------------------------------------------------------------------------
The Debian Project https://www.debian.org/
Updated Debian 13: 13.2 released press@debian.org
November 15th, 2025 https://www.debian.org/News/2025/20251115
------------------------------------------------------------------------
The Debian project is pleased to announce the second update of its
stable distribution Debian 13 (codename "trixie"). This point release
mainly adds corrections for security issues, along with a few
adjustments for serious problems. Security advisories have already been
published separately and are referenced where available.
Please note that the point release does not constitute a new version of
Debian 13 but only updates some of the packages included. There is no
need to throw away old "trixie" media. After installation, packages can
be upgraded to the current versions using an up-to-date Debian mirror.
Those who frequently install updates from security.debian.org won't have
to update many packages, and most such updates are included in the point
release.
New installation images will be available soon at the regular locations.
Upgrading an existing installation to this revision can be achieved by
pointing the package management system at one of Debian's many HTTP
mirrors. A comprehensive list of mirrors is available at:
https://www.debian.org/mirror/list
Miscellaneous Bugfixes
----------------------
This stable update adds a few important corrections to the following
packages:
+---------------------------+-----------------------------------------+
| Package | Reason |
+---------------------------+-----------------------------------------+
| 7zip [1] | New upstream release; security fixes |
| | [CVE-2025-55188 CVE-2025-11002 |
| | CVE-2025-11001] |
| | |
| 7zip-rar [2] | Add missing CRC table constructor |
| | |
| aide [3] | Fix bin/buildcache use by running it |
| | from a root timer; various updates and |
| | fixes to included rules |
| | |
| allow-html-temp [4] | New upstream version to support newer |
| | Thunderbird releases |
| | |
| alsa-ucm-conf-asahi [5] | Install missing aop_audio UCM configs |
| | |
| ansible [6] | Update collections to maintain |
| | compatibility with ansible-core 2.19 |
| | |
| ansible-core [7] | New upstream stable release; fix |
| | regression from 2.18 regarding handlers |
| | and play tags |
| | |
| asahi-scripts [8] | Fix the macaudio default profile check; |
| | add the apple_nvmem_spmi module to the |
| | initramfs explicitly; make update-m1n1 |
| | idempotent |
| | |
| base-files [9] | Update for the point release |
| | |
| brltty [10] | atSpi2: do not manage widgets without |
| | text interface; avoid excessive verbose |
| | bluetooth/usbfs messages |
| | |
| console-setup [11] | Update keyboard layouts dz(la) into |
| | dz(azerty-oss) and Use ca/multix |
| | variant instead of ca/multi; fix |
| | dz(azerty-oss/deadkeys) into dz, which |
| | is what xkb really provides; fix dz |
| | default layout |
| | |
| cups [12] | Fix operation of checkboxes in admin |
| | interface |
| | |
| curl [13] | Fix buffer over-read issue [CVE-2025- |
| | 9086]; fix cache poisoning issue |
| | [CVE-2025-10148]; fix path traversal |
| | issue [CVE-2025-11563]; allow --output |
| | to be overridden by --curl-options; fix |
| | manpage example for "continue-at" ; |
| | fix path traversal issue [CVE-2025- |
| | 11563] |
| | |
| debian-edu-config [14] | Use SERVER_ADDRESS in RewriteRule |
| | instead of hard-coded 'www'; drop |
| | desktop bundle from bundlesequence |
| | |
| debian-installer [15] | Increase Linux kernel ABI to |
| | 6.12.57+deb13; rebuild against |
| | proposed-updates |
| | |
| debian-installer-netboot- | Increase Linux kernel ABI to |
| images [16] | 6.12.57+deb13; rebuild against |
| | proposed-updates |
| | |
| dhcpcd [17] | Fix crash when an address is deleted; |
| | prevent failure to start if |
