Debian GNU/Linux has been updated with various security enhancements, including the Thunderbird security update, open-vm-tools security update, and a new upstream version of wireless-regdb:

Debian GNU/Linux 9 (Stretch) and 10 (Buster) Extended LTS:
ELA-1427-1 open-vm-tools security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4167-1] thunderbird security update
[DLA 4171-1] wireless-regdb new upstream version

[SECURITY] [DLA 4167-1] thunderbird security update

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-4167-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/ Lee Garrett
May 18, 2025 https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package : thunderbird
Version : 1:128.10.1esr-1~deb11u1
CVE ID : CVE-2025-2817 CVE-2025-4082 CVE-2025-4083 CVE-2025-4084
CVE-2025-4087 CVE-2025-4091 CVE-2025-4093 CVE-2025-3875
CVE-2025-3877 CVE-2025-3909 CVE-2025-3932

Multiple security issues were discovered in Thunderbird, which could
result in the execution of arbitrary code or information disclosure.

For Debian 11 bullseye, these problems have been fixed in version
1:128.10.1esr-1~deb11u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

ELA-1427-1 open-vm-tools security update

Package : open-vm-tools
Version : 2:10.1.5-5055683-4+deb9u7 (stretch), 2:10.3.10-1+deb10u7 (buster)

Related CVEs :
CVE-2025-22247

It was discovered that insecure file handling in open-vm-tools, an open
source implementation of VMware Tools, may allow an unprivileged local
guest user to tamper local files to trigger insecure file operations
within that VM.

ELA-1427-1 open-vm-tools security update

[SECURITY] [DLA 4171-1] wireless-regdb new upstream version

-------------------------------------------------------------------------
Debian LTS Advisory DLA-4171-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/ Ben Hutchings
May 19, 2025 https://wiki.debian.org/LTS
-------------------------------------------------------------------------

Package : wireless-regdb
Version : 2025.02.20-1~deb11u1

This update includes the changes in wireless-regdb 2025.02.20,
reflecting changes to radio regulations in many countries.

For Debian 11 bullseye, this update is available as version
2025.02.20-1~deb11u1.

We recommend that you upgrade your wireless-regdb packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS