This automatic mail gives an overview over security issues that were recently fixed in Debian Testing. The majority of fixed packages migrate to testing from unstable. If this would take too long, fixed packages are uploaded to the testing-security repository instead. It can also happen that vulnerable packages are removed from Debian testing.
Migrated from unstable: ======================= ggobi 2.1.9~20091212-1: CVE-2009-3736: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3736 http://bugs.debian.org/559806 kde4libs 4:4.3.4-1: CVE-2009-0689: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0689 http://bugs.debian.org/559266 <no CVE yet> : multiple missing input sanity checks in KDE openttd 0.7.5-1 (contrib): CVE-2009-4007: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4007 xulrunner 1.9.1.6-1: CVE-2009-3388: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3388 CVE-2009-3389: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3389 CVE-2009-3979: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3979 CVE-2009-3980: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3980 CVE-2009-3982: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3982 CVE-2009-3983: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3983 CVE-2009-3984: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3984 CVE-2009-3985: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3985 CVE-2009-3986: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3986 ziproxy 2.7.2-1: CVE-2009-0804: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0804 http://bugs.debian.org/521051 How to update: -------------- Make sure the line deb http://security.debian.org squeeze/updates main contrib non-free is present in your /etc/apt/sources.list. Of course, you also need the line pointing to your normal squeeze mirror. You can use aptitude update && aptitude dist-upgrade to install the updates. More information: ----------------- More information about which security issues affect Debian can be found in the security tracker: http://security-tracker.debian.org/tracker/ A list of all known unfixed security issues is at http://security-tracker.debian.org/tracker/status/release/testing -- To UNSUBSCRIBE, email to debian-testing-security-announce-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org