| | wpasupplicant is not installed |
| | |
| distro-info-data [18] | Update EoL date for bookworm; add |
| | Ubuntu 26.04 LTS "Resolute Raccoon" |
| | |
| dkms [19] | New upstream release; stop shipping |
| | dkms.service, fixing dependency cycle |
| | with cloud-init-network.service; emit a |
| | warning if no kernel headers were found |
| | |
| dns-root-data [20] | Update root-anchors.p7s (the signature |
| | of root-anchors.xml) with a new |
| | expiration date |
| | |
| dnsdist [21] | Fix denial of service issues [CVE-2025- |
| | 8671 CVE-2025-30187] |
| | |
| dolphin-emu [22] | Fix interaction with RetroAchievements; |
| | fix translations |
| | |
| dovecot [23] | Ensure default lmtpd |
| | auth_username_format matches the global |
| | value; fix oauth configuration parsing; |
| | lib-sieve: correctly handle errors; |
| | clean up a few typos in default/example |
| | configuration |
| | |
| eas4tbsync [24] | New upstream version to support newer |
| | Thunderbird releases |
| | |
| eperl [25] | Avoid passing a truncated environment |
| | on Perl 5.40 |
| | |
| epiphany-browser [26] | New upstream stable release; fix |
| | various crashes; fix PKCS#11 login for |
| | invalid cert/priv pairs |
| | |
| evolution [27] | New upstream stable release |
| | |
| evolution-data- | New upstream stable release; fix busy |
| server [28] | loop when using the MH format mail |
| | archive |
| | |
| fangfrisch [29] | Update sanesecurity mirror as the old |
| | one will stop working soon |
| | |
| fluidsynth [30] | Set the default samplerate to 48000 and |
| | buffer size to 512 in the service |
| | configuration, fixing high CPU usage |
| | and distorted sound |
| | |
| folder-account [31] | New upstream version to support newer |
| | Thunderbird releases |
| | |
| fonts-noto-color- | New upstream release; add support for |
| emoji [32] | the Unicode 17.0 standard |
| | |
| freeradius [33] | Fix compatibility with OpenSSL 3.5.2 |
| | |
| gnome-maps [34] | New upstream stable release; fix a |
| | regression when requesting route |
| | planning from transitous.org; add |
| | address format for Austria and Paraguay |
| | |
| gnome-session [35] | Fix default app priority for early |
| | adopters of Papers and Showtime |
| | |
| google-recaptcha [36] | Fix PHP 8.4 deprecation warnings |
| | |
| ikvswitch [37] | Use Trixie as default distro for the |
| | setup; don't fail on errors when taking |
| | down an IPMI bridge; use a sysctl.d |
| | fragment file rather than sysctl.conf |
| | |
| imagemagick [38] | Fix integer overflow issue [CVE-2025- |
| | 62171] |
| | |
| input-remapper [39] | Add missing python3-psutil runtime |
| | dependency |
| | |
| irqbalance [40] | Enable write access to /proc/irq in |
| | service definition |
| | |
| jdupes [41] | Fix detection of unique files |
| | |
| jing-trang [42] | Re-import upstream release, to remove |
| | incorrectly included files |
| | |
| keepassxc-browser [43] | Fix compatibility with Chromium |
| | |
| kmail-account-wizard [44] | Enable automatic QML dependency |
| | detection |
| | |
| lemonldap-ng [45] | Fix command injection issue [CVE-2025- |
| | 59518]; don't expose session-id into |
| | Ajax responses; fix Google |
| | authentication |
| | |
| libcommons-lang-java [46] | Fix an uncontrolled recursion issue |
| | [CVE-2025-48924] |
| | |
| libcommons-lang3- | Fix an uncontrolled recursion issue |
| java [47] | [CVE-2025-48924] |
| | |
| libgpiod [48] | Remove unnecessary Breaks/Replaces on |
| | libgpiod2 and libgpiod2t64 |
| | |
| libhtp [49] | Prevent memory leak with lzma |
| | [CVE-2025-53537] |
| | |
| libsmb2 [50] | Fix buffer overflow issue [CVE-2025- |
| | 57632] |
| | |
| libssh [51] | Fix NULL pointer dereference issue |
| | [CVE-2025-8114]; fix denial of service |
| | issue [CVE-2025-8277] |
| | |
| libvirt [52] | Don't require TLS certificates to |
