Adam D. Barratt | 21 Feb 15:51 2015
Picon

[SUA 70-1] Updated clamav version

-----------------------------------------------------------------------
Debian Stable Updates Announcement SUA 70-1       http://www.debian.org
debian-release@...               Sebastian Andrzej Siewior
February 21st, 2015
-----------------------------------------------------------------------

Package              : clamav
Version              : 0.98.6+dfsg-0+deb7u1
Importance           : high

Upstream published version 0.98.6.

This is a mostly a bug-fix release. The changes are not strictly required
for operation, but users of the previous version in Wheezy may not be
able to make use of all current virus signatures and might get warnings.

The bug fixes that are part of this release include security fixes related
to packed or crypted files (CVE-2014-9328, CVE-2015-1461, CVE-2015-1462
and CVE-2015-1463) and several fixes to the embedded libmspack library,
including a potential infinite loop in the Quantum decoder (CVE-2014-9556).

If you use clamav, we strongly recommend that you upgrade to this version.

Upgrade Instructions
--------------------

You can get the updated packages by adding the stable-updates archive
for Wheezy to your /etc/apt/sources.list:

 deb http://ftp.debian.org/debian wheezy-updates main
(Continue reading)

Adam D. Barratt | 21 Feb 15:50 2015
Picon

[SUA 69-1] Updated policyd-weight version

-----------------------------------------------------------------------
Debian Stable Updates Announcement SUA 69-1       http://www.debian.org
debian-release@...                           Werner Detter
February 21st, 2015
-----------------------------------------------------------------------

Package              : policyd-weight
Version              : 0.1.15.2-5+wheezy2
Importance           : high

policyd-weight, a policy daemon for the Postfix MTA, enables the
checking of several "block lists" by default, including the Abusive
Host Block List, or AHBL. The AHBL has now been shut down by its
providers and responds to queries for any IP address by indicating that
it is listed, thus causing policyd-weight to be more likely to be
block any mail being checked.

This updates resolves this issue by removing the rules for the AHBL.

If you use policyd-weight, we strongly recommend that you upgrade to
this version.

Upgrade Instructions
--------------------

You can get the updated packages by adding the stable-updates archive
for Wheezy to your /etc/apt/sources.list:

 deb http://ftp.debian.org/debian wheezy-updates main
 deb-src http://ftp.debian.org/debian wheezy-updates main
(Continue reading)

Adam D. Barratt | 21 Feb 15:49 2015
Picon

[SUA 68-1] Updated spamassassin version

-----------------------------------------------------------------------
Debian Stable Updates Announcement SUA 68-1       http://www.debian.org
debian-release@...                          Noah Meyerhans
February 21st, 2015
-----------------------------------------------------------------------

Package              : spamassassin
Version              : 3.3.2-5+deb7u3
Importance           : medium

Spamassassin, a spam filter, enables the checking of several "block
lists" by default, including the Abusive Host Block List, or AHBL. The
AHBL has now been shut down by its providers and responds to queries
for any IP address by indicating that it is listed, thus causing
spamassassin to raise the spam score for all mail being checked.

This updates resolves this issue by removing the rules for the AHBL.

Note that if automatic updates to spamassassin's rules are enabled then
the use of the abhl.org list has already been disabled via an upstream
update.

If you use spamassassin, we recommend that you upgrade to this version,
particularly if you have not enabled automatic rule updates.

Upgrade Instructions
--------------------

You can get the updated packages by adding the stable-updates archive
for Wheezy to your /etc/apt/sources.list:
(Continue reading)

Adam D. Barratt | 2 Feb 21:39 2015
Picon

[SUA 67-1] Updated libdatetime-timezone-perl version

-----------------------------------------------------------------------
Debian Stable Updates Announcement SUA 67-1      https://www.debian.org
debian-release@...                         gregor herrmann
February 2nd, 2015
-----------------------------------------------------------------------

Package              : libdatetime-timezone-perl
Version              : 1:1.58-1+2015a
Importance           : medium

libdatetime-timezone-perl is a Perl library exposing the Olson timezone
database. This update brings the data included in the package in line
with the recent update to tzdata (in SUA 66-1).

Changes since 1:1.58-1+2014j currently in Wheezy are adjustments
to the DST rules of Cancun and Chile and the addition of a leap second.

The changes for Chile take effect in April; those for Cancun are already
in effect.

Upgrade Instructions
--------------------

You can get the updated packages by adding the stable-updates archive
for Wheezy to your /etc/apt/sources.list:

 deb http://ftp.debian.org/debian wheezy-updates main
 deb-src http://ftp.debian.org/debian wheezy-updates main

You can also use any of the Debian archive mirrors.  See
(Continue reading)

Adam D. Barratt | 1 Feb 21:27 2015
Picon

[SUA 66-1] Updated tzdata version

-----------------------------------------------------------------------
Debian Stable Updates Announcement SUA 66-1       http://www.debian.org
debian-release@...                          Aurelien Jarno
February 1st, 2015
-----------------------------------------------------------------------

Package              : tzdata
Version              : 2015a-0wheezy1
Importance           : medium

Upstream published version 2015a.

Changes since 2014j-0wheezy1 currently in wheezy are adjustments
to the DST rules of Cancun and Chile and the addition of a leap second.

The changes for Chile take effect in April; those for Cancun are already
in effect.

Upgrade Instructions
--------------------

You can get the updated packages by adding the stable-updates archive
for Wheezy to your /etc/apt/sources.list:

 deb http://ftp.debian.org/debian wheezy-updates main
 deb-src http://ftp.debian.org/debian wheezy-updates main

You can also use any of the Debian archive mirrors.  See
'http://www.debian.org/mirrors/list' for the full list of mirrors.

(Continue reading)

Adam D. Barratt | 5 Jan 22:14 2015
Picon

[SUA 65-1] Upcoming Debian 7 Update (7.8)

-------------------------------------------------------------------------
Debian Stable Updates Announcement SUA 65-1       https://www.debian.org/
debian-release@...                           Adam D. Barratt
January 5th, 2015
-------------------------------------------------------------------------

Upcoming Debian 7 Update (7.8)

An update to Debian 7 is scheduled for Saturday, January 10th, 2015. As
of now it will include the following bug fixes. They can be found in
"wheezy-proposed-updates", which is carried by all official mirrors.

Please note that packages published through security.debian.org are not
listed, but will be included if possible. Some of the updates below are
also already available through "wheezy-updates".

Testing and feedback would be appreciated. Bugs should be filed in the
Debian Bug Tracking System, but please make the Release Team aware of
them by copying "debian-release@..." on your mails.

The point release will also include a rebuild of debian-installer.

Miscellaneous Bugfixes
----------------------

This stable update adds a few important corrections to the following
packages:

    Package                       Reason

(Continue reading)

Adam D. Barratt | 3 Dec 20:59 2014
Picon

[SUA 64-1] Updated spamassassin version

-----------------------------------------------------------------------
Debian Stable Updates Announcement SUA 64-1       http://www.debian.org
debian-release@...                          Noah Meyerhans
December 3rd, 2014
-----------------------------------------------------------------------

Package              : spamassassin
Version              : 3.3.2-5+deb7u2
Importance           : medium

Upstream introduced support for rules used by spamassassin, a spam filter,
to be enabled based on the installed Perl version.

When such a rule was added to the ruleset delivered via spamassassin's
automatic update system recently, the version of spamassassin in Wheezy
produced warnings on every invocation. This update resolves that issue
by adding support for the new syntax.

Note that while no such rules are currently included in the ruleset, it
is planned that they will be reintroduced at some point in the future.

If you use spamassassin, we recommend that you upgrade to this version.

Upgrade Instructions
--------------------

You can get the updated packages by adding the stable-updates archive
for Wheezy to your /etc/apt/sources.list:

 deb http://ftp.debian.org/debian wheezy-updates main
(Continue reading)

Adam D. Barratt | 27 Nov 21:56 2014
Picon

[SUA 63-1] Updated clamav version

-----------------------------------------------------------------------
Debian Stable Updates Announcement SUA 63-1       http://www.debian.org
debian-release@...                         Scott Kitterman
November 27th, 2014
-----------------------------------------------------------------------

Package              : clamav
Version              : 0.98.5+dfsg-0+deb7u1
Importance           : high

Upstream published version 0.98.5.

