A glib-networking security update has been released for Debian GNU/Linux 8 Extended LTS to address an issue where GLib failed to verify certificates’ hostnames.
A rails security update has been released for Debian GNU/Linux 9 LTS to address multiple vulnerabilities in Ruby on Rails.
A ksh security update has been released for Debian GNU/Linux 9 LTS to address a flaw in the way it evaluates certain environment variables.
A nginx security update has been released for Debian GNU/Linux 9 LTS to address a HTTP request smuggling issue.
A new upstream version of tzdata has been released for Debian GNU/Linux 8 Extended LTS.
A new upstream version of libdatetime-timezone-perl has been released for Debian GNU/Linux 8 Extended LTS.
A qemu security update has been released for Debian GNU/Linux 10 to address multiple security issues that could result in denial of service.
A ruby-sanitize security update has been released for Debian GNU/Linux 10 to address a HTML sanitization bypass vulnerability.
A libopenmpt security update has been released for Debian GNU/Linux 10 to address two security issues.
A redis security update has been released for Debian GNU/Linux 10 to address an integer overflow flaw leading to a stack-based buffer overflow.
The thirteenth and final update of the oldstable distribution Debian GNU/Linux 9 is available. This point release mainly adds corrections for security issues, along with a few adjustments for serious problems.
A nss security update has been released for Debian GNU/Linux 10 to address several vulnerabilities which may result in side channel/timing attacks or denial of service.
A tomcat8 security update has been released for Debian GNU/Linux 8 Extended LTS to address an issue that could lead to a denial of service.
A tomcat9 security update has been released for Debian GNU/Linux 10 to address several vulnerabilities were discovered in the Tomcat servlet and JSP engine, which could result in code execution or denial of service.
A evolution-data-server security update has been released for Debian GNU/Linux 9 LTS to address a response injection vulnerability in Evolution data server, which could enable MITM attacks.
Ondřej Surý has released PHP 7.3.20 and 7.4.8 packages for Debian GNU/Linux 9 LTS and 10.
A tomcat7 security update has been released for Debian GNU/Linux 8 Extended LTS.
A evolution-data-server security update has been released for Debian GNU/Linux 10 to address a response injection vulnerability in Evolution data server, which could enable MITM attacks.
A python3.5 security update has been released for Debian GNU/Linux 9 LTS to address multiple security issues.
A webkit2gtk security update has been released for Debian GNU/Linux 9 LTS to address an issue where an attacker may be able to execute commands outside the bubblewrap sandbox.
