Linux Compatible - Debian (Page 544)

Pillow and ImageMagick updates for Debian

Debian 10910 Published 2026-04-20 07:40 by Philipp Esselbach 0

Debian security teams recently issued critical updates for both Pillow and ImageMagick to address serious flaws in these widely used image processing libraries. The advisory for Pillow specifically targets a denial of service vulnerability within its FITS support module on the current stable release. Meanwhile, extended maintenance advisories for older Debian versions patched numerous dangerous bugs that could allow attackers to execute arbitrary code or steal sensitive data. System administrators should apply these patches right away to keep their environments secure.

[DSA 6219-1] pillow security update
[DLA 4539-1] imagemagick security update
ELA-1657-1 imagemagick security update

XanMod Kernel 6.18.23 LTS and 6.19.13 released

Debian 10910 Ubuntu 7089 Published 2026-04-19 08:05 by Philipp Esselbach 0

The latest XanMod kernel releases bring targeted desktop performance improvements through optimized scheduling, memory management, and network stacks that reduce stutter during heavy multitasking. Installing them via the official APT repository is straightforward but requires preloading build dependencies to keep third-party modules like NVIDIA drivers or virtualization tools working properly. Users should always check module compatibility before upgrading since proprietary software often lags behind custom kernel updates and can break display or networking functions after a reboot. These builds are ideal for desktop users who want smoother system responsiveness without manually patching the mainline Linux kernel themselves.

Perl, PostgreSQL, Mapserver, Mupdf, Perl updates for Debian

Debian 10910 Published 2026-04-19 07:51 by Philipp Esselbach 0

Recent Debian security advisories address critical vulnerabilities across several widely used software packages. Perl requires an update because thread creation can temporarily shift the current directory, potentially allowing local attackers to access restricted files or inject malicious code. PostgreSQL versions 11 and 9.6 received follow-up patches to fix a regression in multibyte character handling while also incorporating minor upstream improvements. Meanwhile, MapServer and MuPDF both address heap buffer overflow flaws that could otherwise enable remote denial of service attacks or arbitrary code execution through crafted inputs.

ELA-1685-1 perl security update
ELA-1676-2 postgresql-11 regression update
ELA-1677-2 postgresql-9.6 regression update
ELA-1686-1 mapserver security update
[DSA 6218-1] mupdf security update
[DLA 4538-1] perl security update

NSS, PostgreSQL, Mapserver, and more updates for Debian

Debian 10910 Published 2026-04-18 07:50 by Philipp Esselbach 0

Debian administrators should pay close attention to the security advisories, which cover several important software packages. These updates address serious vulnerabilities found across chromium, nss, postgresql-13, luanti, opam, gimp, mapserver, and tiff that could easily let attackers run malicious code or crash entire systems. Each notice lists the exact patched versions needed for oldstable, stable, and extended support releases so maintainers can quickly roll out the fixes without guessing.

Debian GNU/Linux 9 (Stretch) and 10 (Buster) ELTS:
ELA-1684-1 nss security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4524-2] postgresql-13 regression update
[DLA 4537-1] mapserver security update
[DLA 4536-1] tiff security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6214-1] chromium security update
[DSA 6216-1] opam security update
[DSA 6215-1] gimp security update

Debian GNU/Linux 13 (Trixie):
[DSA 6217-1] luanti security update

OpenSSH and Thunderbird updates for Debian 11 LTS

Debian 10910 Published 2026-04-17 06:17 by Philipp Esselbach 0

Debian LTS released two security advisories addressing vulnerabilities in OpenSSH and Thunderbird software packages. An OpenSSH flaw discovered by Jeremy Brown permits remote denial of service or arbitrary code execution when GSSAPI Key Exchange is enabled. Separate security issues found within Thunderbird carry similar risks that allow attackers to run code if left unpatched. Debian 11 bullseye users are strongly advised to upgrade their packages immediately to resolve these critical security issues.

