ELA-1609-1 libidn2 security update
[DSA 6098-1] net-snmp security update
ELA-1609-1 libidn2 security update
Package : libidn2
Version : 2.0.5-1+deb10u2 (buster)
Related CVEs :
CVE-2019-12290
It was found that libidn2, a library for internationalized domain names (IDNA2008/TR46),
was vulnerable to a domain impersonation attack, where especially crafted domain names
could impersonate other domains.ELA-1609-1 libidn2 security update
[SECURITY] [DSA 6098-1] net-snmp security update
- -------------------------------------------------------------------------
Debian Security Advisory DSA-6098-1 security@debian.org
https://www.debian.org/security/ Salvatore Bonaccorso
January 12, 2026 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : net-snmp
CVE ID : CVE-2025-68615
Debian Bug : 1123861
A vulnerability was discovered in the snmptrapd daemon in net-snmp, a
suite of Simple Network Management Protocol applications, which could
result in denial of service or the execution of arbitrary code.
For the oldstable distribution (bookworm), this problem has been fixed
in version 5.9.3+dfsg-2+deb12u1.
For the stable distribution (trixie), this problem has been fixed in
version 5.9.4+dfsg-2+deb13u1.
We recommend that you upgrade your net-snmp packages.
For the detailed security status of net-snmp please refer to its
security tracker page at:
https://security-tracker.debian.org/tracker/net-snmp
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
