Files in etc need updating

In most cases, packages should upgrade smoothly between stretch and buster.

There are a small number of cases where some intervention may be required, either before or during the upgrade; these are detailed below on a per-package basis. If this fails, it will abort the package installation, which will leave the upgrade unfinished.

Users will need to migrate to other alternatives to prevent trouble when updating to Debian 11.

This includes the following features: Debian 10 includes several browser engines which are affected by a steady stream of security vulnerabilities.

The system wide settings can be changed in can also set the security level.

The When installing Debian from live media using the Calamares installer (Section 2.2.13, “News from Debian Live team”) and selecting the full disk encryption feature, the disk's unlock key is stored in the initramfs which is world readable.

This allows users with local filesystem access to read the private key and gain access to the filesystem again in the future. This will recreate the initramfs without world-readable permissions.

Sometimes, changes introduced in a new release have side-effects we cannot reasonably avoid, or they expose bugs somewhere else. Please also read the errata, the relevant packages' documentation, bug reports, and other information mentioned in Section 6.1, “Further reading”. These now specify signature algorithms that are accepted for their respective authentication mechanism, where previously they specified accepted key types.

This distinction matters when using the RSA/SHA2 signature algorithms and their certificate counterparts.

Leave a Reply