westporch/20170722.wml

## 20170722.wml
# First-Translator: Hyun-gwan Seo <westporch@debianusers.or.kr> 2017-09-18
# Last-Translator: Hyun-gwan Seo <westporch@debianusers.or.kr> 2017-09-21

<define-tag pagetitle>Debian 9 업데이트: 9.1 릴리즈</define-tag>
<define-tag release_date>2017-07-22</define-tag>
#use wml::debian::news
# $Id:

<define-tag release>9</define-tag>
<define-tag codename>stretch</define-tag>
<define-tag revision>9.1</define-tag>

<define-tag dsa>
    <tr><td align="center"><a href="$(HOME)/security/%0/dsa-%1">DSA-%1</a></td>
        <td align="center"><:
    my @p = ();
    for my $p (split (/,\s*/, "%2")) {
        push (@p, sprintf ('<a href="https://packages.debian.org/src:%s">%s</a>', $p, $p));
    }
    print join (", ", @p);
:></td></tr>
</define-tag>

<define-tag correction>
    <tr><td><a href="https://packages.debian.org/src:%0">%0</a></td>              <td>%1</td></tr>
</define-tag>

<define-tag srcpkg><a href="https://packages.debian.org/src:%0">%0</a></define-tag>

<p>데비안 프로젝트는 stable 배포판 (codename <q><codename></q>)의 9.1 릴리즈를 알리게되어 기쁩니다.
이번 릴리즈에서는 주로 보안 이슈 및 중대한 문제를 수정했습니다.
보안 권고사항은 이미 사전에 안내되었습니다.</p>

<p>9.1 릴리즈는 데비안 <release>의 새로운 버전이 아니며 일부 패키지들이 업데이트 되었습니다.
이전 버전인 <q><codename></q>(9.0) media를 버릴 필요는 없습니다. 왜냐하면 해당 미디어로 데비안을 설치하더라도
패키지들은 최신 데비안 미러에서 업그레이드되기 때문입니다.</p>

<p>security.debian.org에서 업데이트를 자주 적용하는 사용자는 여러 패키지들을 업데이트할 필요는 없습니다.
대부분의 보안 업데이트는 이번 릴리즈에 포함되었습니다.</p>

<p>새로운 설치 이미지는 조만간 이용할 수 있습니다.<p>

<p>기존 데비안을 이번 릴리즈(9.1)로 업그레이드하려면 데비안 HTTP 미러사이트를 이용하면 됩니다.
미러 사이트의 전체 목록은 다음과 같습니다.</p>

<div class="center">
  <a href="$(HOME)/mirror/list">https://www.debian.org/mirror/list</a>
</div>


