The following updates has been released for Debian 7 LTS:
[SECURITY] [DLA 856-1] tzdata new upstream version
[SECURITY] [DLA 857-1] libdatetime-timezone-perl new upstream version
[SECURITY] [DLA 858-1] wireshark security update
[SECURITY] [DLA 856-1] tzdata new upstream version
[SECURITY] [DLA 857-1] libdatetime-timezone-perl new upstream version
[SECURITY] [DLA 858-1] wireshark security update
[DLA 856-1] tzdata new upstream version
Package : tzdata
Version : 2017a-0+deb7u1
This update includes the changes in tzdata 2017a. Notable
changes are:
- Mongolia no longer observes DST.
- Magallanes region diverges from Santiago starting 2017-05-13,
the America/Punta_Arenas zone has been added.
For Debian 7 "Wheezy", these problems have been fixed in version
2017a-0+deb7u1.
We recommend that you upgrade your tzdata packages.
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
[DLA 857-1] libdatetime-timezone-perl new upstream version
Package : libdatetime-timezone-perl
Version : 1:1.58-1+2017a
This update includes the changes in tzdata 2017a for the
Perl bindings. For the list of changes, see DLA-856-1.
For Debian 7 "Wheezy", these problems have been fixed in version
1:1.58-1+2017a.
We recommend that you upgrade your libdatetime-timezone-perl packages.
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
[DLA 858-1] wireshark security update
Package : wireshark
Version : 1.12.1+g01b65bf-4+deb8u6~deb7u7
CVE ID : CVE-2017-5596 CVE-2017-5597 CVE-2017-6467
CVE-2017-6468 CVE-2017-6469 CVE-2017-6470
CVE-2017-6471 CVE-2017-6472 CVE-2017-6473
CVE-2017-6474
It was discovered that Wireshark, a network protocol analyzer,
contained several vulnerabilities in the dissectors for ASTERIX,
DHCPv6, LDSS, IAX2, WSP and RTMPT and the NetScaler and K12 file
parsers, that could lead to various crashes, denial-of-service, or
execution of arbitrary code.
For Debian 7 "Wheezy", these problems have been fixed in version
1.12.1+g01b65bf-4+deb8u6~deb7u7.
We recommend that you upgrade your wireshark packages.
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS