Izinguqulo zokulungisa ze-Debian 12.5 ne-Debian 11.9 ziyafika

Darkcrizt

Imizuzu ye-4

I-Debian 12

Inguqulo yamanje ezinzile ye-Debian yi-12, ebizwa ngokuthi i-bookworm.

I ukukhishwa kwezinguqulo ezintsha zokulungisa ze-Debian 12.5 ne-Debian 11.9, lapho kusetshenziswe khona izilungiso nezibuyekezo eziqoqiwe zamaphakheji engeziwe kusifaki.

I-Debian 12.5 ibekwe njengenguqulo yesihlanu yokulungisa ochungechungeni lwe-Debian 12 Bookworm, le nguqulo iza nezibuyekezo ezingu-68 ezihloselwe ukuthuthukisa ukuzinza kwesistimu nezibuyekezo ezingu-42 ezihloselwe ukulungisa ubungozi bokuphepha.

Phakathi kwe Ukuthuthukiswa okufakiwe ku-Debian 12.5, kukhona isibuyekezo sezinguqulo zakamuva nezizinzile kakhulu zamaphakheji abalulekile, futhi ukusekelwa kwamamojula we-kernel acindezelwe kwengezwe ku-cryptsetup-initramfs.

Phakathi kwe ukulungisa okubalulekile, Singagcizelela okulandelayo:

  • i-cryptsetup-initramfs: engeza ukusekelwa kwamamojula we-kernel acindezelwe; i-cryptsetup-suspend-wrapper
  • imephu yemephu: Lungisa ukuvuza kwenkumbulo okuhlukahlukene; lungisa ifayela londoloza njengomsebenzi
  • filezilla: Vimbela ukuxhashazwa kwe-Terrapin [CVE-2023-48795]
  • gnutls28: Kulungiswe iphutha lokugomela lapho kuqinisekiswa uchungechunge lwesitifiketi ngomjikelezo wesiginesha ephambene [CVE-2024-0567]; lungisa inkinga yesiteshi eseceleni yokuvumelanisa [CVE-2024-0553]
  • i-mate-settings-daemon: Lungisa ukuvuza kwenkumbulo; phumula imikhawulo ephezulu ye-DPI; lungisa ukuphathwa kwemicimbi eminingi ye-rfkill
  • i-mate-settings-daemon: ukuvuza kwenkumbulo okungaguquki; phumula imikhawulo ephezulu ye-DPI; lungisa ukuphathwa kwemicimbi eminingi ye-rfkill
  • jtreg7 Iphakheji yomthombo omusha wokusekela i-openjdk-17 builds
  • usbutils: Lungisa amadivayisi e-USB angaphrinti kuwo wonke amadivayisi
  • qemu: Uhlobo olusha oluzinzile olukhuphuka nomfula; i-virtio-net: Kopisha kahle unhlokweni we-vnet lapho ushayela i-TX [CVE-2023-6693]; lungisa inkinga ye-null pointer dereference [CVE-2023-6683]; buyisela isichibi okubangela ukuhlehla ekusebenzeni kokumisa/qalisa kabusha

Ngesikhathi esifanayo, sethulwe inguqulo entsha yegatsha elizinzile langaphambilini, i-Debian 11.9, lokho ihlanganisa izibuyekezo ezingu-70 zokuthuthukisa ukuzinza nezibuyekezo ezingu-92 okuhloswe ngayo ukuxazulula ubungozi bokuphepha. Amaphakheji abalulekile abuyekezwe ezinguqulweni zawo zakamuva ezizinzile. Ukwengeza, ukukhiqizwa kwezibuyekezo kumisiwe ukuxazulula ubungozi kumaphakheji afana ne-chromium, i-tor, i-consul ne-xen, kanye nasezintweni ze-samba ezisekela ukusebenza kwesilawuli sesizinda.

Kulabo abafisa ukufaka kusukela ekuqaleni, imihlangano yokufaka i-Debian 12.5 isilungisiwe. Kuthiwa amasistimu afakwe ngaphambilini agcinwa esesikhathini samanje azothola izibuyekezo ezifakwe ku-Debian 12.5 ngohlelo olujwayelekile lokufakwa kwesibuyekezo. Ukulungiswa kwezokuphepha okuqukethwe ekukhishweni okusha kwe-Debian kuzotholakala kubasebenzisi njengoba izibuyekezo zikhishwa nge-security.debian.org.

Ngakolunye uhlangothi, Kuyafaneleka nokubalula ukuthi abathuthukisi be-Debian bethule a hlela ukuthutha wonke amaphakheji ukuze usebenzise uhlobo lwe-"64-bit time_t". kumachweba wokusatshalaliswa kwezakhiwo ezingamabhithi angu-32. Lezi zinguquko zizosetshenziswa njengengxenye yokusabalalisa kwe-Debian 13 "Trixie", futhi kulindeleke ukuthi kuxazululwe ngokuphelele udaba luka-2038.

Okwamanje, uhlobo lwe-64-bit time_t Isetshenziswa kumachweba we-Debian kuma-32-bit architecture afana ne-x32, riscv32, arc kanye ne-loong32. Nokho, emachwebeni kwezakhiwo ezifana ne-i386, i-armel, i-armhf, i-mipsel, i-hppa, i-powerpc, i-m68k ne-sh4, Uhlobo lwe-32-bit time_t lusasetshenziswa. Lo mkhawulo uvimbela ukuphathwa kahle kwesikhathi ngemva komhla ka-Janawari 19, 2038 ngenxa yokuchichima kwekhawunta yamasekhondi kusukela ngomhla ka-January 1, 1970. Kumaphakheji angu-35,960 akhona nge-Debian, uhlobo lwe-time_t lukhona ku-6,429 futhi luthinta imitapo yolwazi engaphezu kuka-1,200.

Ushintsho ohlotsheni lwedatha luzosho ukwephulwa kwe-ABI futhi izodinga ukuqamba kabusha idatha yelabhulali, okuzoba isibuyekezo esikhulu kunazo zonke se-ABI emlandweni wephrojekthi.

Muva nje, cishe amalabhulali angu-500 alayishwe egatsheni lokuhlola le-Debian, futhi amanye ahlelwe ukuthi aguqulelwe ohlotsheni lwe-64-bit time_t futhi alayishwe ngempelasonto ezayo, kushiwo ukuthi uma zonke izinkinga sezixazululiwe zikhonjwe ngemva kokuguqulwa igatsha lokuhlola, izinguqulo ezintsha zamalabhulali anomaki othi "abi=time64" zizolayishwa endaweni yokugcina engazinzile.

ekugcineni uma ukhona unentshisekelo yokwazi okwengeziwe ngayo, ungabheka imininingwane Kulesi sixhumanisi esilandelayo.