[FIXED] Building Whonix from source code is NOT safe at the moment due to APT vulnerability DSA 4371-1

Building is safe again as per git tag

This news is primarily to inform developers and everyone who builds Whonix from source code. If that doesn’t mean anything to you, this news can be safely ignored.

Building Whonix from source code is NOT safe at the moment due to APT vulnerability.

APT vulnerability DSA 4371-1:
~~ https://lists.debian.org/debian-security-announce/2019/msg00010.html~~

APT vulnerability security advisory by Whonix:
~~ https://www.whonix.org/wiki/Operating_System_Software_and_Updates#apt_security_update_-_DSA_4371-1~~

APT vulnerability security advisory by Whonix forum discussion:
special instructions required to securely update because of apt security update [DSA 4371-1]

Please wait until this forum post is updated and/or until a news posting the security fix has been posted.


Patches welcome.

Development discussion:
Apt RCE announced. New Whonix images needed. Whonix build NOT safe at the moment.

will there be an images of whonix fixing up the vulnerability before update/upgrade? (like the same what happened in previous apt vulnerability)


1 Like

Kindly explain what it means for the current OVAs as in https://www.whonix.org/wiki/VirtualBox/XFCE

I want to download and start using - do you recommend waiting for another point release?

Update as per https://www.whonix.org/wiki/Operating_System_Software_and_Updates#apt_security_update_-_DSA_4371-1 or wait.


1 Like

git tag:
[Imprint] [Privacy Policy] [Cookie Policy] [Terms of Use] [E-Sign Consent] [DMCA] [Contributors] [Investors] [Priority Support] [Professional Support]