apticron report [Mon, 06 Jun 2016 00:38:16 +0200] ======================================================================== apticron has detected that some packages need upgrading on: quigon.federez.net [ 160.228.155.65 ] The following packages are currently pending an upgrade: base-files 8+deb8u5 clamav 0.99.2+dfsg-0+deb8u1 clamav-base 0.99.2+dfsg-0+deb8u1 clamav-daemon 0.99.2+dfsg-0+deb8u1 clamav-freshclam 0.99.2+dfsg-0+deb8u1 clamdscan 0.99.2+dfsg-0+deb8u1 dmsetup 2:1.02.90-2.2+deb8u1 dpkg 1.17.27 dpkg-dev 1.17.27 initramfs-tools 0.120+deb8u2 libclamav7 0.99.2+dfsg-0+deb8u1 libdevmapper1.02.1 2:1.02.90-2.2+deb8u1 libdpkg-perl 1.17.27 libksba8 1.3.2-1+deb8u1 libperl5.20 5.20.2-3+deb8u5 libssl1.0.0 1.0.1t-1+deb8u2 libssl-dev 1.0.1t-1+deb8u2 libxapian22 1.2.19-1+deb8u1 openssl 1.0.1t-1+deb8u2 perl 5.20.2-3+deb8u5 perl-base 5.20.2-3+deb8u5 perl-modules 5.20.2-3+deb8u5 ======================================================================== Package Details: Lecture des fichiers de modifications (« changelog »)... --- Modifications pour clamav (clamav clamav-base clamav-daemon clamav-freshclam clamdscan libclamav7) --- clamav (0.99.2+dfsg-0+deb8u1) stable; urgency=medium * Import new Upstream. * Drop AllowSupplementaryGroups option which is default now (Closes: #822444). * Let the LSB init script have more consistent output. Patch by Guillem Jover (Closes: #823074). * Ensure the users of PRIVATE symbols (clamd + freshclam) do not fall behind a upstream version (Closes: #824485). * also remove bytecode.cld on purge -- Sebastian Andrzej Siewior <sebastian(a)breakpoint.cc> Thu, 19 May 2016 18:37:56 +0200 clamav (0.99.1+dfsg-0+deb8u1) stable; urgency=medium [ Scott Kitterman ] * Update version guards for pid file checks in clamav-daemon and clamav- freshclam to account for squeeze-lts upload that did not include the related change * Bump standards version to 3.9.7 without further change * Drop squeeze related work-arounds now that squeeze-lts is no longer supported - Strip llvm from the upstream tarball in Files-Excluded to make it more compatct (system llvm is always used now) - Clean up debian/rules by removing squeeze specific configuration and work arounds [ Adriano Rafael Gomes ] * Brazilian Portuguese debconf templates translation (Closes: #816956). [ Sebastian Andrzej Siewior ] * Import new upstream * Drop patches applied upstream: - add-LLVM-3.6-support.patch - libclamav-yara-avoid-unaliged-access-to-64bit-variab.patch * add new clamd.conf options. * update symbol version for cl_retflevel due to CL_FLEVEL change. * use a https:// prefix in VCS-* links and for the homepage. * use "hardening=+all" for building. * fixup typos in copyright file * Update pid checks clamav-daemon and clamav-freshclam match lower than 0.99 version (to catch the upgrade path). * Apply malloc() check, from clamav's bugzilla #11524, #11526, #11529 -- Sebastian Andrzej Siewior <sebastian(a)breakpoint.cc> Wed, 06 Apr 2016 23:03:06 +0200 --- Modifications pour dpkg (dpkg dpkg-dev libdpkg-perl) --- dpkg (1.17.27) jessie; urgency=medium [ Guillem Jover ] * Add more Conflicts for removed packages expecting dpkg to ship install-info. Namely ada-mode and octave2.1-info. Closes: #783657 Thanks to Andreas Beckmann <anbe(a)debian.org>rg>. * Remove trailing space before handling blank line dot-separator in Dpkg::Control::HashCore. Regression introduced in dpkg 1.17.25. Reported by Jakub Wilk <jwilk(a)debian.org>rg>. Closes: #789580 * Only use the SHELL environment variable for interactive shells. Closes: #788819 * Move tar option --no-recursion before -T in dpkg-deb. With tar > 1.28 the --no-recursion option is now positional, and needs to be passed before the -T option, otherwise the tarball will end up with duplicated entries. Thanks to Richard Purdie <richard.purdie(a)linuxfoundation.org>rg>. Closes: #807940 * Initialize Config-Version also for packages previously in triggers-pending state, otherwise we end up not passing the previously configured version to «postinst configure», which might consider this a first install instead of an upgrade. Closes: #801156 * Fix memory leak in dpkg infodb format upgrade