Debian 13.1 Trixie

Dnes | 09:01 | redhawk1975 | Nová verzia

Zároveň vyšla oprava Debian 12.12 Bookworm.

Na aplikáciu opráv netreba nič špeciálne, len ako sa ukazuje, vždy je dobré počkať na prvý alebo druhý opravný balíček

Opravené bugy:

Balíčekchyba
auto-apt-proxyCheck explicitly configured proxies before network gateway
base-filesUpdate for the point release
courierFix courier-webmin
debian-installerIncrease Linux kernel ABI to 6.12.43+deb13; rebuild against proposed-updates; add a workaround for a GRUB graphics initialisation bug
debian-installer-netboot-imagesRebuild against proposed-updates
desktop-baseFix placement of plymouth prompts in multi-monitor setups
devscriptsUpdate suite and codename mappings
dpdkNew upstream point release
ethtoolnetlink: fix print_string when the value is NULL
firebird3.0Fix null pointer dereference in XDR message parsing [CVE-2025-54989]
flvstreamerStop installing rtmpsrv and rtmpsuck, avoiding file conflict with the rtmpdump package
galera-4New upstream stable release
gitNew upstream bug-fix release; fix arbitrary file write issues [CVE-2025-27613 CVE-2025-46835]; fix code execution issues [CVE-2025-27614 CVE-2025-48384]; fix protocol injection issue, possibly leading to arbitrary code execution [CVE-2025-48385]
glib2.0New upstream bugfix release; fix a corner case when upgrading from bookworm
gnome-control-centerFix a UI issue and an error display issue; translation updates
gnome-online-accountsNew upstream bug-fix release; update translations
gnome-shellNew upstream bugfix release
golang-github-gin-contrib-corsFix mishandling of wildcards [CVE-2019-25211]
gssdpNew upstream bug-fix release; fix issues with Since: and Deprecated: declarations in documentation
imagemagickSecurity fixes: heap buffer overflow in the InterpretImageFilename function [CVE-2025-53014]; infinite loop when writing during a specific XMP file conversion command [CVE-2025-53015]; memory leak in the magick stream command [CVE-2025-53019]; stack overflow through vsnprintf() [CVE-2025-53101]; use-after-free when SetQuantumFormat is used [CVE-2025-43965]; in multispectral MIFF image processing, packet_size mishandling [CVE-2025-46393]
init-system-helpersFix handling of os-release diversions from live-build, ensuring they don't exist in non-live systems
installation-guideEnable Hungarian and Ukrainian translations; fix boot-dev-select-arm64 and armhf-armmp-supported-platforms hyperlinks
iperf3Fix buffer overflow issue [CVE-2025-54349]; fix assertion failure [CVE-2025-54350]
kamailioRelax OpenSSL version check to only match against major version
libadwaita-1New upstream bugfix release
libcgi-simple-perlFix HTTP response splitting issue [CVE-2025-40927]
libcoap3Fix buffer overflow issue [CVE-2024-0962]; fix integer overflow issue [CVE-2024-31031]
libreofficeAdd EUR support for Bulgaria; fix installation of Impress sound effects; fix playing of videos in Impress under Qt6
librepoNew upstream bug-fix release, fixing support for DNF5; improve handling of SELinux in the Debian packaging
linuxNew upstream stable release
linux-signed-amd64New upstream stable release
linux-signed-arm64New upstream stable release
live-bootFix handling of os-release diversions from live-build, ensuring they don't exist in non-live systems
live-buildFix handling of os-release diversions, ensuring they don't exist in non-live systems
mameFix translation building
mariadbNew upstream stable release
mate-sensors-appletFix crash at startup
mmdebstrapSupport numeric UID in /etc/subgid and /etc/subuid
modemmanagerFix support for Fibocom FM350-GL
mozjs128New upstream stable release; fix uninitialised memory issue [CVE-2025-9181], memory safety issues [CVE-2025-9185]
network-manager-openvpnNew upstream stable release; fix multi-factor authentication in combination with non-ASCII characters
nginxFix potential information leak in ngx_mail_smtp_module [CVE-2025-53859]
node-tmpFix arbitrary file write issue [CVE-2025-54798]
open-iscsiEnsure /var/lib exists in initramfs
openjpeg2Fix out-of-bounds write issue [CVE-2025-54874]
orcaAdd dependencies on python3-setproctitle and python3-psutil
orphan-sysvinit-scriptsFix installation of mdadm scripts
pcre2New upstream stable release; fix potential information disclosure issue [CVE-2025-58050]
postfixNew upstream stable release; fix copying of files to chroot
postgresql-17New upstream stable release; tighten security checks in planner estimation functions [CVE-2025-8713]; prevent pg_dump scripts from being used to attack the user running the restore [CVE-2025-8714]; convert newlines to spaces in names included in comments in pg_dump output [CVE-2025-8715]
ptyxisNew upstream bugfix release
pyrafEnsure compatibility with Python 3.13
qemuNew upstream bugfix release
rabbitmq-serverShow proper plugin version numbers
remindFix buffer overflow in DUMPVARS
renpyFix font symlinks
resource-agentsHandle cases where more than one route for an IP address exists
rkwardRestore compatibility with R 4.5
sambaNew upstream bugfix release
sbuildSupport UID in /etc/sub(u|g)id; fix build path permissions when building as root; always append newline in binNMU changelog; allow empty BUILD_PATH in command line options
shaarliFix cross site scripting issue [CVE-2025-55291]
sound-theme-freedesktopLink front-center sample to audio-channel-mono
strongswanFix OpenSSL 3.5.1 support
systemdNew upstream stable release
systemd-boot-efi-amd64-signedNew upstream stable release
systemd-boot-efi-arm64-signedNew upstream stable release
thunarFix prompt before permanently deleting files
timescaledbDisable test that fails with Postgresql 17.6
transmissionFix GTK app crash when LANG=fr
tzdataConfirm leap second status for 2025
wolfssl

Avoid weak and predictable random numbers [CVE-2025-7394]

 

Zdroj: Debian