[DLA 4535-1] openssh security update
[DLA 4534-1] thunderbird security update

Liquorix Linux Kernel 6.19-9 released

Debian 10910 Ubuntu 7089 Arch Linux 961 Published 2026-04-16 08:27 by Philipp Esselbach 0

The Liquorix Kernel 6.19-9 release brings a dmemcg v6 patch set to improve memory management for low VRAM systems while maintaining high responsiveness. Aggressive scheduler tweaks like reduced timeslices and faster CPU frequency scaling ensure lower latency during gaming or media production tasks. Users should note that these performance gains come with higher power usage since split lock detection is disabled by default in this build. Installation on Debian or Ubuntu requires running the provided curl script or accessing the dedicated PPA repository for binary packages.

Systemd, Python, LXD, Incus updates for Debian

Debian 10910 Published 2026-04-16 08:02 by Philipp Esselbach 0

Debian administrators should note that four security advisories regarding critical updates for systemd and python3.9 among other packages. Local users might exploit systemd flaws to gain root access through improper D-Bus validation or stack overflows. Although the python3.9 update reverts previous changes that broke backward compatibility, it successfully fixes a use-after-free vulnerability triggered during memory allocation failures when decompressor instances are reused. LXD and Incus container managers require upgrades too since security flaws in these tools could allow restriction bypasses or privilege escalation attacks.

[DLA 4533-1] systemd security update
[DLA 4532-1] python3.9 regression and security update
[DSA 6213-1] lxd security update
[DSA 6212-1] incus security update

GDK-Pixbuf, GST-Plugins, ImageMagick, Thunderbird updates for Debian

Debian 10910 Published 2026-04-15 07:41 by Philipp Esselbach 0

Debian released urgent security updates for multiple packages including Thunderbird and ImageMagick. The gdk-pixbuf library requires immediate attention because a validation error in its JPEG loader could lead to arbitrary code execution or denial of service. Other affected tools like gst-plugins-bad1.0 contain bugs that may allow attackers to process malformed media files for system compromise. Administrators should apply these fixes right away to secure their environments against exploitation.

Debian GNU/Linux 9 (Stretch) and 10 (Buster) ELTS:
ELA-1683-1 gdk-pixbuf security update
ELA-1682-1 gst-plugins-bad1.0 security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4531-1] gdk-pixbuf security update

Debian GNU/Linux 12 (Bookworm):
[DSA 6210-1] imagemagick security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6211-1] thunderbird security update

XanMod Kernel 7.0 released

Debian 10910 Ubuntu 7089 Published 2026-04-14 18:58 by Philipp Esselbach 0

The latest XanMod kernel based on Linux 7.0 is finally out and brings specific optimizations for heavy workloads instead of just chasing clock speeds. People should exercise caution since drivers from vendors like NVIDIA or VirtualBox might not support this version and could break after a reboot. Getting it running involves adding the custom repository and making sure essential build tools exist so external modules can compile without errors. Keeping a copy of the old kernel in the boot menu is wise practice because things do not always go smoothly during major updates.

Bind, Gst-Plugins-Bad, Xdg-Dbus-Proxy updates for Debian

Debian 10910 Published 2026-04-14 07:20 by Philipp Esselbach 0

Debian issued three security advisories covering critical flaws found within bind9, xdg-dbus-proxy, and gst-plugins-bad1.0 software packages. For BIND resolvers performing DNSSEC validation, a vulnerability exists where malicious zones trigger excessive CPU usage unless users upgrade to version 1:9.16.50-1~deb11u5. The xdg-dbus-proxy update resolves a parsing error that previously allowed attackers to bypass eavesdrop restrictions and leak data. Finally GStreamer users need to update gst-plugins-bad1.0 because malformed media files could lead to denial of service or arbitrary code execution vulnerabilities.

