------------------------------------------------------------------------
The Debian Project https://www.debian.org/
Updated Debian 13: 13.3 released press@debian.org
January 10th, 2026 https://www.debian.org/News/2026/20260110
------------------------------------------------------------------------
The Debian project is pleased to announce the third update of its stable
distribution Debian 13 (codename "trixie"). This point release mainly
adds corrections for security issues, along with a few adjustments for
serious problems. Security advisories have already been published
separately and are referenced where available.
Please note that the point release does not constitute a new version of
Debian 13 but only updates some of the packages included. There is no
need to throw away old "trixie" media. After installation, packages can
be upgraded to the current versions using an up-to-date Debian mirror.
Those who frequently install updates from security.debian.org won't have
to update many packages, and most such updates are included in the point
release.
New installation images will be available soon at the regular locations.
Upgrading an existing installation to this revision can be achieved by
pointing the package management system at one of Debian's many HTTP
mirrors. A comprehensive list of mirrors is available at:
https://www.debian.org/mirror/list
Miscellaneous Bugfixes
----------------------
This stable update adds a few important corrections to the following
packages:
+---------------------------+-----------------------------------------+
| Package | Reason |
+---------------------------+-----------------------------------------+
| ansible [1] | New upstream stable release |
| | |
| apache2 [2] | New upstream stable release; fix |
| | integer overflow issue [CVE-2025- |
| | 55753]; don't pass querystring to #exec |
| | directives [CVE-2025-58098]; fix |
| | improper parsing of environment |
| | variables [CVE-2025-65082]; fix |
| | mod_userdir+suexec bypass issue |
| | [CVE-2025-66200] |
| | |
| at-spi2-core [3] | Ensure xkb group is taken into account |
| | for key events |
| | |
| awffull [4] | Fix systemd timer invocation to avoid |
| | premature cron-script exit |
| | |
| base-files [5] | Update for the point release |
| | |
| bash [6] | Rebuild with updated glibc |
| | |
| bglibs [7] | Rebuild with updated glibc |
| | |
| busybox [8] | Rebuild with updated glibc |
| | |
| calibre [9] | Fix FB2 embedded binary handling in |
| | conversion plugin [CVE-2025-64486] |
| | |
| catatonit [10] | Rebuild with updated glibc |
| | |
| cdebootstrap [11] | Rebuild with updated glibc |
| | |
| chkrootkit [12] | Rebuild with updated glibc |
| | |
| cloud-init [13] | Ensure deb822 sources.list template |
| | renders correctly |
| | |
| composer [14] | Fix ANSI sequence injection [CVE-2025- |
| | 67746] |
| | |
| condor [15] | Rebuild with updated glibc |
| | |
| cups-filters [16] | Fix TIFF parser bounds/validation |
| | issues [CVE-2025-57812]; clamp |
| | oversized PDF MediaBox-derived page |
| | size in pdftoraster [CVE-2025-64503]; |
| | avoid rastertopclx infinite loop and |
| | heap overflow on crafted raster input |
| | [CVE-2025-64524] |
| | |
| dar [17] | Rebuild with updated curl, glibc, |
| | openssl |
| | |
| debian-installer [18] | Increase Linux kernel ABI to |
| | 6.12.63+deb13; rebuild against proposed |
| | updates |
| | |
| debian-installer-netboot- | Rebuild against proposed-updates |
| images [19] | |
| | |
| debian-security- | Mark hdf5 and zabbix as receiving |
| support [20] | limited support; mark wpewebkit as |
| | unsupported |
| | |
| debos [21] | Move systemd-resolved from Recommends |
| | to Depends |
| | |
| dgit [22] | git-debrebase: use different directory |
| | for nested workareas |
| | |
| dhcpcd [23] | Re-enable ntp_servers option by default |
| | |
| diffoscope [24] | Fix tests when ukify is newer |
| | |
| distribution-gpg- | Update included keys |
| keys [25] | |
| | |
