Queue Overview for "proposed-updates"

List of missing builds
List of missing packages relative to security archive

Resolution Pending (7 uploads for 7 packages)

PackageVersionVersion ProblemsInstallability ProblemsArchitecturesAction
cloudprint0.13-1+deb8u2Installability ProblemsBuilt:all source More info needed

Reason: queries on diff

collectd5.4.1-6+deb8u1Installability ProblemsBuilt:all amd64 arm64 armel armhf i386 mips mipsel powerpc s390x source Missing:ppc64el Ok

Reason: security update

DSA: 3636

Closes: 832507 832577

CVEs referenced: CVE-2016-6254

harfbuzz0.9.35-2+deb8u1Installability ProblemsBuilt:all amd64 source More info needed

Reason: fix [CVE-2016-2052]

µdebs: present

CVEs referenced: CVE-2016-2052

libarchive3.1.2-11+deb8u2Installability ProblemsBuilt:amd64 arm64 armel armhf i386 mips mipsel powerpc ppc64el s390x source ?

Reason: security update

DSA: 3657

CVEs referenced: CVE-2015-8916 CVE-2015-8917 CVE-2015-8919 CVE-2015-8926 CVE-2015-8928 CVE-2015-8930 CVE-2015-8934 CVE-2016-4300 CVE-2016-4302 CVE-2016-4809 CVE-2016-5844

mariadb-10.010.0.26-0+deb8u1Installability ProblemsBuilt:all amd64 arm64 armel armhf i386 mips mipsel ppc64el s390x source Missing:powerpc Ok

Reason: security update

DSA: 3632

CVEs referenced: CVE-2016-3477 CVE-2016-3521 CVE-2016-3615 CVE-2016-5440

monotone1.1-4+deb8u1Installability ProblemsBuilt:all amd64 arm64 armel armhf i386 mips ppc64el s390x source Missing:mipsel powerpc Ok

Reason: regression update

DSA: 3565

tryton-server3.4.0-3+deb8u2Installability ProblemsBuilt:all source ?

Reason: security update

DSA: 3656

CVEs referenced: CVE-2016-1241 CVE-2016-1242

Pending Processing (0 uploads for 0 packages)

Processed (148 uploads for 121 packages)

PackageVersionVersion ProblemsInstallability ProblemsAction
adblock-plus2.7.3+dfsg-1~deb8u1Installability ProblemsACCEPTED

Reason: new upstream release, compatible with firefox-esr

Closes: 829267

apache22.4.10-10+deb8u5Installability ProblemsACCEPTED

Reason: security update

DSA: 3623

CVEs referenced: CVE-2016-5387

audiofile0.3.6-2+deb8u1Installability ProblemsACCEPTED

Reason: fix buffer overflow when changing both sample format and number of channels [CVE-2015-7747]

Closes: 801102

CVEs referenced: CVE-2015-7747

automake-1.141:1.14.1-4+deb8u1Installability ProblemsACCEPTED

Reason: avoid insecure use of /tmp/ in install-sh

Closes: 827347

backintime1.0.36-1+deb8u1Installability ProblemsACCEPTED

Reason: add missing dependency on python-dbus

Closes: 831349

backuppc3.3.0-3Installability ProblemsREJECTED

Reason: wrong version number, incomplete fix, superseded by 3.3.0-2+deb8u1

backuppc3.3.0-2+deb8u1Installability ProblemsACCEPTED

Reason: fix regressions from samba update to 4.2

Closes: 820963

biber1.9-3+deb8u1Installability ProblemsACCEPTED

Reason: fix breakage triggered by point release update of perl

Closes: 826667

bogofilter1.2.4+dfsg1-3+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3653

cacti0.8.8b+dfsg-8+deb8u5Installability ProblemsACCEPTED

Reason: fix sql injection in tree.php [CVE-2016-3172] and graph_view.php [CVE-2016-3659]; fix authentication bypass [CVE-2016-2313]

Closes: 814353 818647 820521

CVEs referenced: CVE-2016-2313 CVE-2016-3172 CVE-2016-3659

ccache3.1.12-1Installability ProblemsACCEPTED

Reason: bugfix update to 3.1.12

Closes: 829088

cdbs0.4.130+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3628

CVEs referenced: CVE-2016-1238

chromium-browser52.0.2743.82-1~deb8u1Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3637