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4529-1] bind9 security update
[DLA 4530-1] gst-plugins-bad1.0 security update

Debian GNU/Linux 13 (Trixie):
[DSA 6209-1] xdg-dbus-proxy security update

FFmpeg, Flatpak, Mediawiki updates for Debian

Debian 10910 Published 2026-04-13 08:00 by Philipp Esselbach 0

Recent Debian security advisories highlight critical updates for MediaWiki, Flatpak, and FFmpeg that address multiple vulnerabilities discovered in these tools. While the MediaWiki patch fixes issues regarding information disclosure and permission checks across oldstable and stable distributions, Flatpak requires an upgrade to prevent sandbox escapes or arbitrary host deletions. The most extensive list of flaws appears within the FFmpeg advisory, which covers buffer overflows and integer errors capable of triggering denial of service attacks remotely. System administrators are strongly urged to apply these specific package versions immediately to maintain security posture against disclosed exploits.

Debian GNU/Linux 10 (Buster) ELTS:
ELA-1681-1 ffmpeg security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6208-1] mediawiki security update

Debian GNU/Linux 13 (Trixie):
[DSA 6207-1] flatpak security update

XanMod Kernel 6.19.12 and 6.18.22 LTS/RT released

Debian 10910 Ubuntu 7089 Published 2026-04-12 07:04 by Philipp Esselbach 0

XanMod has dropped new kernel versions 6.19.12 and 6.18.22 LTS/RT for Debian-based distributions that prioritize heavy workload performance over standard stability. These builds include specific optimizations like LLVM ThinLTO and Google's Multigenerational LRU framework to squeeze better throughput out of the hardware. Power users need to exercise caution since NVIDIA drivers and other DKMS modules often break without a manual update following these kernel jumps. Adding the official repository is the safest route to get everything working, provided you install the build dependencies first to avoid compilation headaches later.

ClamAV, Libyaml-Syck-Perl, Inetutils, Webkit2GTK, GDK-Pixbuf updates for Debian

Debian 10910 Published 2026-04-12 06:51 by Philipp Esselbach 0

A batch of Debian security advisories addresses serious vulnerabilities in popular packages including inetutils and webkit2gtk alongside a version upgrade for clamav. Specific flaws allow attackers to escalate privileges or cause process crashes through malicious network inputs and crafted web content. Memory corruption risks within libyaml-syck-perl and the gdk-pixbuf image loader also require immediate attention from system administrators. Upgrading these packages is essential because leaving them unpatched exposes systems to potential remote code execution or denial of service attacks.

Debian GNU/Linux 9 (Stretch) ELTS:
ELA-1680-1 clamav new upstream version

Debian GNU/Linux 9 (Stretch) and 10 (Buster) ELTS:
ELA-1679-1 libyaml-syck-perl security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4527-1] inetutils security update
[DLA 4528-1] webkit2gtk security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6206-1] gdk-pixbuf security update

Libyaml-Syck-Perl, Firefox, Chromium updates for Debian

Debian 10910 Published 2026-04-11 07:42 by Philipp Esselbach 0

Debian security teams have released urgent updates for firefox-esr, chromium, and libyaml-syck-perl across several distributions. Firefox users need to install the new version to stop flaws that might enable arbitrary code execution through browser exploits. Across stable distributions, Chromium requires a massive patch covering dozens of CVEs designed to prevent denial of service attacks or data leaks. The perl library update fixes critical memory issues where missing terminators could allow attackers to read adjacent variables unexpectedly.

Debian GNU/Linux 10 (Buster) ELTS:
ELA-1679-1 libyaml-syck-perl security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4526-1] firefox-esr security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6205-1] chromium security update

BIND, PostgreSQL, Linyami-Syck-Perl, OpenSSH updates for Debian

Debian 10910 Published 2026-04-10 07:26 by Philipp Esselbach 0

Debian released security patches for PostgreSQL to fix four vulnerabilities involving memory disclosure and arbitrary code execution risks within the database engine. A separate advisory targets an OpenSSH GSSAPI Key Exchange flaw that enables remote code execution or denial of service if the setting remains active. Administrators should also upgrade libyaml-syck-perl because the package contains high-severity heap buffer overflows and memory corruption bugs discovered within its YAML emitter functions. Finally, BIND9 users need to apply patches for cache poisoning vulnerabilities that might let attackers inject forged data into name server caches on older distributions like buster.

