------------------------------------------------------------------------ The Debian Project https://www.debian.org/ Updated Debian 13: 13.2 released [email protected] November 15th, 2025 https://www.debian.org/News/2025/20251115 ------------------------------------------------------------------------
The Debian project is pleased to announce the second update of its stable distribution Debian 13 (codename "trixie"). This point release mainly adds corrections for security issues, along with a few adjustments for serious problems. Security advisories have already been published separately and are referenced where available. Please note that the point release does not constitute a new version of Debian 13 but only updates some of the packages included. There is no need to throw away old "trixie" media. After installation, packages can be upgraded to the current versions using an up-to-date Debian mirror. Those who frequently install updates from security.debian.org won't have to update many packages, and most such updates are included in the point release. New installation images will be available soon at the regular locations. Upgrading an existing installation to this revision can be achieved by pointing the package management system at one of Debian's many HTTP mirrors. A comprehensive list of mirrors is available at: https://www.debian.org/mirror/list Miscellaneous Bugfixes ---------------------- This stable update adds a few important corrections to the following packages: +---------------------------+-----------------------------------------+ | Package | Reason | +---------------------------+-----------------------------------------+ | 7zip [1] | New upstream release; security fixes | | | [CVE-2025-55188 CVE-2025-11002 | | | CVE-2025-11001] | | | | | 7zip-rar [2] | Add missing CRC table constructor | | | | | aide [3] | Fix bin/buildcache use by running it | | | from a root timer; various updates and | | | fixes to included rules | | | | | allow-html-temp [4] | New upstream version to support newer | | | Thunderbird releases | | | | | alsa-ucm-conf-asahi [5] | Install missing aop_audio UCM configs | | | | | ansible [6] | Update collections to maintain | | | compatibility with ansible-core 2.19 | | | | | ansible-core [7] | New upstream stable release; fix | | | regression from 2.18 regarding handlers | | | and play tags | | | | | asahi-scripts [8] | Fix the macaudio default profile check; | | | add the apple_nvmem_spmi module to the | | | initramfs explicitly; make update-m1n1 | | | idempotent | | | | | base-files [9] | Update for the point release | | | | | brltty [10] | atSpi2: do not manage widgets without | | | text interface; avoid excessive verbose | | | bluetooth/usbfs messages | | | | | console-setup [11] | Update keyboard layouts dz(la) into | | | dz(azerty-oss) and Use ca/multix | | | variant instead of ca/multi; fix | | | dz(azerty-oss/deadkeys) into dz, which | | | is what xkb really provides; fix dz | | | default layout | | | | | cups [12] | Fix operation of checkboxes in admin | | | interface | | | | | curl [13] | Fix buffer over-read issue [CVE-2025- | | | 9086]; fix cache poisoning issue | | | [CVE-2025-10148]; fix path traversal | | | issue [CVE-2025-11563]; allow --output | | | to be overridden by --curl-options; fix | | | manpage example for "continue-at" ; | | | fix path traversal issue [CVE-2025- | | | 11563] | | | | | debian-edu-config [14] | Use SERVER_ADDRESS in RewriteRule | | | instead of hard-coded 'www'; drop | | | desktop bundle from bundlesequence | | | | | debian-installer [15] | Increase Linux kernel ABI to | | | 6.12.57+deb13; rebuild against | | | proposed-updates | | | | | debian-installer-netboot- | Increase Linux kernel ABI to | | images [16] | 6.12.57+deb13; rebuild against | | | proposed-updates | | | | | dhcpcd [17] | Fix crash when an address is deleted; | | | prevent failure