| distrobuilder [26] | Rebuild with updated containerd, incus |
| | |
| docker.io [27] | Rebuild with updated containerd, glibc |
| | |
| dpdk [28] | New upstream stable release |
| | |
| e2fsprogs [29] | Rebuild with updated glibc |
| | |
| edk2 [30] | Fix timing side-channel issue in ECDSA |
| | signature computation [CVE-2024-13176]; |
| | fix out-of-bounds memory access issue |
| | [CVE-2024-38805]; fix code execution |
| | issue [CVE-2025-3770] |
| | |
| exfatprogs [31] | Ensure mkfs.exfat defaults to 512-byte |
| | sectors for Windows compatibility |
| | |
| extrepo-data [32] | Update repository information; fix |
| | handling for future Debian releases |
| | |
| flatpak [33] | New upstream stable release |
| | |
| fpdf2 [34] | Fix use of variable fonts |
| | |
| freedombox [35] | distupgrade: Handle comments in |
| | sources.list file; update trixie's |
| | release date; backups: Set proper |
| | permissions for backups-data directory |
| | [CVE-2025-68462] |
| | |
| freeradius [36] | Fix TLS verification segfault when |
| | certificate chains include multiple |
| | intermediate certificates |
| | |
| glib2.0 [37] | Fix various integer overflow issues |
| | [CVE-2025-13601 CVE-2025-14087 |
| | CVE-2025-14512] |
| | |
| glibc [38] | Fix a double lock init issue after |
| | fork(); fix SYSCALL_CANCEL for return |
| | values larger than INT_MAX; fix crash |
| | in ifunc functions on arm64 when |
| | hardening with -ftrivial-auto-var- |
| | init=zero; fix _dl_find_object when |
| | ld.so has LOAD segment gaps, causing |
| | wrong backtrace unwinding; optimize |
| | inverse trig function, SVE exp, |
| | hyperbolic, and log1p functions on |
| | arm64 |
| | |
| gnome-shell [39] | New upstream bugfix release |
| | |
| gnupg2 [40] | Avoid potential downgrade to SHA1 in |
| | 3rd party key signatures; error out on |
| | unverified output for non-detached |
| | signatures; fix possible memory |
| | corruption in the armor parser |
| | [CVE-2025-68973]; do not use a default |
| | when asking for another output |
| | filename; rebuild with updated glibc |
| | |
| gnutls28 [41] | Fix PKCS#11 token label bounds in |
| | gnutls_pkcs11_token_init [CVE-2025- |
| | 9820]; initialise PKCS#11 modules in |
| | thread-safe mode with fallback |
| | |
| golang-github-awslabs- | Rebuild with updated containerd |
| soci-snapshotter [42] | |
| | |
| golang-github-containerd- | Rebuild with updated containerd |
| imgcrypt [43] | |
| | |
| golang-github-containerd- | Rebuild with updated containerd |
| nydus-snapshotter [44] | |
| | |
| golang-github-containerd- | Rebuild with updated containerd |
| stargz-snapshotter [45] | |
| | |
| golang-github-containers- | Rebuild with updated containerd |
| buildah [46] | |
| | |
| golang-github-openshift- | Rebuild with updated containerd |
| imagebuilder [47] | |
| | |
| imagemagick [48] | Fix denial of service issues [CVE-2025- |
| | 62594 CVE-2025-68618]; fix use-after- |
| | free issue [CVE-2025-65955]; fix |
| | integer overflow issues [CVE-2025-66628 |
| | CVE-2025-69204]; fix infinite loop |
| | issue [CVE-2025-68950] |
| | |
| incus [49] | Fix AppArmor profile generation for |
| | nested containers |
| | |
| integrit [50] | Rebuild with updated glibc |
| | |
| intel-microcode [51] | Update Intel processor microcode to |
| | 20251111 |
| | |
| iperf3 [52] | Fix authentication RSA encryption |
| | buffer length initialisation for |
| | OpenSSL 3.5.3+; avoid build failures |
| | with newer OpenSSL |
| | |
| kleopatra [53] | Fix failure to start with a file |
| | argument on GNOME |
| | |
| libcap2 [54] | Rebuild with updated glibc |
| | |
| libcoap3 [55] | Fix configuration file parsing issue |
| | [CVE-2025-59391]; fix NULL pointer |
| | dereference issues [CVE-2025-65493 |
| | CVE-2025-65494 CVE-2025-65496 CVE-2025- |
| | 65497 CVE-2025-65498 CVE-2025-65500 |
| | CVE-2025-65501]; fix integer signedness |
| | issue [CVE-2025-65495]; fix array index |
| | error issue [CVE-2025-65499] |
| | |
