Ondřej Surý has released PHP 7.3.19 and 7.4.7 packages for Debian GNU/Linux 8 LTS, 9, and 10.
A python-django regression update has been released for Debian GNU/Linux 8 LTS to address a regression introduced by the previous update.
A xawtv security update has been released for Debian GNU/Linux 8 LTS to address an issue where arbitrary files can be open.
A thunderbird security update has been released for Debian GNU/Linux 8 LTS to address multiple security issues.
A roundcube security update has been released for Debian GNU/Linux 8 LTS to address a Cross-Side Scripting (XSS) attack leading to the execution of arbitrary code.
A intel-microcode security update has been released for both Debian GNU/Linux 9 and 10 to provide mitigations for the Special Register Buffer Data Sampling (CVE-2020-0543), Vector Register Sampling (CVE-2020-0548) and L1D Eviction Sampling (CVE-2020-0549) hardware vulnerabilities.
A thunderbird security update has been released for both Debian GNU/Linux 9 and 10 to address multiple security issues which could result in the setup of a non-encrypted IMAP connection, denial of service or potentially the execution of arbitrary code.
A libphp-phpmailer security update has been released for Debian GNU/Linux 8 LTS to address an escaping issue in libphp-phpmailer.
A mysql-connector-java security update has been released for Debian GNU/Linux 8 LTS to address several issues that allow attackers to update, insert or delete access to some of MySQL Connectors accessible data, unauthorized read access to a subset of the data, and partial denial of service.
A mysql-connector-java security update has been released for Debian GNU/Linux 8 LTS to address three vulnerabilities in the MySQL Connector/J JDBC driver.
A linux-4.9 security update has been released for Debian GNU/Linux 8 LTS to address several vulnerabilities in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.
The DLA 2241 linux security update for Debian GNU/Linux 8 LTS is now available for all supported architectures.
A bluez security update has been released for Debian GNU/Linux 8 LTS to address an issue where Malicious devices can take advantage of a flaw to connect to a target host and impersonate an existing HID device without security or to cause an SDP or GATT service discovery to take place which would allow HID reports to be injected to the input subsystem from a non-bonded source.
A linux kernel security update has been released for Debian GNU/Linux 10 to address multiple issues.
A linux kernel security update has been released for Debian GNU/Linux 9 to address multiple issues.
A firefox-esr security update has been released for Debian GNU/Linux 8 LTS to address multiple security issues.
The firefox-esr security update for Debian GNU/Linux 8 LTS has been updated to fix an i386 build error.
A linux kernel security update has been released for Debian GNU/Linux 8 LTS to address multiple issues.
A mysql-connector-java security update has been released for Debian GNU/Linux 7 Extended LTS to address several issues.
A libpam-tacplus security update has been released for Debian GNU/Linux 8 LTS to address an issue where shared secrets such as private server keys were being added in the clear to various logs.
