Linux Compatible - Debian (Page 530)

ImageMagick and ca-certificates-java updates for Debian 10 ELTS

Debian 10698 Published 2025-09-14 08:19 by Philipp Esselbach 0

Debian GNU/Linux 10 (Buster) Extended LTS has received two security updates. The imagemagick package has been updated to fix multiple security vulnerabilities, including heap buffer overflows, memory leaks, and format string bugs. The vulnerabilities (CVEs) listed include issues with processing format strings containing consecutive percent signs (%%), memory corruption due to unsafe size calculations, and arbitrary memory region overwrites. These updates address various commands within ImageMagick, such as magick stream, magick mogrify, and montage, which were found to be vulnerable to these security issues. Additionally, the ca-certificates-java package requires an upgrade to resolve a circular dependency between Java packages and system certificates.

ELA-1515-1 imagemagick security update
ELA-1514-1 ca-certificates-java bugfix update

OpenCV update for Debian 10 ELTS

Debian 10698 Published 2025-09-13 07:52 by Philipp Esselbach 0

An update has been released for the OpenCV package in Debian GNU/Linux 10 (Buster) Extended LTS to fix multiple vulnerabilities. The vulnerabilities include buffer overflows, out-of-bounds reads and writes, NULL pointer dereferences, and divide-by-zero errors in various functions of the OpenCV library.

ELA-1513-1 opencv security update

Amanda, CUPS, Libcpanel, Libjson, ImageMagick updates for Debian

Debian 10698 Published 2025-09-12 08:07 by Philipp Esselbach 0

Debian has issued several security updates for various packages, including cups, libcpanel-json-xs-perl, libjson-xs-perl, imagemagick, and amanda. The cups package has been updated to fix two vulnerabilities that may result in authentication bypass or denial-of-service attacks, with fixes available for Debian 11 (Bullseye) LTS and older distributions. Other packages have also been updated, including libcpanel-json-xs-perl and libjson-xs-perl to fix integer buffer overflow vulnerabilities, and imagemagick to address multiple memory corruption vulnerabilities. Users are recommended to upgrade their packages to the latest versions to ensure security.

Debian GNU/Linux9 (Stretch) Extended LTS:
ELA-822-2 amanda regression update

Debian GNU/Linux 9 (Stretch) and 10 (Buster) Extended LTS:
ELA-1512-1 cups security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4298-1] cups security update

Debian gNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6000-1] libcpanel-json-xs-perl security update
[DSA 5999-1] libjson-xs-perl security update
[DSA 5998-1] cups security update
[DSA 5997-1] imagemagick security update

MariaDB, ImageMagick, Chromium, hsqldb1.8.0 updates for Debian

Debian 10698 Published 2025-09-11 07:34 by Philipp Esselbach 0

Debian has released several security updates for various packages, including hsqldb1.8.0, Chromium, ImageMagick, and MariaDB-10.3. The hsqldb1.8.0 update fixes a vulnerability that allowed an attacker to execute spurious scripting commands in certain files. The Chromium update addresses security issues that could result in the execution of arbitrary code, denial of service, or information disclosure. The ImageMagick and MariaDB-10.3 updates fix multiple vulnerabilities, including heap buffer overflows, memory leaks, and Denial Of Service (DoS) attacks.

Debian GNU/Linux 10 (Buster) Extended LTS:
ELA-1501-1 mariadb-10.3 security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4297-1] imagemagick security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 5996-1] chromium security update

Debian GNU/Linux 13 (Trixie):
[DSA 5995-1] hsqldb1.8.0 security update

Liquorix Kernel 6.16-5 Now Available for Enhanced System Performance

Debian 10698 Ubuntu 6926 Arch Linux 918 Published 2025-09-10 07:52 by Philipp Esselbach 0

Steven Barrett has announced the release of Liquorix kernel version 6.16-5, a distro kernel replacement optimized for desktop, multimedia, and gaming workloads. This updated kernel includes significant enhancements such as improved scheduling algorithms, increased system responsiveness, and optimized CPU frequency settings. Additionally, it features advanced technologies like High Resolution Scheduling, Preemptible tree-based hierarchical RCU, and Compressed Swap to provide a faster and more efficient computing experience. The Liquorix kernel is available for installation on Debian, Ubuntu, and Arch Linux systems through a simple script.

QEMU security update for Debian

Debian 10698 Published 2025-09-10 07:31 by Philipp Esselbach 0

A security update has been released for the QEMU package on Debian GNU/Linux 11 (Bullseye) LTS to address two issues that could result in denial of service and privilege escalation. The update removes the use of a flag that allowed privileged binaries to run with elevated privileges under QEMU, which may require changes for those relying on this behavior. The affected packages are qemu-user-static and qemu-user-binfmt, which have been fixed in version 1:5.2+dfsg-11+deb11u5.