<h2>다양한 버그 수정</h2>

<p>이번 stable 업데이트에서는 아래 패키지들을 수정하였습니다.</p>
<table border=0>
<tr><th>Package</th>               <th>Reason</th></tr>
<correction 3dchess                          "Reduce wasteful CPU consumption">
<correction adwaita-icon-theme               "Fix malformed send-to-symbolic icon">
<correction anope                            "Fix incorrect mail-transport-agent relationship">
<correction apt                              "Reset failure reason when connection was successful, so later errors are reported as such and not as <q>connection failure</q> warnings; http: A response with Content-Length: 0 has no content, so don't try to read it; use port from SRV record instead of initial port">
<correction avogadro                         "Update eigen3 patches">
<correction base-files                       "Update for the 9.1 point release">
<correction c-ares                           "Security fix [CVE-2017-1000381]">
<correction debian-edu-doc                   "Update Debian Edu Stretch manual from the wiki; update translations">
<correction debsecan                         "Add support for stretch and buster; Python needs https_proxy for proxy configuration with https:// URLs">
<correction devscripts                       "debchange: target stretch-backports with --bpo; support $codename{,-{proposed-updates,security}}; bts: add support for the new <q>a11y</q> tag">
<correction dgit                             "Multiple bugfixes">
<correction dovecot                          "Fix syntax errors when sending Solr queries">
<correction dwarfutils                       "Security fixes [CVE-2017-9052 CVE-2017-9053 CVE-2017-9054 CVE-2017-9055 CVE-2017-9998]">
<correction fpc                              "Fix conversion from local time to UTC">
<correction galternatives                    "Fix blank window when displaying properties">
<correction geolinks                         "Fix python3 dependencies">
<correction gnats                            "gnats-user: do not fail to purge if /var/lib/gnats/gnats-db is not empty">
<correction gnome-settings-daemon            "Do not add the <q>US</q> keyboard layout by default for new users, for some reason, this layout was preferred over the system configured one on the first login; preserve NumLock state between sessions by default">
<correction gnuplot                          "Fix memory corruption vulnerability">
<correction gnutls28                         "Fix breakage with AES-GCM in-place encryption and decryption on aarch64">
<correction grub-installer                   "Fix support for systems with a large number of disks">
<correction intel-microcode                  "Update included microcode">
<correction libclamunrar                     "Fix arbitrary memory write [CVE-2012-6706]">
<correction libopenmpt                       "Security fixes: out-of-bounds read while loading a malfomed PLM file; arbitrary code execution by a crafted PSM file [CVE-2017-11311]; various security fixes">
<correction libquicktime                     "Security fixes [CVE-2017-9122 CVE-2017-9123 CVE-2017-9124 CVE-2017-9125 CVE-2017-9126 CVE-2017-9127 CVE-2017-9128]">
<correction linux-latest                     "Revert changes to debug symbol meta-packages">
<correction nagios-nrpe                      "Restore previous SSL defaults">
<correction nvidia-graphics-drivers          "Bump Pre-Depends: nvidia-installer-cleanup to (&gt;= 20151021) for smoother upgrades from jessie">
<correction octave-ocs                       "Fix loading package functions">
<correction open-iscsi                       "Speed up Debian Installer when iSCSI is not used">
<correction openssh                          "Fix incoming compression statistics">
<correction openstack-debian-images          "Also add security updates for non wheezy/jessie">
<correction os-prober                        "EFI - look for <q>dos</q> instead of <q>msdos</q>">
<correction osinfo-db                        "Improve support for Stretch and Jessie">
<correction partman-base                     "Protect the firmware area on all mmcblk devices (and not only on mmcblk0) from being clobbered during guided partitioning">
<correction pdns-recursor                    "Add 2017 DNSSEC root key">
<correction perl                             "Backport various Getopt-Long fixes from upstream 2.49..2.51; backport upstream patch fixing regexp <q>Malformed UTF-8 character</q>; apply upstream base.pm no-dot-in-inc fix">
<correction phpunit                          "Security fix: arbitrary PHP code execution via HTTP POST">
<correction protozero                        "Fix data_view equality operator">
<correction pulseaudio                       "Fix copyright file">
<correction pykde4                           "Drop bindings for plasma webview bindings; they're obsolete and non-functional">
<correction python-colorlog                  "Fix python3 dependencies">
<correction python-imaplib2                  "Fix python3 dependencies">
<correction python-plumbum                   "Fix python3 dependencies">
<correction qgis                             "Fix missing Breaks/Replaces against python-qgis-common">
<correction request-tracker4                 "Handle configuration permissions correctly following RT_SiteConfig.d changes">
<correction retext                           "Backport upstream fix for crash in XSettings code; fix syntax in appdata XML file">
<correction rkhunter                         "Disable remote updates [CVE-2017-7480]">
<correction socat                            "Fix signals leading to possible 100% CPU usage">
<correction squashfs-tools                   "Fix corruption of large files; fix rare race condition">
<correction systemd                          "Fix out-of-bounds write in systemd-resolved [CVE-2017-9445]; be truly quiet in systemctl -q is-enabled; improve RLIMIT_NOFILE handling; debian/extra/rules: Use updated U2F ruleset">
<correction thermald                         "Add Broadwell-GT3E and Kabylake support">
<correction unrar-nonfree                    "Add bound checks for VMSF_DELTA, VMSF_RGB and VMSF_AUDIO paramters [CVE-2012-6706]">
<correction win32-loader                     "Replace all mirror urls with deb.debian.org; drop bz2 compression for source">
</table>

<h2>보안 업데이트</h2>

<p>이번 릴리즈에서는 다음과 같은 보안 업데이트가 적용되었습니다.</p>

<table border=0>
<tr><th>Advisory ID</th>  <th>Package</th></tr>


<dsa 2017 3876 otrs2>
<dsa 2017 3877 tor>
<dsa 2017 3882 request-tracker4>
<dsa 2017 3884 gnutls28>
<dsa 2017 3885 irssi>
<dsa 2017 3886 linux>
<dsa 2017 3887 glibc>
<dsa 2017 3888 exim4>
<dsa 2017 3890 spip>
<dsa 2017 3891 tomcat8>
<dsa 2017 3893 jython>
<dsa 2017 3895 flatpak>
<dsa 2017 3896 apache2>
<dsa 2017 3897 drupal7>
<dsa 2017 3900 openvpn>
<dsa 2017 3901 libgcrypt20>
<dsa 2017 3902 jabberd2>
<dsa 2017 3903 tiff>
<dsa 2017 3904 bind9>
<dsa 2017 3905 xorg-server>
<dsa 2017 3906 undertow>
<dsa 2017 3907 spice>
<dsa 2017 3908 nginx>
<dsa 2017 3910 knot>
<dsa 2017 3911 evince>
<dsa 2017 3912 heimdal>

