Just released, including security updates. 9.4.3-20180416
Updates in 2 source package(s), 4 binary package(s): Source tzdata, binaries: tzdata:amd64 tzdata:arm64 tzdata (2018d-0+deb9u1) stretch; urgency=medium * New upstream version. Main change: Palestine starts DST a week earlier in 2018 Source perl, binaries: perl-base:amd64 perl-base:arm64 perl (5.24.1-3+deb9u3) stretch-security; urgency=high * [SECURITY] CVE-2018-6797: buffer overflow related to regex unicode semantics. * [SECURITY] CVE-2018-6798: heap buffer overflow when matching malformed UTF-8 characters. * [SECURITY] CVE-2018-6913: heap buffer overflow with large data blocks. https://cloud.debian.org/images/openstack/current-9/ -- Steve McIntyre, Cambridge, UK. st...@einval.com "I've only once written 'SQL is my bitch' in a comment. But that code is in use on a military site..." -- Simon Booth
signature.asc
Description: PGP signature