: all

Reason: bug fixes: log remote commands to stderr; disable SSH known host files; PHP 8 compatibility

Request: 1043440

Closes: 1042824

Reason: fix handling of a peer closing TLS connection without proper shutdown messaging

Request: 1041555

Closes: 1041545

Reason: new upstream stable release

Request: 1051545

µdebs: present

Lintian issues: mipsel

This upload was superseded by a more current one.

Reason: new upstream bugfix release

Request: 1043521

µdebs: present

Lintian issues: mipsel

Reason: backport to stable for future openjdk-17 builds

Request: 1041498

Lintian issues: all-needed

DSA: 5498

CVEs referenced: CVE-2023-4863

Lintian issues: i386source

This upload was superseded by a more current one.

DSA: 5488

CVEs referenced: CVE-2023-4573 CVE-2023-4574 CVE-2023-4575 CVE-2023-4576 CVE-2023-4581 CVE-2023-4584

Lintian issues: allamd64arm64i386mips64elppc64els390x

This upload was superseded by a more current one.

DSA: 5469

CVEs referenced: CVE-2023-4045 CVE-2023-4046 CVE-2023-4047 CVE-2023-4048 CVE-2023-4049 CVE-2023-4050 CVE-2023-4055 CVE-2023-4056

Lintian issues: allamd64arm64i386mips64elppc64els390x

This upload was superseded by a more current one.

DSA: 5463

Lintian issues: i386

Reason: fix buffer overflow vulnerability [CVE-2023-40968]

Request: 1051552

Closes: 1051231

CVEs referenced: CVE-2023-40968

Binary debdiffs: amd64arm64armhfi386mips64elmipselppc64els390x

Reason: replace openssl3 compat patch to fix memory leak

Request: 1041272

Closes: 1015003

Lintian issues: all

DSA: 5482

Reason: fix remote code execution issue [CVE-2023-40477]

Request: 1050562

CVEs referenced: CVE-2023-40477

Reason: handle ctime and mtime changes in diffs

Request: 1050546

Closes: 1042671

Reason: invalidate ring view more often when necessary, fixing various assertion failures during event handling

Request: 1050124

µdebs: present

Closes: 1040049

DSA: 5468

CVEs referenced: CVE-2023-38133 CVE-2023-38572 CVE-2023-38592 CVE-2023-38594 CVE-2023-38595 CVE-2023-38597 CVE-2023-38599 CVE-2023-38600 CVE-2023-38611

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: mips64elmipsel

This upload was superseded by a more current one.

DSA: 5457

CVEs referenced: CVE-2023-37450

Lintian issues: mipsel

Reason: x2goruncommand: add support for KDE Plasma 5; x2gostartagent: prevent logfile corruption; keystrokes.cfg: sync with nx-libs; fix encoding of Finnish translation

Closes: 1050213

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: source