CVEs referenced: CVE-2016-1704 CVE-2016-1705 CVE-2016-1706 CVE-2016-1707 CVE-2016-1708 CVE-2016-1709 CVE-2016-1710 CVE-2016-1711 CVE-2016-5127 CVE-2016-5128 CVE-2016-5129 CVE-2016-5130 CVE-2016-5131 CVE-2016-5132 CVE-2016-5133 CVE-2016-5134 CVE-2016-5135 CVE-2016-5136 CVE-2016-5137

chromium-browser52.0.2743.116-1~deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3645

CVEs referenced: CVE-2016-5139 CVE-2016-5140 CVE-2016-5141 CVE-2016-5142 CVE-2016-5143 CVE-2016-5144 CVE-2016-5145 CVE-2016-5146

chromium-browser51.0.2704.79-1~deb8u1Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3594

CVEs referenced: CVE-2016-1696 CVE-2016-1697 CVE-2016-1698 CVE-2016-1699 CVE-2016-1700 CVE-2016-1701 CVE-2016-1702

chromium-browser51.0.2704.63-1~deb8u1Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3590

CVEs referenced: CVE-2016-1667 CVE-2016-1668 CVE-2016-1669 CVE-2016-1670 CVE-2016-1672 CVE-2016-1673 CVE-2016-1674 CVE-2016-1675 CVE-2016-1676 CVE-2016-1677 CVE-2016-1678 CVE-2016-1679 CVE-2016-1680 CVE-2016-1681 CVE-2016-1682 CVE-2016-1683 CVE-2016-1684 CVE-2016-1685 CVE-2016-1686 CVE-2016-1687 CVE-2016-1688 CVE-2016-1689 CVE-2016-1690 CVE-2016-1691 CVE-2016-1692 CVE-2016-1693 CVE-2016-1694 CVE-2016-1695

clamav0.99.2+dfsg-0+deb8u2Installability ProblemsACCEPTED

Reason: don't fail if AllowSupplementaryGroups is still set in the config file

Closes: 826406

cmake3.0.2-1+deb8u1Installability ProblemsACCEPTED

Reason: fix FindOpenSSL module to detect OpenSSL 1.0.1t

Closes: 826656

conkeror1.0~~pre-1+git141025-1+deb8u2Installability ProblemsACCEPTED

Reason: support Firefox 44 and later

Closes: 813039

curl7.38.0-4+deb8u4Installability ProblemsACCEPTED

Reason: security update

DSA: 3638

CVEs referenced: CVE-2016-5419 CVE-2016-5420 CVE-2016-5421

debhelper9.20150101+deb8u2Installability ProblemsACCEPTED

Reason: security update

DSA: 3628

debian-security-support2016.05.24~deb8u1Installability ProblemsACCEPTED

Reason: update included support data; add support for markng packges as losing support at a future date

devscripts2.15.3+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3628

CVEs referenced: CVE-2016-1238

drupal77.32-1+deb8u7Installability ProblemsACCEPTED

Reason: security update

DSA: 3604

e2fsprogs1.42.12-2Installability ProblemsACCEPTED

Reason: disable prompts for time skew which is fudged in e2fsck; fix potential corruption of Hurd file systems by e2fsck, pointer bugs that could cause crashes in e2fsck and resize2fs

µdebs: present

Closes: 778948 812141

exim44.84.2-2+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3628

CVEs referenced: CVE-2016-1238

exim44.84.2-2Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: fix cutthrough bug with body lines having a single dot; fix crash on "exim -be '${if crypteq{xxx}{\$aaa}{yes}{no}}'"; improve NEWS file; backport missing upstream patch to actually make $initial_cwd expansion work

Closes: 812585 818349 818897 826646

expat2.1.0-6+deb8u3Installability ProblemsACCEPTED

Reason: security update

DSA: 3597

µdebs: present

CVEs referenced: CVE-2012-6702 CVE-2016-5300

file1:5.22+15-2+deb8u2Installability ProblemsACCEPTED

Reason: fix buffer over-write in finfo_open with malformed magic file [CVE-2015-8865]

CVEs referenced: CVE-2015-8865

firefox-esr45.3.0esr-1~deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3640

CVEs referenced: CVE-2016-2830 CVE-2016-2836 CVE-2016-2837 CVE-2016-2838 CVE-2016-2839 CVE-2016-5252 CVE-2016-5254 CVE-2016-5258 CVE-2016-5259 CVE-2016-5262 CVE-2016-5263 CVE-2016-5264 CVE-2016-5265

firefox-esr45.2.0esr-1~deb8u1Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3600

