Linux Compatible - Debian (Page 545)

OpenJDK, Apache2, Wireshark, Lrzip, ImageMagick updates for Debian

Debian 10952 Published 2026-05-07 06:56 by Philipp Esselbach 0

A batch of urgent security updates rolled out covers several widely used tools including OpenJDK Java runtimes, Apache HTTP Server, Wireshark, lrzip, and ImageMagick. These patches fix serious flaws that could let attackers execute arbitrary code, leak private data, crash systems through denial of service attacks, or bypass Kerberos authentication checks. You should upgrade your affected packages right away since Debian has already released stable versions for all supported distributions. Detailed tracking pages and official documentation provide straightforward instructions for applying these critical fixes to your environment.

[DLA 4566-1] openjdk-11 security update
[DLA 4565-1] openjdk-17 security update
ELA-1708-1 openjdk-11 security update
[DSA 6248-1] apache2 security update
[DSA 6249-1] wireshark security update
[DLA 4567-1] lrzip security update
ELA-1710-1 imagemagick security update

Libarchive and Pyjwt updates for Debian

Debian 10952 Published 2026-05-06 07:11 by Philipp Esselbach 0

Debian LTS has released security patches for libarchive and pyjwt to address multiple critical flaws across several supported distributions. The libarchive update fixes four separate vulnerabilities that could trigger infinite loops, leak sensitive memory data, crash applications, or allow arbitrary code execution on older architectures. A separate advisory corrects a pyjwt specification violation where the library improperly accepted JSON Web Tokens containing unrecognized critical header parameters. Administrators managing Debian 11 or older extended support releases should upgrade these packages immediately to close these security gaps.

[DLA 4563-1] libarchive security update
[DLA 4564-1] pyjwt security update
ELA-1707-1 pyjwt security update

Thunderbird and LXD updates for Debian

Debian 10952 Published 2026-05-05 06:20 by Philipp Esselbach 0

Debian issued two security advisories to address critical flaws in Thunderbird and LXD. The Thunderbird patch for Debian GNU/Linux 11 (Bullseye) LTS resolves several vulnerabilities that could allow attackers to run arbitrary code on affected systems. A separate update for the LXD container platform for both Debian GNU/Linux 12 (Bookworm) and 13 (Trixie) fixes multiple issues that might otherwise trigger denial of service attacks. System administrators should apply these package upgrades immediately to keep their networks secure.

[DLA 4562-1] thunderbird security update
[DSA 6247-1] lxd security update

OpenJDK, ImageMagick, Linux Kernel updates for Debian

Debian 10952 Published 2026-05-04 07:11 by Philipp Esselbach 0

Recent security advisories address critical vulnerabilities across several widely used software packages including OpenJDK, ImageMagick, and multiple Linux kernel releases. Attackers could exploit these flaws to trigger arbitrary code execution, escalate privileges, or leak sensitive information through malformed inputs or cryptographic weaknesses. The patched versions are now available for both stable Debian distributions and extended long term support environments. System administrators should apply these updates without delay to protect their infrastructure from potential compromise.

[DSA 6246-1] openjdk-25 security update
[DSA 6245-1] imagemagick security update
ELA-1706-1 imagemagick security update
ELA-1705-1 linux-6.1 security update
ELA-1704-1 linux-5.10 security update

Linux Kernel and Incus updates for Debian

Debian 10952 Published 2026-05-03 06:36 by Philipp Esselbach 0

Debian released three separate security bulletins that address critical flaws in the linux kernel and Incus container manager. Each advisory lists dozens of CVE identifiers that could allow unauthorized users to escalate privileges or cause denial of service attacks. The linux-6.1 package requires a major update while the standard linux distribution and Incus also received targeted patches for their respective vulnerabilities. Administrators need to install these fixes immediately before attackers can exploit the open security gaps.

[DLA 4561-1] linux-6.1 security update
[DLA 4560-1] linux security update
[DSA 6244-1] incus security update

Chromium, Dovecot, ImageMagick, and more updates for Debian

Debian 10952 Published 2026-05-02 06:50 by Philipp Esselbach 0

Debian released a batch of security advisories that address critical flaws across several widely used software packages. The updates target chromium, dovecot, imagemagick, the Linux kernel, thunderbird, and a few other libraries that could allow attackers to execute arbitrary code or crash systems through denial of service exploits. Some vulnerabilities stem from improper memory handling and integer overflows while others involve authentication bypasses or unsafe file path traversal that might expose sensitive data. System administrators should apply the recommended package upgrades right away to patch these issues before malicious actors can take advantage of them.

[DSA 6239-1] chromium security update
[DLA 4556-1] dovecot security update
[DSA 6141-1] python-aiohttp security update
[DSA 6240-1] imagemagick security update
[DLA 4558-1] libexif security update
[DLA 4557-1] pyasn1 security update
[DSA 6197-3] dovecot regression update
[DLA 4559-1] imagemagick security update
[DSA 6243-1] linux security update
[DSA 6242-1] thunderbird security update

Liquorix Linux Kernel 6.19-12 released

Debian 10952 Ubuntu 7120 Arch Linux 968 Published 2026-05-01 08:30 by Philipp Esselbach 0

Liquorix Kernel 6.19-12 patches Xen memory corruption bugs and reverts a crypto interface change that was actively breaking cipher operations under load. The official installation script handles package registration automatically on Debian, Ubuntu, and Arch systems, though piping raw downloads to root always demands basic caution since maintainers rarely babysit broken installs. Desktop users will likely enjoy the usual low-latency responsiveness tweaks while gaining better virtualization stability, but older hardware might still throw driver conflicts during boot. Testing the update in a sandbox environment first keeps daily workflows intact while letting the project team squash any lingering regressions before full deployment.

Firefox-ESR, Policykit, Calibre, and more updates for Debian

Debian 10952 Published 2026-05-01 07:21 by Philipp Esselbach 0

Recent Debian and Freexian advisories address critical security flaws across several widely used system packages. The Linux kernel update patches dozens of vulnerabilities that could enable privilege escalation or cause severe service disruptions. Additional fixes target Firefox ESR, Calibre, PolicyKit-1, and systemd by resolving issues like arbitrary code execution, path traversal attacks, and local denial of service conditions. Administrators should apply these updates without delay to maintain a secure computing environment.

Debian GNU/Linux 9 (Stretch) ELTS:
ELA-1702-1 policykit-1 security update
ELA-1701-1 systemd security update

Debian GNU/Linux 10 (Buster) ELTS:
ELA-1700-1 systemd security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4555-1] firefox-esr security update
[DLA 4554-1] calibre security update

Debian GNU/Linux 13 (Trixie):
[DSA 6238-1] linux security update

Policykit-1, OpenJDK, Firefox-ESR updates for Debian

Debian 10952 Published 2026-04-30 06:59 by Philipp Esselbach 0

Debian system administrators should upgrade policykit-1 on bullseye to fix a file descriptor leak that causes unprivileged processes to crash unexpectedly. The OpenJDK runtime also needs immediate attention since multiple flaws can generate broken cryptographic keys or expose sensitive information through flawed Kerberos validation logic. Firefox ESR users must install the updated browser package to prevent potential sandbox escapes and arbitrary code execution vulnerabilities.

[DLA 4553-1] policykit-1 security update
[DSA 6237-1] openjdk-17
[DSA 6236-1] firefox-esr security update

Webkit2GTK, Node-Tar, Dnsdist, Pdns, FFmpeg updates for Debian

Debian 10952 Published 2026-04-29 07:20 by Philipp Esselbach 0

Recent Debian security advisories highlight critical flaws across several widely used software packages including webkit2gtk, node-tar, and various DNS tools. Attackers could exploit these weaknesses to bypass security restrictions, trigger system crashes, or execute arbitrary code through malicious web content or archives. The fixes are already available for current stable distributions while older releases like Debian 11 receive targeted patches from the long term support team.

Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1699-1 ffmpeg security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4552-1] node-tar security update

Debian GNU/Linux 13 (Trixie):
[DSA 6232-1] webkit2gtk security update
[DSA 6235-1] dnsdist security update
[DSA 6234-1] pdns-recursor security update
[DSA 6233-1] pdns security update

XanMod Kernel 7.0.2 and 6.18.25 LTS released

Debian 10952 Ubuntu 7120 Published 2026-04-28 08:32 by Philipp Esselbach 0

XanMod has released kernel versions 7.0.2 and 6.18.25 LTS to deliver faster scheduling, improved memory management, and modern network optimizations for Debian-based systems. The builds ship with LLVM ThinLTO, Google's multigenerational LRU framework, BBRv3 congestion control, and dedicated drivers for AMD V-Cache hardware. Before upgrading, users should verify that their third-party modules like NVIDIA graphics or virtualization software support the new kernel, as DKMS compilation failures are common. Installing requires adding the official GPG key, pointing APT to the custom repository, pulling in build dependencies, and rebooting to activate the performance tweaks.

Mbedtls, Libde265, OpenJDK updates for Debian

Debian 10952 Published 2026-04-28 07:51 by Philipp Esselbach 0

Debian released multiple security advisories to patch critical vulnerabilities in mbedtls, libde265, and openjdk-21. The mbedtls update resolves a timing discrepancy that could expose cryptographic secrets alongside a flawed random number fallback mechanism. Libde265 receives essential memory safety corrections after developers found stack and heap overflow bugs capable of triggering severe system crashes or unauthorized execution. OpenJDK 21 also gets fixed against numerous authentication flaws and denial of service risks, prompting administrators to upgrade all affected systems right away.

[DLA 4551-1] mbedtls security update
ELA-1698-1 libde265 security update
[DLA 4550-1] libde265 security update
[DSA 6231-1] openjdk-21 security update

Thunderbird and ImageMagick updates for Debian

Debian 10952 Published 2026-04-27 06:21 by Philipp Esselbach 0

Debian Long Term Support teams have released urgent security patches for both Thunderbird and ImageMagick to address critical flaws in their software suites. Attackers could exploit the Thunderbird vulnerabilities to execute arbitrary code on any affected Debian GNU/Linux 11 (Bullseye) LTS machine. The ImageMagick update tackles a different set of problems entirely, including symlink races, information leaks, and denial of service threats that impact Debian GNU/Linux 9 (Stretch) ELTS environments.

[DLA 4549-1] thunderbird security update
ELA-1696-1 imagemagick security update

Distro-Info-Data and ImageMagick updates for Debian LTS/ELTS

Debian 10952 Published 2026-04-26 06:56 by Philipp Esselbach 0

Debian LTS and ELTS users should install routine database updates for the distro-info-data package, which refreshes end-of-life timelines for Debian GNU/Linux 11 (Bookworm) LTS and introduces Ubuntu 26.10 Stonking Stingray. A separate security patch for imagemagick addresses over fifteen critical flaws that could expose systems to symlink attacks, data leaks, service disruptions, or remote code execution. Both advisories emphasize immediate package upgrades to maintain system stability and protect against known exploits.

[DLA 4548-1] distro-info-data database update
ELA-1697-1 distro-info-data database update
ELA-1696-1 imagemagick security update

Pillow, Chromium, Thunderbird updates for Debian

Debian 10952 Published 2026-04-25 07:32 by Philipp Esselbach 0

Debian released a security advisory for Chromium that patches several vulnerabilities capable of triggering arbitrary code execution, denial of service attacks, or unauthorized data leaks. A separate update for Thunderbird tackles a long list of flaws that could similarly allow attackers to run malicious code on affected systems. The Python image library Pillow also received two distinct fixes addressing memory exhaustion bugs, infinite loops, and a dangerous file deletion issue caused by mishandled temporary paths.

Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1694-1 pillow security update

Debian GNU/Linux 10 (Buster) Extended LTS:
ELA-1695-1 pillow security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6230-1] chromium security update
[DSA 6229-1] thunderbird security update

GIMP and Firefox-ESR updates for Debian

Debian 10952 Published 2026-04-24 07:19 by Philipp Esselbach 0

Debian LTS rolled out two urgent security patches targeting GIMP and Firefox ESR within the Debian GNU/Linux 11 (Bullseye) LTS environment. These updates fix a long list of CVEs that could let malicious files or web pages trigger arbitrary code execution or cause sudden application crashes.

[DLA 4547-1] gimp security updat
[DLA 4546-1] firefox-esr security update

XanMod Kernel 7.0.1, 6.19.14, and 6.18.24 LTS released

Debian 10952 Ubuntu 7120 Published 2026-04-23 09:18 by Philipp Esselbach 0

The latest XanMod kernel releases pack in memory management tweaks, BBRv3 networking improvements, and hardware optimizations that actually matter for desktop workstations and gaming rigs. Setting it up is straightforward through the official APT repository or standalone packages, though users should expect a short wait for NVIDIA and virtualization drivers to catch up. Power users juggling heavy compilations, streaming setups, or GPU passthrough will notice the performance gains, while casual office workers will barely register the difference. Testing the update in a safe environment first prevents broken display outputs from derailing the work week.

OpenIDC, Inetutils, Packagekit, and more updates for Debian

Debian 10952 Published 2026-04-23 08:52 by Philipp Esselbach 0

Debian and Freexian issued a set of security updates for numerous Linux packages across multiple distributions. The updates address critical flaws in Firefox ESR, Flatpak, and strongSwan that could let attackers bypass sandbox protections or run malicious code with elevated privileges. Systems running older release branches also received necessary fixes for PackageKit race conditions and network utilities like inetutils that previously allowed information leaks and service disruptions. You should install these updates as soon as possible to prevent potential exploitation of the disclosed vulnerabilities.

Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1691-1 libapache2-mod-auth-openidc security update

Debian GNU/Linux 9 (Stretch) and 10 (Buster) Extended LTS:
ELA-1692-1 inetutils security update
ELA-1693-1 packagekit security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4545-1] packagekit security update

Debian GNU/Linux 12 (Bookworm):
[DSA 6224-1] xdg-dbus-proxy security update
[DSA 6223-1] flatpak security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6225-1] firefox-esr security update
[DSA 6226-1] packagekit security update
[DSA 6227-1] strongswan security update

Debian GNU/Linux 13 (Trixie):
[DSA 6228-1] cpp-httplib security update

Liquorix Linux Kernel 6.19-11 released

Debian 10952 Ubuntu 7120 Arch Linux 968 Published 2026-04-22 21:55 by Philipp Esselbach 0

The Liquorix Kernel 6.19 release shifts Linux scheduling and memory management toward instant responsiveness, making it a solid choice for gamers and audio producers chasing lower frame time spikes. Scheduler timeslices shrink to two milliseconds while memory watermarks drop to zero, allowing foreground tasks to grab CPU attention without waiting on background reclamation. Debian and Ubuntu users can swap the default kernel with a single curl script, though keeping the original distro kernel as a fallback remains a smart move. The aggressive tuning profile sacrifices battery life and thermal stability for tighter performance, so testing on a secondary machine before committing to a daily driver is highly recommended.

NTFS 3G, Xdg-Dbus-Proxy, ImageMagick, and more updates for Debian

Debian 10952 Published 2026-04-22 07:44 by Philipp Esselbach 0

Multiple Debian and Freexian Long Term Support advisories were released to address critical security flaws across several widely used software packages. The updates target vulnerabilities in opam, mupdf, xdg-dbus-proxy, ntfs-3g, simpleeval, ngtcp2, python-geopandas, and imagemagick that could allow attackers to bypass restrictions or execute arbitrary code. These issues include heap buffer overflows, directory traversal risks, sandbox escapes, and potential SQL injection flaws that threaten system stability and data privacy.

Debian GNU/Linux 9 (Stretch) and 10 (Buster) ELTS:
ELA-1689-1 ntfs-3g security update

Debian GNU/Linux 10 (Buster) ELTS:
ELA-1688-1 xdg-dbus-proxy security update
ELA-1690-1 imagemagick security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4541-1] opam security update
[DLA 4540-1] mupdf security update
[DLA 4542-1] xdg-dbus-proxy security update
[DLA 4543-1] simpleeval security update
[DLA 4523-1] python-geopandas security update
[DLA 4544-1] ntfs-3g security update

Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6221-1] ntfs-3g security update
[DSA 6222-1] ngtcp2 security update