ELA-1127-1 dns-root-data security update
Updated dns-root-data packages have been released for Debian GNU/Linux 8 (Jessie), 9 (Stretch), and 10 (Buster) Extended LTS. This is also the first Extended Long Term Support (ELTS) update for Debian 10, which will be supported until June 30, 2029.
ELA-1127-1 dns-root-data security update
ELA-1127-1 dns-root-data security update
Updated python-idna packages are available for Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1121-1 python-idna security update
ELA-1121-1 python-idna security update
Steven Barrett has announced the release of a new Liquorix kernel based on Linux kernel 6.9.8. The Liquorix Linux kernel is an enthusiast Linux kernel that is optimized for low latency computing in audiovisual production, reduced frame time variations in games, and unparalleled responsiveness in interactive systems. It is available for Debian, Ubuntu, and Arch Linux.
Updated Exim packages are available for both Debian GNU/Linux 8 (Jessie) and 9 (Stretch) Extended LTS:
ELA-1126-1 exim4 security update
ELA-1126-1 exim4 security update
Updated ffmpeg packages have been released for Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1125-1 ffmpeg security update
ELA-1125-1 ffmpeg security update
The following security updates have been released for Debian GNU/Linux:
Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1124-1 sendmail security update
Debian GNU/Linux 11 (Bullseye) and 12 (Stretch):
[DSA 5726-1] krb5 security update
Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1124-1 sendmail security update
Debian GNU/Linux 11 (Bullseye) and 12 (Stretch):
[DSA 5726-1] krb5 security update
A new XanMod Linux Kernel based on Linux Kernel 6.9.8 has been released. XanMod is a general-purpose Linux kernel distribution with custom settings and new features. The real-time version is recommended for critical runtime applications such as Linux gaming eSports, streaming, live productions and ultra-low latency enthusiasts.
A new XanMod Linux Kernel based on Linux Kernel 6.6.37 has been released. XanMod is a general-purpose Linux kernel distribution with custom settings and new features. The real-time version is recommended for critical runtime applications such as Linux gaming eSports, streaming, live productions and ultra-low latency enthusiasts.
Updated GNU Emacs packages are available for both Debian GNU/Linux 8 (Jessie) and 9 (Stretch) Extended LTS. The updates addresses a security issue that could lead to arbitrary code execution.
ELA-1122-1 emacs24 security update
ELA-1123-1 emacs25 security update
ELA-1122-1 emacs24 security update
ELA-1123-1 emacs25 security update
Updated ZNC packages are available for Debian GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5725-1] znc security update
[DSA 5725-1] znc security update
Updated Linux kernel packages are available for both Debian GNU/Linux 8 (Jessie) and 9 (Stretch) Extended LTS to address several vulnerabilities:
ELA-1120-1 linux-5.10 security update
ELA-1120-1 linux-5.10 security update
The following two security updates have been released for Debian GNU/Linux:
Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1118-1 dcmtk security update
Debian GNU/Linux 12 (Bookworm):
[DSA 5724-1] openssh security update
Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1118-1 dcmtk security update
Debian GNU/Linux 12 (Bookworm):
[DSA 5724-1] openssh security update
The following security updates have been released for Debian GNU/Linux:
Debian GNU/Linux 8 (Jessie) and 9 (Stretch) Extended LTS:
ELA-1119-1 glibc security update
Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1118-1 dcmtk security update
Debian GNU/Linux 10 (Buster) LTS:
[DLA 3850-1] glibc security update
[DLA 3846-1] libmojolicious-perl security update
[DLA 3855-1] pdns-recursor security update
[DLA 3854-1] tryton-client security update
[DLA 3853-1] tryton-server security update
[DLA 3852-1] edk2 security update
[DLA 3851-1] gunicorn security update
Debian GNU/Linux 8 (Jessie) and 9 (Stretch) Extended LTS:
ELA-1119-1 glibc security update
Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1118-1 dcmtk security update
Debian GNU/Linux 10 (Buster) LTS:
[DLA 3850-1] glibc security update
[DLA 3846-1] libmojolicious-perl security update
[DLA 3855-1] pdns-recursor security update
[DLA 3854-1] tryton-client security update
[DLA 3853-1] tryton-server security update
[DLA 3852-1] edk2 security update
[DLA 3851-1] gunicorn security update
Installable Debian 12.6 live ISO images are now available in GNOME, KDE, Xfce, Cinnamon, MATE, LXDE, and LXQt flavors.