Closes: 755802 792012 795331 795337 795353 800150 808228 809309 809386 817904 817908 817952 817977 818038 818098 818101 818159 818322 818454 821952

CVEs referenced: CVE-2015-4473 CVE-2015-4474 CVE-2015-4475 CVE-2015-4477 CVE-2015-4478 CVE-2015-4479 CVE-2015-4480 CVE-2015-4483 CVE-2015-4484 CVE-2015-4487 CVE-2015-4488 CVE-2015-4489 CVE-2015-4490 CVE-2015-4491 CVE-2015-4492 CVE-2015-4493 CVE-2015-4495 CVE-2015-4497 CVE-2015-4498 CVE-2015-4500 CVE-2015-4501 CVE-2015-4502 CVE-2015-4504 CVE-2015-4507 CVE-2015-4508 CVE-2015-4509 CVE-2015-4510 CVE-2015-4511 CVE-2015-4512 CVE-2015-4513 CVE-2015-4514 CVE-2015-4515 CVE-2015-4516 CVE-2015-4518 CVE-2015-4519 CVE-2015-4520 CVE-2015-4521 CVE-2015-4522 CVE-2015-7174 CVE-2015-7175 CVE-2015-7177 CVE-2015-7184 CVE-2015-7187 CVE-2015-7188 CVE-2015-7189 CVE-2015-7193 CVE-2015-7194 CVE-2015-7195 CVE-2015-7196 CVE-2015-7197 CVE-2015-7198 CVE-2015-7199 CVE-2015-7200 CVE-2015-7201 CVE-2015-7202 CVE-2015-7203 CVE-2015-7204 CVE-2015-7205 CVE-2015-7207 CVE-2015-7208 CVE-2015-7210 CVE-2015-7211 CVE-2015-7212 CVE-2015-7213 CVE-2015-7214 CVE-2015-7215 CVE-2015-7216 CVE-2015-7217 CVE-2015-7218 CVE-2015-7219 CVE-2015-7220 CVE-2015-7221 CVE-2015-7222 CVE-2015-7223 CVE-2016-1930 CVE-2016-1931 CVE-2016-1933 CVE-2016-1935 CVE-2016-1937 CVE-2016-1939 CVE-2016-1942 CVE-2016-1943 CVE-2016-1944 CVE-2016-1945 CVE-2016-1946 CVE-2016-1947 CVE-2016-1949 CVE-2016-1952 CVE-2016-1953 CVE-2016-1954 CVE-2016-1955 CVE-2016-1956 CVE-2016-1957 CVE-2016-1958 CVE-2016-1959 CVE-2016-1960 CVE-2016-1961 CVE-2016-1962 CVE-2016-1963 CVE-2016-1964 CVE-2016-1965 CVE-2016-1966 CVE-2016-1967 CVE-2016-1968 CVE-2016-1970 CVE-2016-1971 CVE-2016-1973 CVE-2016-1974 CVE-2016-1975 CVE-2016-1976 CVE-2016-1977 CVE-2016-2790 CVE-2016-2791 CVE-2016-2792 CVE-2016-2793 CVE-2016-2794 CVE-2016-2795 CVE-2016-2796 CVE-2016-2797 CVE-2016-2798 CVE-2016-2799 CVE-2016-2800 CVE-2016-2801 CVE-2016-2802 CVE-2016-2806 CVE-2016-2807 CVE-2016-2808 CVE-2016-2814 CVE-2016-2818 CVE-2016-2819 CVE-2016-2821 CVE-2016-2822 CVE-2016-2828 CVE-2016-2831

firegestures1.10.9-1~deb8u1Installability ProblemsACCEPTED

Reason: new upstream release, compatible with firefox-esr

Closes: 827277

flex2.5.39-8+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3653

CVEs referenced: CVE-2016-6354

fontconfig2.11.0-6.3+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3644

µdebs: present

Closes: 833570

CVEs referenced: CVE-2016-5384

fusionforge5.3.2+20141104-3+deb8u3Installability Problemsinstall upgradeACCEPTED

Reason: remove dependency on Mediawiki plugin from fusionforge-full metapackage

gdk-pixbuf2.31.1-2+deb8u5Installability ProblemsACCEPTED

Reason: security update

DSA: 3589

µdebs: present

CVEs referenced: CVE-2015-7552 CVE-2015-8875

gimp2.8.14-1+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3612

Closes: 828179

CVEs referenced: CVE-2016-4994

glibc2.19-18+deb8u5Installability ProblemsACCEPTED

Reason: fix assertion failure with unconnectable name server addresses (regression introduced by CVE-2015-7547 fix); fix *context functions on s390x; fix a buffer overflow in the glob function [CVE-2016-1234], a stack overflow in nss_dns_getnetbyname_r [CVE-2016-3075], a stack overflow in getaddrinfo function [CVE-2016-3706], a stack overflow in Sun RPC clntudp_call() [CVE-2016-4429]