logic. * Fix physical file offset comparison in dpkg. Closes: #808912 Thanks to Yuri Gribov <tetra2005(a)gmail.com>om>. * Add kfreebsd-armhf support to ostable and triplettable. Closes: #796283 Thanks to Steven Chamberlain <steven(a)pyro.eu.org>rg>. * Add NIOS2 support to cputable. Thanks to Marek Vasut <marex(a)denx.de>de>. * Build system: - Set PERL5LIB globally for the test suite to the local modules directory, to avoid using the system modules. Regression introduced in dpkg 1.17.8. Reported by Jérémy Bobbio <lunar(a)debian.org>rg>. Closes: #801329 - When sys_siglist is defined in the system, try to use NSIG as we cannot compute the array size with sizeof(). If NSIG is missing fallback to 32 items. Prompted by Igor Pashev <pashev.igor(a)gmail.com>om>. [ Updated scripts translations ] * German (Helge Kreutzmann). (Various fixes) [ Updated manpages translations ] * German (Helge Kreutzmann). (Various fixes) -- Guillem Jover <guillem(a)debian.org> Sun, 20 Mar 2016 11:40:28 +0100 --- Modifications pour initramfs-tools --- initramfs-tools (0.120+deb8u2) jessie; urgency=medium * [7863219] hook-functions: Include drivers/nvme in block driver modules (Closes: #807000) * [fcef753] hook-functions: Create ORDER files even if there are no valid scripts (Closes: #814965) -- Ben Hutchings <ben(a)decadent.org.uk> Sun, 17 Apr 2016 18:20:09 +0100 --- Modifications pour libksba (libksba8) --- libksba (1.3.2-1+deb8u1) jessie; urgency=medium * Non-maintainer upload. * Do not abort on decoder stack overflow (CVE-2016-4353) * Fix integer overflow in the BER decoder (CVE-2016-4354 CVE-2016-4355) * Fix encoding of invalid utf-8 strings in dn.c (CVE-2016-4356) * Fix an OOB read access in _ksba_dn_to_str * Fix possible read access beyond the buffer (CVE-2016-4579) -- Salvatore Bonaccorso <carnil(a)debian.org> Mon, 16 May 2016 17:18:33 +0200 --- Modifications pour lvm2 (dmsetup libdevmapper1.02.1) --- lvm2 (2.02.111-2.2+deb8u1) jessie; urgency=medium * Set default pid directory to /run. (closes: #783120) -- Bastian Blank <waldi(a)debian.org> Fri, 27 May 2016 09:04:17 +0000 --- Modifications pour openssl (libssl1.0.0 libssl-dev openssl) --- openssl (1.0.1t-1+deb8u2) jessie; urgency=medium * add Update-S-MIME-certificates.patch to update expired certificates to pass the test suite -- Sebastian Andrzej Siewior <sebastian(a)breakpoint.cc> Wed, 11 May 2016 23:22:52 +0200 openssl (1.0.1t-1+deb8u1) jessie; urgency=medium [ Sebastian Andrzej Siewior ] * Update to 1.0.1t stable release (drop applied patches and refresh existing ones). - Use alternate trust chains part of 1.0.1n (Closes: #774882). - Use correct digest when exporting keying material (Closes: #807057) - Fix CVE-2015-3197 (not affected, SSLv2 disabled) - Fix CVE-2015-1793 (1.0.1n+ is affected and last upload was k) -- Kurt Roeckx <kurt(a)roeckx.be> Fri, 06 May 2016 15:56:09 +0200 --- Modifications pour perl (libperl5.20 perl perl-base perl-modules) --- perl (5.20.2-3+deb8u5) jessie; urgency=medium * Apply patch from Niko Tyni fixing debugperl crashes with XS modules (Closes: #816280) * [SECURITY] CVE-2015-8853 fix regexp engine hang on illegal UTF8 input (Closes: #821848) * Fix UTF8-related regexp engine crash (Closes: #820328) * Apply selected bug-fix patches taken from 5.20.3 (Closes: #822336) - /usr/share/doc/perl/perldebdelta.pod describes the changes in more detail -- Dominic Hargreaves <dom(a)earth.li> Mon, 23 May 2016 23:42:11 +0100 --- Modifications pour xapian-core (libxapian22) --- xapian-core (1.2.19-1+deb8u1) stable; urgency=medium * New patch increment-cursor-version-on-cancel-or-reopen.patch fixing possible database corruption, especially with recoll. (Closes: #808610) -- Olly Betts <olly(a)survex.com> Tue, 19 Apr 2016 11:49:06 +1200 --- Modifications pour base-files --- base-files (8+deb8u5) stable; urgency=low * Changed /etc/debian_version to 8.5, for Debian 8.5 point release. -- Santiago Vila <sanvila(a)debian.org> Sun, 22 May 2016 12:48:52 +0200 ======================================================================== You can perform the upgrade by issuing the command: apt-get dist-upgrade as root on quigon.federez.net -- apticron