apticron report [Mon, 11 Jan 2016 20:44:11 +0100] ======================================================================== apticron has detected that some packages need upgrading on: baldrick.crans.org [ 138.231.142.239 2a01:240:fe3d:4:62:61ff:fe6c:6401 138.231.142.239 ] [ 2a01:240:fe3d:4:62:61ff:fe6c:6401 ] The following packages are currently pending an upgrade: libperl5.20 5.20.2-3+deb8u2 perl 5.20.2-3+deb8u2 perl-base 5.20.2-3+deb8u2 perl-modules 5.20.2-3+deb8u2 sudo 1.8.10p3-1+deb8u3 ======================================================================== Package Details: Lecture des fichiers de modifications (« changelog »)... --- Modifications pour perl (libperl5.20 perl perl-base perl-modules) --- perl (5.20.2-3+deb8u2) jessie-security; urgency=high * [SECURITY] CVE-2015-8607 fix untaint issue with File::Spec::canonpath() -- Dominic Hargreaves <dom(a)earth.li> Fri, 01 Jan 2016 12:36:39 +0000 --- Modifications pour sudo --- sudo (1.8.10p3-1+deb8u3) jessie-security; urgency=medium * Non-maintainer upload * Disable editing of files via user-controllable symlinks (Closes: #804149) (CVE-2015-5602) - sudoedit path restriction bypass using symlinks - Change warning when user tries to sudoedit a symbolic link - Open sudoedit files with O_NONBLOCK and fail if they are not regular files - Remove S_ISREG check from sudo_edit_open(), it is already done in the caller - Add directory writability checks for sudoedit - Fix directory writability checks for sudoedit - Enable sudoedit directory writability checks by default -- Ben Hutchings <ben(a)decadent.org.uk> Tue, 05 Jan 2016 19:37:34 +0000 ======================================================================== You can perform the upgrade by issuing the command: apt-get dist-upgrade as root on baldrick.crans.org -- apticron