µdebs: present

Closes: 816669

CVEs referenced: CVE-2015-7547 CVE-2016-1234 CVE-2016-3075 CVE-2016-3706 CVE-2016-4429

gnome-maps3.14.3.1-1Installability ProblemsACCEPTED

Reason: new upstream release; use the Mapbox tile server, instead of the no longer supported MapQuest server

Closes: 830842

gnupg1.4.18-7+deb8u2Installability ProblemsACCEPTED

Reason: security update

DSA: 3649

µdebs: present

CVEs referenced: CVE-2016-6313

greasemonkey3.8-1~deb8u1Installability ProblemsACCEPTED

Reason: new upstream release, compatible with firefox-esr

Closes: 828622

horizon2014.1.3-7+deb8u2Installability ProblemsACCEPTED

Reason: security update

DSA: 3617

Closes: 828967

CVEs referenced: CVE-2016-4428

icedove1:45.2.0-1~deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3647

Closes: 817973 824785 827592

CVEs referenced: CVE-2016-2818

icedove45.1.0-1~deb8u1Installability ProblemsREJECTED

Reason: security update

DSA: 3601

imagemagick8:6.8.9.9-5+deb8u4Installability ProblemsACCEPTED

Reason: security update

DSA: 3652

Closes: 823750 827643 831034 832455 832457 832461 832464 832465 832467 832469 832474 832475 832478 832480 832482 832483 832504 832506 832633 832776 832780 832785 832787 832789 832791 832793 832885 832887 832888 832890 832942 832944 832968 833003 833042 833043 833044 833099 833101 833730 833732 833735 833743 833744 833812 834163 834183 834501 834504

CVEs referenced: CVE-2016-4562 CVE-2016-4563 CVE-2016-4564 CVE-2016-5010 CVE-2016-5687 CVE-2016-5688 CVE-2016-5689 CVE-2016-5690 CVE-2016-5691 CVE-2016-5841 CVE-2016-5842 CVE-2016-6491

imagemagick8:6.8.9.9-5+deb8u3Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3591

Closes: 825799

CVEs referenced: CVE-2016-5118

intel-microcode3.20160714.1~deb8u1Installability ProblemsACCEPTED

Reason: new upstream release

Closes: 814301 828819

jakarta-jmeter2.11-2+deb8u1Installability ProblemsACCEPTED

Reason: really install the templates; fix an error with libxstream-java >= 1.4.9 when loading the templates

Closes: 795356

javatools0.48+deb8u1Installability ProblemsACCEPTED

Reason: return correct architecture string for ppc64el in java-arch.sh

Closes: 833572

kde4libs4:4.14.2-5+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3643

Closes: 832620

CVEs referenced: CVE-2016-6232

ldb2:1.1.20-0+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3548

libav6:11.7-1~deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3603

CVEs referenced: CVE-2016-2326 CVE-2016-3062

libbusiness-creditcard-perl0.35-0+deb8u1Installability ProblemsACCEPTED

Reason: adjust to changes in credit card ranges and processing of various companies

Closes: 814479

libcommons-fileupload-java1.3.1-1+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3611

CVEs referenced: CVE-2016-3092

libcss-dom-perl0.15-1+deb8u1Installability ProblemsACCEPTED

Reason: work around Encode changes included in perl and libencode-perl stable updates

Closes: 826993

libdatetime-timezone-perl1:1.75-2+2016fInstallability ProblemsACCEPTED

Reason: new upstream release

libdatetime-timezone-perl1:1.75-2+2016eInstallability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: update included data to 2016e

libdbd-mysql-perl4.028-2+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3635