| | support keyEncipherment; lower log |
| | level of a message, avoiding journal |
| | spam when using the LXC driver; fix a |
| | daemon crash that occurs when probing |
| | capabilities for a QEMU binary that |
| | doesn't report information about CPU |
| | models |
| | |
| libwebsockets [53] | Fix denial of service issue [CVE-2025- |
| | 11677]; fix buffer overflow issue |
| | [CVE-2025-11678] |
| | |
| libxml2 [54] | Fix XPath recursion depth DoS |
| | [CVE-2025-9714] |
| | |
| libyaml-syck-perl [55] | Prevent memory corruption leading to |
| | "str" value being set on empty keys |
| | [CVE-2025-11683] |
| | |
| linux [56] | New upstream stable release |
| | |
| linux-signed-amd64 [57] | New upstream stable release |
| | |
| linux-signed-arm64 [58] | New upstream stable release |
| | |
| lnav [59] | Handle failure to set cregs from tmux |
| | |
| log4cxx [60] | Fix improper escaping issues [CVE-2025- |
| | 54812 CVE-2025-54813] |
| | |
| logcheck [61] | Update ignore.d.paranoid/ssh and |
| | ignore.d.server/ssh |
| | |
| lttng-modules [62] | Fix potential kernel crash with syscall |
| | tracing |
| | |
| luksmeta [63] | Fix data corruption issue with LUKS1 |
| | [CVE-2025-11568] |
| | |
| lxcfs [64] | Add missing dependency on fuse3 |
| | |
| magit [65] | Ship missing magit-dired.el in elpa- |
| | magit |
| | |
| mailfromd [66] | Rebuild to fix symbol lookup error |
| | |
| mailmindr [67] | New upstream version to support newer |
| | Thunderbird releases |
| | |
| malcontent [68] | Fix filtering snaps after snapd 2.72; |
| | fix listing flatpaks in parental |
| | control UI; fix memory leak when |
| | checking snaps |
| | |
| mapserver [69] | Fix SQL injection issue [CVE-2025- |
| | 59431] |
| | |
| mc [70] | Fix accidental use of >&10 for |
| | subshells, avoiding delays at startup |
| | |
| modsecurity-apache [71] | Fix security issues relating to |
| | response Content-Type handling |
| | [CVE-2025-54571] |
| | |
| monitoring-plugins [72] | Fix check_users in combination with |
| | systemd; fix check_mysql plugin with |
| | newer MySQL versions |
| | |
| mpv [73] | Create missing folders for watch |
| | history |
| | |
| mrtg [74] | Fix duplicate WorkDir lines in cfgmaker |
| | output |
| | |
| nextcloud-desktop [75] | New upstream stable release |
| | |
| nfdump [76] | Honour subdir (-S) when using dynamic |
| | FlowSource (-M) |
| | |
| nova [77] | Fix information disclosure issue |
| | |
| nvidia-graphics-drivers- | Fix use after free issue [CVE-2025- |
| tesla-535 [78] | 23280]; fix privilege escalation issue |
| | [CVE-2025-23282]; fix denial of service |
| | issues [CVE-2025-23300 CVE-2025-23330 |
| | CVE-2025-23332 CVE-2025-23345] |
| | |
| onetbb [79] | Fix test failures on single-CPU test |
| | machines; skip flaky mutex tests |
| | |
| open-vm-tools [80] | Disable (default) the execution of the |
| | SDMP get-versions.sh script [CVE-2025- |
| | 41244] |
| | |
| openssl [81] | New upstream stable release |
| | |
| openvpn-auth-radius [82] | Fix packet authentication |
| | |
| orphan-sysvinit- | Add haveged init script |
| scripts [83] | |
| | |
| patroni [84] | New upstream stable release |
| | |
| pdns-recursor [85] | Switch to dpkg/default.mk; drop |
| | CARGO_REGISTRY override |
| | |
| phpmyadmin [86] | Address XSS vulnerability in bundled |
| | jquery.validate.js [CVE-2025-3573] |
| | |
| poppler [87] | Fix infinite recursion [CVE-2025-50420] |
| | |
| postfix [88] | New upstream stable release; fix typo |
| | which caused recreation of cadir in |
| | chroot and excessive logging |
| | |
| presage [89] | Prevent crash with apostrophes in |
| | completion suggestions |
| | |
| privatebin-cli [90] | Fix connections to pastebins using GCM |
| | ciphers |
| | |
| proftpd-dfsg [91] | Don't remove /srv/ftp on package purge |
| | |
| puppet-module-puppetlabs- | Fix list_users provider; setup all |
| rabbitmq [92] | nodes as disk nodes |
