Debian 11000 Ubuntu 7155 Published by Philipp Esselbach 0

XanMod has released new kernel builds for the mainline 7.1.4 and LTS 6.18.39 branches, addressing a massive wave of security vulnerabilities alongside performance optimizations. The update patches critical issues across the rtl8723bs driver, SMB subsystems, and BPF JIT hardening, while retaining popular features like Google's BBRv3 and AMD 3D V-Cache support. Users can choose between the feature-rich mainline track or the stable LTS branch with a support window extending to December 2028. Both builds are available for x86-64 architectures via the XanMod APT repository for Debian and Ubuntu distributions.

Debian 11000 Ubuntu 7155 Arch Linux 980 Published by Philipp Esselbach 0

Liquorix Linux Kernel 7.1-4 has been released by maintainer Steven Barrett, updating the enthusiast-grade kernel to Linux 7.1.3. The release focuses on a major cleanup, reverting six obsolete patches to reduce maintenance burden and improve stability against upstream code. Core updates include deep integration of the Project-C scheduler framework, which brings significant latency improvements for gaming and interactive workloads. 

Debian 11000 Published by Philipp Esselbach 0

Debian officials released emergency patches for Chromium, addressing fifteen critical vulnerabilities in both the Debian 12 long-term support release and the Debian 13 stable distribution. The Chromium updates prevent attackers from executing arbitrary code, forcing service interruptions, or exposing sensitive data through specially crafted web content. Separate advisories for OpenSSL and libxfont resolve numerous buffer overflow and pointer dereference flaws that could compromise system memory and cryptographic operations.

[DLA 4687-1] chromium security update
[DSA 6390-1] chromium security update
ELA-1773-1 openssl security update (by )
ELA-1774-1 libxfont security update (by )

Debian 11000 Ubuntu 7155 Arch Linux 980 Published by Philipp Esselbach 0

Liquorix Linux Kernel 7.1-3 has officially landed, marking the project’s first shift to the Linux 7.1 mainline base. Maintainer Steven Barrett used the rapid release cycle to integrate extensive upstream fixes for Project-C, his custom low-latency scheduler framework. The update also introduces per-mapping control for transparent hugepages on shared memory and tmpfs, improving consistency for databases, containers, and audio production workloads. Packages are now available via Ubuntu PPAs, Debian repositories, and the Arch AUR for desktop users seeking responsive Linux performance.

Debian 11000 Published by Philipp Esselbach 0

Debian and Freexian released four security advisories, that address critical flaws in libxfont, grub2, dhcpcd5, and ntfs-3g. The patched vulnerabilities include heap buffer overflows, unauthorized privilege escalation, and potential bypasses of UEFI Secure Boot protections. Malicious users could exploit these issues to execute arbitrary code, crash systems, or corrupt data while operating within X server or local user contexts.

[DSA 6388-1] libxfont security update
[DLA 4685-1] grub2 security update
[DLA 4686-1] dhcpcd5 security update
[DSA 6389-1] ntfs-3g security update
ELA-1774-1 libxfont security update

Debian 11000 Published by Philipp Esselbach 0

Debian Linux provides critical security patches for dnsmasq, opam, and wolfSSL to address multiple high-risk flaws in the July 2026 Long Term Support cycle. The dnsmasq update resolves five vulnerabilities that could allow DNS cache poisoning, denial of service attacks, or arbitrary code execution through crafted DHCPv6 packets. The opam release patches a directory traversal flaw that previously permitted unchecked symlink resolution during package installations. The wolfSSL update addresses fourteen distinct security gaps capable of enabling signature forgery, authentication bypasses, memory corruption, and TLS protocol weaknesses across secure communication stacks.

ELA-1772-1 dnsmasq security update (by )
[DLA 4684-1] opam security update
[DLA 4683-1] wolfssl security update

Debian 11000 Published by Philipp Esselbach 0

Debian Long Term Support issued security advisories DLA-4679 through DLA-4682 to patch vulnerabilities in mesa, p7zip, redis, and imagemagick. These updates resolve critical flaws including WebGPU memory corruption in mesa, a cluster of eight memory issues in the p7zip archiver, and potential remote code execution bugs in redis and imagemagick triggered by malformed input or authenticated attacks. Administrators managing Debian 11 bullseye must upgrade mesa to 20.3.5-1+deb11u1, p7zip to 16.02+really26.01+dfsg-0+deb11u1, and imagemagick to 8:6.9.11.60+dfsg-1.3+deb11u15, while Debian 12 bookworm users should apply the fix to redis version 5:7.0.15-1~deb12u8, imagemagick version 8:6.9.11.60+dfsg-1.6+deb12u12, and a mesa update currently denoted by a version placeholder. p7zip specifically receives a replacement with a modified 7-Zip release to address its lack of active maintenance, and Debian LTS urges immediate installation of these updates via standard package management tools.

