Debian has rolled out urgent security patches for Thunderbird and Chromium to address dozens of critical flaws that could let attackers run malicious code or leak private data. These updates tackle a long list of common vulnerability identifiers by hardening the email client and browser engine across both current and legacy stable distributions. System administrators will also notice quiet maintenance releases for Linux kernels 5.10 and 6.1 that simply correct broken package metadata caused by recent server hiccups. You should install these fixes right away to keep your Debian machines protected against active threats and repository errors.

[DSA 6351-1] thunderbird security update
ELA-1738-2 linux-5.10 regression update
ELA-1739-2 linux-6.1 regression update
[DSA 6351-1] chromium security update

[SECURITY] [DSA 6351-1] thunderbird security update

- -------------------------------------------------------------------------
Debian Security Advisory DSA-6351-1 security@debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
June 18, 2026 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : thunderbird
CVE ID : CVE-2026-12289 CVE-2026-12290 CVE-2026-12291 CVE-2026-12292
CVE-2026-12294 CVE-2026-12295 CVE-2026-12296 CVE-2026-12297
CVE-2026-12298 CVE-2026-12299 CVE-2026-12302 CVE-2026-12304
CVE-2026-12305 CVE-2026-12306 CVE-2026-12307 CVE-2026-12308
CVE-2026-12309 CVE-2026-12310 CVE-2026-12311 CVE-2026-12312
CVE-2026-12313 CVE-2026-12314 CVE-2026-12315 CVE-2026-12324
CVE-2026-12325 CVE-2026-12327 CVE-2026-12328 CVE-2026-12329
CVE-2026-12330

Multiple security issues were discovered in Thunderbird, which could
result in the execution of arbitrary code.

For the stable distribution (trixie), these problems have been fixed in
version 1:140.12.0esr-1~deb13u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

ELA-1738-2 linux-5.10 regression update (by )

Package : linux-5.10

Version : 5.10.257-1~deb10u2 (buster)

No-changes update to fix issues related to the repository metadata and
relationship among the packages, due to infrastructure hiccups.

ELA-1738-2 linux-5.10 regression update (by )

ELA-1739-2 linux-6.1 regression update (by )

Package : linux-6.1

Version : 6.1.174-1~deb10u2 (buster)

No-changes update to fix issues related to the repository metadata and
relationship among the packages, due to infrastructure hiccups.

ELA-1739-2 linux-6.1 regression update (by )

[SECURITY] [DSA 6351-1] chromium security update

- -------------------------------------------------------------------------
Debian Security Advisory DSA-6351-1 security@debian.org
https://www.debian.org/security/ Andres Salomon
June 18, 2026 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : chromium
CVE ID : CVE-2026-12437 CVE-2026-12438 CVE-2026-12439 CVE-2026-12440
CVE-2026-12441 CVE-2026-12442 CVE-2026-12443 CVE-2026-12444
CVE-2026-12445 CVE-2026-12446 CVE-2026-12447 CVE-2026-12448
CVE-2026-12449 CVE-2026-12450 CVE-2026-12451 CVE-2026-12452
CVE-2026-12453 CVE-2026-12454 CVE-2026-12455 CVE-2026-12456
CVE-2026-12457 CVE-2026-12458 CVE-2026-12459 CVE-2026-12460
CVE-2026-12461 CVE-2026-12462 CVE-2026-12463 CVE-2026-12464
CVE-2026-12465 CVE-2026-12466 CVE-2026-12467 CVE-2026-12468
CVE-2026-12469

Security issues were discovered in Chromium which could result
in the execution of arbitrary code, denial of service, or information
disclosure.

For the stable distribution (trixie), these problems have been fixed in
version 149.0.7827.155-1~deb13u1.

For the oldstable distribution (bookworm), these problems have been fixed in
version 149.0.7827.155-1~deb12u1.

We recommend that you upgrade your chromium packages.

For the detailed security status of chromium please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/chromium

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/