Debian LTS Essential and Critical Security Patch Updates

Debian 11: Webkit2gtk Critical Security Update DLA-4394-1 CVE-2025-43392Debian 11: Webkit2gtk Critical Security Update DLA-4394-1 CVE-2025-43392Debian 11: Webkit2gtk Critical Security Update DLA-4394-1 CVE-2025-43392 Debian 11: Webkit2gtk Critical Security Update DLA-4394-1 CVE-2025-43392Debian 11: Webkit2gtk Critical Security Update DLA-4394-1 CVE-2025-43392Debian 11: Webkit2gtk Critical Security Update DLA-4394-1 CVE-2025-43392

Debian 11: Webkit2gtk Critical Security Update DLA-4394-1 CVE-2025-43392

The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2025-43392

LinuxSecurity.com Team
Dec 04, 2025

Debian 11: Mako Important Denial of Service Fix DLA-4393-1 CVE-2022-40023Debian 11: Mako Important Denial of Service Fix DLA-4393-1 CVE-2022-40023Debian 11: Mako Important Denial of Service Fix DLA-4393-1 CVE-2022-40023 Debian 11: Mako Important Denial of Service Fix DLA-4393-1 CVE-2022-40023Debian 11: Mako Important Denial of Service Fix DLA-4393-1 CVE-2022-40023Debian 11: Mako Important Denial of Service Fix DLA-4393-1 CVE-2022-40023

Debian 11: Mako Important Denial of Service Fix DLA-4393-1 CVE-2022-40023

It was found that Mako, a Python template library, was vulnerable to a denial of service attack via crafted regular expressions. For Debian 11 bullseye, this problem has been fixed in version

LinuxSecurity.com Team
Dec 03, 2025

Debian 11: Mistral-Dashboard Critical Local File Inclusion DLA-4392-1Debian 11: Mistral-Dashboard Critical Local File Inclusion DLA-4392-1Debian 11: Mistral-Dashboard Critical Local File Inclusion DLA-4392-1 Debian 11: Mistral-Dashboard Critical Local File Inclusion DLA-4392-1Debian 11: Mistral-Dashboard Critical Local File Inclusion DLA-4392-1Debian 11: Mistral-Dashboard Critical Local File Inclusion DLA-4392-1

Debian 11: Mistral-Dashboard Critical Local File Inclusion DLA-4392-1

A local file inclusion vulnerability has been discovered in mistral- dashboard, the OpenStack Workflow as a Service dashboard plugin, that may result in disclosure of arbitrary local files content through the

LinuxSecurity.com Team
Dec 01, 2025

Debian 11: python-mistralclient Important Local File Inclusion DLA-4391-1Debian 11: python-mistralclient Important Local File Inclusion DLA-4391-1Debian 11: python-mistralclient Important Local File Inclusion DLA-4391-1 Debian 11: python-mistralclient Important Local File Inclusion DLA-4391-1Debian 11: python-mistralclient Important Local File Inclusion DLA-4391-1Debian 11: python-mistralclient Important Local File Inclusion DLA-4391-1

Debian 11: python-mistralclient Important Local File Inclusion DLA-4391-1

A local file inclusion vulnerability has been discovered in python- mistralclient, the OpenStack Workflow as a Service client, that may result in disclosure of arbitrary local files content through the

LinuxSecurity.com Team
Dec 01, 2025

Debian 11: Pagure Critical Issues DLA-4390-1 CVE-2024-4981 CVE-2024-4982Debian 11: Pagure Critical Issues DLA-4390-1 CVE-2024-4981 CVE-2024-4982Debian 11: Pagure Critical Issues DLA-4390-1 CVE-2024-4981 CVE-2024-4982 Debian 11: Pagure Critical Issues DLA-4390-1 CVE-2024-4981 CVE-2024-4982Debian 11: Pagure Critical Issues DLA-4390-1 CVE-2024-4981 CVE-2024-4982Debian 11: Pagure Critical Issues DLA-4390-1 CVE-2024-4981 CVE-2024-4982

Debian 11: Pagure Critical Issues DLA-4390-1 CVE-2024-4981 CVE-2024-4982

Multiple vulnerabilities have been discovered in Pagure, a Git-centered code hosting system (forge).