CVEs referenced: CVE-2014-9906 CVE-2015-8949

libdevel-declare-perl0.006017-1+deb8u1Installability ProblemsACCEPTED

Reason: fix breakage caused by change in perl stable update

Closes: 826563

libgcrypt201.6.3-2+deb8u2Installability ProblemsACCEPTED

Reason: security update

DSA: 3650

µdebs: present

CVEs referenced: CVE-2016-6313

libgd22.1.0-5+deb8u6Installability ProblemsACCEPTED

Reason: security update

DSA: 3630

CVEs referenced: CVE-2016-6207

libgd22.1.0-5+deb8u5Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3630

libgd22.1.0-5+deb8u4Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3619

Closes: 829014 829062 829694

CVEs referenced: CVE-2016-5116 CVE-2016-5766 CVE-2016-6128 CVE-2016-6132 CVE-2016-6161 CVE-2016-6214

libintl-perl1.23-1+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3628

CVEs referenced: CVE-2016-1238

libmime-charset-perl1.011.1-1+deb8u2Installability ProblemsACCEPTED

Reason: security update

DSA: 3628

libmime-charset-perl1.011.1-1+deb8u1Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3628

CVEs referenced: CVE-2016-1238

libmime-encwords-perl1.014.3-1+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3628

CVEs referenced: CVE-2016-1238

libmodule-build-perl0.421000-2+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3628

CVEs referenced: CVE-2016-1238

libnet-dns-perl0.81-2+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3628

CVEs referenced: CVE-2016-1238

libnet-ssleay-perl1.65-1+deb8u1Installability ProblemsACCEPTED

Reason: fix build failure with openssl 1.0.1t-1+deb8u1

Closes: 789344

libpdfbox-java1:1.8.7+dfsg-1+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3606

CVEs referenced: CVE-2016-2175

libquota-perl1.7.1+dfsg-1+deb8u1Installability ProblemsACCEPTED

Reason: adapt platform detection to work with Linux 4.x

Closes: 787463 827101

libreoffice1:4.3.3-2+deb8u5Installability ProblemsACCEPTED

Reason: security update

DSA: 3608

CVEs referenced: CVE-2016-4324

libsys-syslog-perl0.33-1+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3628

CVEs referenced: CVE-2016-1238

libtool2.4.2-1.11+b1Installability ProblemsACCEPTED

Reason: fix multi-arch co-installability [amd64 i386]

Closes: 682045

libunicode-linebreak-perl0.0.20140601-2+deb8u2Installability ProblemsACCEPTED

Reason: security update

DSA: 3628

libunicode-linebreak-perl0.0.20140601-2+deb8u1Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3628

CVEs referenced: CVE-2016-1238

libvirt1.2.9-9+deb8u3Installability ProblemsACCEPTED

Reason: security update

DSA: 3613

CVEs referenced: CVE-2016-5008

libxml22.9.1+dfsg1-5+deb8u3Installability ProblemsACCEPTED

Reason: fix a problem unparsing URIs without a host part like qemu:///system; this unbreaks libvirt, libsys-virt-perl and others

Closes: 781232

libxml22.9.1+dfsg1-5+deb8u2Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3593

Closes: 812807 813613 819006 823405 823414

CVEs referenced: CVE-2015-8806 CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-2073 CVE-2016-3627 CVE-2016-3705 CVE-2016-4447 CVE-2016-4449 CVE-2016-4483

libxslt1.1.28-2+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3605

Closes: 802971

CVEs referenced: CVE-2015-7995 CVE-2016-1683 CVE-2016-1684

lighttpd1.4.35-4+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3642

CVEs referenced: CVE-2016-1000212

linux3.16.7-ckt25-2+deb8u3Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3616

µdebs: present

Closes: 828914

CVEs referenced: CVE-2014-9904 CVE-2016-5728 CVE-2016-5828 CVE-2016-5829 CVE-2016-6130

linux3.16.7-ckt25-2+deb8u2Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3607

µdebs: present

linux3.16.7-ckt25-2+deb8u1Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3607

µdebs: present

CVEs referenced: CVE-2015-7515 CVE-2016-0821 CVE-2016-1237 CVE-2016-1583 CVE-2016-2117 CVE-2016-2143 CVE-2016-2184 CVE-2016-2185 CVE-2016-2186 CVE-2016-2187 CVE-2016-3070 CVE-2016-3134 CVE-2016-3136 CVE-2016-3137 CVE-2016-3138 CVE-2016-3140 CVE-2016-3156 CVE-2016-3157 CVE-2016-3672 CVE-2016-3951 CVE-2016-3955 CVE-2016-3961 CVE-2016-4470 CVE-2016-4482 CVE-2016-4485 CVE-2016-4486 CVE-2016-4565 CVE-2016-4569 CVE-2016-4578 CVE-2016-4580 CVE-2016-4581 CVE-2016-4805 CVE-2016-4913 CVE-2016-4997 CVE-2016-4998 CVE-2016-5243 CVE-2016-5244