| | |
| puppet-module- | Fix autoloading of openstack provider |
| tempest [93] | |
| | |
| python-eventlet [94] | Fix HTTP request smuggling by |
| | discarding HTTP chunk trailers |
| | [CVE-2025-58068] |
| | |
| qemu [95] | New upstream stable release; fix denial |
| | of service issue [CVE-2024-8354]; fix |
| | wrong emulation of FIBMAP and FIGETBSZ |
| | ioctls |
| | |
| qt6-base [96] | Fix high CPU usage of kwin_x11 on |
| | screen lock (X11) |
| | |
| quicktext [97] | New upstream version to support newer |
| | Thunderbird releases |
| | |
| rabbitmq-server [98] | Fix logging on sensitive data |
| | [CVE-2025-50200] |
| | |
| riseup-vpn [99] | Add dependency on qml6-module-qtcore |
| | |
| rocm-hipamd [100] | Fix linking for programs that include |
| | <hip/hip_bf16.h> in more than one |
| | translation unit; fix spelling error in |
| | roc-obj-ls manpage |
| | |
| rsyslog-doc [101] | Switch documentation theme to |
| | sphinx_rtd_theme |
| | |
| ruby-sys-filesystem [102] | Fix detection of 64-bit OS on s390x and |
| | alpha |
| | |
| rust-virtiofsd [103] | Add missing dependency on uidmap |
| | |
| sail [104] | Fix memory corruption issues [CVE-2025- |
| | 32468 CVE-2025-35984 CVE-2025-46407 |
| | CVE-2025-50129 CVE-2025-52456 CVE-2025- |
| | 52930 CVE-2025-53085 CVE-2025-53510] |
| | |
| samba [105] | New upstream stable release; fix |
| | uninitialized memory disclosure issue |
| | [CVE-2025-9640], command injection |
| | issue [CVE-2025-10230] |
| | |
| samhain [106] | Disable dnmalloc, preventing possible |
| | segfaults |
| | |
| spip [107] | Fix open redirect issue on AJAX login |
| | form |
| | |
| stardict [108] | Split plugin in to a new stardict- |
| | plugin-network-dictionary package; |
| | disable stardict_dictdotcn.so plugin |
| | |
| suricata [109] | Fix uncontrolled memory use issue |
| | [CVE-2025-53538]; fix detection bypass |
| | issue [CVE-2025-59147] |
| | |
| syslog-ng [110] | Disable writing of log statistics by |
| | default |
| | |
| systemd [111] | New upstream stable release; fix DNS- |
| | over-TLS handling in systemd-resolved; |
| | improve service and unit lifecycle |
| | stability; handle TPM2 and pcrlock |
| | corner cases; update documentation; |
| | refresh hwdb data; sync with Linux UAPI |
| | headers |
| | |
| systemd-boot-efi-amd64- | New upstream stable release; fix DNS- |
| signed [112] | over-TLS handling in systemd-resolved; |
| | improve service and unit lifecycle |
| | stability; handle TPM2 and pcrlock |
| | corner cases; update documentation; |
| | refresh hwdb data; sync with Linux UAPI |
| | headers |
| | |
| systemd-boot-efi-arm64- | New upstream stable release; fix DNS- |
| signed [113] | over-TLS handling in systemd-resolved; |
| | improve service and unit lifecycle |
| | stability; handle TPM2 and pcrlock |
| | corner cases; update documentation; |
| | refresh hwdb data; sync with Linux UAPI |
| | headers |
| | |
| tango [114] | Fix broken communication between |
| | versions 9 and 10 |
| | |
| tbsync [115] | New upstream version to support newer |
| | Thunderbird releases |
| | |
| ublock-origin [116] | New upstream release; improve user |
| | experience and add new filter |
| | capabilities |
| | |
| virt-manager [117] | Fix "Browse local" function |
| | |
| watcher [118] | Fix information disclosure issue |
| | |
| wike [119] | Set a User Agent, to ensure that the |
| | mobile version of Wikipedia is used |
| | |
| wtmpdb [120] | Rotate and prune logs using logrotate; |
| | store logs in system log directory |
| | |
| xnote [121] | New upstream version to support newer |
| | Thunderbird releases |
| | |
| xorg [122] | Fix login failure with sessions using |
| | multiple words in invocation |
| | |
| xssproxy [123] | Fix compatibility with Chromium and |
| | xdg-desktop-portal-gtk |
| | |
+---------------------------+-----------------------------------------+
1: https://packages.debian.org/src:7zip
2: https://packages.debian.org/src:7zip-rar
3: https://packages.debian.org/src:aide
4: https://packages.debian.org/src:allow-html-temp
5: https://packages.debian.org/src:alsa-ucm-conf-asahi
6: https://packages.debian.org/src:ansible
7: https://packages.debian.org/src:ansible-core
8: https://packages.debian.org/src:asahi-scripts
9: https://packages.debian.org/src:base-files
10: https://packages.debian.org/src:brltty
11: https://packages.debian.org/src:console-setup
12: https://packages.debian.org/src:cups
13: https://packages.debian.org/src:curl
14: https://packages.debian.org/src:debian-edu-config
15: https://packages.debian.org/src:debian-installer
16: https://packages.debian.org/src:debian-installer-netboot-images
17: https://packages.debian.org/src:dhcpcd
18: https://packages.debian.org/src:distro-info-data
19: https://packages.debian.org/src:dkms
20: https://packages.debian.org/src:dns-root-data
21: https://packages.debian.org/src:dnsdist
22: https://packages.debian.org/src:dolphin-emu
23: https://packages.debian.org/src:dovecot
24: https://packages.debian.org/src:eas4tbsync
25: https://packages.debian.org/src:eperl
26: https://packages.debian.org/src:epiphany-browser
27: https://packages.debian.org/src:evolution
28: https://packages.debian.org/src:evolution-data-server
29: https://packages.debian.org/src:fangfrisch
30: https://packages.debian.org/src:fluidsynth
31: https://packages.debian.org/src:folder-account
32: https://packages.debian.org/src:fonts-noto-color-emoji
33: https://packages.debian.org/src:freeradius
34: https://packages.debian.org/src:gnome-maps
35: https://packages.debian.org/src:gnome-session
36: https://packages.debian.org/src:google-recaptcha
37: https://packages.debian.org/src:ikvswitch
38: https://packages.debian.org/src:imagemagick
39: https://packages.debian.org/src:input-remapper
40: https://packages.debian.org/src:irqbalance
41: https://packages.debian.org/src:jdupes
42: https://packages.debian.org/src:jing-trang
43: https://packages.debian.org/src:keepassxc-browser
44: https://packages.debian.org/src:kmail-account-wizard
45: https://packages.debian.org/src:lemonldap-ng
46: https://packages.debian.org/src:libcommons-lang-java
47: https://packages.debian.org/src:libcommons-lang3-java
48: https://packages.debian.org/src:libgpiod
49: https://packages.debian.org/src:libhtp
50: https://packages.debian.org/src:libsmb2
51: https://packages.debian.org/src:libssh
52: https://packages.debian.org/src:libvirt
53: https://packages.debian.org/src:libwebsockets
54: https://packages.debian.org/src:libxml2
55: https://packages.debian.org/src:libyaml-syck-perl
56: https://packages.debian.org/src:linux
57: https://packages.debian.org/src:linux-signed-amd64
58: https://packages.debian.org/src:linux-signed-arm64
59: https://packages.debian.org/src:lnav
60: https://packages.debian.org/src:log4cxx
61: https://packages.debian.org/src:logcheck
62: https://packages.debian.org/src:lttng-modules
63: https://packages.debian.org/src:luksmeta
64: https://packages.debian.org/src:lxcfs
65: https://packages.debian.org/src:magit
66: https://packages.debian.org/src:mailfromd
67: https://packages.debian.org/src:mailmindr
68: https://packages.debian.org/src:malcontent
69: https://packages.debian.org/src:mapserver
70: https://packages.debian.org/src:mc
71: https://packages.debian.org/src:modsecurity-apache
72: https://packages.debian.org/src:monitoring-plugins
73: https://packages.debian.org/src:mpv
74: https://packages.debian.org/src:mrtg
75: https://packages.debian.org/src:nextcloud-desktop
76: https://packages.debian.org/src:nfdump
77: https://packages.debian.org/src:nova
78: https://packages.debian.org/src:nvidia-graphics-drivers-tesla-535
79: https://packages.debian.org/src:onetbb
80: https://packages.debian.org/src:open-vm-tools
81: https://packages.debian.org/src:openssl