The Debian project has released the sixth version of its stable distribution, Debian 12, which includes security fixes and changes to major vulnerabilities. The stable update also fixes several problems, including a possible heap overflow, a possible command injection, cloud-init declarations, and djangorestframework. It also includes security fixes, such as one for a missing static file, another for a construction issue in the 6.9 kernel and backports, and one for a memory leak.
The update also fixes security mitigations, such as INTEL-SA-01051, INTEL-SA-01052, and INTEL-SA-01036, as well as unnamed functional concerns with other Intel processors. It also covers post-issuance validation logic, libapache2-mod-auth-openidc, json-smart, kio, file loss, and probable CIFS locking concerns, among other topics.
The update also fixes security mitigations, such as INTEL-SA-01051, INTEL-SA-01052, and INTEL-SA-01036, as well as unnamed functional concerns with other Intel processors. It also covers post-issuance validation logic, libapache2-mod-auth-openidc, json-smart, kio, file loss, and probable CIFS locking concerns, among other topics.
The Debian project has released the ninth version of their oldstable distribution, Debian 11, which includes security fixes and changes to major issues.
The update includes several major bugfixes, including buffer overflow concerns, dealing with multiple border parameters, bart , base-files, cloud-init-22.4.2, cpu, curl, debian-installer, debsig-verify, deets, distro-info-data, django-mailman3, dns-root-data, emacs, galera-4, gdk-pixbuf, glib2.0, gnutls28, gross, hovercraft, imlib2, intel-microcode, jose, json-smart, lacme, libapache2-mod-auth-openidc, libjwt, libkf5ksieve, links php-composer-xdebug-handler, php-doctrine-annotations, PHP-phpseclib, php-proxy-manager php-symfony-contracts, php-zend-code, php-stdnum, qtbase-opensource-src, reportbug, and rust-cbindgen-src.
The update includes several major bugfixes, including buffer overflow concerns, dealing with multiple border parameters, bart , base-files, cloud-init-22.4.2, cpu, curl, debian-installer, debsig-verify, deets, distro-info-data, django-mailman3, dns-root-data, emacs, galera-4, gdk-pixbuf, glib2.0, gnutls28, gross, hovercraft, imlib2, intel-microcode, jose, json-smart, lacme, libapache2-mod-auth-openidc, libjwt, libkf5ksieve, links php-composer-xdebug-handler, php-doctrine-annotations, PHP-phpseclib, php-proxy-manager php-symfony-contracts, php-zend-code, php-stdnum, qtbase-opensource-src, reportbug, and rust-cbindgen-src.
Updated Org-Mode and Gunicorn packages have been released for Debian GNU/Linux:
Debian GNU/Linux 9 Extended LTS (Stretch):
ELA-1117-1 gunicorn security update
Debian GNU/Linux 10 LTS (Buster):
[DLA 3849-1] org-mode security update
[DLA 3848-1] org-mode security update
Debian GNU/Linux 9 Extended LTS (Stretch):
ELA-1117-1 gunicorn security update
Debian GNU/Linux 10 LTS (Buster):
[DLA 3849-1] org-mode security update
[DLA 3848-1] org-mode security update
Steven Barrett has announced the release of a new Liquorix kernel based on Linux kernel 6.9.7. The Liquorix Linux kernel is an enthusiast Linux kernel that is optimized for low latency computing in audiovisual production, reduced frame time variations in games, and unparalleled responsiveness in interactive systems. It is available for Debian, Ubuntu, and Arch Linux.
The following security updates have been released for Debian GNU/Linux:
Debian GNU/Linux 8 (Jessie) and 9 (Stretch) Extended LTS:
ELA-1116-1 linux-4.19 security update
Debian GNU/Linux 10 (Buster) LTS:
[DLA 3847-1] dcmtk security update
Debian GNU/Linux 8 (Jessie) and 9 (Stretch) Extended LTS:
ELA-1116-1 linux-4.19 security update
Debian GNU/Linux 10 (Buster) LTS:
[DLA 3847-1] dcmtk security update
A new XanMod Linux Kernel based on Linux Kernel 6.9.7 has been released. XanMod is a general-purpose Linux kernel distribution with custom settings and new features. The real-time version is recommended for critical runtime applications such as Linux gaming eSports, streaming, live productions and ultra-low latency enthusiasts.