</table>

<h2>삭제된 패키지</h2>

<p>데비안 프로젝트의 관리를 벗어난 다음 패키지는 삭제되었습니다.</p>


<table border=0>
<tr><th>Package</th>               <th>Reason</th></tr>

<correction aiccu                     "Useless since shutdown of SixXS">
</table>

<h2>Debian Installer</h2>
<p>The installer has been updated to include the fixes incorporated into
stable by the point release.</p>

<h2>URLs</h2>

<p>이번 릴리즈에서 변경된 전체 패키지 목록은 다음과 같습니다.</p>

<div class="center">
  <url "http://ftp.debian.org/debian/dists/<downcase <codename>>/ChangeLog">
</div>

<p>현재의 stable 배포판입니다.</p>

<div class="center">
  <url "http://ftp.debian.org/debian/dists/stable/">
</div>

<p>stable 배포판에 제안된 업데이트입니다.</p>

<div class="center">
  <url "http://ftp.debian.org/debian/dists/proposed-updates">
</div>

<p>stable 배포판 정보입니다. (릴리즈 노트, 정오표 등등)</p>

<div class="center">
  <a
  href="$(HOME)/releases/stable/">https://www.debian.org/releases/stable/</a>
</div>

<p>보안 관련 공지사항 및 정보입니다.</p>

<div class="center">
  <a href="$(HOME)/security/">https://security.debian.org/</a>
</div>


<h2>데비안에 대하여</h2>

<p>데비안 프로젝트는 자유 소프트웨어 개발자들의 모임입니다.
이들은 자유 운영체제인 데비안을 만들기 위해 시간과 노력을 쏟는 자원봉사자들입니다.</p>


<h2>연락 정보</h2>

<p>자세한 정보가 필요하다면 데비안 웹페이지 <a href="$(HOME)/">https://www.debian.org/</a>에 방문하거나  &lt;press@debian.org&gt;로 메일을 보내주세요.
stable 릴리즈 팀 &lt;debian-release@lists.debian.org&gt; 으로 메일을 보내도 됩니다.</p>
	# First-Translator: Hyun-gwan Seo <westporch@debianusers.or.kr> 2017-09-18
	# Last-Translator: Hyun-gwan Seo <westporch@debianusers.or.kr> 2017-09-21

	<define-tag pagetitle>Debian 9 업데이트: 9.1 릴리즈</define-tag>
	<define-tag release_date>2017-07-22</define-tag>
	#use wml::debian::news
	# $Id:

	<define-tag release>9</define-tag>
	<define-tag codename>stretch</define-tag>
	<define-tag revision>9.1</define-tag>

	<define-tag dsa>
	<tr><td align="center"><a href="$(HOME)/security/%0/dsa-%1">DSA-%1</a></td>
	<td align="center"><:
	my @p = ();
	for my $p (split (/,\s*/, "%2")) {
	push (@p, sprintf ('<a href="https://packages.debian.org/src:%s">%s</a>', $p, $p));
	}
	print join (", ", @p);
	:></td></tr>
	</define-tag>

	<define-tag correction>
	<tr><td><a href="https://packages.debian.org/src:%0">%0</a></td> <td>%1</td></tr>
	</define-tag>

	<define-tag srcpkg><a href="https://packages.debian.org/src:%0">%0</a></define-tag>

	<p>데비안 프로젝트는 stable 배포판 (codename <q><codename></q>)의 9.1 릴리즈를 알리게되어 기쁩니다.
	이번 릴리즈에서는 주로 보안 이슈 및 중대한 문제를 수정했습니다.
	보안 권고사항은 이미 사전에 안내되었습니다.</p>

	<p>9.1 릴리즈는 데비안 <release>의 새로운 버전이 아니며 일부 패키지들이 업데이트 되었습니다.
	이전 버전인 <q><codename></q>(9.0) media를 버릴 필요는 없습니다. 왜냐하면 해당 미디어로 데비안을 설치하더라도
	패키지들은 최신 데비안 미러에서 업그레이드되기 때문입니다.</p>

	<p>security.debian.org에서 업데이트를 자주 적용하는 사용자는 여러 패키지들을 업데이트할 필요는 없습니다.
	대부분의 보안 업데이트는 이번 릴리즈에 포함되었습니다.</p>

