Linux Kernel and Libfcgi updates for Debian

Debian 10694 Published by

Multiple vulnerabilities have been discovered in the Linux kernel that may lead to privilege escalation, denial of service, or information leaks. For Debian GNU/Linux 11 (Bullseye) LTS, these problems have been fixed in versions linux-6.1, 6.1.153-1, and linux-5.10.244-1, which also include additional bug fixes from stable updates. Additionally, security updates for Debian 9, 10, and 11 have been released for the libfcgi package to fix an integer overflow vulnerability that could lead to a heap-based buffer overflow via crafted data to the IPC socket.

[DLA 4328-1] linux-6.1 security update
[DLA 4327-1] linux security update
[DLA 4329-1] libfcgi security update
ELA-1538-1 libfcgi security update




[SECURITY] [DLA 4328-1] linux-6.1 security update


-------------------------------------------------------------------------
Debian LTS Advisory DLA-4328-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/ Ben Hutchings
October 13, 2025 https://wiki.debian.org/LTS
-------------------------------------------------------------------------

Package : linux-6.1
Version : 6.1.153-1
CVE ID : CVE-2024-36331 CVE-2024-36350 CVE-2024-36357 CVE-2024-36913
CVE-2024-41013 CVE-2024-47704 CVE-2024-56758 CVE-2024-57883
CVE-2024-57924 CVE-2024-58240 CVE-2025-21816 CVE-2025-22119
CVE-2025-23143 CVE-2025-23160 CVE-2025-27558 CVE-2025-37925
CVE-2025-37931 CVE-2025-37958 CVE-2025-37968 CVE-2025-38000
CVE-2025-38001 CVE-2025-38003 CVE-2025-38004 CVE-2025-38031
CVE-2025-38034 CVE-2025-38035 CVE-2025-38037 CVE-2025-38040
CVE-2025-38043 CVE-2025-38044 CVE-2025-38048 CVE-2025-38051
CVE-2025-38052 CVE-2025-38058 CVE-2025-38061 CVE-2025-38062
CVE-2025-38063 CVE-2025-38065 CVE-2025-38066 CVE-2025-38067
CVE-2025-38068 CVE-2025-38071 CVE-2025-38072 CVE-2025-38074
CVE-2025-38075 CVE-2025-38077 CVE-2025-38078 CVE-2025-38079
CVE-2025-38083 CVE-2025-38084 CVE-2025-38085 CVE-2025-38086
CVE-2025-38088 CVE-2025-38090 CVE-2025-38097 CVE-2025-38100
CVE-2025-38102 CVE-2025-38103 CVE-2025-38107 CVE-2025-38108
CVE-2025-38111 CVE-2025-38112 CVE-2025-38113 CVE-2025-38115
CVE-2025-38118 CVE-2025-38119 CVE-2025-38120 CVE-2025-38122
CVE-2025-38124 CVE-2025-38126 CVE-2025-38131 CVE-2025-38135
CVE-2025-38136 CVE-2025-38138 CVE-2025-38142 CVE-2025-38143
CVE-2025-38145 CVE-2025-38146 CVE-2025-38147 CVE-2025-38148
CVE-2025-38151 CVE-2025-38153 CVE-2025-38154 CVE-2025-38157
CVE-2025-38158 CVE-2025-38159 CVE-2025-38160 CVE-2025-38161
CVE-2025-38163 CVE-2025-38165 CVE-2025-38166 CVE-2025-38167
CVE-2025-38170 CVE-2025-38173 CVE-2025-38174 CVE-2025-38180
CVE-2025-38181 CVE-2025-38183 CVE-2025-38184 CVE-2025-38185
CVE-2025-38190 CVE-2025-38191 CVE-2025-38193 CVE-2025-38194