82: https://packages.debian.org/src:openvpn-auth-radius
83: https://packages.debian.org/src:orphan-sysvinit-scripts
84: https://packages.debian.org/src:patroni
85: https://packages.debian.org/src:pdns-recursor
86: https://packages.debian.org/src:phpmyadmin
87: https://packages.debian.org/src:poppler
88: https://packages.debian.org/src:postfix
89: https://packages.debian.org/src:presage
90: https://packages.debian.org/src:privatebin-cli
91: https://packages.debian.org/src:proftpd-dfsg
92: https://packages.debian.org/src:puppet-module-puppetlabs-rabbitmq
93: https://packages.debian.org/src:puppet-module-tempest
94: https://packages.debian.org/src:python-eventlet
95: https://packages.debian.org/src:qemu
96: https://packages.debian.org/src:qt6-base
97: https://packages.debian.org/src:quicktext
98: https://packages.debian.org/src:rabbitmq-server
99: https://packages.debian.org/src:riseup-vpn
100: https://packages.debian.org/src:rocm-hipamd
101: https://packages.debian.org/src:rsyslog-doc
102: https://packages.debian.org/src:ruby-sys-filesystem
103: https://packages.debian.org/src:rust-virtiofsd
104: https://packages.debian.org/src:sail
105: https://packages.debian.org/src:samba
106: https://packages.debian.org/src:samhain
107: https://packages.debian.org/src:spip
108: https://packages.debian.org/src:stardict
109: https://packages.debian.org/src:suricata
110: https://packages.debian.org/src:syslog-ng
111: https://packages.debian.org/src:systemd
112: https://packages.debian.org/src:systemd-boot-efi-amd64-signed
113: https://packages.debian.org/src:systemd-boot-efi-arm64-signed
114: https://packages.debian.org/src:tango
115: https://packages.debian.org/src:tbsync
116: https://packages.debian.org/src:ublock-origin
117: https://packages.debian.org/src:virt-manager
118: https://packages.debian.org/src:watcher
119: https://packages.debian.org/src:wike
120: https://packages.debian.org/src:wtmpdb
121: https://packages.debian.org/src:xnote
122: https://packages.debian.org/src:xorg
123: https://packages.debian.org/src:xssproxy
Security Updates
----------------
This revision adds the following security updates to the stable release.
The Security Team has already released an advisory for each of these
updates:
+----------------+------------------------------+
| Advisory ID | Package |
+----------------+------------------------------+
| DSA-5979 [124] | libxslt [125] |
| | |
| DSA-5993 [126] | chromium [127] |
| | |
| DSA-5994 [128] | shibboleth-sp [129] |
| | |
| DSA-5995 [130] | hsqldb1.8.0 [131] |
| | |
| DSA-5996 [132] | chromium [133] |
| | |
| DSA-5997 [134] | imagemagick [135] |
| | |
| DSA-5998 [136] | cups [137] |
| | |
| DSA-5999 [138] | libjson-xs-perl [139] |
| | |
| DSA-6000 [140] | libcpanel-json-xs-perl [141] |
| | |
| DSA-6001 [142] | cjson [143] |
| | |
| DSA-6002 [144] | node-sha.js [145] |
| | |
| DSA-6003 [146] | firefox-esr [147] |
| | |
| DSA-6004 [148] | chromium [149] |
| | |
| DSA-6005 [150] | jetty9 [151] |
| | |
| DSA-6006 [152] | jetty12 [153] |
| | |
| DSA-6007 [154] | ffmpeg [155] |
| | |
| DSA-6008 [156] | linux-signed-amd64 [157] |
| | |
| DSA-6008 [158] | linux-signed-arm64 [159] |
| | |
| DSA-6008 [160] | linux [161] |
| | |
| DSA-6010 [162] | chromium [163] |
| | |
| DSA-6012 [164] | nncp [165] |
| | |
| DSA-6013 [166] | node-tar-fs [167] |
| | |
| DSA-6014 [168] | gimp [169] |
| | |
| DSA-6015 [170] | openssl [171] |
| | |
| DSA-6016 [172] | chromium [173] |
| | |
| DSA-6017 [174] | haproxy [175] |
| | |
| DSA-6018 [176] | gegl [177] |
| | |
| DSA-6019 [178] | dovecot [179] |
| | |
| DSA-6020 [180] | redis [181] |
| | |
| DSA-6021 [182] | chromium [183] |
| | |
| DSA-6022 [184] | valkey [185] |
| | |
| DSA-6023 [186] | tiff [187] |
| | |
| DSA-6024 [188] | ghostscript [189] |
| | |
| DSA-6025 [190] | firefox-esr [191] |
| | |
| DSA-6026 [192] | chromium [193] |
| | |
| DSA-6027 [194] | incus [195] |