	<p>새로운 설치 이미지는 조만간 이용할 수 있습니다.<p>

	<p>기존 데비안을 이번 릴리즈(9.1)로 업그레이드하려면 데비안 HTTP 미러사이트를 이용하면 됩니다.
	미러 사이트의 전체 목록은 다음과 같습니다.</p>

	<div class="center">
	<a href="$(HOME)/mirror/list">https://www.debian.org/mirror/list</a>
	</div>


	<h2>다양한 버그 수정</h2>

	<p>이번 stable 업데이트에서는 아래 패키지들을 수정하였습니다.</p>
	<table border=0>
	<tr><th>Package</th> <th>Reason</th></tr>
	<correction 3dchess "Reduce wasteful CPU consumption">
	<correction adwaita-icon-theme "Fix malformed send-to-symbolic icon">
	<correction anope "Fix incorrect mail-transport-agent relationship">
	<correction apt "Reset failure reason when connection was successful, so later errors are reported as such and not as <q>connection failure</q> warnings; http: A response with Content-Length: 0 has no content, so don't try to read it; use port from SRV record instead of initial port">
	<correction avogadro "Update eigen3 patches">
	<correction base-files "Update for the 9.1 point release">
	<correction c-ares "Security fix [CVE-2017-1000381]">
	<correction debian-edu-doc "Update Debian Edu Stretch manual from the wiki; update translations">
	<correction debsecan "Add support for stretch and buster; Python needs https_proxy for proxy configuration with https:// URLs">
	<correction devscripts "debchange: target stretch-backports with --bpo; support $codename{,-{proposed-updates,security}}; bts: add support for the new <q>a11y</q> tag">
	<correction dgit "Multiple bugfixes">
	<correction dovecot "Fix syntax errors when sending Solr queries">
	<correction dwarfutils "Security fixes [CVE-2017-9052 CVE-2017-9053 CVE-2017-9054 CVE-2017-9055 CVE-2017-9998]">
	<correction fpc "Fix conversion from local time to UTC">
	<correction galternatives "Fix blank window when displaying properties">
	<correction geolinks "Fix python3 dependencies">
	<correction gnats "gnats-user: do not fail to purge if /var/lib/gnats/gnats-db is not empty">
	<correction gnome-settings-daemon "Do not add the <q>US</q> keyboard layout by default for new users, for some reason, this layout was preferred over the system configured one on the first login; preserve NumLock state between sessions by default">
	<correction gnuplot "Fix memory corruption vulnerability">
	<correction gnutls28 "Fix breakage with AES-GCM in-place encryption and decryption on aarch64">
	<correction grub-installer "Fix support for systems with a large number of disks">
	<correction intel-microcode "Update included microcode">
	<correction libclamunrar "Fix arbitrary memory write [CVE-2012-6706]">
	<correction libopenmpt "Security fixes: out-of-bounds read while loading a malfomed PLM file; arbitrary code execution by a crafted PSM file [CVE-2017-11311]; various security fixes">
	<correction libquicktime "Security fixes [CVE-2017-9122 CVE-2017-9123 CVE-2017-9124 CVE-2017-9125 CVE-2017-9126 CVE-2017-9127 CVE-2017-9128]">
	<correction linux-latest "Revert changes to debug symbol meta-packages">
	<correction nagios-nrpe "Restore previous SSL defaults">
	<correction nvidia-graphics-drivers "Bump Pre-Depends: nvidia-installer-cleanup to (>= 20151021) for smoother upgrades from jessie">
	<correction octave-ocs "Fix loading package functions">
	<correction open-iscsi "Speed up Debian Installer when iSCSI is not used">
	<correction openssh "Fix incoming compression statistics">
	<correction openstack-debian-images "Also add security updates for non wheezy/jessie">
	<correction os-prober "EFI - look for <q>dos</q> instead of <q>msdos</q>">
	<correction osinfo-db "Improve support for Stretch and Jessie">
	<correction partman-base "Protect the firmware area on all mmcblk devices (and not only on mmcblk0) from being clobbered during guided partitioning">
	<correction pdns-recursor "Add 2017 DNSSEC root key">
	<correction perl "Backport various Getopt-Long fixes from upstream 2.49..2.51; backport upstream patch fixing regexp <q>Malformed UTF-8 character</q>; apply upstream base.pm no-dot-in-inc fix">
	<correction phpunit "Security fix: arbitrary PHP code execution via HTTP POST">
	<correction protozero "Fix data_view equality operator">
	<correction pulseaudio "Fix copyright file">
	<correction pykde4 "Drop bindings for plasma webview bindings; they're obsolete and non-functional">
	<correction python-colorlog "Fix python3 dependencies">
	<correction python-imaplib2 "Fix python3 dependencies">
	<correction python-plumbum "Fix python3 dependencies">
	<correction qgis "Fix missing Breaks/Replaces against python-qgis-common">
	<correction request-tracker4 "Handle configuration permissions correctly following RT_SiteConfig.d changes">
	<correction retext "Backport upstream fix for crash in XSettings code; fix syntax in appdata XML file">
	<correction rkhunter "Disable remote updates [CVE-2017-7480]">
	<correction socat "Fix signals leading to possible 100% CPU usage">
	<correction squashfs-tools "Fix corruption of large files; fix rare race condition">
	<correction systemd "Fix out-of-bounds write in systemd-resolved [CVE-2017-9445]; be truly quiet in systemctl -q is-enabled; improve RLIMIT_NOFILE handling; debian/extra/rules: Use updated U2F ruleset">
	<correction thermald "Add Broadwell-GT3E and Kabylake support">
	<correction unrar-nonfree "Add bound checks for VMSF_DELTA, VMSF_RGB and VMSF_AUDIO paramters [CVE-2012-6706]">
	<correction win32-loader "Replace all mirror urls with deb.debian.org; drop bz2 compression for source">
	</table>