CVE-2025-38197 CVE-2025-38198 CVE-2025-38200 CVE-2025-38202
CVE-2025-38211 CVE-2025-38212 CVE-2025-38214 CVE-2025-38215
CVE-2025-38218 CVE-2025-38219 CVE-2025-38222 CVE-2025-38225
CVE-2025-38226 CVE-2025-38227 CVE-2025-38229 CVE-2025-38230
CVE-2025-38231 CVE-2025-38236 CVE-2025-38239 CVE-2025-38245
CVE-2025-38249 CVE-2025-38251 CVE-2025-38257 CVE-2025-38259
CVE-2025-38260 CVE-2025-38262 CVE-2025-38263 CVE-2025-38273
CVE-2025-38275 CVE-2025-38277 CVE-2025-38280 CVE-2025-38282
CVE-2025-38285 CVE-2025-38286 CVE-2025-38293 CVE-2025-38298
CVE-2025-38300 CVE-2025-38304 CVE-2025-38305 CVE-2025-38310
CVE-2025-38312 CVE-2025-38313 CVE-2025-38319 CVE-2025-38320
CVE-2025-38322 CVE-2025-38323 CVE-2025-38324 CVE-2025-38326
CVE-2025-38328 CVE-2025-38331 CVE-2025-38332 CVE-2025-38334
CVE-2025-38335 CVE-2025-38336 CVE-2025-38337 CVE-2025-38342
CVE-2025-38344 CVE-2025-38345 CVE-2025-38346 CVE-2025-38347
CVE-2025-38348 CVE-2025-38350 CVE-2025-38352 CVE-2025-38354
CVE-2025-38362 CVE-2025-38363 CVE-2025-38364 CVE-2025-38365
CVE-2025-38371 CVE-2025-38375 CVE-2025-38377 CVE-2025-38382
CVE-2025-38384 CVE-2025-38385 CVE-2025-38386 CVE-2025-38387
CVE-2025-38389 CVE-2025-38391 CVE-2025-38393 CVE-2025-38395
CVE-2025-38396 CVE-2025-38399 CVE-2025-38400 CVE-2025-38401
CVE-2025-38403 CVE-2025-38404 CVE-2025-38406 CVE-2025-38409
CVE-2025-38410 CVE-2025-38412 CVE-2025-38415 CVE-2025-38416
CVE-2025-38418 CVE-2025-38419 CVE-2025-38420 CVE-2025-38422
CVE-2025-38424 CVE-2025-38425 CVE-2025-38428 CVE-2025-38430
CVE-2025-38437 CVE-2025-38439 CVE-2025-38441 CVE-2025-38443
CVE-2025-38444 CVE-2025-38445 CVE-2025-38448 CVE-2025-38451
CVE-2025-38455 CVE-2025-38456 CVE-2025-38457 CVE-2025-38458
CVE-2025-38459 CVE-2025-38460 CVE-2025-38461 CVE-2025-38462
CVE-2025-38464 CVE-2025-38465 CVE-2025-38466 CVE-2025-38467
CVE-2025-38468 CVE-2025-38470 CVE-2025-38471 CVE-2025-38472
CVE-2025-38473 CVE-2025-38474 CVE-2025-38476 CVE-2025-38477
CVE-2025-38478 CVE-2025-38480 CVE-2025-38481 CVE-2025-38482
CVE-2025-38483 CVE-2025-38485 CVE-2025-38487 CVE-2025-38488
CVE-2025-38491 CVE-2025-38494 CVE-2025-38495 CVE-2025-38497
CVE-2025-38498 CVE-2025-38499 CVE-2025-38500 CVE-2025-38501
CVE-2025-38502 CVE-2025-38503 CVE-2025-38510 CVE-2025-38512
CVE-2025-38513 CVE-2025-38514 CVE-2025-38515 CVE-2025-38516
CVE-2025-38520 CVE-2025-38527 CVE-2025-38528 CVE-2025-38529
CVE-2025-38530 CVE-2025-38535 CVE-2025-38538 CVE-2025-38539
CVE-2025-38540 CVE-2025-38542 CVE-2025-38543 CVE-2025-38546
CVE-2025-38548 CVE-2025-38550 CVE-2025-38552 CVE-2025-38553
CVE-2025-38555 CVE-2025-38560 CVE-2025-38561 CVE-2025-38562
CVE-2025-38563 CVE-2025-38565 CVE-2025-38569 CVE-2025-38572
CVE-2025-38574 CVE-2025-38576 CVE-2025-38577 CVE-2025-38578
CVE-2025-38579 CVE-2025-38581 CVE-2025-38583 CVE-2025-38587