Debian GNU/Linux 10 (Buster) ELTS:
ELA-1678-1 bind9 security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4524-1] postgresql-13 security update
[DLA 4525-1] libyaml-syck-perl security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6204-1] openssh security update

Tiff, Firefox ESR, PostgreSQL updates for Debian

Debian 10910 Published 2026-04-09 06:51 by Philipp Esselbach 0

Debian released security advisories regarding critical flaws found within both the tiff library and Firefox ESR browser software. The first update patches a heap overflow vulnerability that could lead to denial of service or code execution, while the second addresses multiple issues with similar severe consequences for users. Separate Debian GNU/Linux ELTS updates also exist for older PostgreSQL versions to resolve memory disclosure bugs and arbitrary code execution risks in database extensions. System administrators are strongly advised to apply these package upgrades immediately to secure their infrastructure against potential exploitation.

[DSA 6303-1] tiff security update
[DSA 6202-1] firefox-esr security update
ELA-1676-1 postgresql-11 security update
ELA-1677-1 postgresql-9.6 security update

Python-Tornado and OpenSSL updates for Debian

Debian 10910 Published 2026-04-08 07:25 by Philipp Esselbach 0

Recent security updates address critical vulnerabilities within the python-tornado framework and the OpenSSL toolkit used across Debian distributions. Tornado users must update to mitigate denial of service risks via multipart body limits while also resolving cookie injection flaws found in CVE-2026-35536. Meanwhile, the OpenSSL advisory warns that unpatched installations face severe risks ranging from information leaks to potential remote code execution exploits. Immediate upgrades are necessary for stable and oldstable releases to close these security gaps effectively.

ELA-1672-1 python-tornado security update
[DSA 6201-1] openssl security update

Dovecot regression update for Debian

Debian 10910 Published 2026-04-07 08:05 by Philipp Esselbach 0

Debian released advisory DSA-6197-2 concerning a regression within the dovecot package. While attempting to backport a fix for CVE-2025-59032, developers accidentally introduced errors that disrupt authentication against managesieved servers in Bookworm. System administrators are urged to upgrade their installations specifically to version 1:2.3.19.1+dfsg1-2.1+deb12u3 which contains the necessary correction.

[DSA 6197-2] dovecot regression update

Valkey, dovecot, Tor, Trafficserver updates for Debian

Debian 10910 Published 2026-04-06 07:26 by Philipp Esselbach 0

Debian has released four new advisories targeting Valkey, Dovecot, Tor, and Apache Traffic Server. The Valkey patch fixes two issues regarding data manipulation or denial of service but the Dovecot update addresses a much longer list containing SQL injection flaws. System administrators are urged to upgrade packages on both stable and oldstable distributions because the risks include timing side channel attacks. The remaining updates address anonymity tools facing potential denial of service alongside proxy server vulnerabilities that allow for HTTP request smuggling.

[DSA 6198-1] valkey security update
[DSA 6197-1] dovecot security update
[DSA 6200-1] tor security update
[DSA 6199-1] trafficserver security update

Liquorix Linux Kernel 6.19-8 released

Debian 10910 Ubuntu 7089 Published 2026-04-05 07:39 by Philipp Esselbach 0

Liquorix Kernel 6.19-8 swaps four millisecond timeslices for two to make the system feel snappier during heavy loads without manual configuration. Split lock detection is disabled by default while tweaks to the Ondemand governor allow CPU frequency to ramp up faster when applications launch. Gamers and audio pros will appreciate the focus on responsiveness even if it means higher power consumption on laptops. The install script makes getting this kernel easy but users should expect reduced battery life as part of the deal for better frame times.