On 23rd January, Debian announced the release of Debian 9.7 which is the seventh update of the stable distribution of Debian 9. This comes right after a remote code execution vulnerability was discovered in the APT high-level package manager used by Debian, Ubuntu, and other related Linux distributions that allows an attacker to perform a man-in-the-middle attack. This Debian includes a security update for the APT vulnerability.
The Debian GNU/ Linux 9.7 (codename “Stretch”) release contains a new version of the APT package manager that’s no longer vulnerable to man-in-the-middle attacks.
The team states that there is no need to download new ISO images to update existing installations, however, the Debian Project will release live and install-only ISO images for all supported architectures of the Debian GNU/Linux 9.7 “Stretch”. This will be available for download in a few days.
Head over to Debian’s official website for more information on this announcement.
*** This is a Security Bloggers Network syndicated blog from Security News – Packt Hub authored by Melisha Dsouza. Read the original post at: https://hub.packtpub.com/debian-9-7-released-with-fix-for-rce-flaw/