linux3.16.36-1Installability ProblemsACCEPTED

Reason: new upstream stable release

µdebs: present

Closes: 627782 810219 810379 818502 822666 823907 826004

CVEs referenced: CVE-2016-2188

lxc1:1.0.6-6+deb8u3Installability ProblemsACCEPTED

Reason: make sure stretch/sid containers have an init system, after init 1.34 dropped the `Essential: yes` header

mariadb-10.010.0.25-0+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3595

Closes: 810968 823325

CVEs referenced: CVE-2016-0640 CVE-2016-0641 CVE-2016-0643 CVE-2016-0644 CVE-2016-0646 CVE-2016-0647 CVE-2016-0648 CVE-2016-0649 CVE-2016-0650 CVE-2016-0655 CVE-2016-0666 CVE-2016-0668

mozilla-noscript2.9.0.11-1~deb8u1Installability ProblemsACCEPTED

Reason: new upstream release, compatible with firefox-esr

Closes: 826896

mupdf1.5-1+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3655

Closes: 832031 833417

CVEs referenced: CVE-2016-6265 CVE-2016-6525

mysql-5.55.5.50-0+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3624

CVEs referenced: CVE-2016-3477 CVE-2016-3521 CVE-2016-3615 CVE-2016-5440

mysql-connector-java5.1.39-1~deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3621

CVEs referenced: CVE-2015-2575

nginx1.6.2-5+deb8u2+b1Installability ProblemsACCEPTED

Reason: security update

DSA: 3592

nginx1.6.2-5+deb8u2Installability ProblemsACCEPTED

Reason: security update

DSA: 3592

Closes: 825960

CVEs referenced: CVE-2016-4450

ntp1:4.2.6.p5+dfsg-7+deb8u2Installability ProblemsACCEPTED

Reason: security update

DSA: 3629

CVEs referenced: CVE-2015-7974 CVE-2015-7977 CVE-2015-7978 CVE-2015-7979 CVE-2015-8138 CVE-2015-8158 CVE-2016-1548 CVE-2016-1550 CVE-2016-2516 CVE-2016-2518

openjdk-77u111-2.6.7-1~deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3641

openssh1:6.7p1-5+deb8u3Installability ProblemsACCEPTED

Reason: security update

DSA: 3626

µdebs: present

Closes: 831902

CVEs referenced: CVE-2016-6210

ovirt-guest-agent1.0.10.2.dfsg-2+deb8u1Installability ProblemsACCEPTED

Reason: install ovirt-guest-agent.py executable; change owner of log directory to ovirtagent in postinst

Closes: 782005 811481

p7zip9.20.1~dfsg.1-4.1+deb8u2Installability ProblemsACCEPTED

Reason: security update

DSA: 3599

Closes: 824160

CVEs referenced: CVE-2016-2335

perl5.20.2-3+deb8u6Installability ProblemsACCEPTED

Reason: security update

DSA: 3628

Closes: 829578

CVEs referenced: CVE-2016-1238 CVE-2016-6185

php55.6.24+dfsg-0+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3631

php55.6.23+dfsg-0+deb8u1Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3618

Closes: 822855 827370 827548 830792

php55.6.22+dfsg-0+deb8u1Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3602

Closes: 799155 820451

phpmyadmin4:4.2.12-2+deb8u2Installability ProblemsACCEPTED

Reason: security update

DSA: 3627

CVEs referenced: CVE-2016-1927 CVE-2016-2039 CVE-2016-2040 CVE-2016-2041 CVE-2016-2560 CVE-2016-2561 CVE-2016-5099 CVE-2016-5701 CVE-2016-5705 CVE-2016-5706 CVE-2016-5731 CVE-2016-5733 CVE-2016-5739

pidgin2.11.0-0+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3620

CVEs referenced: CVE-2016-2365 CVE-2016-2366 CVE-2016-2367 CVE-2016-2368 CVE-2016-2369 CVE-2016-2370 CVE-2016-2371 CVE-2016-2372 CVE-2016-2373 CVE-2016-2374 CVE-2016-2375 CVE-2016-2376 CVE-2016-2377 CVE-2016-2378 CVE-2016-2380 CVE-2016-4323

policykit-10.105-15~deb8u1Installability ProblemsACCEPTED

Reason: several bug-fixes; fix heap corruption [CVE-2015-3255], local authenticated denial of service [CVE-2015-4625] and issue with invalid object paths in RegisterAuthenticationAgent [CVE-2015-3218]

