Debian GNU/Linux Changelog

New in version 8 Beta 2

October 6th, 2014
  • Important changes in this release of the installer:
  • Gnome is now the default desktop environment on Linux again.
  • A list of desktop environments is displayed in tasksel, making it easy to install another desktop environment (or several of them). Unfortunately that is currently a bit underdocumented (#764026).
  • Preliminary support for the arm64 and ppc64el architectures has been added.
  • Other changes in this release of the installer:
  • brltty: Append the configuration inherited from d-i to the end of brltty.conf instead of overwriting it (which was thus losing the documentation for the user).
  • brltty: Enable accessibility in XFCE, LXDE and MATE sessions too.
  • busybox: Add support for /32 subnets in udhcpc script (#652573).
  • choose-mirror: Strip off any scheme part found at the start of mirror/*/hostname (#706191).
  • console-setup: Correct default keymap for South Korea (#756052).
  • console-setup: Use nepali keymap for Nepali and Tharu by default.
  • debian-installer:
  • Fix the PXE boot images built for kfreebsd, hurd (#759686).
  • Add fonts-lohit-guru-udeb to gtk images, fixing rendering for Punjabi (#761573).
  • Remove desktop selection from syslinux; now available in tasksel.
  • Keep Linux modules.builtin file in the initrd.
  • Fix lib location and search path for syslinux >= 5 (#756275).
  • fontconfig: Add conf.avail directory to the udeb, fixing broken Monospace font in graphical installer (#739011).
  • hw-detect: Improve driver injection disk support.
  • hw-detect: Move firmware installation code to pre-pkgsel.d
  • hw-detect: Correct detection of Macs needing to blacklist snd-aoa modules (#650588).
  • iso-scan: Do not error out when searching in folders with shell-special characters in their name (#640789).
  • lowmem: Update lowmem limits for linux-x86.
  • lowmem: Make the / ramfs fill the whole memory again (#759336).
  • netcfg: Do not kill_dhcp_client after setting the hostname and domain, otherwise Linux udhcpc will stop renewing its lease, and on other platforms dhclient will de-configure the network interface (#757711, #757988).
  • netcfg: Don't copy /etc/network/interfaces to /target if netcfg/target_network_config=ifupdown (#709017).
  • netcfg: Fix support for entering an ESSID manually, it was previously getting ignored (#757478).
  • preseed: Update auto-install/defaultroot for jessie.
  • preseed: Always disable locale & keyboard question when auto is enabled, even if no preseed file was given on boot, in case the dhcp server provides it (#759290).
  • rootskel: Update lowmem limit for gtk on linux-x86.
  • rootskel: Use a tmpfs for some directories to avoid running out of space in the fixed-size initrd on kfreebsd-(#757985).
  • rootskel-gtk: Update gtk-set-font to learn a new mapping (Lohit Punjabi).
  • Hardware support changes:
  • libdebian-installer: arm64: Detect UEFI based systems as "efi" subarch.
  • libdebian-installer: Add ppc64 and ppc64el support.
  • linux:
  • Include preliminary support for arm64 and ppc64el.
  • udeb: Add ccm, ctr to crypto-modules (#761902).
  • [armhf] udeb: Add ehci-platform, ohci-platform and phy-sun4i-usb to usb-modules (#761591).
  • udeb: Add rsi_usb to nic-wireless-modules
  • udeb: Add ath6kl_sdio, libertas_cs, libertas_sdio, mwifiex_sdio, r8192u_usb, r8723au, rtl8188eu, rtl818x_pci, rtl8723be, rtl8821ae, spectrum_cs to nic-wireless-modules.
  • [armel/orion5x] udeb: Include mvmdio in nic-modules udeb.
  • udeb: Add new sound drivers to sound-modules (#756998).

New in version 8 Beta 1 (August 14th, 2014)