to start if | | | wpasupplicant is not installed | | | | | distro-info-data [18] | Update EoL date for bookworm; add | | | Ubuntu 26.04 LTS "Resolute Raccoon" | | | | | dkms [19] | New upstream release; stop shipping | | | dkms.service, fixing dependency cycle | | | with cloud-init-network.service; emit a | | | warning if no kernel headers were found | | | | | dns-root-data [20] | Update root-anchors.p7s (the signature | | | of root-anchors.xml) with a new | | | expiration date | | | | | dnsdist [21] | Fix denial of service issues [CVE-2025- | | | 8671 CVE-2025-30187] | | | | | dolphin-emu [22] | Fix interaction with RetroAchievements; | | | fix translations | | | | | dovecot [23] | Ensure default lmtpd | | | auth_username_format matches the global | | | value; fix oauth configuration parsing; | | | lib-sieve: correctly handle errors; | | | clean up a few typos in default/example | | | configuration | | | | | eas4tbsync [24] | New upstream version to support newer | | | Thunderbird releases | | | | | eperl [25] | Avoid passing a truncated environment | | | on Perl 5.40 | | | | | epiphany-browser [26] | New upstream stable release; fix | | | various crashes; fix PKCS#11 login for | | | invalid cert/priv pairs | | | | | evolution [27] | New upstream stable release | | | | | evolution-data- | New upstream stable release; fix busy | | server [28] | loop when using the MH format mail | | | archive | | | | | fangfrisch [29] | Update sanesecurity mirror as the old | | | one will stop working soon | | | | | fluidsynth [30] | Set the default samplerate to 48000 and | | | buffer size to 512 in the service | | | configuration, fixing high CPU usage | | | and distorted sound | | | | | folder-account [31] | New upstream version to support newer | | | Thunderbird releases | | | | | fonts-noto-color- | New upstream release; add support for | | emoji [32] | the Unicode 17.0 standard | | | | | freeradius [33] | Fix compatibility with OpenSSL 3.5.2 | | | | | gnome-maps [34] | New upstream stable release; fix a | | | regression when requesting route | | | planning from transitous.org; add | | | address format for Austria and Paraguay | | | | | gnome-session [35] | Fix default app priority for early | | | adopters of Papers and Showtime | | | | | google-recaptcha [36] | Fix PHP 8.4 deprecation warnings | | | | | ikvswitch [37] | Use Trixie as default distro for the | | | setup; don't fail on errors when taking | | | down an IPMI bridge; use a sysctl.d | | | fragment file rather than sysctl.conf | | | | | imagemagick [38] | Fix integer overflow issue [CVE-2025- | | | 62171] | | | | | input-remapper [39] | Add missing python3-psutil runtime | | | dependency | | | | | irqbalance [40] | Enable write access to /proc/irq in | | | service definition | | | | | jdupes [41] | Fix detection of unique files | | | | | jing-trang [42] | Re-import upstream release, to remove | | | incorrectly included files | | | | | keepassxc-browser [43] | Fix compatibility with Chromium | | | | | kmail-account-wizard [44] | Enable automatic QML dependency | | | detection | | | | | lemonldap-ng [45] | Fix command injection issue [CVE-2025- | | | 59518]; don't expose session-id into | | | Ajax responses; fix Google | | | authentication | | | | | libcommons-lang-java [46] | Fix an uncontrolled recursion issue | | | [CVE-2025-48924] | | | | | libcommons-lang3- | Fix an uncontrolled recursion issue | | java [47] | [CVE-2025-48924] | | | | | libgpiod [48] | Remove unnecessary Breaks/Replaces on | | | libgpiod2 and libgpiod2t64 | | | | | libhtp [49] | Prevent memory leak with lzma | | | [CVE-2025-53537] | | | | | libsmb2 [50] | Fix buffer overflow issue [CVE-2025- | | | 57632] | | | | | libssh [51] | Fix NULL pointer dereference issue | | | [CVE-2025-8114]; fix denial of service | | | issue [CVE-2025-8277] | | | | | libvirt [52] | Don't require TLS certificates to | | | support keyEncipherment; lower log | | | level of a message, avoiding journal | | | spam when using the LXC driver; fix a | | | daemon crash that occurs when probing | | | capabilities for a QEMU binary that | | | doesn't report information about CPU | | | models | | | | | libwebsockets [53] | Fix denial of service issue [CVE-2025- | | | 11677]; fix buffer overflow issue | | | [CVE-2025-11678] | | | | | libxml2 [54] | Fix XPath recursion depth DoS | | | [CVE-2025-9714] | | | | | libyaml-syck-perl [55] | Prevent memory corruption leading to | | | "str" value being set on empty keys | | | [CVE-2025-11683] | | | | | linux [56] | New upstream stable release | | | | | linux-signed-amd64 [57] | New upstream stable release | | | | | linux-signed-arm64 [58] | New upstream stable release | | | | | lnav [59] | Handle failure to set cregs from tmux | | | | | log4cxx [60] | Fix improper escaping issues [CVE-2025- | | | 54812 CVE-2025-54813] | | | | | logcheck [61] | Update ignore.d.paranoid/ssh and | | | ignore.d.server/ssh | | | | | lttng-modules [62] | Fix potential kernel crash with syscall | | | tracing | | | | | luksmeta [63] | Fix data corruption issue with LUKS1 | | | [CVE-2025-11568] | | | | | lxcfs [64] | Add missing dependency on fuse3 | | | | | magit [65] | Ship missing magit-dired.el in elpa- | | | magit | | | | | mailfromd [66] | Rebuild to fix symbol lookup error | | | | | mailmindr [67] | New upstream version to support newer | | | Thunderbird releases | | | | | malcontent [68] | Fix filtering snaps after snapd 2.72; | | | fix listing flatpaks in parental | | | control UI; fix memory leak when | | | checking snaps | | | | | mapserver [69] | Fix SQL injection issue [CVE-2025- | | | 59431] | | | | | mc [70] | Fix accidental use of >&10 for | | | subshells, avoiding delays at startup | | | | | modsecurity-apache [71] | Fix security issues relating to | | | response Content-Type handling | | | [CVE-2025-54571] | | | | | monitoring-plugins [72] | Fix check_users in combination with | | | systemd; fix check_mysql plugin with | | | newer MySQL versions | | | | | mpv [73] | Create missing folders for watch | | | history | | | | | mrtg [74] | Fix duplicate WorkDir lines in cfgmaker | | | output | | | | | nextcloud-desktop [75] | New upstream stable release | | | | | nfdump [76] | Honour subdir (-S) when using dynamic | | | FlowSource (-M) | | | | | nova [77] | Fix information disclosure issue | | | | | nvidia-graphics-drivers- | Fix use after free issue [CVE-2025- | | tesla-535 [78] | 23280]; fix privilege escalation issue | | | [CVE-2025-23282]; fix denial of service | | | issues [CVE-2025-23300 CVE-2025-23330 | | | CVE-2025-23332 CVE-2025-23345] | | | | | onetbb [79] | Fix test failures on single-CPU test | | | machines; skip flaky mutex tests | | | | | open-vm-tools [80] | Disable (default) the execution of the | | | SDMP get-versions.sh script [CVE-2025- | | | 41244] | | | | | openssl [81] | New upstream stable release | | | | | openvpn-auth-radius [82] | Fix packet authentication | | | | | orphan-sysvinit- | Add haveged init script | | scripts [83] | | | | | | patroni [84] | New upstream stable release | | | | | pdns-recursor [85] | Switch to dpkg/default.mk; drop | | | CARGO_REGISTRY override | | | | | phpmyadmin [86] | Address XSS vulnerability in bundled | | | jquery.validate.js [CVE-2025-3573] | | | | | poppler [87] | Fix infinite recursion [CVE-2025-50420] | | | | | postfix [88] | New upstream stable release; fix typo | | | which caused recreation of cadir in | | | chroot and excessive logging | | | | | presage [89] | Prevent crash with apostrophes in | | | completion suggestions | | | | | privatebin-cli [90] | Fix connections to pastebins using GCM | | | ciphers | | | | | proftpd-dfsg [91] | Don't remove /srv/ftp on package purge | | | | | puppet-module-puppetlabs- | Fix list_users provider; setup all | | rabbitmq [92] | nodes as disk nodes | | | | | puppet-module- | Fix autoloading of openstack provider | | tempest [93] | | | | | | python-eventlet [94] | Fix HTTP request smuggling by | | | discarding HTTP chunk trailers | | | [CVE-2025-58068] | | | | | qemu [95] | New upstream stable release; fix denial | | | of service issue [CVE-2024-8354]; fix | | | wrong emulation of FIBMAP and FIGETBSZ | | | ioctls | | | | | qt6-base [96] | Fix high CPU usage of kwin_x11 on | | | screen lock (X11) | | | | | quicktext [97] | New upstream version to support newer | | | Thunderbird releases | | | | | rabbitmq-server [98] | Fix logging on sensitive data | | | [CVE-2025-50200] | | | | | riseup-vpn [99] | Add dependency on qml6-module-qtcore | | | | | rocm-hipamd [100] | Fix linking for programs that include | | | <hip/hip_bf16.h> in more than one | | | translation unit; fix spelling error in | | | roc-obj-ls manpage | | | | | rsyslog-doc [101] | Switch documentation theme to | | | sphinx_rtd_theme | | | | | ruby-sys-filesystem [102] | Fix detection of 64-bit OS on s390x and | | | alpha | | | | | rust-virtiofsd [103] | Add missing dependency on uidmap | | | | | sail [104] | Fix memory corruption issues [CVE-2025- | | | 32468 CVE-2025-35984 CVE-2025-46407 | | | CVE-2025-50129 CVE-2025-52456 CVE-2025- | | | 52930 CVE-2025-53085 CVE-2025-53510] | | | | | samba [105] | New upstream stable release; fix | | | uninitialized memory disclosure issue | | | [CVE-2025-9640], command injection | | | issue [CVE-2025-10230] | | | | | samhain [106] | Disable dnmalloc, preventing possible | | | segfaults | | | | | spip [107] | Fix open redirect issue on AJAX login | | | form | | | | | stardict [108] | Split plugin in to a new stardict- | | | plugin-network-dictionary package; | | | disable stardict_dictdotcn.so plugin | | | | | suricata [109] | Fix uncontrolled memory use issue | | | [CVE-2025-53538]; fix detection bypass | | | issue [CVE-2025-59147] | | | | | syslog-ng [110] | Disable writing of log statistics by | | | default | | | | | systemd [111] | New upstream stable release; fix DNS- | | | over-TLS handling in systemd-resolved; | | | improve service and unit lifecycle | | | stability; handle TPM2 and pcrlock | | | corner cases; update documentation; | | | refresh hwdb data; sync with Linux UAPI | | | headers | | | | | systemd-boot-efi-amd64- | New upstream stable release; fix DNS- | | signed [112] | over-TLS handling in systemd-resolved; | | | improve service and unit lifecycle | | | stability; handle TPM2 and pcrlock | | | corner cases; update documentation; | | | refresh hwdb data; sync with Linux UAPI | | | headers | | | | | systemd-boot-efi-arm64- | New upstream stable release; fix DNS- | | signed [113] | over-TLS handling in systemd-resolved; | | | improve service and unit lifecycle | | | stability; handle TPM2 and pcrlock | | | corner cases; update documentation; | | | refresh hwdb data; sync with Linux UAPI | | | headers | | | | | tango [114] | Fix broken communication between | | | versions 9 and 10 | | | | | tbsync [115] | New upstream version to support newer | | | Thunderbird releases | | | | | ublock-origin [116] | New upstream release; improve user | | | experience and add new filter | | | capabilities | | | | | virt-manager [117] | Fix "Browse local" function | | | | | watcher [118] | Fix information disclosure issue | | | | | wike [119] | Set a User Agent, to ensure that the | | | mobile version of Wikipedia is used | | | | | wtmpdb [120] | Rotate and prune logs using logrotate; | | | store logs in system log directory | | | | | xnote [121] | New upstream version to support newer | | | Thunderbird releases | | | | | xorg [122] | Fix login failure with sessions using | | | multiple words in invocation | | | | | xssproxy [123] | Fix compatibility with Chromium and | | | xdg-desktop-portal-gtk | | | | +---------------------------+-----------------------------------------+ 