Closes: 766860 772125 775158 779756 779988 787932 791397 794723 796134 798769 817998

CVEs referenced: CVE-2015-3218 CVE-2015-3255 CVE-2015-4625

postgresql-9.49.4.9-0+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3646

CVEs referenced: CVE-2016-5423 CVE-2016-5424

publicsuffix20160703-0+deb8u1Installability ProblemsACCEPTED

Reason: new upstream release

python-django1.7.7-1+deb8u5Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3622

CVEs referenced: CVE-2016-6186

python-django1.7.11-1Installability ProblemsACCEPTED

Reason: bugfix update to 1.7.11

python2.72.7.9-2+deb8u1Installability ProblemsACCEPTED

Reason: address StartTLS stripping attack in smtplib [CVE-2016-0772], integer overflow in zipimporter [CVE-2016-5636], HTTP header injection [CVE-2016-5699]

CVEs referenced: CVE-2016-0772 CVE-2016-5636 CVE-2016-5699

quagga0.99.23.1-1+deb8u2Installability ProblemsACCEPTED

Reason: security update

DSA: 3654

Closes: 822787 835223

CVEs referenced: CVE-2016-4036 CVE-2016-4049

quassel1:0.10.0-2.3+deb8u3Installability ProblemsACCEPTED

Reason: fix remote DoS in quassel core with invalid handshake data [CVE-2016-4414]

Closes: 826402

CVEs referenced: CVE-2016-4414

rails2:4.1.8-1+deb8u4Installability ProblemsACCEPTED

Reason: security update

DSA: 3651

CVEs referenced: CVE-2016-6316

rails2:4.1.8-1+deb8u3Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3651

Closes: 834155

CVEs referenced: CVE-2016-6316

redis2:2.8.17-1+deb8u5Installability ProblemsACCEPTED

Reason: security update

DSA: 3634

redis2:2.8.17-1+deb8u4Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3634

Closes: 832460

ruby-eventmachine1.0.3-6+deb8u1Installability ProblemsACCEPTED

Reason: fix remotely triggerable crash due to FD handling

Closes: 678512 696015

ruby2.12.1.5-2+deb8u3Installability ProblemsACCEPTED

Reason: DL::dlopen should not open a library with tainted library name in safe mode [CVE-2009-5147]; Fiddle handles should not call functions with tainted function names [CVE-2015-7551]

Closes: 796344

CVEs referenced: CVE-2009-5147 CVE-2015-7551

samba2:4.2.10+dfsg-0+deb8u3Installability ProblemsACCEPTED

Reason: regression update

DSA: 3548

Closes: 802621 821002 822937

CVEs referenced: CVE-2016-2110

samba2:4.2.10+dfsg-0+deb8u2Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: regression update

DSA: 3548

Closes: 820947

samba2:4.2.10+dfsg-0+deb8u1Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3548

Closes: 813406

CVEs referenced: CVE-2015-5370 CVE-2015-8543 CVE-2016-2110 CVE-2016-2111 CVE-2016-2112 CVE-2016-2113 CVE-2016-2114 CVE-2016-2115 CVE-2016-2118

sendmail8.14.4-8+deb8u1Installability ProblemsACCEPTED

Reason: do not abort with an assertion if the connection to an LDAP server is lost; ensure sendmail {client_port} is set correctly on little endian machines

Closes: 826120

spice0.12.5-1+deb8u3Installability ProblemsACCEPTED

Reason: security update

DSA: 3596

CVEs referenced: CVE-2016-0749 CVE-2016-2150

sqlite33.8.7.1-1+deb8u2Installability ProblemsACCEPTED

Reason: fix tempdir selection vulnerability [CVE-2016-6153], segfault following heavy SAVEPOINT usage

Closes: 835205

CVEs referenced: CVE-2016-6153

squid33.4.8-6+deb8u3Installability ProblemsACCEPTED

Reason: security update

DSA: 3625

CVEs referenced: CVE-2016-4051 CVE-2016-4052 CVE-2016-4053 CVE-2016-4054 CVE-2016-4553 CVE-2016-4554 CVE-2016-4555 CVE-2016-4556

symfony2.3.21+dfsg-4+deb8u3Installability ProblemsACCEPTED

Reason: security update

DSA: 3588

CVEs referenced: CVE-2016-1902 CVE-2016-4423

tabmixplus0.5.0.0-1~deb8u1Installability ProblemsACCEPTED

Reason: new upstream release, compatible with firefox-esr

Closes: 826995

talloc2.1.2-0+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3548

tcpreplay3.4.4-2+deb8u1Installability ProblemsACCEPTED

Reason: handle frames of 65535 octets size, add a size check [CVE-2016-6160]