CVE-2025-38588 CVE-2025-38601 CVE-2025-38602 CVE-2025-38604
CVE-2025-38608 CVE-2025-38609 CVE-2025-38610 CVE-2025-38612
CVE-2025-38614 CVE-2025-38617 CVE-2025-38618 CVE-2025-38622
CVE-2025-38623 CVE-2025-38624 CVE-2025-38630 CVE-2025-38634
CVE-2025-38635 CVE-2025-38639 CVE-2025-38644 CVE-2025-38645
CVE-2025-38650 CVE-2025-38652 CVE-2025-38653 CVE-2025-38663
CVE-2025-38664 CVE-2025-38665 CVE-2025-38666 CVE-2025-38668
CVE-2025-38670 CVE-2025-38671 CVE-2025-38676 CVE-2025-38677
CVE-2025-38679 CVE-2025-38680 CVE-2025-38681 CVE-2025-38683
CVE-2025-38684 CVE-2025-38685 CVE-2025-38687 CVE-2025-38691
CVE-2025-38693 CVE-2025-38694 CVE-2025-38695 CVE-2025-38696
CVE-2025-38697 CVE-2025-38698 CVE-2025-38699 CVE-2025-38700
CVE-2025-38701 CVE-2025-38702 CVE-2025-38706 CVE-2025-38707
CVE-2025-38708 CVE-2025-38711 CVE-2025-38712 CVE-2025-38713
CVE-2025-38714 CVE-2025-38715 CVE-2025-38721 CVE-2025-38723
CVE-2025-38724 CVE-2025-38725 CVE-2025-38727 CVE-2025-38728
CVE-2025-38729 CVE-2025-38732 CVE-2025-38735 CVE-2025-38736
CVE-2025-39673 CVE-2025-39675 CVE-2025-39676 CVE-2025-39681
CVE-2025-39682 CVE-2025-39683 CVE-2025-39684 CVE-2025-39685
CVE-2025-39686 CVE-2025-39687 CVE-2025-39689 CVE-2025-39691
CVE-2025-39692 CVE-2025-39693 CVE-2025-39694 CVE-2025-39697
CVE-2025-39701 CVE-2025-39702 CVE-2025-39703 CVE-2025-39706
CVE-2025-39709 CVE-2025-39710 CVE-2025-39713 CVE-2025-39714
CVE-2025-39715 CVE-2025-39716 CVE-2025-39718 CVE-2025-39719
CVE-2025-39724 CVE-2025-39730 CVE-2025-39731 CVE-2025-39734
CVE-2025-39736 CVE-2025-39737 CVE-2025-39738 CVE-2025-39742
CVE-2025-39743 CVE-2025-39749 CVE-2025-39752 CVE-2025-39756
CVE-2025-39757 CVE-2025-39759 CVE-2025-39760 CVE-2025-39766
CVE-2025-39770 CVE-2025-39772 CVE-2025-39773 CVE-2025-39776
CVE-2025-39782 CVE-2025-39783 CVE-2025-39787 CVE-2025-39788
CVE-2025-39790 CVE-2025-39794 CVE-2025-39795 CVE-2025-39798
CVE-2025-39800 CVE-2025-39801 CVE-2025-39806 CVE-2025-39808
CVE-2025-39812 CVE-2025-39813 CVE-2025-39817 CVE-2025-39819
CVE-2025-39823 CVE-2025-39824 CVE-2025-39825 CVE-2025-39826
CVE-2025-39827 CVE-2025-39828 CVE-2025-39835 CVE-2025-39838
CVE-2025-39839 CVE-2025-39841 CVE-2025-39842 CVE-2025-39843
CVE-2025-39844 CVE-2025-39845 CVE-2025-39846 CVE-2025-39847
CVE-2025-39848 CVE-2025-39849 CVE-2025-39853 CVE-2025-39857
CVE-2025-39860 CVE-2025-39864 CVE-2025-39865 CVE-2025-39866
CVE-2025-39869 CVE-2025-39870 CVE-2025-39873 CVE-2025-39876
CVE-2025-39877 CVE-2025-39880 CVE-2025-39881 CVE-2025-39883
CVE-2025-39885 CVE-2025-39891 CVE-2025-39894 CVE-2025-39898
CVE-2025-39902 CVE-2025-39907 CVE-2025-39909 CVE-2025-39911
CVE-2025-39913 CVE-2025-39914 CVE-2025-39916 CVE-2025-39920
CVE-2025-39923 CVE-2025-40300
Debian Bug : 1040901 1107479 1107511 1108065 1108069 1108271 1108430
1109734 1111017 1114773

Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation, denial of service or information
leaks.

For Debian 11 bullseye, these problems have been fixed in version
6.1.153-1~deb11u1. Starting with this version, modules are signed
with an ephemeral key on all architectures, and the broken pktcdvd
driver is disabled. This version additionally includes many more bug
fixes from stable updates 6.1.141-6.1.153.

We recommend that you upgrade your linux-6.1 packages.

For the detailed security status of linux-6.1 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/linux-6.1

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS



[SECURITY] [DLA 4327-1] linux security update


-------------------------------------------------------------------------
Debian LTS Advisory DLA-4327-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/ Ben Hutchings
October 13, 2025 https://wiki.debian.org/LTS
-------------------------------------------------------------------------

Package : linux
Version : 5.10.244-1
CVE ID : CVE-2021-46987 CVE-2021-47037 CVE-2021-47070 CVE-2021-47076
CVE-2021-47183 CVE-2021-47193 CVE-2021-47412 CVE-2021-47421
CVE-2021-47455 CVE-2021-47498 CVE-2022-21546 CVE-2022-49063
CVE-2022-50327 CVE-2023-52935 CVE-2023-53259 CVE-2024-26739
CVE-2024-28956 CVE-2024-35790 CVE-2024-36350 CVE-2024-36357
CVE-2024-38541 CVE-2024-43863 CVE-2024-46751 CVE-2024-46855
CVE-2024-49935 CVE-2024-53203 CVE-2024-57883 CVE-2024-57996
CVE-2025-21912 CVE-2025-37798 CVE-2025-37819 CVE-2025-37890
CVE-2025-37909 CVE-2025-37913 CVE-2025-37914 CVE-2025-37915
CVE-2025-37923 CVE-2025-37927 CVE-2025-37930 CVE-2025-37932
CVE-2025-37948 CVE-2025-37949 CVE-2025-37958 CVE-2025-37963
CVE-2025-37968 CVE-2025-37969 CVE-2025-37970 CVE-2025-37990
CVE-2025-37992 CVE-2025-37994 CVE-2025-37995 CVE-2025-37997
CVE-2025-37998 CVE-2025-38000 CVE-2025-38001 CVE-2025-38003
CVE-2025-38004 CVE-2025-38005 CVE-2025-38009 CVE-2025-38023
CVE-2025-38024 CVE-2025-38031 CVE-2025-38034 CVE-2025-38035
CVE-2025-38037 CVE-2025-38044 CVE-2025-38051 CVE-2025-38052
CVE-2025-38058 CVE-2025-38061 CVE-2025-38065 CVE-2025-38066
CVE-2025-38067 CVE-2025-38072 CVE-2025-38074 CVE-2025-38075
CVE-2025-38078 CVE-2025-38079 CVE-2025-38083 CVE-2025-38084
CVE-2025-38085 CVE-2025-38086 CVE-2025-38090 CVE-2025-38094
CVE-2025-38095 CVE-2025-38100 CVE-2025-38102 CVE-2025-38103
CVE-2025-38107 CVE-2025-38108 CVE-2025-38111 CVE-2025-38112
CVE-2025-38115 CVE-2025-38135 CVE-2025-38136 CVE-2025-38138
CVE-2025-38143 CVE-2025-38145 CVE-2025-38146 CVE-2025-38147
CVE-2025-38153 CVE-2025-38157 CVE-2025-38160 CVE-2025-38161
CVE-2025-38163 CVE-2025-38173 CVE-2025-38174 CVE-2025-38177
CVE-2025-38180 CVE-2025-38181 CVE-2025-38184 CVE-2025-38185
CVE-2025-38190 CVE-2025-38193 CVE-2025-38194 CVE-2025-38197
CVE-2025-38200 CVE-2025-38203 CVE-2025-38204 CVE-2025-38206
CVE-2025-38211 CVE-2025-38212 CVE-2025-38214 CVE-2025-38218
CVE-2025-38219 CVE-2025-38222 CVE-2025-38226 CVE-2025-38227
CVE-2025-38229 CVE-2025-38230 CVE-2025-38231 CVE-2025-38237
