Linux Compatible

Liquorix Linux Kernel 6.17-14 released

Debian 10703 Ubuntu 6931 Arch Linux 919 Published 2025-12-13 09:27 by Philipp Esselbach 0

Liquorix has released version 6.17-14 of their custom-built Linux kernel, which is designed to optimize desktop performance for multimedia and gaming workloads by tapping into underutilized capabilities. This kernel includes various improvements, such as interactive tuning, optimized I/O and memory management, and changes to CPUFreq control, aiming to balance responsiveness with stability. Liquorix 6.17-14 also features additional performance enhancements like high-resolution scheduling, real-time system handling, and support for Budget Fair Queue (BFQ) and TCP BBR2 Congestion Control. Users can easily deploy the kernel on Debian, Ubuntu, or Arch Linux using pre-built binary packages from their PPA or an automated installation script.

TzData, Kernel, Thunderbird, Chromium updates for Debian

Debian 10703 Published 2025-12-13 09:13 by Philipp Esselbach 0

The Debian project has issued several security advisories to update various packages. The first advisory, DLA-4403-1, updates the tzdata package to version 2025b-0+deb11u2, which includes the latest changes to the leap second list. Other advisories, including ELA-1594-1 for Debian 9 and 10 and DSA-6080-1 for Chromium, also address security issues in various packages. Additionally, updates for the Linux kernel (DLA-4404-1) and Thunderbird (DLA-4405-1) have been released to fix multiple vulnerabilities.

Debian GNU/Linux 9 (Stretch) and 10 (Buster) Extended LTS:
ELA-1594-1 tzdata new timezone database

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4403-1] tzdata new timezone database
[DLA 4404-1] linux security update
[DLA 4405-1] thunderbird security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6080-1] chromium security update

Libsoup, Libsndfile, Firefox ESR updates for Debian

Debian 10703 Published 2025-12-12 08:39 by Philipp Esselbach 0

Debian has released several security updates to address vulnerabilities in various packages, including libsndfile, firefox-esr, and libsoup2.4. The libsndfile vulnerability allows an attacker to trigger an out-of-bounds read that could cause a crash or memory leak, while the Firefox ESR update fixes multiple security issues that could lead to arbitrary code execution or privilege escalation. The libsoup2.4 package has several vulnerabilities, including integer overflows and denial-of-service flaws that can be exploited by sending specially crafted HTTP messages.

Debian GNU/Linux 9 (Stretch) and 10 (Buster) Extended LTS:
ELA-1593-1 libsoup2.4 security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4402-1] libsndfile security update
[DLA 4401-1] firefox-esr security update

LibSSH, Webkit2GTK, Rear, and more updates for Debian

Debian 10703 Published 2025-12-11 09:12 by Philipp Esselbach 0

Several security updates have been released for various Debian packages, including webkit2gtk, pdns-recursor, libpng1.6, and others, to address vulnerabilities such as sensitive system information exfiltration, denial-of-service attacks, and potentially arbitrary code execution. These updates include fixes for CVEs like CVE-2025-13947, CVE-2025-43421, and CVE-2025-4877, among others.

Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1592-1 libssh security update

Debian GNU/Linux 10 (Buster) Extended LTS:
ELA-1591-1 libssh security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4399-1] webkit2gtk security update
[DLA 4400-1] rear security update

Debian GNU/Linux 12 (Bookworm):
[DSA 6079-1] ffmpeg security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6076-1] libpng1.6 security update
[DSA 6078-1] firefox-esr security update

Debian GNU/Linux 13 (Trixie):
[DSA 6077-1] pdns-recursor security update

Wordpress, Libsoup2.4, Webkit2GTK updates for Debian

Debian 10703 Published 2025-12-10 08:36 by Philipp Esselbach 0

Debian Security Advisories have been issued for several packages, including WordPress, libsoup2.4, and webkit2gtk, due to multiple security issues that could result in cross-site scripting or information disclosure. The issues were discovered in the oldstable (bookworm) and stable (trixie) distributions of Debian, with corresponding version updates available to fix the vulnerabilities. Users are recommended to upgrade their packages for WordPress, libsoup2.4, and webkit2gtk to ensure system security.