1: https://packages.debian.org/src:7zip 2: https://packages.debian.org/src:7zip-rar 3: https://packages.debian.org/src:aide 4: https://packages.debian.org/src:allow-html-temp 5: https://packages.debian.org/src:alsa-ucm-conf-asahi 6: https://packages.debian.org/src:ansible 7: https://packages.debian.org/src:ansible-core 8: https://packages.debian.org/src:asahi-scripts 9: https://packages.debian.org/src:base-files 10: https://packages.debian.org/src:brltty 11: https://packages.debian.org/src:console-setup 12: https://packages.debian.org/src:cups 13: https://packages.debian.org/src:curl 14: https://packages.debian.org/src:debian-edu-config 15: https://packages.debian.org/src:debian-installer 16: https://packages.debian.org/src:debian-installer-netboot-images 17: https://packages.debian.org/src:dhcpcd 18: https://packages.debian.org/src:distro-info-data 19: https://packages.debian.org/src:dkms 20: https://packages.debian.org/src:dns-root-data 21: https://packages.debian.org/src:dnsdist 22: https://packages.debian.org/src:dolphin-emu 23: https://packages.debian.org/src:dovecot 24: https://packages.debian.org/src:eas4tbsync 25: https://packages.debian.org/src:eperl 26: https://packages.debian.org/src:epiphany-browser 27: https://packages.debian.org/src:evolution 28: https://packages.debian.org/src:evolution-data-server 29: https://packages.debian.org/src:fangfrisch 30: https://packages.debian.org/src:fluidsynth 31: https://packages.debian.org/src:folder-account 32: https://packages.debian.org/src:fonts-noto-color-emoji 33: https://packages.debian.org/src:freeradius 34: https://packages.debian.org/src:gnome-maps 35: https://packages.debian.org/src:gnome-session 36: https://packages.debian.org/src:google-recaptcha 37: https://packages.debian.org/src:ikvswitch 38: https://packages.debian.org/src:imagemagick 39: https://packages.debian.org/src:input-remapper 40: https://packages.debian.org/src:irqbalance 41: https://packages.debian.org/src:jdupes 42: https://packages.debian.org/src:jing-trang 43: https://packages.debian.org/src:keepassxc-browser 44: https://packages.debian.org/src:kmail-account-wizard 45: https://packages.debian.org/src:lemonldap-ng 46: https://packages.debian.org/src:libcommons-lang-java 47: https://packages.debian.org/src:libcommons-lang3-java 48: https://packages.debian.org/src:libgpiod 49: https://packages.debian.org/src:libhtp 50: https://packages.debian.org/src:libsmb2 51: https://packages.debian.org/src:libssh 52: https://packages.debian.org/src:libvirt 53: https://packages.debian.org/src:libwebsockets 54: https://packages.debian.org/src:libxml2 55: https://packages.debian.org/src:libyaml-syck-perl 56: https://packages.debian.org/src:linux 57: https://packages.debian.org/src:linux-signed-amd64 58: https://packages.debian.org/src:linux-signed-arm64 59: https://packages.debian.org/src:lnav 60: https://packages.debian.org/src:log4cxx 61: https://packages.debian.org/src:logcheck 62: https://packages.debian.org/src:lttng-modules 63: https://packages.debian.org/src:luksmeta 64: https://packages.debian.org/src:lxcfs 65: https://packages.debian.org/src:magit 66: https://packages.debian.org/src:mailfromd 67: https://packages.debian.org/src:mailmindr 68: https://packages.debian.org/src:malcontent 69: https://packages.debian.org/src:mapserver 70: https://packages.debian.org/src:mc 71: https://packages.debian.org/src:modsecurity-apache 72: https://packages.debian.org/src:monitoring-plugins 73: https://packages.debian.org/src:mpv 74: https://packages.debian.org/src:mrtg 75: https://packages.debian.org/src:nextcloud-desktop 76: https://packages.debian.org/src:nfdump 77: https://packages.debian.org/src:nova 78: https://packages.debian.org/src:nvidia-graphics-drivers-tesla-535 79: https://packages.debian.org/src:onetbb 80: https://packages.debian.org/src:open-vm-tools 81: https://packages.debian.org/src:openssl 82: https://packages.debian.org/src:openvpn-auth-radius 83: https://packages.debian.org/src:orphan-sysvinit-scripts 84: https://packages.debian.org/src:patroni 85: https://packages.debian.org/src:pdns-recursor 86: https://packages.debian.org/src:phpmyadmin 87: https://packages.debian.org/src:poppler 88: https://packages.debian.org/src:postfix 89: https://packages.debian.org/src:presage 90: https://packages.debian.org/src:privatebin-cli 91: https://packages.debian.org/src:proftpd-dfsg 92: https://packages.debian.org/src:puppet-module-puppetlabs-rabbitmq 93: https://packages.debian.org/src:puppet-module-tempest 94: https://packages.debian.org/src:python-eventlet 95: https://packages.debian.org/src:qemu 96: https://packages.debian.org/src:qt6-base 97: https://packages.debian.org/src:quicktext 98: https://packages.debian.org/src:rabbitmq-server 99: https://packages.debian.org/src:riseup-vpn 100: https://packages.debian.org/src:rocm-hipamd 101: https://packages.debian.org/src:rsyslog-doc 102: https://packages.debian.org/src:ruby-sys-filesystem 103: https://packages.debian.org/src:rust-virtiofsd 104: https://packages.debian.org/src:sail 105: https://packages.debian.org/src:samba 106: https://packages.debian.org/src:samhain 107: https://packages.debian.org/src:spip 108: https://packages.debian.org/src:stardict 109: https://packages.debian.org/src:suricata 110: https://packages.debian.org/src:syslog-ng 111: https://packages.debian.org/src:systemd 112: https://packages.debian.org/src:systemd-boot-efi-amd64-signed 113: https://packages.debian.org/src:systemd-boot-efi-arm64-signed 114: https://packages.debian.org/src:tango 115: https://packages.debian.org/src:tbsync 116: https://packages.debian.org/src:ublock-origin 117: https://packages.debian.org/src:virt-manager 118: https://packages.debian.org/src:watcher 119: https://packages.debian.org/src:wike 120: https://packages.debian.org/src:wtmpdb 121: https://packages.debian.org/src:xnote 122: https://packages.debian.org/src:xorg 123: https://packages.debian.org/src:xssproxy Security Updates ---------------- This revision adds the following security updates to the stable release. The Security Team has already released an advisory for each of these updates: +----------------+------------------------------+ | Advisory ID | Package | +----------------+------------------------------+ | DSA-5979 [124] | libxslt [125] | | | | | DSA-5993 [126] | chromium [127] | | | | | DSA-5994 [128] | shibboleth-sp [129] | | | | | DSA-5995 [130] | hsqldb1.8.0 [131] | | | | | DSA-5996 [132] | chromium [133] | | | | | DSA-5997 [134] | imagemagick [135] | | | | | DSA-5998 [136] | cups [137] | | | | | DSA-5999 [138] | libjson-xs-perl [139] | | | | | DSA-6000 [140] | libcpanel-json-xs-perl [141] | | | | | DSA-6001 [142] | cjson [143] | | | | | DSA-6002 [144] | node-sha.js [145] | | | | | DSA-6003 [146] | firefox-esr [147] | | | | | DSA-6004 [148] | chromium [149] | | | | | DSA-6005 [150] | jetty9 [151] | | | | | DSA-6006 [152] | jetty12 [153] | | | | | DSA-6007 [154] | ffmpeg [155] | | | | | DSA-6008 [156] | linux-signed-amd64 [157] | | | | | DSA-6008 [158] | linux-signed-arm64 [159] | | | | | DSA-6008 [160] | linux [161] | | | | | DSA-6010 [162] | chromium [163] | | | | | DSA-6012 [164] | nncp [165] | | | | | DSA-6013 [166] | node-tar-fs [167] | | | | | DSA-6014 [168] | gimp [169] | | | | | DSA-6015 [170] | openssl [171] | | | | | DSA-6016 [172] | chromium [173] | | | | | DSA-6017 [174] | haproxy [175] | | | | | DSA-6018 [176] | gegl [177] | | | | | DSA-6019 [178] | dovecot [179] | | | | | DSA-6020 [180] | redis [181] | | | | | DSA-6021 [182] | chromium [183] | | | | | DSA-6022 [184] | valkey [185] | | | | | DSA-6023 [186] | tiff [187] | | | | | DSA-6024 [188] | ghostscript [189] | | | | | DSA-6025 [190] | firefox-esr [191] | | | | | DSA-6026 [192] | chromium [193] | | | | | DSA-6027 [194] | incus [195] | | | | | DSA-6028 [196] | lxd [197] | | | | | DSA-6030 [198] | intel-microcode [199] | | | | | DSA-6031 [200] | request-tracker5 [201] | | | | | DSA-6033 [202] | bind9 [203] | | | | | DSA-6034 [204] | tryton-sao [205] | | | | | DSA-6035 [206] | python-internetarchive [207] | | | | | DSA-6036 [208] | chromium [209] | | | | | DSA-6037 [210] | openjdk-21 [211] | | | | | DSA-6039 [212] | openjdk-25 [213] | | | | | DSA-6040 [214] | thunderbird [215] | | | | | DSA-6042 [216] | evolution [217] | | | | | DSA-6042 [218] | webkit2gtk [219] | | | | | DSA-6044 [220] | xorg-server [221] | | | | | DSA-6045 [222] | pdns-recursor [223] | | | | | DSA-6046 [224] | chromium [225] | | | | | DSA-6047 [226] | squid [227] | | | | | DSA-6048 [228] | ruby-rack [229] | | | | | DSA-6049 [230] | gimp [231] | | | | | DSA-6050 [232] | chromium [233] | | | | +----------------+------------------------------+ 124: https://www.debian.org/security/2025/dsa-5979 125: https://packages.debian.org/src:libxslt 126: https://www.debian.org/security/2025/dsa-5993 127: https://packages.debian.org/src:chromium 128: https://www.debian.org/security/2025/dsa-5994 129: https://packages.debian.org/src:shibboleth-sp 130: https://www.debian.org/security/2025/dsa-5995 131: https://packages.debian.org/src:hsqldb1.8.0 132: https://www.debian.org/security/2025/dsa-5996 133: https://packages.debian.org/src:chromium 134: https://www.debian.org/security/2025/dsa-5997 135: https://packages.debian.org/src:imagemagick 136: https://www.debian.org/security/2025/dsa-5998 137: https://packages.debian.org/src:cups 138: https://www.debian.org/security/2025/dsa-5999 139: https://packages.debian.org/src:libjson-xs-perl 140: https://www.debian.org/security/2025/dsa-6000 141: https://packages.debian.org/src:libcpanel-json-xs-perl 142: https://www.debian.org/security/2025/dsa-6001 143: https://packages.debian.org/src:cjson 144: https://www.debian.org/security/2025/dsa-6002 145: https://packages.debian.org/src:node-sha.js 146: https://www.debian.org/security/2025/dsa-6003 147: https://packages.debian.org/src:firefox-esr 148: https://www.debian.org/security/2025/dsa-6004 149: https://packages.debian.org/src:chromium 150: https://www.debian.org/security/2025/dsa-6005 151: https://packages.debian.org/src:jetty9 152: https://www.debian.org/security/2025/dsa-6006 153: https://packages.debian.org/src:jetty12 154: https://www.debian.org/security/2025/dsa-6007 155: https://packages.debian.org/src:ffmpeg 156: https://www.debian.org/security/2026/dsa-6008 157: https://packages.debian.org/src:linux-signed-amd64 158: https://www.debian.org/security/2026/dsa-6008 159: https://packages.debian.org/src:linux-signed-arm64 160: https://www.debian.org/security/2025/dsa-6008 161: https://packages.debian.org/src:linux 162: https://www.debian.org/security/2025/dsa-6010 163: https://packages.debian.org/src:chromium 164: https://www.debian.org/security/2025/dsa-6012 165: https://packages.debian.org/src:nncp 166: https://www.debian.org/security/2025/dsa-6013 167: https://packages.debian.org/src:node-tar-fs 168: https://www.debian.org/security/2025/dsa-6014 169: https://packages.debian.org/src:gimp 170: https://www.debian.org/security/2025/dsa-6015 171: https://packages.debian.org/src:openssl 172: https://www.debian.org/security/2025/dsa-6016 173: https://packages.debian.org/src:chromium 174: https://www.debian.org/security/2025/dsa-6017 175: https://packages.debian.org/src:haproxy 176: https://www.debian.org/security/2025/dsa-6018 177: https://packages.debian.org/src:gegl 178: https://www.debian.org/security/2025/dsa-6019 179: https://packages.debian.org/src:dovecot 180: https://www.debian.org/security/2025/dsa-6020 181: https://packages.debian.org/src:redis 182: https://www.debian.org/security/2025/dsa-6021 183: https://packages.debian.org/src:chromium 184: https://www.debian.org/security/2025/dsa-6022 