A new XanMod Linux Kernel based on Linux Kernel 6.6.36 has been released. XanMod is a general-purpose Linux kernel distribution with custom settings and new features. The real-time version is recommended for critical runtime applications such as Linux gaming eSports, streaming, live productions and ultra-low latency enthusiasts.
The following security updates have been released for Debian GNU/Linux:
Debian GNU/Linux 9 Extended LTS (Stretch):
ELA-1115-1 glib2.0 security update
Debian GNU/Linux 10 LTS (Buster):
[DLA 3843-1] linux-5.10 security update
[DLA 3840-1] linux security update
[DLA 3845-1] dlt-daemon security update
Debian GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5723-1] plasma-workspace security update
Debian GNU/Linux 9 Extended LTS (Stretch):
ELA-1115-1 glib2.0 security update
Debian GNU/Linux 10 LTS (Buster):
[DLA 3843-1] linux-5.10 security update
[DLA 3840-1] linux security update
[DLA 3845-1] dlt-daemon security update
Debian GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5723-1] plasma-workspace security update
The following security updates are available for Debian GNU/Linux:
Debian GNU/Linux 10 LTS (Buster):
[DLA 3844-1] git security update
Debian GNU/Linux 11 (Bullseye):
[DSA 5721-1] ffmpeg security update
Debian GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5722-1] libvpx security update
Debian GNU/Linux 10 LTS (Buster):
[DLA 3844-1] git security update
Debian GNU/Linux 11 (Bullseye):
[DSA 5721-1] ffmpeg security update
Debian GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5722-1] libvpx security update
The following security updates have been released for Debian GNU/Linux:
Debian GNU/Linux 10 LTS (Buster):
[DLA 3842-1] linux-5.10 security update
[DLA 3841-1] linux-5.10 security update
Debian GNU/Linux 11 (Bullseye):
[DSA 5718-1] org-mode security update
Debian GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5719-1] emacs security update
Debian GNU/Linux 12 (Bookworm):
[DSA 5720-1] chromium security update
Debian GNU/Linux 10 LTS (Buster):
[DLA 3842-1] linux-5.10 security update
[DLA 3841-1] linux-5.10 security update
Debian GNU/Linux 11 (Bullseye):
[DSA 5718-1] org-mode security update
Debian GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5719-1] emacs security update
Debian GNU/Linux 12 (Bookworm):
[DSA 5720-1] chromium security update
Updated Netty packages are available for Debian GNU/Linux 9 Extended LTS to address a vulnerability that allowed an attacker to allocate resources without limits or throttling due to the accumulation of data in the HttpPostRequestDecoder. Additionally, updated composer packages are available for Debian GNU/Linux 11 to fix a regression that the previous update introduced.
ELA-1110-1 netty security update
[DSA 5715-2] composer regression update
ELA-1110-1 netty security update
[DSA 5715-2] composer regression update
Steven Barrett has announced the release of a new Liquorix kernel based on Linux kernel 6.9.6. The Liquorix Linux kernel is an enthusiast Linux kernel that is optimized for low latency computing in audiovisual production, reduced frame time variations in games, and unparalleled responsiveness in interactive systems. It is available for Debian, Ubuntu, and Arch Linux.
A netty security update has been released for Debian GNU/Linux 10 LTS:
[DLA 3834-1] netty security update
[DLA 3834-1] netty security update
A new XanMod Linux Kernel based on Linux Kernel 6.9.6 has been released. XanMod is a general-purpose Linux kernel distribution with custom settings and new features. The real-time version is recommended for critical runtime applications such as Linux gaming eSports, streaming, live productions and ultra-low latency enthusiasts.
A new XanMod Linux Kernel based on Linux Kernel 6.6.35 has been released. XanMod is a general-purpose Linux kernel distribution with custom settings and new features. The real-time version is recommended for critical runtime applications such as Linux gaming eSports, streaming, live productions and ultra-low latency enthusiasts.
The Debian Project has sent out another reminder that Debian GNU/Linux 10 LTS will be phased out on June 30, 2024. Freexian will take over and provide Extended LTS support for Debian 10 for selected packages from July 1, 2024 until June 30, 2029.