[DLA 4296-1] qemu security update

Libhtp and OpenAFS updates for Debian 11 LTS

Debian 10698 Published 2025-09-09 07:54 by Philipp Esselbach 0

The Debian project has released two security advisories for Debian GNU/Linux 11 (Bullseye) LTS: DLA-4295-1 for libhtp and DLA-4168-2 for openafs. The libhtp advisory fixes multiple denial-of-service vulnerabilities, which have been fixed in version 1:0.5.36-1+deb11u1. Meanwhile, the OpenAFS advisory addresses a regression introduced by a missing commit, which has been resolved in version 1.8.6-5+deb11u2.

[DLA 4295-1] libhtp security update
[DLA 4168-2] openafs regression update

PHP 8.4.12 and 8.3.25 packages for Debian 11, 12, and 13 released

Debian 10698 Published 2025-09-08 16:34 by Philipp Esselbach 0

Ondřej Surý has released PHP 8.4.12 and 8.3.25 packages for Debian GNU/Linux 11 (Bullseye) LTS, 12 (Bookworm), and 13 (Trixie). The updates address various bugs and issues across different components, including Core, Calendar, FTP, GD, Hash, Intl, LDAP, LibXML, MbString, Opcache, OpenSSL, PDO Pgsql, Readline, SOAP, Sockets, and Standard. Fixes include resolving crashes, memory leaks, and incorrect return values, as well as addressing theoretical issues with unavailable functions.

Shibboleth-SP and Mod Security security updates for Debian

Debian 10698 Published 2025-09-08 08:00 by Philipp Esselbach 0

Debian has released security updates for two packages: Shibboleth-SP (DSA 5994-1) for both Debian GNU/Linux 12 (Bookworm) and 13 (Trixie) and modsecurity-apache (DLA 4294-1) for Debian GNU/Linux 11 (Bullseye) LTS. The Shibboleth-SP update fixes an SQL vulnerability in its ODBC plugin, which could result in an information leak. The modsecurity-apache update fixes a cross-site scripting issue caused by insufficient return value handling.

[DSA 5994-1] shibboleth-sp security update
[DLA 4294-1] modsecurity-apache security update

Debian GNU/Linux 13.1 Trixie Live Images released

Debian 10698 Published 2025-09-07 08:52 by Philipp Esselbach 0

The Debian GNU/Linux 13.1 "Trixie" Live Images have been released, featuring various desktop environments. The images are available for download and include options for GNOME (48.3), KDE Plasma (6.3.5), Xfce (4.20), Cinnamon (6.4.10), MATE (1.26), LXQt (2.1.0), and LXDE (0.99.3). Each image is designed to provide a live version of the Debian operating system, allowing users to test and explore different desktop environments before installation.

Wireless-RegDB new upstream version for Debian 11 LTS

Debian 10698 Published 2025-09-07 08:32 by Philipp Esselbach 0

An updated wireless-regdb package has been released for Debian GNU/Linux 11 (Bullseye) LTS. The updated version, 2025.07.10-1~deb11u1, includes changes to radio regulations in several countries.

[DLA 4293-1] wireless-regdb new upstream version

Debian GNU/Linux 13.1 released: The first Point Release of Trixie

Debian 10698 Published 2025-09-06 16:26 by Philipp Esselbach 0

Debian 13 Trixie has released its first point update, focusing on addressing security issues and resolving critical problems. The update includes various bug fixes and security updates for packages such as imagemagick, libcoap3, and postgresql-17, among others. Existing installations can be upgraded by pointing the package management system at one of Debian's many HTTP mirrors, while new installation images will soon be available at regular locations.

Debian GNU/Linux 12.12 released

Debian 10698 Published 2025-09-06 16:10 by Philipp Esselbach 0

The Debian project has released Debian GNU/Linux 12.12, which focuses on addressing security concerns and bug fixes in the existing old stable distribution. The release includes numerous security updates and bug fixes across a wide range of packages, including Apache2, Botan, Expatriated Expat, Glibc, Libxml2, OpenSSL, PostgreSQL-15, and Python-Django. This update aims to enhance the stability and security of the system, with the Debian Installer also updated to incorporate these fixes for new installations.

Chromium security update for Debian 12 and 13

Debian 10698 Published 2025-09-06 07:24 by Philipp Esselbach 0

Debian has released a security update for the Chromium package to address multiple vulnerabilities. These issues, identified by CVE IDs CVE-2025-9864 through CVE-2025-9867, could result in arbitrary code execution, denial of service, or information disclosure. The updates have been made available for both the Debian GNU/Linux 12 (Bookworm) and 13 (Trixie) distributions, with fixes included in versions 140.0.7339.80-1deb12u1 and 140.0.7339.80-1deb13u1, respectively.