LinuxSecurity.com Team
Dec 01, 2025

Debian 11: Pytorch Critical RCE Flaw DLA-4389-1 CVE-2025-32434Debian 11: Pytorch Critical RCE Flaw DLA-4389-1 CVE-2025-32434Debian 11: Pytorch Critical RCE Flaw DLA-4389-1 CVE-2025-32434 Debian 11: Pytorch Critical RCE Flaw DLA-4389-1 CVE-2025-32434Debian 11: Pytorch Critical RCE Flaw DLA-4389-1 CVE-2025-32434Debian 11: Pytorch Critical RCE Flaw DLA-4389-1 CVE-2025-32434

Debian 11: Pytorch Critical RCE Flaw DLA-4389-1 CVE-2025-32434

A possible remote code execution (RCE) vulnerability has been discovered in pytorch, an open source machine learning framework.

LinuxSecurity.com Team
Dec 01, 2025

Debian LTS: Unbound CVE-2025-11411 Important DDoS Risk Fix DLA-4365-2Debian LTS: Unbound CVE-2025-11411 Important DDoS Risk Fix DLA-4365-2Debian LTS: Unbound CVE-2025-11411 Important DDoS Risk Fix DLA-4365-2 Debian LTS: Unbound CVE-2025-11411 Important DDoS Risk Fix DLA-4365-2Debian LTS: Unbound CVE-2025-11411 Important DDoS Risk Fix DLA-4365-2Debian LTS: Unbound CVE-2025-11411 Important DDoS Risk Fix DLA-4365-2

Debian LTS: Unbound CVE-2025-11411 Important DDoS Risk Fix DLA-4365-2

Yuxiao Wu, Yunyi Zhang, Baojun Liu and Haixin Duan discovered that the initial fix for CVE-2025-11411 as applied in DLA 4365-1 did not fully fix the vulnerability. Updated packages correcting this issue are now available.

LinuxSecurity.com Team
Nov 30, 2025

Debian 11: Important Race Condition in qtbase-opensource-src DLA-4387-1Debian 11: Important Race Condition in qtbase-opensource-src DLA-4387-1Debian 11: Important Race Condition in qtbase-opensource-src DLA-4387-1 Debian 11: Important Race Condition in qtbase-opensource-src DLA-4387-1Debian 11: Important Race Condition in qtbase-opensource-src DLA-4387-1Debian 11: Important Race Condition in qtbase-opensource-src DLA-4387-1

Debian 11: Important Race Condition in qtbase-opensource-src DLA-4387-1

A race condition was discovered in Qt, a cross-platform C++ application framework. Code to make security-relevant decisions about an established HTTP2 connection may execute too early, because the encrypted() signal has not yet been emitted and processed.

LinuxSecurity.com Team
Nov 29, 2025

Debian 11: Tryton Server Important Info Disclosure Fix DLA-4387-1Debian 11: Tryton Server Important Info Disclosure Fix DLA-4387-1Debian 11: Tryton Server Important Info Disclosure Fix DLA-4387-1 Debian 11: Tryton Server Important Info Disclosure Fix DLA-4387-1Debian 11: Tryton Server Important Info Disclosure Fix DLA-4387-1Debian 11: Tryton Server Important Info Disclosure Fix DLA-4387-1

Debian 11: Tryton Server Important Info Disclosure Fix DLA-4387-1

Several security vulnerabilities were discovered in the server of the Tryton application platform, which could lead to information disclosure. For Debian 11 bullseye, these problems have been fixed in version

LinuxSecurity.com Team
Nov 28, 2025

Debian 11: SOGo Important XSS Issue DLA-4386-1 CVE-2025-63498Debian 11: SOGo Important XSS Issue DLA-4386-1 CVE-2025-63498Debian 11: SOGo Important XSS Issue DLA-4386-1 CVE-2025-63498 Debian 11: SOGo Important XSS Issue DLA-4386-1 CVE-2025-63498Debian 11: SOGo Important XSS Issue DLA-4386-1 CVE-2025-63498Debian 11: SOGo Important XSS Issue DLA-4386-1 CVE-2025-63498

Debian 11: SOGo Important XSS Issue DLA-4386-1 CVE-2025-63498

The SOGo groupware server is vulnerable to Cross Site Scripting (XSS) via the "userName" parameter, allowing arbitrary JavaScript to be executed when a user visits the authentication page.