The following updates have been released for Debian GNU/Linux:
Debian GNU/Linux 10 (Buster) LTS:
[DLA 3829-2] sendmail regression update
[DLA 3839-1] putty security update
Debian GNU/Linux 12 (Bookworm) LTS:
[DSA 5717-1] php8.2 security update
Debian GNU/Linux 10 (Buster) LTS:
[DLA 3829-2] sendmail regression update
[DLA 3839-1] putty security update
Debian GNU/Linux 12 (Bookworm) LTS:
[DSA 5717-1] php8.2 security update
The following security updates have been released for Debian GNU/Linux:
Debian GNU/Linux 8 (Jessie) and 9 (Stretch) Extended LTS:
ELA-1113-1 libndp security update
Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1114-1 composer security update
Debian GNU/Linux 10 (Buster) LTS:
[DLA 3836-1] thunderbird security update
[DLA 3838-1] composer security update
[DLA 3837-1] libndp security update
Debian GNU/Linux 12 (Bookworm):
[DSA 5716-1] chromium security update
Debian GNU/Linux 8 (Jessie) and 9 (Stretch) Extended LTS:
ELA-1113-1 libndp security update
Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1114-1 composer security update
Debian GNU/Linux 10 (Buster) LTS:
[DLA 3836-1] thunderbird security update
[DLA 3838-1] composer security update
[DLA 3837-1] libndp security update
Debian GNU/Linux 12 (Bookworm):
[DSA 5716-1] chromium security update
Jonathan Carter has announced that the call for artwork proposals for Debian 13 (trixie) is now open for submissions. The deadline for the submissions in question is September 19, 2024. Clean design, compatibility without core software patching, and a "Debian" style were the deciding factors in the theme's selection.
The following security updates have been released for Debian GNU/Linux:
Debian GNU/Linux 8 (Jessie) Extended LTS:
ELA-1108-1 php5 security update
Debian GNU/Linux 8 (Jessie) and 9 (Stretch) Extended LTS:
ELA-1112-1 libvpx security update
Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1107-1 php7.0 security update
Debian GNU/Linux 10 (Buster) LTS:
[DLA 3833-1] php7.3 security update
Debian GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5715-1] composer security update
[DSA 5714-1] roundcube security update
Debian GNU/Linux 8 (Jessie) Extended LTS:
ELA-1108-1 php5 security update
Debian GNU/Linux 8 (Jessie) and 9 (Stretch) Extended LTS:
ELA-1112-1 libvpx security update
Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1107-1 php7.0 security update
Debian GNU/Linux 10 (Buster) LTS:
[DLA 3833-1] php7.3 security update
Debian GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5715-1] composer security update
[DSA 5714-1] roundcube security update
The following security updates have been released for Debian GNU/Linux:
Debian GNU/Linux 8 (Jessie) and 9 (Stretch) Extended LTS:
ELA-1109-1 nano security update
ELA-1111-1 pymongo security update
Debian GNU/Linux 10 LTS (Buster):
[DLA 3831-1] nano security update
[DLA 3832-1] pymongo security update
[DLA 3835-1] roundcube security update
Debian GNU/Linux 8 (Jessie) and 9 (Stretch) Extended LTS:
ELA-1109-1 nano security update
ELA-1111-1 pymongo security update
Debian GNU/Linux 10 LTS (Buster):
[DLA 3831-1] nano security update
[DLA 3832-1] pymongo security update
[DLA 3835-1] roundcube security update
A new XanMod Linux Kernel based on Linux Kernel 6.9.5 has been released. XanMod is a general-purpose Linux kernel distribution with custom settings and new features. The real-time version is recommended for critical runtime applications such as Linux gaming eSports, streaming, live productions and ultra-low latency enthusiasts.
A new XanMod Linux Kernel based on Linux Kernel 6.6.34 has been released. XanMod is a general-purpose Linux kernel distribution with custom settings and new features. The real-time version is recommended for critical runtime applications such as Linux gaming eSports, streaming, live productions and ultra-low latency enthusiasts.
Steven Barrett has announced the release of a new Liquorix kernel based on Linux kernel 6.9.5. The Liquorix Linux kernel is an enthusiast Linux kernel that is optimized for low latency computing in audiovisual production, reduced frame time variations in games, and unparalleled responsiveness in interactive systems. It is available for Debian, Ubuntu, and Arch Linux.
