[HOME] [DOWNLOAD] [DOCS] [NEWS] [SUPPORT] [TIPS] [ISSUES] [Priority Support]

[FIXED] Building Whonix from source code is NOT safe at the moment due to APT vulnerability DSA 4371-1


#1

Update:
Building is safe again as per git tag 14.0.1.3.1-developers-only.

This news is primarily to inform developers and everyone who builds Whonix from source code. If that doesn’t mean anything to you, this news can be safely ignored.


Building Whonix from source code is NOT safe at the moment due to APT vulnerability.

APT vulnerability DSA 4371-1:
~~ https://lists.debian.org/debian-security-announce/2019/msg00010.html~~

APT vulnerability security advisory by Whonix:
~~ https://www.whonix.org/wiki/Operating_System_Software_and_Updates#apt_security_update_-_DSA_4371-1~~

APT vulnerability security advisory by Whonix forum discussion:
special instructions required to securely update because of apt security update [DSA 4371-1]

Please wait until this forum post is updated and/or until a news posting the security fix has been posted.

~~Context:
https://www.whonix.org/wiki/Dev/Build_Documentation

Patches welcome.
https://www.whonix.org/wiki/FAQ#Patches_are_Welcome

Development discussion:
Apt RCE announced. New Whonix images needed. Whonix build NOT safe at the moment.


Building Whonix from source code is safe again (APT vulnerability DSA 4371-1)
#2

will there be an images of whonix fixing up the vulnerability before update/upgrade? (like the same what happened in previous apt vulnerability)


#3

Yes.


#4

Kindly explain what it means for the current OVAs as in https://www.whonix.org/wiki/VirtualBox/XFCE

I want to download and start using 14.0.0.9.9 - do you recommend waiting for another point release?


#5

Update as per https://www.whonix.org/wiki/Operating_System_Software_and_Updates#apt_security_update_-_DSA_4371-1 or wait.


#6

Update:


#7

git tag:

14.0.1.3.8-testers-only