LinuxSecurity.com Team
Nov 28, 2025

Debian LTS: libssh Critical Issues Addressed in DLA-4385-1Debian LTS: libssh Critical Issues Addressed in DLA-4385-1Debian LTS: libssh Critical Issues Addressed in DLA-4385-1 Debian LTS: libssh Critical Issues Addressed in DLA-4385-1Debian LTS: libssh Critical Issues Addressed in DLA-4385-1Debian LTS: libssh Critical Issues Addressed in DLA-4385-1

Debian LTS: libssh Critical Issues Addressed in DLA-4385-1

Several vulnerabilities have been found in libssh, a tiny C SSH library. CVE-2025-4877

LinuxSecurity.com Team
Nov 27, 2025

Debian 11: Samba Critical Info Disclosure CVE-2025-9640 DLA-4384-1Debian 11: Samba Critical Info Disclosure CVE-2025-9640 DLA-4384-1Debian 11: Samba Critical Info Disclosure CVE-2025-9640 DLA-4384-1 Debian 11: Samba Critical Info Disclosure CVE-2025-9640 DLA-4384-1Debian 11: Samba Critical Info Disclosure CVE-2025-9640 DLA-4384-1Debian 11: Samba Critical Info Disclosure CVE-2025-9640 DLA-4384-1

Debian 11: Samba Critical Info Disclosure CVE-2025-9640 DLA-4384-1

A flaw was found in Samba, in the vfs_streams_xattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability.

LinuxSecurity.com Team
Nov 26, 2025

Debian 11: Rails Critical Security Update DLA-4383-1 CVE-2022-44566Debian 11: Rails Critical Security Update DLA-4383-1 CVE-2022-44566Debian 11: Rails Critical Security Update DLA-4383-1 CVE-2022-44566 Debian 11: Rails Critical Security Update DLA-4383-1 CVE-2022-44566Debian 11: Rails Critical Security Update DLA-4383-1 CVE-2022-44566Debian 11: Rails Critical Security Update DLA-4383-1 CVE-2022-44566

Debian 11: Rails Critical Security Update DLA-4383-1 CVE-2022-44566

rails a popular server side application framework was affected by multiple vulnerabilities. CVE-2022-44566

LinuxSecurity.com Team
Nov 25, 2025

Debian 11: libsdl2 Important Memory Leak Denial of Service DLA-4382-1Debian 11: libsdl2 Important Memory Leak Denial of Service DLA-4382-1Debian 11: libsdl2 Important Memory Leak Denial of Service DLA-4382-1 Debian 11: libsdl2 Important Memory Leak Denial of Service DLA-4382-1Debian 11: libsdl2 Important Memory Leak Denial of Service DLA-4382-1Debian 11: libsdl2 Important Memory Leak Denial of Service DLA-4382-1

Debian 11: libsdl2 Important Memory Leak Denial of Service DLA-4382-1

A security vulnerability has been discovered in SDL2, the Simple DirectMedia Layer library. This issue is related to memory leak, which might result in a denial of service.

LinuxSecurity.com Team
Nov 25, 2025

Debian 11: net-snmp Critical DoS Fix DLA-4381-1 CVE-2022-44792Debian 11: net-snmp Critical DoS Fix DLA-4381-1 CVE-2022-44792Debian 11: net-snmp Critical DoS Fix DLA-4381-1 CVE-2022-44792 Debian 11: net-snmp Critical DoS Fix DLA-4381-1 CVE-2022-44792Debian 11: net-snmp Critical DoS Fix DLA-4381-1 CVE-2022-44792Debian 11: net-snmp Critical DoS Fix DLA-4381-1 CVE-2022-44792

Debian 11: net-snmp Critical DoS Fix DLA-4381-1 CVE-2022-44792

menglong2234 discovered NULL pointer exceptions in net-snmp, a suite of Simple Network Management Protocol applications, which could could result in denial of service.