| libcupsfilters [56] | Fix TIFF parser bounds/validation |
| | issues [CVE-2025-57812]; clamp |
| | oversized PDF MediaBox-derived page |
| | size in pdftoraster [CVE-2025-64503] |
| | |
| libphp-adodb [57] | Fix SQL injection issue in sqlite(3) |
| | drivers [CVE-2025-54119] |
| | |
| libreoffice [58] | Set Bulgaria locale default currency to |
| | EUR |
| | |
| libvirt [59] | Perform ACL checks earlier, preventing |
| | malicious users from potentially being |
| | able to crash the daemon [CVE-2025- |
| | 12748]; ensure that newly-created |
| | snapshots are not world-readable |
| | [CVE-2025-13193]; apply the |
| | detect_zeroes settings across all |
| | layers of the backing chain instead of |
| | just the topmost one |
| | |
| linux [60] | New upstream stable release |
| | |
| linux-signed-amd64 [61] | New upstream stable release |
| | |
| linux-signed-arm64 [62] | New upstream stable release |
| | |
| lua-wsapi [63] | Fix Lua 5.1 support |
| | |
| lxc [64] | Add lxc-net dependency to sysvinit |
| | script; stop printing misleading errors |
| | in enter_net_ns(); fix generation of |
| | apparmor.d/abstractions/lxc/container- |
| | base; fix restarting unprivileged |
| | containers |
| | |
| lxd [65] | Fix broken idmapping with kernel 6.9+; |
| | tighten storage pool volume permissions |
| | [CVE-2025-64507] |
| | |
| matlab-support [66] | Avoid renaming MATLAB vendored Vulkan/ |
| | FreeType libraries |
| | |
| mbedtls [67] | New upstream stable release; fix timing |
| | issues [CVE-2025-54764 CVE-2025-59438] |
| | |
| mirrorbits [68] | Fix fallback redirects when Redis/file |
| | metadata is unavailable; normalise |
| | fallback mirror URLs to avoid malformed |
| | redirects |
| | |
| mongo-c-driver [69] | Avoid invalid memory reads [CVE-2025- |
| | 12119] |
| | |
| mutter [70] | New upstream bugfix release |
| | |
| node-nodemailer [71] | Fix addressparser recipient parsing for |
| | quoted nested addresses [CVE-2025- |
| | 13033] |
| | |
| openconnect [72] | Respect path in AnyConnect/OpenConnect |
| | XML form handling; fix failure to build |
| | with MinGW32/64; use RFC9266 'tls- |
| | exporter' channel bindings for Cisco |
| | STRAP with TLSv1.3 |
| | |
| pgbouncer [73] | Fix arbitary SQL execution issue |
| | [CVE-2025-12819] |
| | |
| podman [74] | Rebuild with updated containerd |
| | |
| postgresql-17 [75] | New upstream stable release; check for |
| | CREATE privileges on the schema in |
| | CREATE STATISTICS [CVE-2025-12817]; |
| | avoid integer overflow in allocation- |
| | size calculations within libpq |
| | [CVE-2025-12818] |
| | |
| pylint-django [76] | Fix use with new astroid |
| | |
| qemu [77] | New upstream stable release; fix use |
| | after free issue [CVE-2025-11234]; fix |
| | buffer overflow issue [CVE-2025-12464] |
| | |
| qiv [78] | Fix Wayland startup crash by forcing |
| | X11 GDK backend |
| | |
| r-bioc-beachmat [79] | Fix test that depends on the |
| | "beachmat.hdf5" R package, which is |
| | not yet in Debian |
| | |
| r-cran-gh [80] | Fix exposure of request headers in |
| | returned response objects [CVE-2025- |
| | 54956]; ensure pagination passes |
| | authentication context explicitly; |
| | update tests and documentation |
| | |
| reform-tools [81] | Fix building lpc with Linux >= 6.17 |
| | |
| rlottie [82] | Fix outlying coordinate rejection in |
| | FreeType rasteriser [CVE-2025-0634 |
| | CVE-2025-53074 CVE-2025-53075] |
| | |
| rsync [83] | Fix out-of-bounds read via negative |
| | array index in sender file list |
| | handling [CVE-2025-10158] |
| | |
| rust-repro-env [84] | Rebuild with updated rust-sequoia- |
| | openpgp |
| | |
| rust-ripasso-cursive [85] | Rebuild with updated rust-sequoia- |
| | openpgp |
| | |
| rust-sequoia-chameleon- | Rebuild with updated rust-sequoia- |
| gnupg [86] | openpgp |
| | |
| rust-sequoia-git [87] | Rebuild with updated rust-sequoia- |
| | openpgp |
| | |
| rust-sequoia-keystore- | Rebuild with updated rust-sequoia- |
| server [88] | openpgp |
| | |
