Debian Project News - January 7th, 2013
Welcome to this year's first issue of DPN, the newsletter for the Debian community. Topics covered in this issue include:
- wiki.debian.org security breach: global passwords reset
- Bits from the DPL
- Other news
- New Debian Contributors
- Release-Critical bugs statistics for the upcoming release
- Important Debian Security Advisories
- Work-needing packages
- Want to continue reading DPN?
Steve McIntyre, administrator of the Debian wiki, announced that due to a security breach, all wiki.debian.org account passwords are being reset. In order to regain access to your wiki account, you'll need to follow the password recovery process. In the mail, Steve explained that the Debian Security Team recently found a vulnerability in the moin package which had been succesfully exploited for wiki.debian.org. The wiki has already been moved to another server and an audit of the old server is ongoing.
Stefano Zacchiroli sent his monthly report of DPL activities for December 2012.
Stefano reported about progress in the
experiment, as well as collaborations with external projects such as
the Open Source Initiative (OSI) and Free Software Foundation (FSF).
In addition, Stefano reported that the debian.eu domain is
finally under control of the Debian System Administrators.
The thirty-first issue of the miscellaneous news for developers has been released and covers the following topics:
- amd64 most popular architecture according to popcon
- Register your media types to the IANA
- First release of dput-ng in
- Recent changes on the Debian QA front
- Fancy graphs on lintian.debian.org
Andreas Tille announced that the statistics about selected Debian teams have been updated, and now include all of 2012.
1 people have started to maintain packages since the previous issue of the Debian Project News. Please welcome David Smith into our project!
According to the Bugs Search interface of the Ultimate Debian Database, the upcoming release, Debian
Wheezy, is currently affected by 171 Release-Critical bugs. Ignoring bugs which are easily solved or on the way to being solved, roughly speaking, about 116 Release-Critical bugs remain to be solved for the release to happen.
Debian's Security Team recently released advisories for these packages (among others): wireshark, mahara, elinks, moin, virtualbox-ose, ghostscript, mediawiki-extensions, rails, weechat, nss, cups, gnupg, and gnupg2. Please read them carefully and take the proper measures.
Please note that these are a selection of the more important security advisories of the last weeks. If you need to be kept up to date about security advisories released by the Debian Security Team, please subscribe to the security mailing list (and the separate backports list, and stable updates list) for announcements.
Please help us create this newsletter. We still need more volunteer writers to watch the Debian community and report about what is going on. Please see the contributing page to find out how to help. We're looking forward to receiving your mail at email@example.com.
To receive this newsletter bi-weekly in your mailbox, subscribe to the debian-news mailing list.
Back issues of this newsletter are available.
This issue of Debian Project News was edited by Cédric Boutillier, Francesca Ciceri and Justin B Rye.