  • Important changes in this release of the installer:
  • Gnome installation images have been fixed (#756774): they will now really install Gnome (instead of Xfce). They should offer the best experience as far as accessibility is concerned.
  • A major parted release was merged lately, and many related components needed an update accordingly. If you experience any troubles during the partitioning step, please make sure to include /var/log/syslog (as usual) but also /var/log/partman in your installation report.
  • A major release of syslinux also appeared, with incompatible changes. It has consequences on various aspects, including PXE setups (see Ron's analysis in #757920), and theming. The artwork part will be dealt with in a later installer release.
  • The default init system on Linux is now systemd.
  • Other changes in this release of the installer:
  • cdebconf: Resize banner when window width and banner width don't match (#745359).
  • debian-installer:
  • Deal with incompatible changes in syslinux.
  • Drop some parted_server functions (due to parted changes).
  • kfreebsd-9: replaced with kfreebsd-10.
  • linux: updated to 3.14.15.
  • preseed: Re-enable keyboard question on file preseed (#696857).
  • Hardware support changes:
  • debian-installer:
  • Add support for mipsel/loongson-3.
  • Add support for QNAP HS-210.
  • Add support for D-Link DNS-320.
  • Add some dtb files for armhf and armel/kirkwood.
  • Drop support for armhf/efikamx (no longer supported upstream).
  • linux:
  • [armhf] Add MMC and NIC modules for BeagleBone Black to udebs (#754491).
  • [armhf] Add virtio-modules udeb.
  • [armhf] Enable BRCMFMAC, BRCMFMAC_SDIO as modules (#734430).
  • [armhf] Backport sunxi AHCI and GMAC drivers from v3.15-rc1.
  • [armhf] Enable more Allwinner/sunxi drivers (#745972).
  • [mips*] Add few new udebs and use standard udebs configuration when possible.
  • [mips,mipsel] Remove the sb1a-bcm91480b flavour.
  • [mipsel/loongson3] Add support for Loongson 3 LS3A RS780E 1-way boards.
  • [mips,mipsel] Enable initramfs for all flavours, but keep the disk related drivers built-in for now.
  • [mips/octeon] Backport from upstream PCIe2 support and interface mode detection for Octeon.
  • [mips,mipsel/4kc-malta] Fix bug which can cause incorrect system call restarts (fix hang on boot).
  • [x86] udeb: Add hyperv-keyboard to hyperv-modules.
  • udeb: Add sdhci-acpi to mmc-modules (#747284).
  • udeb: Add mtip32xx, nvme to sata-modules.
  • udeb: Update sound-modules (#743319).
  • Include virtio_mmio in virtio-modules udeb when available.
  • u-boot:
  • Add support for some CuBox and Cubieboard targets.
  • Drop support for powerpc.
  • Localization status:
  • 75 languages are supported in this release.
  • Full translation for 12 of them.

New in version 6.0.10 (July 20th, 2014)

  • This update mainly adds corrections for security problems to the oldstable release, along with a few adjustments for serious problems. Security advisories were already published separately and are referenced where available.

New in version 7.5.0 (April 29th, 2014)

  • This update mainly adds corrections for security problems to the stable release, along with a few adjustments for serious problems. Security advisories were already published separately and are referenced where available.

New in version 8 Alpha 1 (March 19th, 2014)

  • Improvements in this release of the installer:
  • Many components were updated during the beginning of the Jessie release cycle, so a full list of changes is not included in this announcement.
  • apt-setup: Avoid hang due to interactive apt-cdrom (#740673).
  • grub-installer: Support menu selection of GRUB boot disk (#706112).
  • Behavorial changes in this release:
  • Xfce is the default desktop environment for the time being. Quoting tasksel's changelog: "this will be re-evaluated in August 2014, and may change again before Jessie is released".
  • It's still possible to select an alternative desktop to install at the boot prompt; installation images are available for the various major desktop environments as usual.
  • Hardware support changes:
  • The ia64 architecture has been removed from the archive, and is no longer supported.
  • The s390 architecture has been replaced with the s390x architecture.
  • It wasn't possible to build the installer for sparc (#731806), so no installation images are available for this architecture. Its future as an official port is being evaluated by the release team.
  • The Linux kernel has been updated from 3.2 to 3.13.
  • The FreeBSD kernel has been updated from 9.0 to 9.2.
  • armel: The iop32x flavour has been dropped.
  • armhf: The armmp flavour has been added; it covers both mx5 and vexpress.
  • mipsel: The cobalt flavour has been dropped.
  • s390x: The tape flavour has been dropped.

New in version 6.0.9 (February 15th, 2014)

  • This update mainly adds corrections for security problems to the old stable release, along with a few adjustments for serious problems. Security advisories were already published separately and are referenced where available.

New in version 7.4.0 (February 10th, 2014)

  • This update mainly adds corrections for security problems to the stable release, along with a few adjustments for serious problems. Security advisories were already published separately and are referenced where available.

