zerotracepen (4.9)

  • Security fixes

    • Upgrade Tor Browser to 9.5.3-build1 (Closes: #17827).

    • Upgrade Thunderbird to 1:68.10.0-1~deb10u1 (DSA-4718).

    • Upgrade Linux to 5.7.0-1 at 5.7.6-1 (Closes: #17786).

    • Upgrade Evolution Data Server to 3.30.5-1+deb10u1 (DSA-4725).

    • Upgrade FFmpeg to 7:4.1.6-1~deb10u1 (DSA-4722).

    • Upgrade ImageMagick to 8:6.9.10.23+dfsg-2.1+deb10u1 (DSA-4712).

    • Upgrade NSS to 2:3.42.1-1+deb10u3 (DSA-4726).

    • Upgrade OpenMPT to 2:3.42.1-1+deb10u3 (DSA-4729).

    • Upgrade WebKitGTK to 2.28.3-2~deb10u1 (DSA-4724).

    • Bugfixes

    • Fix quoting issue triggering problems with some administration
      passwords (Closes: #17792).

    • Fix toram boot option by not starting the zerotracepen-shutdown-on-media-removal
      service unit in that case (Closes: #17800).

    • Fix keyboard setting handling in the greeter (Closes: #17794).

    • Make sure log messages can be displayed by Plymouth, which has strict
      limits, and improve parsing in zerotracepen-gdm-error-message (Closes: #17533).

    • Upgrade firmware-linux and firmware-nonfree to 20200421-1.

    • Minor improvements and updates

    • Ensure MAC spoofing messages are translated (Closes: #17783).

    • Improve failure handling for MAC spoofing (Closes: #17784).

    • Trigger MAC spoofing "panic" mode when the debug=test_mac_spoof_panic boot
      option is set.

    • Upgrade VirtualBox guest modules to 6.1.12-dfsg-5.

    • Build system

    • Automate post-release GitLab updates, using gitlab-triage (Closes: #17589).

    • Fix a lot of possible problems spotted by ShellCheck, thanks to Paul Wise.

    • Stop installing custom firmware: firmware-realtek 20200421-1 includes it
      (See: #17786, #17323).

    • Update Thunderbird patches (Closes: #6156, #17808).

    • Bump snapshot of the Debian archive to 2020071801 (Closes: #17786).

    • Test suite

    • Add shell-special chars to passwords (See: #17792).

    • Always test the Unsafe Browser in Farsi.

    • Fix support for symlinks (Closes: #17547).

    • Update persistence-setup test suite for a new preset in Welcome Screen
      settings.

    • Drop Thunderbird POP3 test.

    • Make the "the Tor Browser has started" step stricter.

    • Improve error output when the Unsafe Browser fails to start in some locale.