| | |
| DSA-6028 [196] | lxd [197] |
| | |
| DSA-6030 [198] | intel-microcode [199] |
| | |
| DSA-6031 [200] | request-tracker5 [201] |
| | |
| DSA-6033 [202] | bind9 [203] |
| | |
| DSA-6034 [204] | tryton-sao [205] |
| | |
| DSA-6035 [206] | python-internetarchive [207] |
| | |
| DSA-6036 [208] | chromium [209] |
| | |
| DSA-6037 [210] | openjdk-21 [211] |
| | |
| DSA-6039 [212] | openjdk-25 [213] |
| | |
| DSA-6040 [214] | thunderbird [215] |
| | |
| DSA-6042 [216] | evolution [217] |
| | |
| DSA-6042 [218] | webkit2gtk [219] |
| | |
| DSA-6044 [220] | xorg-server [221] |
| | |
| DSA-6045 [222] | pdns-recursor [223] |
| | |
| DSA-6046 [224] | chromium [225] |
| | |
| DSA-6047 [226] | squid [227] |
| | |
| DSA-6048 [228] | ruby-rack [229] |
| | |
| DSA-6049 [230] | gimp [231] |
| | |
| DSA-6050 [232] | chromium [233] |
| | |
+----------------+------------------------------+
124: https://www.debian.org/security/2025/dsa-5979
125: https://packages.debian.org/src:libxslt
126: https://www.debian.org/security/2025/dsa-5993
127: https://packages.debian.org/src:chromium
128: https://www.debian.org/security/2025/dsa-5994
129: https://packages.debian.org/src:shibboleth-sp
130: https://www.debian.org/security/2025/dsa-5995
131: https://packages.debian.org/src:hsqldb1.8.0
132: https://www.debian.org/security/2025/dsa-5996
133: https://packages.debian.org/src:chromium
134: https://www.debian.org/security/2025/dsa-5997
135: https://packages.debian.org/src:imagemagick
136: https://www.debian.org/security/2025/dsa-5998
137: https://packages.debian.org/src:cups
138: https://www.debian.org/security/2025/dsa-5999
139: https://packages.debian.org/src:libjson-xs-perl
140: https://www.debian.org/security/2025/dsa-6000
141: https://packages.debian.org/src:libcpanel-json-xs-perl
142: https://www.debian.org/security/2025/dsa-6001
143: https://packages.debian.org/src:cjson
144: https://www.debian.org/security/2025/dsa-6002
145: https://packages.debian.org/src:node-sha.js
146: https://www.debian.org/security/2025/dsa-6003
147: https://packages.debian.org/src:firefox-esr
148: https://www.debian.org/security/2025/dsa-6004
149: https://packages.debian.org/src:chromium
150: https://www.debian.org/security/2025/dsa-6005
151: https://packages.debian.org/src:jetty9
152: https://www.debian.org/security/2025/dsa-6006
153: https://packages.debian.org/src:jetty12
154: https://www.debian.org/security/2025/dsa-6007
155: https://packages.debian.org/src:ffmpeg
156: https://www.debian.org/security/2026/dsa-6008
157: https://packages.debian.org/src:linux-signed-amd64
158: https://www.debian.org/security/2026/dsa-6008
159: https://packages.debian.org/src:linux-signed-arm64
160: https://www.debian.org/security/2025/dsa-6008
161: https://packages.debian.org/src:linux
162: https://www.debian.org/security/2025/dsa-6010
163: https://packages.debian.org/src:chromium
164: https://www.debian.org/security/2025/dsa-6012
165: https://packages.debian.org/src:nncp
166: https://www.debian.org/security/2025/dsa-6013
167: https://packages.debian.org/src:node-tar-fs
168: https://www.debian.org/security/2025/dsa-6014
169: https://packages.debian.org/src:gimp
170: https://www.debian.org/security/2025/dsa-6015
171: https://packages.debian.org/src:openssl
172: https://www.debian.org/security/2025/dsa-6016
173: https://packages.debian.org/src:chromium
174: https://www.debian.org/security/2025/dsa-6017
175: https://packages.debian.org/src:haproxy
176: https://www.debian.org/security/2025/dsa-6018
177: https://packages.debian.org/src:gegl
178: https://www.debian.org/security/2025/dsa-6019
179: https://packages.debian.org/src:dovecot
180: https://www.debian.org/security/2025/dsa-6020
181: https://packages.debian.org/src:redis
182: https://www.debian.org/security/2025/dsa-6021
183: https://packages.debian.org/src:chromium
184: https://www.debian.org/security/2025/dsa-6022