This is a mostly a bug-fix release. The changes are not strictly required
for operation, but users of the previous version in Wheezy may not be
able to make use of all current virus signatures and might get warnings.

The bug fixes that are part of this release include the resolution of an
issue in clamscan, the command line anti-virus scanner included in the
package, which could lead to crashes when scanning certain files 
(CVE-2013-6497).  It also resolves an issue in libclamav which caused a
heap buffer overflow when scanning a specially crafted y0da Crypter
obfuscated PE file (CVE-2014-9050). Note that this is remotely exploitable
when ClamAV is used as a mail gateway scanner.

If you use clamav, we strongly recommend that you upgrade to this version.

Upgrade Instructions
--------------------

You can get the updated packages by adding the stable-updates archive
(Continue reading)

Adam D. Barratt | 13 Oct 23:14 2014
Picon

[SUA 62-1] Upcoming Debian 7 Update (7.7)

-------------------------------------------------------------------------
Debian Stable Updates Announcement SUA 62-1       https://www.debian.org/
debian-release@...                           Adam D. Barratt           
October 13th, 2014
-------------------------------------------------------------------------

Upcoming Debian 7 Update (7.7)

An update to Debian 7 is scheduled for Saturday, October 18th, 2014. As
of now it will include the following bug fixes. They can be found in
"wheezy-proposed-updates", which is carried by all official mirrors.

Please note that packages published through security.debian.org are not
listed, but will be included if possible. Some of the updates below are
also already available through "wheezy-updates".

Testing and feedback would be appreciated. Bugs should be filed in the
Debian Bug Tracking System, but please make the Release Team aware of
them by copying "debian-release@..." on your mails.

The point release will also include a rebuild of debian-
installer.

Miscellaneous Bugfixes
----------------------

This stable update adds a few important corrections to the following
packages:

    Package                       Reason
(Continue reading)

Adam D. Barratt | 14 Jul 21:56 2014
Picon

[SUA 61-1] Upcoming Debian 6.0 Update (6.0.10)

-------------------------------------------------------------------------
Debian Stable Updates Announcement SUA 61-1       https://www.debian.org/
debian-release@...                           Adam D. Barratt
July 14th, 2014
-------------------------------------------------------------------------

Upcoming Debian 6.0 Update (6.0.10)

The final update to Debian 6.0 is scheduled for Saturday, July 19th, 2014.
As of now it will include the following bug fixes. They can be found in
"squeeze-proposed-updates", which is carried by all official mirrors.

Please note that packages published through security.debian.org are not
listed, but will be included if possible. Some of the updates below are
also already available through "squeeze-updates".

Testing and feedback would be appreciated. Bugs should be filed in the
Debian Bug Tracking System, but please make the Release Team aware of
them by copying "debian-release@..." on your mails.

The point release will also include a rebuild of debian-installer.

Miscellaneous Bugfixes
----------------------

This oldstable update adds a few important corrections to the following
packages:

    Package                         Reason

(Continue reading)

Adam D. Barratt | 8 Jul 00:01 2014
Picon

[SUA 60-1] Upcoming Debian 7 Update (7.6)

-------------------------------------------------------------------------
Debian Stable Updates Announcement SUA 60-1        http://www.debian.org/
debian-release@...                           Adam D. Barratt
July 7th, 2014
-------------------------------------------------------------------------

Upcoming Debian 7 Update (7.6)

An update to Debian 7 is scheduled for Saturday, July 12th,
2014. As of now it will include the following bug fixes. They can be
found in "wheezy-proposed-updates", which is carried by all official
mirrors.

Please note that packages published through security.debian.org are not
listed, but will be included if possible. Some of the updates below are
also already available through "wheezy-updates".

Testing and feedback would be appreciated. Bugs should be filed in the
Debian Bug Tracking System, but please make the Release Team aware of
them by copying "debian-release@..." on your mails.

The point release will also include a rebuild of debian-installer.

Miscellaneous Bugfixes
----------------------

This stable update adds a few important corrections to the following
packages:

    Package                         Reason
(Continue reading)


Gmane