Re: Setting APT::Default-Release prevents installation of security updates in bookworm!?

On Thu, 2023-07-20 at 22:12 +0200, Daniel Gröber wrote: > It seems packages from the debian-security repository are not affected by > this increased priority and will not get intalled as a result. This was documented in the release notes for Debian bullseye:

Setting APT::Default-Release prevents installation of security updates in bookworm!?

Hi debian-security, I've just noticed something rather distressing. As part of my usual Debian installation I set `APT::Default-Release "stable";` which causes a change of apt priorities for packages from this release (or so I thought) from the usual 500 to 990. This is recommended in various

[SECURITY] [DSA 5456-1] chromium security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 - - Debian Security Advisory DSA-5456-1 secur...@debian.org https://www.debian.org/security/ Moritz Muehlenhoff July 20, 2023

External check

CVE-2023-37450: missing from list CVE-2023-38200: missing from list -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the script was run.