ca-certificates (20140927) unstable; urgency=medium Update Mozilla Certificate Authority bundle to version 2.1. The following Certificate Authorities were added (+): + "DigiCert Assured ID Root G2" + "DigiCert Assured ID Root G3" + "DigiCert Global Root G2" + "DigiCert Global Root G3" + "DigiCert Trusted Root G4" + "QuoVadis Root CA 1 G3" + "QuoVadis Root CA 2 G3" + "QuoVadis Root CA 3 G3" + "WoSign" + "WoSign China" The following Certificate Authorities were removed (-): - "Entrust.net Secure Server CA" - "RSA Root Certificate 1" - "TDC Internet Root CA" - "ValiCert Class 1 VA" - "ValiCert Class 2 VA" -- Michael Shuler &lt;michael(a)pbandjelly.org&gt; Sat, 27 Sep 2014 15:16:51 -0500 ca-certificates (20140325) unstable; urgency=medium Update mozilla/certdata.txt to version 1.97+revert_of_936304 Mozilla reverted the removal of 1024-bit root certificates for Entrust.net, GTE CyberTrust, and ValiCert (RSA), but did not update the version number in nssckbi.h. Certificates added (+) (none removed): + "Entrust.net Secure Server CA" + "GTE CyberTrust Global Root" + "RSA Root Certificate 1" + "ValiCert Class 1 VA" + "ValiCert Class 2 VA" -- Michael Shuler &lt;michael(a)pbandjelly.org&gt; Tue, 25 Mar 2014 13:28:19 -0500 ca-certificates (20140223) unstable; urgency=medium Debian will no longer ship cacert.org certificates. Update mozilla/certdata.txt to version 1.97. Certificates added (+), removed (-), and renamed (~): + "ACCVRAIZ1" + "Atos TrustedRoot 2011" + "E-Tugra Certification Authority" + "SG TRUST SERVICES RACINE" + "StartCom Certification Authority" ~ "StartCom Certification Authority"_2 (both StartCom CAs now included with duplicate CKA_LABEL fix) + "T-TeleSec GlobalRoot Class 2" + "TWCA Global Root CA" + "TeliaSonera Root CA v1" + "Verisign Class 3 Public Primary Certification Authority" ~ "Verisign Class 3 Public Primary Certification Authority"_2 (both Verisign Class 3 CAs now included with duplicate CKA_LABEL fix) - "Entrust.net Secure Server CA" - "Firmaprofesional Root CA" - "GTE CyberTrust Global Root" - "RSA Root Certificate 1" - "TDC OCES Root CA" - "ValiCert Class 1 VA" - "ValiCert Class 2 VA" - "Wells Fargo Root CA" -- Michael Shuler &lt;michael(a)pbandjelly.org&gt; Sun, 23 Feb 2014 15:21:39 -0600 ca-certificates (20130906) unstable; urgency=low Update mozilla/certdata.txt to version 1.94 Certificates added (+) and removed (-): + "CA Disig Root R1" + "CA Disig Root R2" + "China Internet Network Information Center EV Certificates Root" + "D-TRUST Root Class 3 CA 2 2009" + "D-TRUST Root Class 3 CA 2 EV 2009" + "PSCProcert" + "Swisscom Root CA 2" + "Swisscom Root EV CA 2" + "TURKTRUST Certificate Services Provider Root 2007" - "Equifax Secure eBusiness CA 2" - "TC TrustCenter Universal CA III" -- Michael Shuler &lt;michael(a)pbandjelly.org&gt; Fri, 06 Sep 2013 11:31:06 -0500 ca-certificates (20130610) unstable; urgency=low CAcert root and class3 certificates are now installed as individual files, no longer as the concatenation of the two. The certificates are installed as cacert.org_root.crt and cacert.org_class3.crt for ease of identification. Remove obsolete debconf.org CA. Remove obsolete SPI CA certificate expired in 2007. -- Thijs Kinkhorst &lt;thijs(a)debian.org&gt; Mon, 10 Jun 2013 19:57:05 +0200 ack-grep (2.12-2) unstable; urgency=low The program "ack" is no more renamed to "ack-grep" since the conflicting "ack", a Kanji code converter, has been removed from Debian (see #662114). For a transitional phase of one Debian release, the package will though contain symlinks from ack-grep to ack for backwards compatibility. -- Axel Beckert &lt;abe(a)debian.org&gt; Mon, 17 Feb 2014 18:03:56 +0100 ack-grep (2.04-1) unstable; urgency=low From upstream Changes: ack 2 makes some big changes in its behaviors that could trip up users who are used to the idiosyncracies of ack 1.x. These changes could affect your searching happiness, so please read them. Read the full list in /usr/share/doc/ack-grep/changelog.gz. -- gregor herrmann &lt;gregoa(a)debian.org&gt; Sat, 11 May 2013 18:38:48 +0200 libdate-manip-perl (6.39-1) unstable; urgency=low Removed some deprecated config variables The following config variables have been removed: - IntCharset - RecurNumFudgeDays -- Xavier Guimard &lt;x.guimard(a)free.fr&gt; Sat, 20 Apr 2013 06:19:31 +0200 libhtml-tree-perl (5.03-1) unstable; urgency=low [THINGS THAT MAY BREAK YOUR CODE OR TESTS] * as_HTML no longer indents <textarea> -- gregor herrmann &lt;gregoa(a)debian.org&gt; Mon, 07 Oct 2013 21:27:45 +0200 libpackage-stash-perl (0.35-1) unstable; urgency=low The following deprecated symbols have been removed: * remove_package_glob * has_package_symbol * get_package_symbol * get_or_add_package_symbol * remove_package_symbol * list_all_package_symbols -- Alessandro Ghedini &lt;ghedo(a)debian.org&gt; Fri, 26 Jul 2013 19:49:44 +0200 mysql-5.5 (5.5.35+dfsg-1) unstable; urgency=low mysql-server-5.5 ships with the upstream mysql_install_db script which creates a database "test" and sets up permissions that allow anonymous access, without a password, from localhost to the "test" database and any databases starting with "test_" that users might have created after installing mysql-server. During the migration of mysql-5.1 to mysql-5.5 in Debian the patches to drop these permissions and the creation of the test databases were not applied. This update resolves this issue for new installations of mysql-server-5.5. If you are updating from a previous version of mysql-5.5 it is recommended to check your installation and to drop these privileges and databases manually. Further information can be found at the MySQL 5.5 Reference Manual[1]. [1] http://dev.mysql.com/doc/refman/5.5/en/default-privileges.html -- James Page &lt;jamespage(a)debian.org&gt; Fri, 17 Jan 2014 17:15:31 +0000 rpm (4.11.2-2) unstable; urgency=low Since 4.11.2 rpm is more strict about using - in version or release name. The version in Debian is patched to emit only warning on this, but this patch will disappear in future releases, so please adjust your spec files accordingly. The same approach was taken by Fedora 20, so we try to stay compatible with upstream by this. -- Michal Čihař &lt;nijel(a)debian.org&gt; Thu, 27 Feb 2014 13:35:35 +0100