The following security updates are available for Debian GNU/Linux:
Debian GNU/Linux 10 LTS (Buster):
[DLA 3830-1] libvpx security update
Devuab GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5713-1] libndp security update
Debian GNU/Linux 10 LTS (Buster):
[DLA 3830-1] libvpx security update
Devuab GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5713-1] libndp security update
The following security updates have been released for Debian GNU/Linux:
Debian GNU/Linux 10 LTS (Buster):
[DLA 3829-1] sendmail security update
Debian GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5711-1] thunderbird security update
Debian GNU/Linux 12 (Bookworm):
[DSA 5712-1] ffmpeg security update
Debian GNU/Linux 10 LTS (Buster):
[DLA 3829-1] sendmail security update
Debian GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5711-1] thunderbird security update
Debian GNU/Linux 12 (Bookworm):
[DSA 5712-1] ffmpeg security update
The following security updates have been released for Debian GNU/Linux:
Debian GNU/Linux 8 (Jessie):
ELA-1106-1 apache2 security update
Debian GNU/Linux 10 (Buster):
[DLA 3827-1] plasma-workspace security update
[DLA 3828-1] atril security update
Debian GNU/Linux 12 (Bookworm):
[DSA 5710-1] chromium security update
Debian GNU/Linux 8 (Jessie):
ELA-1106-1 apache2 security update
Debian GNU/Linux 10 (Buster):
[DLA 3827-1] plasma-workspace security update
[DLA 3828-1] atril security update
Debian GNU/Linux 12 (Bookworm):
[DSA 5710-1] chromium security update
The following two security updates have been released for Debian GNU/Linux 10 LTS (Buster):
[DLA 3825-1] firefox-esr security update
[DLA 3826-1] cups security update
[DLA 3825-1] firefox-esr security update
[DLA 3826-1] cups security update
Updated Firefox-ESR packages are available for both Debian GNU/Linux 11 and 12 to address multiple security issues that could potentially result in the execution of arbitrary code, the circumvention of sandbox restrictions, or an information leak.
[DSA 5709-1] firefox-esr security update
[DSA 5709-1] firefox-esr security update
A new XanMod Linux Kernel based on Linux Kernel 6.9.4 has been released. XanMod is a general-purpose Linux kernel distribution with custom settings and new features. The real-time version is recommended for critical runtime applications such as Linux gaming eSports, streaming, live productions and ultra-low latency enthusiasts.
A new XanMod Linux Kernel based on Linux Kernel 6.6.33 has been released. XanMod is a general-purpose Linux kernel distribution with custom settings and new features. The real-time version is recommended for critical runtime applications such as Linux gaming eSports, streaming, live productions and ultra-low latency enthusiasts.
Steven Barrett has announced the release of a new Liquorix kernel based on Linux kernel 6.9.4. The Liquorix Linux kernel is an enthusiast Linux kernel that is optimized for low latency computing in audiovisual production, reduced frame time variations in games, and unparalleled responsiveness in interactive systems. It is available for Debian, Ubuntu, and Arch Linux.
The following two security updates are available for Debian GNU/Linux:
[DSA 5708-1] cyrus-imapd security update
[DSA 5707-1] vlc security update
[DSA 5708-1] cyrus-imapd security update
[DSA 5707-1] vlc security update
Ondřej Surý released PHP 8.3.8, 8.2.20, 8.1.29, 8.0.30-7, 7.4.33-13, 7.3.33-19, 7.2.34-50, 7.1.33-63, 7.0.33-75, and 5.6.40-77 packages for Debian GNU/Linux 10 (Buster), 11 (Bullseye), and 12 (Bookworm). PHP versions 8.1 and lower are purely security updates that address four bugs in PHP-CGI, filter_var FILTER_VALIDATE_URL, OpenSSL, and proc_open.
An updated Gst-Plugins-Base0.10 package is available for Debian GNU/Linux 8 Extended LTS:
ELA-1105-1 gst-plugins-base0.10 security update
ELA-1105-1 gst-plugins-base0.10 security update
The following security updates have been released for Debian GNU/Linux:
Debian GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5704-1] pillow security update
Debian GNU/Linux 12 (Bookworm):
[DSA 5706-1] libarchive security update
[DSA 5705-1] tinyproxy security update
Debian GNU/Linux 11 (Bullseye) and 12 (Bookworm):
[DSA 5704-1] pillow security update
Debian GNU/Linux 12 (Bookworm):
[DSA 5706-1] libarchive security update
[DSA 5705-1] tinyproxy security update