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4398-1] libsoup2.4 security update

Debian GNU/Linux 12 (Bookworm):
[DSA 6075-1] wordpress security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6074-1] webkit2gtk security update

Lasso security updates for Debian LTS

Debian 10703 Published 2025-12-09 08:32 by Philipp Esselbach 0

Debian has released security updates for the LASSO library, which implements Liberty Alliance and SAML protocols. The update addresses multiple vulnerabilities discovered by Keane O'Kelley that could lead to denial-of-service or arbitrary code execution. Affected Debian versions include Debian GNU/Linux 11 (Bullseye) LTS with version 2.6.1-3+deb11u1, as well as Debian GNU/Linux 9 (Stretch) and 10 (Buster) Extended LTS with different version updates. Users are recommended to upgrade their LASSO packages to the latest secured version.

[DLA 4397-1] lasso security update
ELA-1590-1 lasso security update

Libpng1.6 and FFmpeg updates for Debian

Debian 10703 Published 2025-12-08 08:06 by Philipp Esselbach 0

Debian has released security updates for several packages: libpng1.6, ffmpeg, and their respective vulnerabilities. The libpng1.6 update fixes multiple vulnerabilities that allow information disclosure or denial of service via out-of-bounds reads, heap corruption, or buffer overflows. The ffmpeg update tackles a vulnerability that could lead to denial of service or arbitrary code execution when processing malformed files. Users are recommended to upgrade their packages to the latest versions for security patches: 1.6.37-3+deb11u1 for libpng1.6 and 7:7.1.3-0+deb13u1 for ffmpeg.

Debian GNU/Linux 9 (Stretch) and 10 (Buster) ELTS:
ELA-1589-1 libpng1.6 security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4396-1] libpng1.6 security update

Debian GNU/Linux 13 (Trixie):
[DSA 6073-1] ffmpeg security update

Liquorix Linux Kernel 6.17-13 released

Debian 10703 Ubuntu 6931 Arch Linux 919 Published 2025-12-07 22:01 by Philipp Esselbach 0

Liquorix Linux kernel version 6.17-13 has been released, which is based on the stable Linux kernel 6.17.10 and designed to optimize desktop experiences for multimedia and gaming workloads. The new kernel has several important updates, like adjustments that make the system respond faster instead of saving power, better management of input/output and memory, and improved CPUFreq control for quicker responses when needed. Additionally, Liquorix 6.17-12 includes better scheduling for high-resolution tasks, a way to manage real-time processes, and support for Budget Fair Queue (BFQ) and TCP BBR2 Congestion Control The kernel can be easily installed on Debian, Ubuntu, or Arch Linux using a provided script or through their own PPA, making it a straightforward replacement for the standard kernel.

Krita security update for Debian 11 LTS

Debian 10703 Published 2025-12-06 08:38 by Philipp Esselbach 0

A security update has been released for Krita, an image manipulation program. The update fixes a vulnerability that could cause a heap-based buffer overflow when loading a manipulated TGA file in Krita. The issue was fixed in version 1:4.4.2+dfsg-1+deb11u1 of the package, which is available for Debian GNU/Linux 11 (Bullseye) LTS users.

[DLA 4395-1] krita security update

Libhtp, Webkit2GTK, Chromium, Unbound updates for Debian

Debian 10703 Published 2025-12-05 08:21 by Philipp Esselbach 0

Several security updates have been released for various Debian packages, including webkit2gtk, chromium, unbound, and libhtp. The updates address multiple vulnerabilities that could lead to denial of service, information disclosure, or arbitrary code execution.

Debian GNU/Linux 10 (Buster) Extended LTS:
ELA-1588-1 libhtp security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4394-1] webkit2gtk security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6072-1] chromium security update

Debian GNU/Linux 13 (Trixie):
[DSA 6071-1] unbound security update

Mod-Auth-Openidc, Webki2GTK, OpenVPN updates for Debian

Debian 10703 Published 2025-12-04 08:17 by Philipp Esselbach 0

The Debian project has released security updates for several packages, including libapache2-mod-auth-openidc, webkit2gtk, and openvpn. The updates fix vulnerabilities that could allow attackers to crash or exploit systems, with fixes available for various distributions, including Buster, Bookworm, and Trixie. Specific issues addressed in the updates include a denial-of-service vulnerability in mod_auth_openidc, multiple crashes and memory corruption bugs in WebKitGTK, and a flaw allowing bypass of source IP address validation in openvpn.

Debian GNU/Linux 10 (Buster) ELTS:
ELA-1587-1 libapache2-mod-auth-openidc security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6070-1] webkit2gtk security update
[DSA 6069-1] openvpn security update

Mako, Xen, Containerd updates for Debian

Debian 10703 Published 2025-12-03 07:59 by Philipp Esselbach 0

Debian has released security updates for several packages, including mako (version 1.1.3+ds1-2+deb11u1) for Debian GNU/Linux 11 LTS, as well as xen (versions 4.17.5 and 4.20.2) and containerd (versions 1.6.20 and 1.7.24) for both Debian GNU/Linux 12 and 13. The updates address various security vulnerabilities, including denial of service attacks and privilege escalation, which could result in memory disclosure or other issues.

[DLA 4393-1] mako security update
[DSA 6068-1] xen security update
[DSA 6067-1] containerd security update

Liquorix Linux Kernel 6.17-12 released

Debian 10703 Ubuntu 6931 Arch Linux 919 Published 2025-12-01 19:18 by Philipp Esselbach 0

Liquorix Linux kernel version 6.17-12 has been released, which is based on the stable Linux kernel 6.17.10 and designed to optimize desktop experiences for multimedia and gaming workloads. The new kernel has several important updates, like adjustments that make the system respond faster instead of saving power, better management of input/output and memory, and improved CPUFreq control for quicker responses when needed. Additionally, Liquorix 6.17-12 includes better scheduling for high-resolution tasks, a way to manage real-time processes, and support for Budget Fair Queue (BFQ) and TCP BBR2 Congestion Control The kernel can be easily installed on Debian, Ubuntu, or Arch Linux using a provided script or through their own PPA, making it a straightforward replacement for the standard kernel.

Liquorix Linux Kernel 6.17-11 released

Debian 10703 Ubuntu 6931 Arch Linux 919 Published 2025-12-01 08:31 by Philipp Esselbach 0

Steven Barrett has released the Liquorix Linux kernel 6.17-11. The kernel features Zen Interactive Tuning, which adjusts system settings to prioritize responsiveness over power-saving, as well as optimized I/O and memory management. There are also improvements for better performance, like more precise scheduling, better handling of real-time tasks, and support for Budget Fair Queue (BFQ Users can easily install the kernel using a provided script or by downloading binary builds from Liquorix's PPA repository, which supports Debian, Ubuntu, and Arch Linux distributions.

Unbound, CUPS-Filter, PyTorch, and more updates for Debian

Debian 10703 Published 2025-12-01 08:08 by Philipp Esselbach 0

Multiple Debian Security Advisories (DSA) and Extended LTS Advisory (ELA) have been released to address various security vulnerabilities. These advisories include fixes for issues in packages such as gnome-shell-extension-gsconnect, cups-filters, mistral-dashboard, python-mistralclient, pagure, pytorch, unbound, and others. The vulnerabilities affect Debian GNU/Linux distributions, including Bookworm, Trixie, Stretch, Buster, and Bullseye, and users are recommended to upgrade their packages to the latest versions. Moreover, certain advisories indicate that the initial fixes failed to fully resolve the issues, necessitating the application of updated packages.

Debian GNU/Linux 9 (Stretch) ELTS:
ELA-1568-2 unbound1.9 security update

Debian GNU/Linux 10 (Buster) ELTS:
ELA-1567-2 unbound security update

Debian GNU/Linux 9 (Stretch) and 10 (Buster) ELTS:
ELA-1586-1 cups-filters security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4392-1] mistral-dashboard security update
[DLA 4391-1] python-mistralclient security update
[DLA 4390-1] pagure security update
[DLA 4389-1] pytorch security update
[DLA 4365-2] unbound security update

Debian GNU/Linux 13 (Trixie):
[DSA 6066-1] gnome-shell-extension-gsconnect security update