New in version 7.0 (May 5th, 2013)

  • Apache 2.2.22
  • Asterisk 1.8.13.1
  • GIMP 2.8.2
  • an updated version of the GNOME desktop environment 3.4
  • GNU Compiler Collection 4.7.2
  • Icedove 10 (an unbranded version of Mozilla Thunderbird)
  • Iceweasel 10 (an unbranded version of Mozilla Firefox)
  • KDE Plasma Workspaces and KDE Applications 4.8.4
  • kFreeBSD kernel 8.3 and 9.0
  • LibreOffice 3.5.4
  • Linux 3.2
  • MySQL 5.5.30
  • Nagios 3.4.1
  • OpenJDK 6b27 and 7u3
  • Perl 5.14.2
  • PHP 5.4.4
  • PostgreSQL 9.1
  • Python 2.7.3 and 3.2.3
  • Samba 3.6.6
  • Tomcat 6.0.35 and 7.0.28
  • Xen Hypervisor 4.1.4
  • the Xfce 4.8 desktop environment
  • X.Org 7.7
  • more than 36,000 other ready-to-use software packages, built from nearly 17,500 source packages.

New in version 6.0.7 (February 23rd, 2013)

  • Miscellaneous Bugfixes:
  • apt-show-versions Fix detection of squeeze-updates and squeeze; update official distribution list
  • base-files Update for the point release
  • bcron Don't allow jobs access to other jobs' temporary files
  • bind9 Update IP for "D" root server
  • bugzilla Add dependency on liburi-perl, used during package configuration
  • choose-mirror Update URL for master mirror list
  • clamav New upstream version
  • claws-mail Fix NULL pointer dereference
  • clive Adapt for youtube.com changes
  • cups Ship cups-files.conf's manpage
  • dbus Avoid code execution in setuid/setgid binaries
  • dbus-glib Fix authentication bypass through insufficient checks (CVE-2013-0292)
  • debian-installer Rebuild for 6.0.7
  • debian-installer-netboot-images Rebuild against debian-installer 20110106+squeeze4+b3
  • dtach Properly handle close request (CVE-2012-3368)
  • ettercap Fix hosts list parsing (CVE-2013-0722)
  • fglrx-driver Fix diversion-related issues with upgrades from lenny
  • flashplugin-nonfree Use gpg --verify
  • fusionforge Lenny to squeeze upgrade fix
  • gmime2.2 Add Conflicts: libgmime2.2-cil to fix upgrades from lenny
  • gzip Avoid using memcpy on overlapping regions
  • ia32-libs Update included packages from stable / security.d.o
  • ia32-libs-core Update included packages from stable / security.d.o
  • kfreebsd-8 Fix CVE-2012-4576: memory access without proper validation in linux compat system
  • libbusiness-onlinepayment-ippay-perl Backport changes to IPPay gateway's server name and path
  • libproc-processtable-perl Fix unsafe temporary file usage (CVE-2011-4363)
  • libzorpll Add missing Breaks/Replaces: libzorp2-dev to libzorpll-dev
  • linux-2.6 Update to stable release 2.6.32.60. Backport hpsa, isci and megaraid_sas driver updates. Fix r8169 hangs
  • linux-kernel-di-amd64-2.6 Rebuild against linux-2.6 2.6.32-48
  • linux-kernel-di-armel-2.6 Rebuild against linux-2.6 2.6.32-48
  • linux-kernel-di-i386-2.6 Rebuild against linux-2.6 2.6.32-48
  • linux-kernel-di-ia64-2.6 Rebuild against linux-2.6 2.6.32-48
  • linux-kernel-di-mips-2.6 Rebuild against linux-2.6 2.6.32-48
  • linux-kernel-di-mipsel-2.6 Rebuild against linux-2.6 2.6.32-48
  • linux-kernel-di-powerpc-2.6 Rebuild against linux-2.6 2.6.32-48
  • linux-kernel-di-s390-2.6 Rebuild against linux-2.6 2.6.32-48
  • linux-kernel-di-sparc-2.6 Rebuild against linux-2.6 2.6.32-48
  • magpierss Fix upgrade issue
  • maradns Fix CVE-2012-1570 (deleted domain record cache persistence flaw)
  • mediawiki Prevent session fixation in Special:UserLogin (CVE-2012-5391); prevent linker regex from exceeding backtrack limit
  • moodle Multiple security fixes