LinuxSecurity.com Team
Nov 25, 2025

Debian LTS: cups-filters Critical Heap Overflow Threat DLA-4380-1Debian LTS: cups-filters Critical Heap Overflow Threat DLA-4380-1Debian LTS: cups-filters Critical Heap Overflow Threat DLA-4380-1 Debian LTS: cups-filters Critical Heap Overflow Threat DLA-4380-1Debian LTS: cups-filters Critical Heap Overflow Threat DLA-4380-1Debian LTS: cups-filters Critical Heap Overflow Threat DLA-4380-1

Debian LTS: cups-filters Critical Heap Overflow Threat DLA-4380-1

Several issues have been found in cups-filters, which provides additional CUPS filters, that are not part of the CUPS project. All issues are related to out of bounds read or writes or a heap buffer

LinuxSecurity.com Team
Nov 25, 2025

Debian 11 bullseye: DLA-4379-1 linux-6.1 Moderate Privilege EscalationDebian 11 bullseye: DLA-4379-1 linux-6.1 Moderate Privilege EscalationDebian 11 bullseye: DLA-4379-1 linux-6.1 Moderate Privilege Escalation Debian 11 bullseye: DLA-4379-1 linux-6.1 Moderate Privilege EscalationDebian 11 bullseye: DLA-4379-1 linux-6.1 Moderate Privilege EscalationDebian 11 bullseye: DLA-4379-1 linux-6.1 Moderate Privilege Escalation

Debian 11 bullseye: DLA-4379-1 linux-6.1 Moderate Privilege Escalation

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.

LinuxSecurity.com Team
Nov 25, 2025

Debian 11: r-cran-gh Important API Auth Flaw DLA-4378-1 CVE-2025-54956Debian 11: r-cran-gh Important API Auth Flaw DLA-4378-1 CVE-2025-54956Debian 11: r-cran-gh Important API Auth Flaw DLA-4378-1 CVE-2025-54956 Debian 11: r-cran-gh Important API Auth Flaw DLA-4378-1 CVE-2025-54956Debian 11: r-cran-gh Important API Auth Flaw DLA-4378-1 CVE-2025-54956Debian 11: r-cran-gh Important API Auth Flaw DLA-4378-1 CVE-2025-54956

Debian 11: r-cran-gh Important API Auth Flaw DLA-4378-1 CVE-2025-54956

A vulnerability has been discovered in r-cran-gh, a GNU R Minimal client to access the 'GitHub' 'API'. CVE-2025-54956

LinuxSecurity.com Team
Nov 25, 2025

Debian 11: Critical Escalation Vulnerability in python-gevent DLA-4377-1Debian 11: Critical Escalation Vulnerability in python-gevent DLA-4377-1Debian 11: Critical Escalation Vulnerability in python-gevent DLA-4377-1 Debian 11: Critical Escalation Vulnerability in python-gevent DLA-4377-1Debian 11: Critical Escalation Vulnerability in python-gevent DLA-4377-1Debian 11: Critical Escalation Vulnerability in python-gevent DLA-4377-1

Debian 11: Critical Escalation Vulnerability in python-gevent DLA-4377-1

An issue in Gevent before version 23.9.0 allows a remote attacker to escalate privileges via a crafted script to the WSGIServer component. For Debian 11 bullseye, this problem has been fixed in version

LinuxSecurity.com Team
Nov 24, 2025

Debian 11: Advisories for Erlang Resource Leak & Critical Path IssuesDebian 11: Advisories for Erlang Resource Leak & Critical Path IssuesDebian 11: Advisories for Erlang Resource Leak & Critical Path Issues Debian 11: Advisories for Erlang Resource Leak & Critical Path IssuesDebian 11: Advisories for Erlang Resource Leak & Critical Path IssuesDebian 11: Advisories for Erlang Resource Leak & Critical Path Issues

Debian 11: Advisories for Erlang Resource Leak & Critical Path Issues

Multiple vulnerabilities were fixed in Erlang an concurrent, real-time, distributed functional language. CVE-2025-4748

LinuxSecurity.com Team
Nov 24, 2025