Closes: 829350

CVEs referenced: CVE-2016-6160

tdb1.3.6-0+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3548

tevent0.9.25-0+deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3548

tomcat77.0.56-3+deb8u3Installability ProblemsACCEPTED

Reason: security update

DSA: 3614

CVEs referenced: CVE-2016-3092

tomcat88.0.14-1+deb8u2Installability ProblemsACCEPTED

Reason: security update

DSA: 3609

CVEs referenced: CVE-2015-5174 CVE-2015-5345 CVE-2015-5346 CVE-2015-5351 CVE-2016-0706 CVE-2016-0714 CVE-2016-0763 CVE-2016-3092

tzdata2016f-0+deb8u1Installability ProblemsACCEPTED

Reason: new upstream release

tzdata2016e-0+deb8u1Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: update to 2016e

unbound1.4.22-3+deb8u2Installability ProblemsACCEPTED

Reason: init script fixes: add "pidfile" magic comment; call start-stop-daemon with --retry for 'stop' action

Closes: 807132

vlc2.2.4-1~deb8u1Installability ProblemsACCEPTED

Reason: security update

DSA: 3598

Closes: 782229 784640 801448 825728

CVEs referenced: CVE-2015-5949 CVE-2016-5108

vorbis-tools1.4.0-6+deb8u1Installability ProblemsACCEPTED

Reason: fix large alloca on bad AIFF input to oggenc [CVE-2015-6749], Validate count of channels in the header [CVE-2014-9638 CVE-2014-9639], fix segmentation fault in vcut

Closes: 776086 797461 818037

CVEs referenced: CVE-2014-9638 CVE-2014-9639 CVE-2015-6749

wget1.16-1+deb8u1Installability ProblemsACCEPTED

Reason: by default, on server redirects to a FTP resource, use the original URL to get the local file name [CVE-2016-4971]

Closes: 827003 829130

CVEs referenced: CVE-2016-4971

wireshark1.12.1+g01b65bf-4+deb8u8Installability ProblemsACCEPTED

Reason: security update

DSA: 3648

CVEs referenced: CVE-2016-6504 CVE-2016-6505 CVE-2016-6506 CVE-2016-6507 CVE-2016-6508 CVE-2016-6509 CVE-2016-6510 CVE-2016-6511

wireshark1.12.1+g01b65bf-4+deb8u7Installability ProblemsACCEPTED

This upload was superseded by a more current one.

Reason: security update

DSA: 3615

CVEs referenced: CVE-2015-8724 CVE-2016-5350 CVE-2016-5351 CVE-2016-5353 CVE-2016-5354 CVE-2016-5355 CVE-2016-5356 CVE-2016-5357 CVE-2016-5359

wordpress4.1+dfsg-1+deb8u9Installability ProblemsACCEPTED

Reason: security update

DSA: 3639

Closes: 828225

CVEs referenced: CVE-2015-8834 CVE-2016-5832 CVE-2016-5834 CVE-2016-5835 CVE-2016-5837 CVE-2016-5838 CVE-2016-5839

wpa2.3-1+deb8u4Installability ProblemsACCEPTED

Reason: security updates relating to invalid characters [CVE-2016-4476, CVE-2016-4477]

µdebs: present

Closes: 823411

CVEs referenced: CVE-2016-4476 CVE-2016-4477

xen4.4.1-9+deb8u6Installability ProblemsACCEPTED

Reason: security update

DSA: 3633

CVEs referenced: CVE-2015-8338 CVE-2016-4480 CVE-2016-4962 CVE-2016-5242 CVE-2016-6258

xerces-c3.1.1-5.1+deb8u3Installability ProblemsACCEPTED

Reason: security update

DSA: 3610

Closes: 828990

CVEs referenced: CVE-2016-4463

yaws1.98-4+deb8u1Installability ProblemsACCEPTED

Reason: fix HTTP_PROXY cgi env injection [CVE-2016-1000108]

Closes: 832433

CVEs referenced: CVE-2016-1000108

zabbix1:2.2.7+dfsg-2+deb8u1Installability ProblemsACCEPTED

Reason: fix mysql.size shell command injection in zabbix-agent [CVE-2016-4338]

Closes: 823329

CVEs referenced: CVE-2016-4338