CVE-2025-38245 CVE-2025-38249 CVE-2025-38251 CVE-2025-38263
CVE-2025-38273 CVE-2025-38285 CVE-2025-38286 CVE-2025-38293
CVE-2025-38298 CVE-2025-38312 CVE-2025-38313 CVE-2025-38320
CVE-2025-38323 CVE-2025-38324 CVE-2025-38326 CVE-2025-38328
CVE-2025-38332 CVE-2025-38336 CVE-2025-38337 CVE-2025-38342
CVE-2025-38344 CVE-2025-38345 CVE-2025-38346 CVE-2025-38347
CVE-2025-38348 CVE-2025-38350 CVE-2025-38352 CVE-2025-38363
CVE-2025-38371 CVE-2025-38375 CVE-2025-38377 CVE-2025-38386
CVE-2025-38387 CVE-2025-38389 CVE-2025-38391 CVE-2025-38393
CVE-2025-38395 CVE-2025-38399 CVE-2025-38400 CVE-2025-38401
CVE-2025-38403 CVE-2025-38404 CVE-2025-38406 CVE-2025-38415
CVE-2025-38416 CVE-2025-38420 CVE-2025-38424 CVE-2025-38428
CVE-2025-38430 CVE-2025-38439 CVE-2025-38445 CVE-2025-38448
CVE-2025-38457 CVE-2025-38458 CVE-2025-38459 CVE-2025-38460
CVE-2025-38461 CVE-2025-38462 CVE-2025-38464 CVE-2025-38465
CVE-2025-38466 CVE-2025-38467 CVE-2025-38468 CVE-2025-38470
CVE-2025-38473 CVE-2025-38474 CVE-2025-38476 CVE-2025-38477
CVE-2025-38478 CVE-2025-38480 CVE-2025-38481 CVE-2025-38482
CVE-2025-38483 CVE-2025-38487 CVE-2025-38488 CVE-2025-38494
CVE-2025-38495 CVE-2025-38497 CVE-2025-38498 CVE-2025-38513
CVE-2025-38514 CVE-2025-38515 CVE-2025-38516 CVE-2025-38529
CVE-2025-38530 CVE-2025-38535 CVE-2025-38538 CVE-2025-38539
CVE-2025-38540 CVE-2025-38542 CVE-2025-38546 CVE-2025-38548
CVE-2025-38553 CVE-2025-38555 CVE-2025-38563 CVE-2025-38565
CVE-2025-38569 CVE-2025-38572 CVE-2025-38574 CVE-2025-38577
CVE-2025-38578 CVE-2025-38581 CVE-2025-38601 CVE-2025-38602
CVE-2025-38604 CVE-2025-38608 CVE-2025-38612 CVE-2025-38617
CVE-2025-38618 CVE-2025-38622 CVE-2025-38635 CVE-2025-38639
CVE-2025-38650 CVE-2025-38652 CVE-2025-38663 CVE-2025-38664
CVE-2025-38666 CVE-2025-38668 CVE-2025-38671 CVE-2025-38676
CVE-2025-38677 CVE-2025-38680 CVE-2025-38681 CVE-2025-38683
CVE-2025-38684 CVE-2025-38687 CVE-2025-38691 CVE-2025-38693
CVE-2025-38694 CVE-2025-38695 CVE-2025-38697 CVE-2025-38698
CVE-2025-38699 CVE-2025-38700 CVE-2025-38701 CVE-2025-38706
CVE-2025-38708 CVE-2025-38712 CVE-2025-38713 CVE-2025-38714
CVE-2025-38715 CVE-2025-38718 CVE-2025-38721 CVE-2025-38724
CVE-2025-38727 CVE-2025-38729 CVE-2025-38732 CVE-2025-39676
CVE-2025-39681 CVE-2025-39683 CVE-2025-39687 CVE-2025-39689
CVE-2025-39691 CVE-2025-39697 CVE-2025-39703 CVE-2025-39709
CVE-2025-39710 CVE-2025-39713 CVE-2025-39714 CVE-2025-39724
CVE-2025-39730 CVE-2025-39736 CVE-2025-39737 CVE-2025-39742
CVE-2025-39743 CVE-2025-39749 CVE-2025-39752 CVE-2025-39756
CVE-2025-39757 CVE-2025-39760 CVE-2025-39766 CVE-2025-39782
CVE-2025-39783 CVE-2025-39787 CVE-2025-39788 CVE-2025-39794
CVE-2025-39795 CVE-2025-39798 CVE-2025-39808 CVE-2025-39812
CVE-2025-39813 CVE-2025-39817 CVE-2025-39823 CVE-2025-39824
CVE-2025-39828 CVE-2025-39835 CVE-2025-39839 CVE-2025-39841
CVE-2025-39846 CVE-2025-39847 CVE-2025-39848 CVE-2025-39853
CVE-2025-39860 CVE-2025-39864 CVE-2025-39865 CVE-2025-39891
CVE-2025-39898 CVE-2025-39902 CVE-2025-39920 CVE-2025-40300
Debian Bug : 1040901 1109891

Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation, denial of service or information
leaks.

For Debian 11 bullseye, these problems have been fixed in version
5.10.244-1. Starting with this version, the hyperv-daemons package is
also provided on arm64, and modules are signed with an ephemeral key
on all architectures. This version additionally includes many more
bug fixes from stable updates 5.10.238-5.10.244.

We recommend that you upgrade your linux packages.

For the detailed security status of linux please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/linux

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS



[SECURITY] [DLA 4329-1] libfcgi security update


- -------------------------------------------------------------------------
Debian LTS Advisory DLA-4329-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/ Thorsten Alteholz
October 13, 2025 https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package : libfcgi
Version : 2.4.2-2+deb11u1
CVE ID : CVE-2025-23016

An issue has been found in libfcgi, a FastCGI bridge from CGI. The issue
is related to an integer overflow (and resultant heap-based buffer
overflow) via crafted nameLen or valueLen values in data to the IPC
socket.

For Debian 11 bullseye, this problem has been fixed in version
2.4.2-2+deb11u1.

We recommend that you upgrade your libfcgi packages.

For the detailed security status of libfcgi please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libfcgi

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS



ELA-1538-1 libfcgi security update


Package : libfcgi
Version : 2.4.0-8.4+deb9u1 (stretch), 2.4.0-10+deb10u1 (buster)

Related CVEs :
CVE-2025-23016

An issue has been found in libfcgi, a FastCGI bridge from CGI. The issue
is related to an integer overflow (and resultant heap-based buffer
overflow) via crafted nameLen or valueLen values in data to the IPC
socket.


ELA-1538-1 libfcgi security update


Linux Kernel and Apache Subversion updates for Ubuntu

macOS Tahoe 26.1, iOS 26.1, and iPadOS 26.1 Beta 3 released

Windows

Linux

macOS

Community

  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...
  • Philipp
    I would try the XanMod kernel: https://xanmod.orgĀ  I ...