185: https://packages.debian.org/src:valkey
186: https://www.debian.org/security/2025/dsa-6023
187: https://packages.debian.org/src:tiff
188: https://www.debian.org/security/2025/dsa-6024
189: https://packages.debian.org/src:ghostscript
190: https://www.debian.org/security/2025/dsa-6025
191: https://packages.debian.org/src:firefox-esr
192: https://www.debian.org/security/2025/dsa-6026
193: https://packages.debian.org/src:chromium
194: https://www.debian.org/security/2025/dsa-6027
195: https://packages.debian.org/src:incus
196: https://www.debian.org/security/2025/dsa-6028
197: https://packages.debian.org/src:lxd
198: https://www.debian.org/security/2025/dsa-6030
199: https://packages.debian.org/src:intel-microcode
200: https://www.debian.org/security/2025/dsa-6031
201: https://packages.debian.org/src:request-tracker5
202: https://www.debian.org/security/2025/dsa-6033
203: https://packages.debian.org/src:bind9
204: https://www.debian.org/security/2025/dsa-6034
205: https://packages.debian.org/src:tryton-sao
206: https://www.debian.org/security/2025/dsa-6035
207: https://packages.debian.org/src:python-internetarchive
208: https://www.debian.org/security/2025/dsa-6036
209: https://packages.debian.org/src:chromium
210: https://www.debian.org/security/2025/dsa-6037
211: https://packages.debian.org/src:openjdk-21
212: https://www.debian.org/security/2025/dsa-6039
213: https://packages.debian.org/src:openjdk-25
214: https://www.debian.org/security/2025/dsa-6040
215: https://packages.debian.org/src:thunderbird
216: https://www.debian.org/security/2026/dsa-6042
217: https://packages.debian.org/src:evolution
218: https://www.debian.org/security/2025/dsa-6042
219: https://packages.debian.org/src:webkit2gtk
220: https://www.debian.org/security/2025/dsa-6044
221: https://packages.debian.org/src:xorg-server
222: https://www.debian.org/security/2025/dsa-6045
223: https://packages.debian.org/src:pdns-recursor
224: https://www.debian.org/security/2025/dsa-6046
225: https://packages.debian.org/src:chromium
226: https://www.debian.org/security/2025/dsa-6047
227: https://packages.debian.org/src:squid
228: https://www.debian.org/security/2025/dsa-6048
229: https://packages.debian.org/src:ruby-rack
230: https://www.debian.org/security/2025/dsa-6049
231: https://packages.debian.org/src:gimp
232: https://www.debian.org/security/2025/dsa-6050
233: https://packages.debian.org/src:chromium
Removed packages
----------------
The following packages were removed due to circumstances beyond our
control:
+---------------------------------+--------+
| Package | Reason |
+---------------------------------+--------+
| rust-profiling-procmacros [234] | Unused |
| | |
+---------------------------------+--------+
234: https://packages.debian.org/src:rust-profiling-procmacros
Debian Installer
----------------
The installer has been updated to include the fixes incorporated into
stable by the point release.
URLs
----
The complete lists of packages that have changed with this revision:
https://deb.debian.org/debian/dists/trixie/ChangeLog
The current stable distribution:
https://deb.debian.org/debian/dists/stable/
Proposed updates to the stable distribution:
https://deb.debian.org/debian/dists/proposed-updates
stable distribution information (release notes, errata etc.):
https://www.debian.org/releases/stable/
Security announcements and information:
https://www.debian.org/security/
About Debian
------------
The Debian Project is an association of Free Software developers who
volunteer their time and effort in order to produce the completely free
operating system Debian.
Contact Information
-------------------
For further information, please visit the Debian web pages at
https://www.debian.org/, send mail to <press@debian.org>, or contact the
stable release team at <debian-release@lists.debian.org>.
Attachment:
signature.asc
Description: This is a digitally signed message part