185: https://packages.debian.org/src:valkey 186: https://www.debian.org/security/2025/dsa-6023 187: https://packages.debian.org/src:tiff 188: https://www.debian.org/security/2025/dsa-6024 189: https://packages.debian.org/src:ghostscript 190: https://www.debian.org/security/2025/dsa-6025 191: https://packages.debian.org/src:firefox-esr 192: https://www.debian.org/security/2025/dsa-6026 193: https://packages.debian.org/src:chromium 194: https://www.debian.org/security/2025/dsa-6027 195: https://packages.debian.org/src:incus 196: https://www.debian.org/security/2025/dsa-6028 197: https://packages.debian.org/src:lxd 198: https://www.debian.org/security/2025/dsa-6030 199: https://packages.debian.org/src:intel-microcode 200: https://www.debian.org/security/2025/dsa-6031 201: https://packages.debian.org/src:request-tracker5 202: https://www.debian.org/security/2025/dsa-6033 203: https://packages.debian.org/src:bind9 204: https://www.debian.org/security/2025/dsa-6034 205: https://packages.debian.org/src:tryton-sao 206: https://www.debian.org/security/2025/dsa-6035 207: https://packages.debian.org/src:python-internetarchive 208: https://www.debian.org/security/2025/dsa-6036 209: https://packages.debian.org/src:chromium 210: https://www.debian.org/security/2025/dsa-6037 211: https://packages.debian.org/src:openjdk-21 212: https://www.debian.org/security/2025/dsa-6039 213: https://packages.debian.org/src:openjdk-25 214: https://www.debian.org/security/2025/dsa-6040 215: https://packages.debian.org/src:thunderbird 216: https://www.debian.org/security/2026/dsa-6042 217: https://packages.debian.org/src:evolution 218: https://www.debian.org/security/2025/dsa-6042 219: https://packages.debian.org/src:webkit2gtk 220: https://www.debian.org/security/2025/dsa-6044 221: https://packages.debian.org/src:xorg-server 222: https://www.debian.org/security/2025/dsa-6045 223: https://packages.debian.org/src:pdns-recursor 224: https://www.debian.org/security/2025/dsa-6046 225: https://packages.debian.org/src:chromium 226: https://www.debian.org/security/2025/dsa-6047 227: https://packages.debian.org/src:squid 228: https://www.debian.org/security/2025/dsa-6048 229: https://packages.debian.org/src:ruby-rack 230: https://www.debian.org/security/2025/dsa-6049 231: https://packages.debian.org/src:gimp 232: https://www.debian.org/security/2025/dsa-6050 233: https://packages.debian.org/src:chromium Removed packages ---------------- The following packages were removed due to circumstances beyond our control: +---------------------------------+--------+ | Package | Reason | +---------------------------------+--------+ | rust-profiling-procmacros [234] | Unused | | | | +---------------------------------+--------+ 234: https://packages.debian.org/src:rust-profiling-procmacros Debian Installer ---------------- The installer has been updated to include the fixes incorporated into stable by the point release. URLs ---- The complete lists of packages that have changed with this revision: https://deb.debian.org/debian/dists/trixie/ChangeLog The current stable distribution: https://deb.debian.org/debian/dists/stable/ Proposed updates to the stable distribution: https://deb.debian.org/debian/dists/proposed-updates stable distribution information (release notes, errata etc.): https://www.debian.org/releases/stable/ Security announcements and information: https://www.debian.org/security/ About Debian ------------ The Debian Project is an association of Free Software developers who volunteer their time and effort in order to produce the completely free operating system Debian. Contact Information ------------------- For further information, please visit the Debian web pages at https://www.debian.org/, send mail to <[email protected]>, or contact the stable release team at <[email protected]>.
signature.asc
Description: This is a digitally signed message part