[DSA 5993-1] chromium security update

Liquorix Linux Kernel 6.16-4 released

Debian 10698 Ubuntu 6926 Arch Linux 918 Published 2025-09-05 18:17 by Philipp Esselbach 0

Liquorix Linux Kernel 6.16-4, based on Kernel 6.16.5, has been released. Liquorix is a custom kernel designed for desktop, multimedia, and gaming workloads, offering improved responsiveness at the cost of throughput and power usage. It features various optimizations, including a different scheduler (bfq), improved virtual memory management, and enhanced CPUFreq settings to improve system performance under heavy loads. Liquorix also has special features like better scheduling, a more efficient way to manage resources, and compressed swap storage to use resources more effectively.

Clamav security updates for Debian 9, 10, and 11

Debian 10698 Published 2025-09-05 08:18 by Philipp Esselbach 0

A security update has been released for ClamAV, an antivirus utility for Unix, to address two vulnerabilities: CVE-2025-20128 and CVE-2025-20260. The first vulnerability lets an attacker make a device stop working by taking advantage of the Object Linking and Embedding 2 (OLE2) decryption process in ClamAV. The second vulnerability allows an attacker to cause a buffer overflow, denial of service, or execution of arbitrary code on an affected device by exploiting the PDF scanning processes in ClamAV. Users are advised to upgrade their ClamAV packages to version 1.0.9+dfsg-1deb11u1 (for Debian GNU/Linux 11 LTS) or 1.0.9+dfsg-1deb9u1 (for Debian GNU/Linux 9 ELTS) or 1.0.9+dfsg-1~deb10u1 (for Debian GNU/Linux 10 ELTS).

[DLA 4292-1] clamav security update
ELA-1511-1 clamav security update

Node-Cipher-Base updates for Debian

Debian 10698 Published 2025-09-04 08:37 by Philipp Esselbach 0

A security update has been released for the node-cipher-base package in Debian GNU/Linux 11 (Bullseye) LTS. The issue was caused by incomplete type checks when validating input and has been fixed in version 1.0.4-4+deb11u1. This update addresses a vulnerability identified as CVE-2025-9287.

[DLA 4291-1] node-cipher-base security update

Python-Eventlet and Python-H2 updates for Debian 11 LTS

Debian 10698 Published 2025-09-03 07:52 by Philipp Esselbach 0

Two new security updates are available for Debian GNU/Linux 11 (Bullseye) LTS to address vulnerabilities in the python-eventlet and python-h2 packages. The first update, DLA-4289-1, fixes a vulnerability in eventlet that allows attackers to bypass front-end security controls and launch targeted attacks against active site users. The second update, DLA-4290-1, addresses an HTTP/2 request splitting vulnerability in python-h2 that enables attackers to manipulate request boundaries and bypass security controls.

[DLA 4289-1] python-eventlet security update
[DLA 4290-1] python-h2 security update

Ruby-Saml and Libsndfile updates for Debian 11 LTS

Debian 10698 Published 2025-09-02 07:55 by Philipp Esselbach 0

Two security advisories have been issued for Debian GNU/Linux 11 (Bullseye) LTS, one for ruby-saml and another for libsndfile. The ruby-saml advisory fixes a Denial of Service (DoS) vulnerability caused by large SAML responses, which has been resolved in version 1.11.0-1+deb11u3. The libsndfile advisory addresses two vulnerabilities: CVE-2022-33065, which allows for DoS or unspecified impacts through signed integers overflow, and CVE-2024-50612, which causes memory corruption due to an out-of-bounds read in a specially crafted input file. It is recommended that users upgrade their packages to the latest versions (ruby-saml 1.11.0-1+deb11u3 and libsndfile 1.0.31-2+deb11u1) to resolve these security issues.

[DLA 4288-1] ruby-saml security update
[DLA-4287-1] libsndfile security update

OpenVPN and Libcommons-Lang-Java updates for Debian

Debian 10698 Published 2025-09-01 07:17 by Philipp Esselbach 0

Two Debian 11 (Bullseye) LTS advisories have been issued to address security vulnerabilities. DLA-4079-2 fixes a regression in openvpn by allowing "\n" and "\r" characters in control channel messages and recommends upgrading to version 2.5.1-3+deb11u2. DLA-4286-1 addresses an uncontrolled recursion vulnerability (CVE-2025-48924) in the libcommons-lang3-java package by updating it to version 3.11-1+deb11u1. This vulnerability could lead to a StackOverflowError on very long inputs, and users are recommended to upgrade their packages. Additionally, an update for libcommons-lang-java has been released for both Debian 9 (Stretch) and 10 (Buster) ELTS.

[DLA 4079-2] openvpn regression update
[DLA 4286-1] libcommons-lang3-java security update
ELA-1510-1 libcommons-lang-java security update