  • nautilus Add Breaks: samba-common (= 1.4
  • swath Fix potential buffer overflow in Mule mode
  • swi-prolog Fix buffer overruns
  • ttf-ipafont Fix removal of alternatives
  • tzdata New upstream version; fix DST for America/Bahia (Brazil)
  • unbound Update IP address hints for D.ROOT-SERVERS.NET
  • xen Fix clock breakage
  • xnecview Fix FTBFS on armel
  • Security Updates:
  • DSA-2550 asterisk Multiple issues
  • DSA-2551 isc-dhcp Denial of service
  • DSA-2552 tiff Multiple issues
  • DSA-2553 iceweasel Multiple issues
  • DSA-2554 iceape Multiple issues
  • DSA-2555 libxslt Multiple issues
  • DSA-2556 icedove Multiple issues
  • DSA-2557 hostapd Denial of service
  • DSA-2558 bacula Information disclosure
  • DSA-2559 libexif Multiple issues
  • DSA-2560 bind9 Denial of service
  • DSA-2561 tiff Buffer overflow
  • DSA-2562 cups-pk-helper Privilege escalation
  • DSA-2563 viewvc Multiple issues
  • DSA-2564 tinyproxy Denial of service
  • DSA-2565 iceweasel Multiple issues
  • DSA-2566 exim4 Heap overflow
  • DSA-2567 request-tracker3.8 Multiple issues
  • DSA-2568 rtfm Privilege escalation
  • DSA-2569 icedove Multiple issues
  • DSA-2570 openoffice.org Multiple issues
  • DSA-2571 libproxy Buffer overflow
  • DSA-2572 iceape Multiple issues
  • DSA-2573 radsecproxy SSL certificate verification weakness
  • DSA-2574 typo3-src Multiple issues
  • DSA-2575 tiff Heap overflow
  • DSA-2576 trousers Denial of service
  • DSA-2577 libssh Multiple issues
  • DSA-2578 rssh Multiple issues
  • DSA-2579 apache2 Multiple issues
  • DSA-2580 libxml2 Buffer overflow
  • DSA-2582 xen Denial of service
  • DSA-2583 iceweasel Multiple issues
  • DSA-2584 iceape Multiple issues
  • DSA-2585 bogofilter Heap-based buffer overflow
  • DSA-2586 perl Multiple issues
  • DSA-2587 libcgi-pm-perl HTTP header injection
  • DSA-2588 icedove Multiple issues
  • DSA-2589 tiff Buffer overflow
  • DSA-2590 wireshark Multiple issues
  • DSA-2591 mahara Multiple issues
  • DSA-2592 elinks Programming error
  • DSA-2593 moin Multiple issues
  • DSA-2594 virtualbox-ose Programming error
  • DSA-2595 ghostscript Buffer overflow
  • DSA-2596 mediawiki-extensions Cross-site scripting in RSSReader extension
  • DSA-2597 rails Input validation error
  • DSA-2598 weechat Multiple issues
  • DSA-2599 nss Mis-issued intermediates
  • DSA-2600 cups Privilege escalation
  • DSA-2601 gnupg2 Missing input sanitation
  • DSA-2601 gnupg Missing input sanitation
  • DSA-2602 zendframework XML external entity inclusion
  • DSA-2603 emacs23 Programming error
  • DSA-2604 rails Insufficient input validation
  • DSA-2605 asterisk Multiple issues
  • DSA-2606 proftpd-dfsg Symlink race
  • DSA-2607 qemu-kvm Buffer overflow
  • DSA-2608 qemu Buffer overflow
  • DSA-2609 rails SQL query manipulation
  • DSA-2610 ganglia Remote code execution
  • DSA-2611 movabletype-opensource Multiple issues
  • DSA-2612 ircd-ratbox Remote crash
  • DSA-2613 rails Insufficient input validation
  • DSA-2614 libupnp Multiple issues
  • DSA-2615 libupnp4 Multiple issues
  • DSA-2616 nagios3 Buffer overflow vulnerability
  • DSA-2617 samba Multiple issues
  • DSA-2618 ircd-hybrid Denial of service
  • DSA-2619 xen-qemu-dm-4.0 Buffer overflow
  • DSA-2620 rails Multiple issues
  • DSA-2621 openssl Multiple issues
  • DSA-2622 polarssl Multiple issues
  • DSA-2623 openconnect Buffer overflow
  • DSA-2624 ffmpeg Multiple issues
  • DSA-2625 wireshark Multiple issues
  • DSA-2626 lighttpd Multiple issues
  • DSA-2627 nginx Information leak