[DLA 4679-1] mesa security update
[DLA 4681-1] p7zip security update
[DLA 4682-1] redis security update
[DLA 4680-1] imagemagick security update

Debian 11000 Ubuntu 7155 Arch Linux 980 Published by Philipp Esselbach 0

Liquorix maintainer damentz has announced the first build based on the Linux 7.1 series, moving the project forward from its current 7.0.14 release. The kernel applies aggressive Zen Interactive Tuning, including a 1000Hz tick rate, PDS scheduler, and hard preemption, to prioritize desktop responsiveness over power efficiency or sustained throughput. Designed specifically for AMD64 desktops, it targets gamers and audio producers who need low-latency performance, with installation scripts and prebuilt binaries already rolling out for Debian, Ubuntu, and Arch.

Debian 11000 Published by Philipp Esselbach 0

Debian Long Term Support released two security advisories, addressing critical flaws in Chromium and libxfont. The Chromium update patches 27 vulnerabilities that could allow attackers to run arbitrary code or leak sensitive data, urging Debian 12 users to upgrade to version 150.0.7871.114-1~deb12u1. The libxfont advisory targets three heap overflow flaws in its bitmap and PCF parser, which enable authenticated attackers to execute commands within the X server context, and resolves them in packages for both Debian 11 and Debian 12.

[DLA 4677-1] chromium security update
[DLA 4678-1] libxfont security update

Debian 11000 Published by Philipp Esselbach 0

Debian 13.6 Trixie live images drop as volatile RAM sandboxes that erase every config and package on shutdown unless you manually wire up persistence first. Desktop stacks like GNOME 48, KDE Plasma 6.3, and Xfce 4.20 get stability tweaks that prioritize smoother navigation over feature bloat. On the backend, the release finally tackles the expired 2013 UEFI Secure Boot certificate with updated fwupd and shim packages while patching critical vulnerabilities across Chromium, Firefox, nginx, and the kernel.

Debian 11000 Published by Philipp Esselbach 0

Debian and FreeXian released security patches, addressing critical flaws across multiple packages. The chromium advisory fixes twenty-five CVEs that allowed attackers to execute arbitrary code, cause denial of service, or steal sensitive data. Administrators must also update tomcat9 to version 9.0.118-0+deb10u1 and upgrade libtcnative-1 to resolve fifteen security issues involving authentication bypass and information disclosure.

[DLA 4676-1] wireless-regdb new upstream version
[DSA 6387-1] chromium security update
ELA-1771-1 tomcat9 security update

Debian 11000 Published by Philipp Esselbach 0

Debian has released point update 13.6 for its "trixie" stable distribution, delivering a critical update to fwupd that resolves expiration issues with the legacy 2013 UEFI Secure Boot certificate authority. The release also reverts the geoip-database package to a 2019 snapshot due to DFSG licensing conflicts, advising consumers to obtain recent data via a direct GeoLite license instead. Security patches address a wide array of vulnerabilities across QEMU, curl, nginx, and major browsers, mitigating remote code execution and denial-of-service risks. Existing systems can be updated immediately through standard package managers, while new installation images will soon appear at official download locations.

Debian 11000 Published by Philipp Esselbach 0

Debian GNU/Linux 12.15 hit the archives today as Bookworm's final point release. The core Debian Security Team stops maintaining this version immediately, pushing the distribution straight into Long Term Support managed by the community and Freexian. This last major update ships over 60 critical patches, fixing expired Secure Boot certificates that could brick UEFI systems and closing vulnerabilities across the Linux kernel and common web services. New deployments should jump to Debian 13 Trixie now, while LTS users still have roughly two years of updates before paid extended support takes over.

Debian 11000 Published by Philipp Esselbach 0

FreeXian released security updates for the linux-5.10 and linux-6.1 kernels on Debian stretch and buster, providing versions 5.10.259-1 and 6.1.176-1 that address the CVEs enabling privilege escalation, denial of service, and information leaks. Debian issued DSA-6386-1 for the opam package manager to fix CVE-2026-57825, which allowed directory traversal attacks due to insufficient symlink checks in .install files that failed to resolve target paths correctly. The opam correction appears in version 2.3.0-1+deb13u2 for the trixie distribution, and the kernel patches include additional bug fixes from stable revisions 5.10.258, 5.10.259, 6.1.175, and 6.1.176.