Qtbase-Opensource-Src security update for Debian

Debian 10703 Published 2025-11-30 08:03 by Philipp Esselbach 0

Multiple security updates for the qtbase-opensource-src package have been released for Debian GNU/Linux due to vulnerabilities in Qt, a cross-platform C++ application framework. A race condition was discovered in version 5.15.2+dfsg-9+deb11u2 (Debian 11 Bullseye LTS), where code may execute too early on an established HTTP2 connection. The same issue was also found in versions 5.7.1+dfsg-3+deb9u6 (Debian 9 Stretch ELTS) and 5.11.3+dfsg1-1+deb10u8 (Debian 10 Buster ELTS) of the package, which were addressed by earlier security updates. Users are recommended to upgrade their qtbase-opensource-src packages to fix these vulnerabilities.

[DLA 4387-1] qtbase-opensource-src security update
ELA-1585-1 qtbase-opensource-src security update
ELA-1584-1 qtbase-opensource-src security update

Tryton-Server and Sogo updates for Debian

Debian 10703 Published 2025-11-29 07:22 by Philipp Esselbach 0

Debian has released security updates for two Debian GNU/Linux 11 (Bullseye) LTS packages: tryton-server and sogo. Tryton-server was vulnerable to information disclosure, but this issue has been fixed in version 5.0.33-2+deb11u4. Sogo, on the other hand, had a Cross-Site Scripting (XSS) vulnerability that allowed arbitrary JavaScript to be executed via the "userName" parameter, but this problem was addressed in version 5.0.1-4+deb11u2. Both packages are recommended to be upgraded to their respective fixed versions to ensure system security.

[DLA 4387-1] tryton-server security update
[DLA 4386-1] sogo security update

LibSSH, Krita, Tryton-Server updates for Debian

Debian 10703 Published 2025-11-28 06:49 by Philipp Esselbach 0

Debian has released security updates for several packages, including libssh, Krita, and Tryton-server. Libssh version 0.9.8-0+deb11u2 fixes multiple vulnerabilities found by Ronald Crane and Philippe Antoine, while Krita version 1:5.1.5+dfsg-2+deb12u1 addresses a buffer overflow issue discovered in its TGA parser. Tryton-server, an application platform, has also been updated to fix several security vulnerabilities that could lead to information disclosure.

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4385-1] libssh security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6065-1] krita security update
[DSA 6064-1] tryton-server security update

KDE Connect, Samba, xrdp, ImageMagic updates for Debian

Debian 10703 Published 2025-11-27 06:33 by Philipp Esselbach 0

The Debian project has released several security updates to address vulnerabilities in various packages. The first update addresses a vulnerability in the KDE Connect package, which could allow an attacker to impersonate another device. Three other packages, Samba, xrdp, and ImageMagick, also have issues that need to be addressed, with Samba having an information disclosure vulnerability and xrdp having vulnerabilities related to login attempts and memory reads.

Debian GNU/Linux 9 (Stretch) and 10 (Buster) Extended LTS:
ELA-1545-1 imagemagick security update

Debian GNU/Linux 10 (Buster) Extended LTS:
ELA-1552-1 xrdp security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4384-1] samba security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6063-1] kdeconnect security update

Linux, Erlang, Rails, and more updates for Debian

Debian 10703 Published 2025-11-26 09:11 by Philipp Esselbach 0

Multiple Debian security advisories (DSA) were issued, addressing vulnerabilities in various packages, including Linux kernel, pdfminer, tryton-sao, rails, cups-filters, libsdl2, and net-snmp. These updates fix issues related to privilege escalation, denial of service, information leaks, cross-site scripting (XSS), and out-of-bounds reads or writes. The affected packages have been updated with new versions that include security patches, including CVE-2025-21861, CVE-2025-39929, and others.

Debian GNU/Linux 9 (Stretch) and 10 (Buster) ELTS:
ELA-1583-1 linux-6.1 security update
ELA-1583-1 linux-6.1 security update
ELA-1582-1 erlang security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4383-1] rails security update
[DLA 4380-1] cups-filters security update
[DLA 4382-1] libsdl2 security update
[DLA 4381-1] net-snmp security update
[DLA 4379-1] linux-6.1 security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6062-1] pdfminer security update
[DSA 6061-1] tryton-sao security update