Dashboard

Package : chromium CVE ID : CVE-2025-1914 CVE-2025-1915 CVE-2025-1916 CVE-2025-1917 CVE-2025-1918 CVE-2025-1919 CVE-2025-1921 CVE-2025-1922 CVE-2025-1923 Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the stable distribution (bookworm), these problems have been fixed in version 134.0.6998.35-1~deb12u1. We recommend that you upgrade your chromium packages. For the…

Package : firefox-esr CVE ID : CVE-2024-43097 CVE-2025-1931 CVE-2025-1932 CVE-2025-1933 CVE-2025-1934 CVE-2025-1935 CVE-2025-1936 CVE-2025-1937 CVE-2025-1938 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code. For the stable distribution (bookworm), these problems have been fixed in version 128.8.0esr-1~deb12u1. We recommend that you upgrade your firefox-esr packages. For…

Package : libreoffice CVE ID : CVE-2025-1080 Amel Bouziane-Leblond discovered that insufficient validation of "vnd.libreoffice.command" URI schemes could result in the execution of arbitrary macro commands. For the stable distribution (bookworm), this problem has been fixed in version 4:7.4.7-1+deb12u7. We recommend that you upgrade your libreoffice packages. For the detailed security status of libreoffice please refer to its security tracker page at:…

Package : xorg-server CVE ID : CVE-2025-26594 CVE-2025-26595 CVE-2025-26596 CVE-2025-26597 CVE-2025-26598 CVE-2025-26599 CVE-2025-26600 CVE-2025-26601 Debian Bug : 1098906 Jan-Niklas Sohn discovered several vulnerabilities in the Xorg X server, which may result in privilege escalation if the X server is running privileged. For the stable distribution (bookworm), these problems have been fixed in version 2:21.1.7-3+deb12u9. We recommend that you upgrade your…

Package : emacs CVE ID : CVE-2024-53920 CVE-2025-1244 Two security vulnerabilities were discovered in Emacs: CVE-2024-53920 Elisp byte-compilation ('elisp-flymake-byte-compile') in the Flymake mode is now disabled for untrusted files. CVE-2025-1244 An incomplete escaping of shell meta characters in the man reader component could potentially result in the execution of arbitrary shell commands. Discovered by Maxim Nikulin. For the stable distribution…

Package : openh264 CVE ID : CVE-2025-27091 Debian Bug : 1098470 A heap-based buffer overflow flaw in the decoding functions of openh264, a codec library which supports H.264 encoding and decoding, may allow a remote attacker to cause a denial of service or the execution of arbitrary code if a specially crafted video is processed. For the stable distribution (bookworm), this problem has been fixed in version 2.3.1+dfsg-3+deb12u1. We recommend that you upgrade your…

Package : chromium CVE ID : CVE-2025-0999 CVE-2025-1006 CVE-2025-1426 Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the stable distribution (bookworm), these problems have been fixed in version 133.0.6943.126-1~deb12u1. We recommend that you upgrade your chromium packages. For the detailed security status of chromium please refer to its security tracker page at:…

Package : openssh CVE ID : CVE-2025-26465 The Qualys Threat Research Unit (TRU) discovered that the OpenSSH client is vulnerable to a machine-in-the-middle attack if the VerifyHostKeyDNS option is enabled (disabled by default). Details can be found in the Qualys advisory at https://www.qualys.com/2025/02/18/openssh-mitm-dos.txt For the stable distribution (bookworm), this problem has been fixed in version 1:9.2p1-2+deb12u5. We recommend that you upgrade your openssh…

Package : gnutls28 CVE ID : CVE-2024-12243 Bing Shi reported a flaw in GnuTLS, a library implementing the TLS and SSL protocols. Inefficient processing of certificates containing numerous names or name constraints may result in a denial of service. For the stable distribution (bookworm), this problem has been fixed in version 3.7.9-2+deb12u4. We recommend that you upgrade your gnutls28 packages. For the detailed security status of gnutls28 please refer to its…

Package : chromium CVE ID : CVE-2025-0995 CVE-2025-0996 CVE-2025-0997 CVE-2025-0998 Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the stable distribution (bookworm), these problems have been fixed in version 133.0.6943.98-1~deb12u1. We recommend that you upgrade your chromium packages. For the detailed security status of chromium please refer to its security tracker…