ELA-1770-1 linux-5.10 security update
ELA-1769-1 linux-6.1 security update
[DSA 6386-1] opam security update

Debian 11000 Published by Philipp Esselbach 0

Debian LTS released advisory DLA-4674-1 to patch a Chromium vulnerability on Debian 12 bookworm that could allow arbitrary code execution, denial of service, or data exposure. The organization also issued advisory DLA-4675-1 to resolve six reported vulnerabilities in the rlottie C++ rendering library for Debian 11 bullseye. Developers fixed undefined behavior issues in rlottie that previously caused crashes and affected Telegram Desktop, which relies on the package as its sole reverse dependency.

[DLA 4674-1] chromium security update
[DLA 4675-1] rlottie security update

Debian 11000 Published by Philipp Esselbach 0

Debian released three security advisories, targeting critical flaws in the dpkg package manager, the Chromium browser, and the pgextwlist PostgreSQL extension. The dpkg update resolves CVE-2025-6297, which allows attackers to trigger denial of service attacks by exhausting disk quotas through improperly sanitized directory permissions during package extraction. Chromium receives updates to patch vulnerabilities that previously enabled arbitrary code execution, service disruptions, and unauthorized information disclosure, while pgextwlist addresses SQL injection risks stemming from malformed schema and username inputs.

[DLA 4673-1] dpkg security update
[DSA 6384-1] chromium security update
[DSA 6385-1] pgextwlist security update

Debian 11000 Published by Philipp Esselbach 0

Debian issued advisories DSA-6383-1 and DSA-6382-1 to patch security flaws in ImageMagick and Postfix for the trixie stable release. The ImageMagick update fixes sixteen vulnerabilities that could trigger denial of service attacks, expose private data, or allow attackers to run unauthorized code through malicious image files.

[DSA 6383-1] imagemagick security update
[DSA 6382-1] postfix security update

Debian 11000 Published by Philipp Esselbach 0

Debian Long Term Support administrators should apply fresh patches for Chromium and ImageMagick to address dozens of newly disclosed vulnerabilities across Debian 12 and Debian 9 systems. The Chromium advisory updates the package to version 150.0.7871.46-1~deb12u1, closing security gaps that could allow attackers to run arbitrary commands, trigger service outages, or steal sensitive data. Separately, the ImageMagick fix pushes the Debian 9 build to 8:6.9.7.4+dfsg-11+deb9u30, stopping flaws that emerge when the software processes corrupted or maliciously crafted image files.

[DLA 4672-1] chromium security update
ELA-1768-1 imagemagick security update (by )

Debian 11000 Published by Philipp Esselbach 0

Multiple Debian security advisories released to address severe vulnerabilities across several major software packages. The official updates resolve critical flaws in Chromium, the Linux kernel, MediaWiki, OpenVPN, Rsync, and Bird3 that could allow attackers to execute arbitrary code, bypass access controls, or trigger service disruptions. Debian LTS and stable distributions now ship patched versions to stop privilege escalation and prevent sensitive data leaks across both legacy and current operating system releases.

[DSA 6378-1] chromium security update
[DSA 6379-1] bird3 security update
ELA-1767-1 rsync security update (by )
[DLA 4671-1] linux-6.1 security update
[DLA 4653-2] openvpn regression update
[DSA 6381-1] linux security update
[DSA 6380-1] mediawiki security update
ELA-1762-2 openvpn regression update

Debian 11000 Ubuntu 7155 Published by Philipp Esselbach 0

XanMod maintainer Alexandre Frade has released Linux 7.1.3-xanmod1 and Linux 6.18.38-xanmod1, tracking the upstream point releases dropped on July 4, 2026. Both builds inherit all upstream stability and security patches while adding XanMod's performance enhancements, including LLVM ThinLTO compilation, sched_ext support, and Google's multigenerational LRU framework. The update offers users the choice between the mainline 7.1.x series or the 6.18 LTS branch, the latter of which features a dedicated real-time build for latency-sensitive workloads and is available via the official APT repository for Debian-based distributions. Third-party optimizations such as AMD's 3D V-Cache driver, Cloudflare's TCP collapse, and BBRv3 congestion control round out the release, alongside targeted fixes for ksmbd, apparmor, and various WiFi drivers.