ProHoster > Blog > nkhani zapaintaneti > Debian 13.4 yatulutsidwa

Debian 13.4 yatulutsidwa

Pulojekiti ya Debian ikukondwera kulengeza zosintha zachinayi za kugawa kwake kokhazikika, Debian 13 (codenamed tricie), yomwe ili ndi zosintha zofunika zachitetezo ndi kukhazikika kwa zigawo zazikulu.

Kutulutsidwa 13.4 si mtundu watsopano wa kugawa, koma ndi mndandanda wa zosintha zomwe zimasonkhanitsa zolakwika zazikulu ndi zofooka, zomwe zambiri mwa izo zidatulutsidwa kale ngati zolengeza zachitetezo zosiyana.

Kusinthaku kukuyang'ana kwambiri pakukweza kudalirika kwa mautumiki apaintaneti ndi zigawo zofunika kwambiri zamakina, komanso kutseka zovuta zingapo.

Kukonza makiyi

  • Apache2: Yakonza regression yokhudzana ndi protocol ya HTTP/2.
  • bird2: Yakonza vuto la mbendera za ma prefixes akale mu RAdv (zotsatsa za rauta za IPv6) ndi kuwonongeka kokhazikika potumiza njira zomwe zili ndi zinthu zosakhala za BGP mu protocol ya BMP.
  • ifupdown: Kukonza DAD (Kuzindikira Ma Adilesi Ofanana) pa IPv6, komanso dongosolo loyimbira foni kasitomala wa dhclient.
  • open-iscsi: Vuto lokhazikika ndi kupezeka kwa ma node a iSCSI osasinthika.
  • chrony: daemon yolumikizira nthawi yosinthidwa kuti igwirizane ndi ma kernel atsopano.
  • clatd (CLAT ya IPv6): Kukhazikitsa kokhazikika kwa mayunitsi a systemd ndi njira ya NetworkManager dispatcher.

Kukonza chitetezo

  • openssh: Konzani mavuto omwe angakhalepo ndi kutsatira njira za MaxStartups ndi zofooka zomwe zingayambitse kugwiritsa ntchito ma code (CVE-2025-61984, CVE-2025-61985).
  • glibc (GNU C Library): Kusintha kuchokera ku nthambi yokhazikika yomwe imakonza mavuto angapo ofunikira: kuwonongeka kwa heap (CVE-2026-0861), kutayika kwa stack (CVE-2026-0915), ndi kugwiritsa ntchito kukumbukira kosakhazikika (CVE-2025-15281).
  • mariadb: Kutulutsa kokhazikika kwatsopano kokonza kukhazikitsidwa kwa ma code mosasinthika (CVE-2025-13699) ndi kukanidwa kwa ntchito (CVE-2026-21968).
  • postgresql-17: Kutulutsidwa kwatsopano kokhazikika, kuphatikiza kukonza kwa buffer overrun (CVE-2026-2006).
  • wget2: Zofooka zomwe zinapangitsa kuti mafayilo asinthidwe kudzera mu metalink (CVE-2025-69194) ndi kufalikira kwa buffer yakutali (CVE-2025-69195).
  • erlang: Yakonza mavuto omwe adayambitsa kugwiritsa ntchito zinthu mopitirira muyeso (CVE-2025-48038 ndi ena) ndi kusuntha kwa magalimoto.
  • dpkg: Yakonza vuto la kukana ntchito (CVE-2026-2219).
  • wireshark: Mavuto atsopano okhazikika okonza kutopa kwa kukumbukira mu dissector ya USB HID (CVE-2026-3201) ndipo amagwa mu dissector ya RF4CE Profile (CVE-2026-3203).
  • xen: Hypervisor yasinthidwa kukhala yokhazikika yatsopano yokhala ndi chokonza cha buffer overflow (CVE-2025-58150) ndi vuto losakwanira la vCPU isolation (CVE-2026-23553).

Zosintha za zigawo za dongosolo

  • grub2: Yathetsa vuto ndi chizindikiritso cha mizu ya ZFS ya zomangamanga zingapo (amd64, arm64, ia32).
  • sudo: Kukonzanso kokhazikika ndi mayina a mafayilo mu sudoers.d okhala ndi colon.
  • systemd-resolved: Yakonza cholakwika mu debvm script chokhudza kukhazikitsa systemd-resolved.

Source: linux.org.ru

Kuwonjezera ndemanga