	<h2>보안 업데이트</h2>

	<p>이번 릴리즈에서는 다음과 같은 보안 업데이트가 적용되었습니다.</p>

	<table border=0>
	<tr><th>Advisory ID</th> <th>Package</th></tr>


	<dsa 2017 3876 otrs2>
	<dsa 2017 3877 tor>
	<dsa 2017 3882 request-tracker4>
	<dsa 2017 3884 gnutls28>
	<dsa 2017 3885 irssi>
	<dsa 2017 3886 linux>
	<dsa 2017 3887 glibc>
	<dsa 2017 3888 exim4>
	<dsa 2017 3890 spip>
	<dsa 2017 3891 tomcat8>
	<dsa 2017 3893 jython>
	<dsa 2017 3895 flatpak>
	<dsa 2017 3896 apache2>
	<dsa 2017 3897 drupal7>
	<dsa 2017 3900 openvpn>
	<dsa 2017 3901 libgcrypt20>
	<dsa 2017 3902 jabberd2>
	<dsa 2017 3903 tiff>
	<dsa 2017 3904 bind9>
	<dsa 2017 3905 xorg-server>
	<dsa 2017 3906 undertow>
	<dsa 2017 3907 spice>
	<dsa 2017 3908 nginx>
	<dsa 2017 3910 knot>
	<dsa 2017 3911 evince>
	<dsa 2017 3912 heimdal>

	</table>

	<h2>삭제된 패키지</h2>

	<p>데비안 프로젝트의 관리를 벗어난 다음 패키지는 삭제되었습니다.</p>


	<table border=0>
	<tr><th>Package</th> <th>Reason</th></tr>

	<correction aiccu "Useless since shutdown of SixXS">
	</table>

	<h2>Debian Installer</h2>
	<p>The installer has been updated to include the fixes incorporated into
	stable by the point release.</p>

	<h2>URLs</h2>

	<p>이번 릴리즈에서 변경된 전체 패키지 목록은 다음과 같습니다.</p>

	<div class="center">
	<url "http://ftp.debian.org/debian/dists/<downcase <codename>>/ChangeLog">
	</div>

	<p>현재의 stable 배포판입니다.</p>

	<div class="center">
	<url "http://ftp.debian.org/debian/dists/stable/">
	</div>

	<p>stable 배포판에 제안된 업데이트입니다.</p>

	<div class="center">
	<url "http://ftp.debian.org/debian/dists/proposed-updates">
	</div>

	<p>stable 배포판 정보입니다. (릴리즈 노트, 정오표 등등)</p>

	<div class="center">
	<a
	href="$(HOME)/releases/stable/">https://www.debian.org/releases/stable/</a>
	</div>

	<p>보안 관련 공지사항 및 정보입니다.</p>

	<div class="center">
	<a href="$(HOME)/security/">https://security.debian.org/</a>
	</div>


	<h2>데비안에 대하여</h2>

	<p>데비안 프로젝트는 자유 소프트웨어 개발자들의 모임입니다.
	이들은 자유 운영체제인 데비안을 만들기 위해 시간과 노력을 쏟는 자원봉사자들입니다.</p>


	<h2>연락 정보</h2>

	<p>자세한 정보가 필요하다면 데비안 웹페이지 <a href="$(HOME)/">https://www.debian.org/</a>에 방문하거나 <press@debian.org>로 메일을 보내주세요.
	stable 릴리즈 팀 <debian-release@lists.debian.org> 으로 메일을 보내도 됩니다.</p>