A postgresql-common security update has been released for Debian GNU/Linux 8 LTS to address a security issue with the pg_ctlcluster script
A mesa security update has been released for Debian GNU/Linux 8 LTS to address a shared memory permissions vulnerability in the Mesa 3D graphics library.
Updated Mesa packages has been released for Debian GNU/Linux 7 Extended LTS to address a shared memory permissions vulnerability in the Mesa 3D graphics library.
A postgresql-common security update has been released for both Debian GNU/Linux 9 and 10 to address a local privilege escalation
Updated ghostscript packages are available for both Debian GNU/Linux 9 and 10 to address the -dSAFER escape in .charkeys security issue
A ghostscript security update is available for Debian GNU/Linux 8 LTS to address the -dSAFER escape in .charkeys security issue
Updated Linux Kernel packages has been released for Debian GNU/Linux 8 LTS to address the security issues found on some Intel CPUs
A libssh2 security update has been released for Debian GNU/Linux 8 LTS
A qemu update has been released for Debian GNU/Linux 10 (Buster) to passthrough the pschange-mc-no CPU flag.
An intel-microcode security update has been released for both Debian GNU/Linux 9 and 10. This update ships updated CPU microcode for some types of Intel CPUs. In particular it provides mitigations for the TAA (TSX Asynchronous Abort) vulnerability.
A dpdk security update is available for both Debian GNU/Linux 9 and 10
A webkit2gtk security update has been released for Debian GNU/Linux 10
Linux kernel security updates has been released for both Debian GNU/Linux 9 and 10 to address new security issues on some Intel CPUs.
A linux security update has been released for Debian GNU/Linux 8 LTS to address new security issues with some Intel CPUs.
An ampache security update has been released for Debian GNU/Linux 8 LTS (Jessie) to address two vulnerabilities.
Ondřej Nový published an update on the state of the removal of Python 2 in Debian Sid (Unstable) and Bullseye (Testing). They are now almost done with half of the removals.
Updated Chromium 78.0.3904.97 packages has been finally released for Debian GNU/Linux 10 (Buster). This update fixes 70 security issues, including a critical 0-day bug exploited in the wild.
A djvulibre security update has been released for Debian GNU/Linux 7 Extended LTS (Wheezy)
A ruby-haml security update has been released for Debian GNU/Linux 8 LTS (Jessie)
Updated firefox-esr packages has been released for Debian GNU/Linux 8 LTS (Jessie) to address multiple security issues, including execution of arbitrary code, information disclosure, cross-site scripting, and denial of service.
