diff options
| author | Boyuan Yang <hosiet-guest> | 2018-03-10 14:30:53 +0000 |
|---|---|---|
| committer | Boyuan Yang <hosiet-guest> | 2018-03-10 14:30:53 +0000 |
| commit | de9ce2501ebcf707b368c20bafe3f1a2f78e5283 (patch) | |
| tree | bf7406bf2e703c5a4ba4db7a00f717142f497296 /chinese/News | |
| parent | 9b32181c255d11a902d03fe3e184edd9ccbc382c (diff) | |
chinese: News/2018/20180310.wml: Chinese translation for 9.4 release
CVS version numbers
chinese/News/2018/20180310.wml: INITIAL -> 1.1
Diffstat (limited to 'chinese/News')
| -rw-r--r-- | chinese/News/2018/20180310.wml | 288 |
1 files changed, 288 insertions, 0 deletions
diff --git a/chinese/News/2018/20180310.wml b/chinese/News/2018/20180310.wml new file mode 100644 index 00000000000..33d7bcd1278 --- /dev/null +++ b/chinese/News/2018/20180310.wml @@ -0,0 +1,288 @@ +#use wml::debian::translation-check translation="1.1" maintainer="Boyuan Yang" +<define-tag pagetitle>Debian 9 更新:9.4 发布</define-tag> +<define-tag release_date>2018-03-10</define-tag> +#use wml::debian::news + +<define-tag release>9</define-tag> +<define-tag codename>stretch</define-tag> +<define-tag revision>9.4</define-tag> + +<define-tag dsa> + <tr><td align="center"><a href="$(HOME)/security/%0/dsa-%1">DSA-%1</a></td> + <td align="center"><: + my @p = (); + for my $p (split (/,\s*/, "%2")) { + push (@p, sprintf ('<a href="https://packages.debian.org/src:%s">%s</a>', $p, $p)); + } + print join (", ", @p); +:></td></tr> +</define-tag> + +<define-tag correction> + <tr><td><a href="https://packages.debian.org/src:%0">%0</a></td> <td>%1</td></tr> +</define-tag> + +<define-tag srcpkg><a href="https://packages.debian.org/src:%0">%0</a></define-tag> + +<p>Debian 项目很高兴地宣布 Debian <release> 稳定版本的第四次更新(代号<q><codename></q>)。 +此次小版本更新主要添加了对安全问题的修正补丁,以及为一些严重问题所作的调整。 +安全通告已单独发布,并会在适当的情况下予以引用。</p> + +<p>请注意,此更新并不是 Debian <release> 的新版本,它仅更新了所包含的一些软件包。 +没有必要丢弃旧的<q><codename></q>的安装介质。在安装之后,只需使用最新的 Debian +镜像更新旧的软件包即可。</p> + +<p>经常从 security.debian.org 安装更新的用户将不必更新许多软件包, +因本更新中包含了 security.debian.org 的大多数更新。</p> + +<p>新的安装镜像即将于常规的位置予以提供。</p> + +<p>只需令软件包管理系统指向 Debian 的许多 HTTP 镜像站点之一, +您便能够把已有的系统升级至本次更新版本。详尽的镜像列表可以在以下网址处获得:</p> + +<div class="center"> + <a href="$(HOME)/mirror/list">https://www.debian.org/mirror/list</a> +</div> + +<h2>杂项错误修正</h2> + +<p>此稳定版更新为以下软件包添加了一些重要的修正:</p> +<table border=0> +<tr><th>软件包</th> <th>原因</th></tr> +<correction acme-tiny "修复订阅者协议过时的问题"> +<correction activity-log-manager "添加缺失的依赖关系 python-zeitgeist"> +<correction agenda.app "修复创建任务和会议的功能"> +<correction apparmor "将 features 文件移至 /usr/share/apparmor-features;将 AppArmor 功能集和 Stretch 内核相对应"> +<correction auto-apt-proxy "在删除软件包时移走配置文件,重新安装时再将其移回"> +<correction bareos "修复备份时出错并提示 <q>No Volume name given</q> 的问题"> +<correction base-files "为小版本更新提供文件"> +<correction cappuccino "添加缺失的依赖 gir1.2-gtk-3.0"> +<correction cerealizer "修复 Python3 依赖"> +<correction clamav "新上游发行版本;安全更新 [CVE-2017-6418 CVE-2017-6420 CVE-2017-12374 CVE-2017-12375 CVE-2017-12376 CVE-2017-12377 CVE-2017-12378 CVE-2017-12379 CVE-2017-12380]"> +<correction cron "Properly transition system jobs to system_cronjob_t SELinux context and stop relying on refpolicy specific identifiers"> +<correction cups "Fix execution of arbitrary IPP commands by sending POST requests to the CUPS daemon in conjunction with DNS rebinding [CVE-2017-18190]"> +<correction dbus "新上游发行版本; raise file descriptor limit sooner, fixing a regression in local DoS fix"> +<correction debian-edu-config "Pre-configure Chromium Webbrowser system-wide to auto-detect the http proxy settings via WPAD; allow joining of Windows 10 clients to the Samba NT4-style domain"> +<correction debian-installer "将 Linux 内核版本从 4.9.0-4 跳至 4.9.0-6"> +<correction debian-installer-netboot-images "Update to 20170615+deb9u3 images, from stretch-proposed-updates"> +<correction directfb "Fix architecture-based filter to actually install drivers"> +<correction dpdk "Update to new stable point release"> +<correction espeakup "udeb: fix case where card 0 does not have an id or where cards have non-contiguous indexes; use English by default; use card id in installed system to avoid issues with card detection ordering"> +<correction exam "修复 Python3 依赖关系"> +<correction flatpak "新上游发行版本; fix a D-Bus filtering bypass in flatpak-dbus-proxy; ignore unrecognised permission strings, instead of failing; do not allow legacy eavesdropping on the D-Bus session bus"> +<correction fuse-zip "Fix writeback fail with libzip 1.0"> +<correction glade "修复可能的死循环"> +<correction glibc "Do not update /etc/nsswitch.conf when its content already matches the default; debian/script.in/nohwcap.sh: always check for all optimized packages as multiarch allows one to install foreign architectures; avoid use-after-free read access in clntudp_call [CVE-2017-12133]; define collation for Malayalam chillu characters and correct collation of U+0D36 and U+0D37 Malayalam characters; fix invalid cast in group merging affecting ppc64 and s390x; fix compatibility with Intel C++ __regcall calling convention; install the libc-otherbuild postinst and postrm in the libc6-i686 transitional package, to make sure /etc/ld.so.nohwcap is correctly removed after an upgrade"> +<correction global "Gozilla: quote URLs before passing them to BROWSER [CVE-2017-17531]"> +<correction gnumail "不再链接至 OpenSSL"> +<correction golang-github-go-ldap-ldap "Require explicit intention for empty password"> +<correction gosa-plugin-pwreset "Fix deprecated constructor call"> +<correction grilo-plugins "Fix Radio France source"> +<correction hdf5 "修复 javahelper 调用"> +<correction inputlirc "Include input-event-codes.h instead of input.h, fixing build failure"> +<correction intercal "带 PIE 参数重新编译"> +<correction java-atk-wrapper "Fix iterator initialization; fix missing reference for children"> +<correction kildclient "Drop support for user-defined browsers [CVE-2017-17511]"> +<correction libdate-holidays-de-perl "Mark Reformation Day as a holiday in Hamburg and Schleswig-Holstein from 2018 onwards"> +<correction libdatetime-timezone-perl "新上游发行版本"> +<correction libhibernate-validator-java "Fix potential privilege escalation by circumventing security manager permissions [CVE-2017-7536]"> +<correction libperlx-assert-perl "Add missing dependencies on libkeyword-simple-perl, libdevel-declare-perl"> +<correction libreoffice "Let FunctionAccess execute WEBSERVICE; use the right error code on WEBSERVICE() failures"> +<correction libvhdi "Add missing Python3 dependency"> +<correction libvirt "QEMU: shared disks with cache=directsync should be safe for migration; avoid denial of service reading from QEMU monitor [CVE-2018-5748]"> +<correction linux "新上游版本"> +<correction lxc "Fix the creation of testing and unstable containers by including <q>iproute2</q> rather than <q>iproute</q>"> +<correction mapproxy "Fix Cross Site Scripting (XSS) issue in demo service [CVE-2017-1000426]"> +<correction mosquitto "Fix persistence file being world-readable [CVE-2017-9868]"> +<correction mpi4py "Support current version of libmpi"> +<correction ncurses "Fix buffer overflow in the _nc_write_entry function [CVE-2017-16879]"> +<correction needrestart "Fix switching to list mode if debconf is run non-interactively"> +<correction ntp "Increase stack size to at least 32kB"> +<correction nvidia-graphics-drivers-legacy-304xx "新上游发行版本"> +<correction nvidia-graphics-drivers-legacy-340xx "新上游发行版本"> +<correction nvidia-modprobe "新上游发行版本; run setuid(0) before forking modprobe to preserve privileges through shell invocations and recursive modprobe calls"> +<correction nvidia-persistenced "新上游发行版本"> +<correction nvidia-settings "新上游发行版本; fix a bug that prevented changes to stereo eye assignment from getting applied from the nvidia-settings control panel"> +<correction nvidia-xconfig "新上游发行版本; fix a regression that prevented nvidia-xconfig from querying some GPUs, e.g. when running `nvidia-xconfig -a`"> +<correction ocfs2-tools "Migrate from using rcS to standard runlevels"> +<correction opendmarc "Update opendmarc service file so changes in opendmarc.conf are used"> +<correction openssh "Fix <q>in read-only mode, sftp-server was incorrectly permitting creation of zero-length files</q> [CVE-2017-15906]"> +<correction osinfo-db "更新内含的数据"> +<correction pdns-recursor "为 publicsuffix 20171028.2055-0+deb9u1 而重新构建"> +<correction postfix "New upstream bugfix release; don't log warnings that some restriction returns OK, when the access map DISCARD feature is in effect; add missing dynamicmaps support in the Postfix sendmail command; fix sending to some sites with <q>TLSA 2 X X</q> records"> +<correction postgresql-9.6 "新上游版本"> +<correction publicsuffix "更新包含的数据"> +<correction python-evtx "修复缺失的 Python3 依赖关系"> +<correction python-hacking "修复 Python3 依赖关系"> +<correction python-hkdf "修复 Python3 依赖关系"> +<correction python-mimeparse "修复 Python3 依赖关系"> +<correction python-pyperclip "修复 Python3 依赖关系"> +<correction python-spake2 "修复 Python3 依赖关系"> +<correction qtpass "修复不安全的内建密码生成器 [CVE-2017-18021]"> +<correction quota "Prevent quotacheck from running into an endless loop"> +<correction reportbug "不要将邮件发送至 secure-testing-team@lists.alioth.debian.org"> +<correction rpy "为 r-base 3.3 重新构建"> +<correction ruby-redis-store "允许不安全的对象加载至 redis 中 [CVE-2017-1000248]"> +<correction salt "Fix directory traversal vulnerability on salt-master via crafted minion IDs [CVE-2017-12791], directory traversal vulnerability in minion id validation in SaltStack [CVE-2017-14695], remote Denial of Service with a specially crafted authentication request [CVE-2017-14696]; check if data[return] is dict type"> +<correction slic3r "Patch <q>use lib</q> line in all installed binaries; workaround missing GL_MULTISAMPLE macro; fix importing binary STLs on big-endian architectures"> +<correction soundtouch "安全修复 [CVE-2017-9258 CVE-2017-9259 CVE-2017-9260]"> +<correction systemd "networkd: Handle MTU field in IPv6 RA; add a linker script to help prevent symbol collisions, particularly with PAM modules; resolved: Fix loop on packets with pseudo dns types [CVE-2017-15908]; machinectl: Don't output <q>No machines.</q> with --no-legend option"> +<correction tzdata "新上游版本"> +<correction ust "修复对 Python agent 库的加载"> +<correction uwsgi "Fix stack-based buffer overflow in uwsgi_expand_path function [CVE-2018-6758]"> +<correction vagrant "Download boxes from app.vagrantcloud.com instead of the deprecated atlas.hashicorp.com"> +<correction vdirsyncer "修复对谷歌联系人的自动发现功能"> +<correction virt-what "Unbreak virt detection on arm/aarch64"> +<correction w3m "修复栈溢出 [CVE-2018-6196]、对空指针的解引用 [CVE-2018-6197]、/tmp 文件冲突 [CVE-2018-6198]"> +<correction waagent "新上游版本"> +<correction webkit2gtk "新上游稳定释出版本"> +<correction xchain "修复对<q>wish</q>的依赖"> +<correction xrdp "修复安全问题 [CVE-2017-16927];修复 ssl_tls_accept 的高 CPU 占用问题"> +</table> + +<h2>安全更新</h2> + + +<p>此修订版本将以下安全更新添加到了稳定发行版本中。安全团队已经分别为这些更新发布了通告:</p> + +<table border=0> +<tr><th>通告编号</th> <th>软件包</th></tr> + + +<dsa 2017 4054 tor> +<dsa 2017 4055 heimdal> +<dsa 2017 4056 nova> +<dsa 2017 4057 erlang> +<dsa 2017 4058 optipng> +<dsa 2017 4059 libxcursor> +<dsa 2017 4060 wireshark> +<dsa 2017 4061 thunderbird> +<dsa 2017 4062 firefox-esr> +<dsa 2017 4063 pdns-recursor> +<dsa 2017 4065 openssl1.0> +<dsa 2017 4066 otrs2> +<dsa 2017 4067 openafs> +<dsa 2017 4068 rsync> +<dsa 2017 4069 otrs2> +<dsa 2017 4070 enigmail> +<dsa 2017 4071 sensible-utils> +<dsa 2017 4072 bouncycastle> +<dsa 2017 4073 linux> +<dsa 2017 4075 thunderbird> +<dsa 2017 4076 asterisk> +<dsa 2017 4077 gimp> +<dsa 2018 4078 linux> +<dsa 2018 4078 linux-latest> +<dsa 2018 4079 poppler> +<dsa 2018 4080 php7.0> +<dsa 2018 4083 poco> +<dsa 2018 4084 gifsicle> +<dsa 2018 4086 libxml2> +<dsa 2018 4087 transmission> +<dsa 2018 4088 gdk-pixbuf> +<dsa 2018 4089 bind9> +<dsa 2018 4090 wordpress> +<dsa 2018 4092 awstats> +<dsa 2018 4093 openocd> +<dsa 2018 4094 smarty3> +<dsa 2018 4095 gcab> +<dsa 2018 4096 firefox-esr> +<dsa 2018 4097 poppler> +<dsa 2018 4098 curl> +<dsa 2018 4099 ffmpeg> +<dsa 2018 4100 tiff> +<dsa 2018 4101 wireshark> +<dsa 2018 4102 thunderbird> +<dsa 2018 4104 p7zip> +<dsa 2018 4105 mpv> +<dsa 2018 4106 libtasn1-6> +<dsa 2018 4107 django-anymail> +<dsa 2018 4108 mailman> +<dsa 2018 4109 ruby-omniauth> +<dsa 2018 4110 exim4> +<dsa 2018 4111 libreoffice> +<dsa 2018 4112 xen> +<dsa 2018 4114 jackson-databind> +<dsa 2018 4115 quagga> +<dsa 2018 4116 plasma-workspace> +<dsa 2018 4118 tomcat-native> +<dsa 2018 4120 linux-latest> +<dsa 2018 4120 linux> +<dsa 2018 4121 gcc-6> +<dsa 2018 4122 squid3> +<dsa 2018 4123 drupal7> +<dsa 2018 4124 lucene-solr> +<dsa 2018 4125 wavpack> +<dsa 2018 4126 xmltooling> +<dsa 2018 4127 simplesamlphp> +<dsa 2018 4128 trafficserver> +<dsa 2018 4129 freexl> +<dsa 2018 4130 dovecot> +<dsa 2018 4131 xen> +<dsa 2018 4132 libvpx> + +</table> + +<h2>删除的软件包</h2> + +<p>由于我们无法控制的情况,以下软件包已被删除:</p> + + +<table border=0> +<tr><th>软件包</th> <th>原因</th></tr> + +<correction dolibarr "在 Debian 中进行维护工作量过大"> +<correction electrum "安全问题;因上游变更而破损"> +<correction jirc "与 stretch 中的 libpoe-filter-xml-perl 无法配合使用"> +<correction pgmodeler "与 stretch 中的 Postgresql 不兼容"> +<correction seelablet "上游放弃开发;已破损"> +</table> + +<h2>Debian 安装器</h2> +<p>安装器已经更新,以配合发布时包含在稳定版本中的修正内容。</p> + +<h2>链接</h2> + +<p>此修订版本中有更改的软件包的完整列表:</p> + +<div class="center"> + <url "http://ftp.debian.org/debian/dists/<downcase <codename>>/ChangeLog"> +</div> + +<p>当前稳定发行版:</p> + +<div class="center"> + <url "http://ftp.debian.org/debian/dists/stable/"> +</div> + +<p>拟议的稳定发行版更新:</p> + +<div class="center"> + <url "http://ftp.debian.org/debian/dists/proposed-updates"> +</div> + +<p>稳定发行版信息(发行说明,勘误等):</p> + +<div class="center"> + <a + href="$(HOME)/releases/stable/">https://www.debian.org/releases/stable/</a> +</div> + +<p>安全公告及信息:</p> + +<div class="center"> + <a href="$(HOME)/security/">https://security.debian.org/</a> +</div> + + +<h2>关于 Debian</h2> + +<p>Debian 项目是一个自由软件开发者组织,这些志愿者为制作完全自由免费的 Debian 操作系统而自愿贡献时间和精力。</p> + + +<h2>联系信息</h2> + +<p>更多信息,请访问 Debian 主页 +<a href="$(HOME)/">https://www.debian.org/</a>、发送邮件至 +<press@debian.org> 或联系稳定版本发布团队 +<debian-release@lists.debian.org>。</p> |