| rust-sequoia-octopus- | Rebuild with updated rust-sequoia- |
| librnp [89] | openpgp |
| | |
| rust-sequoia-openpgp [90] | Fix buffer underflow in aes_key_unwrap |
| | [CVE-2025-67897] |
| | |
| rust-sequoia-sop [91] | Rebuild with updated rust-sequoia- |
| | openpgp |
| | |
| rust-sequoia-sq [92] | Rebuild with updated rust-sequoia- |
| | openpgp |
| | |
| rust-sequoia-sqv [93] | Rebuild with updated rust-sequoia- |
| | openpgp |
| | |
| sash [94] | Rebuild with updated glibc |
| | |
| sbuild [95] | Explicitly select the sbuild-build- |
| | depends-main-dummy package |
| | architecture; preserve TMPDIR when |
| | running autopkgtest; lib/Sbuild/ |
| | Build.pm: preserve TMPDIR for piuparts; |
| | obey $TMPDIR for autopkgtest dsc |
| | mkdtemp |
| | |
| snapd [96] | Rebuild with updated glibc |
| | |
| sogo [97] | Fix cross-site scripting issues |
| | [CVE-2025-63498 CVE-2025-63499] |
| | |
| suricata [98] | Fix verdict logging bounds checks |
| | [CVE-2025-64330]; fix various logging |
| | stack overflows [CVE-2025-64331 |
| | CVE-2025-64332 CVE-2025-64333 CVE-2025- |
| | 64344] |
| | |
| survex [99] | Fix the width of the "find stations" |
| | search box to make it actually usable |
| | again |
| | |
| swupdate [100] | Fix suricatta reboot-mode signalling |
| | via progress interface |
| | |
| symfony [101] | Fix PATH_INFO parsing [CVE-2025-64500]; |
| | drop failing Finder testsuite data |
| | entries |
| | |
| tini [102] | Rebuild with updated glibc |
| | |
| tripwire [103] | Rebuild with updated glibc |
| | |
| tsocks [104] | Rebuild with updated glibc |
| | |
| tzsetup [105] | Fix timezone for Argentina and Ukraine |
| | |
| user-mode-linux [106] | Rebuild with Linux 6.12.63-1 |
| | |
| yorick-gy [107] | Fix GIR module version loading for Gtk/ |
| | Gdk; switch to multiarch-friendly |
| | libgirepository-1.0-dev build- |
| | dependency; incorporate GCC-14/15 build |
| | fixes; update watch file and metadata |
| | |
| zsh [108] | Rebuild with updated glibc, pcre |
| | |
+---------------------------+-----------------------------------------+
1: https://packages.debian.org/src:ansible
2: https://packages.debian.org/src:apache2
3: https://packages.debian.org/src:at-spi2-core
4: https://packages.debian.org/src:awffull
5: https://packages.debian.org/src:base-files
6: https://packages.debian.org/src:bash
7: https://packages.debian.org/src:bglibs
8: https://packages.debian.org/src:busybox
9: https://packages.debian.org/src:calibre
10: https://packages.debian.org/src:catatonit
11: https://packages.debian.org/src:cdebootstrap
12: https://packages.debian.org/src:chkrootkit
13: https://packages.debian.org/src:cloud-init
14: https://packages.debian.org/src:composer
15: https://packages.debian.org/src:condor
16: https://packages.debian.org/src:cups-filters
17: https://packages.debian.org/src:dar
18: https://packages.debian.org/src:debian-installer
19: https://packages.debian.org/src:debian-installer-netboot-images
20: https://packages.debian.org/src:debian-security-support
21: https://packages.debian.org/src:debos
22: https://packages.debian.org/src:dgit
23: https://packages.debian.org/src:dhcpcd
24: https://packages.debian.org/src:diffoscope
25: https://packages.debian.org/src:distribution-gpg-keys
26: https://packages.debian.org/src:distrobuilder
27: https://packages.debian.org/src:docker.io
28: https://packages.debian.org/src:dpdk
29: https://packages.debian.org/src:e2fsprogs
30: https://packages.debian.org/src:edk2
31: https://packages.debian.org/src:exfatprogs
32: https://packages.debian.org/src:extrepo-data
33: https://packages.debian.org/src:flatpak
34: https://packages.debian.org/src:fpdf2
35: https://packages.debian.org/src:freedombox
36: https://packages.debian.org/src:freeradius
37: https://packages.debian.org/src:glib2.0
38: https://packages.debian.org/src:glibc
39: https://packages.debian.org/src:gnome-shell
40: https://packages.debian.org/src:gnupg2
41: https://packages.debian.org/src:gnutls28
42: https://packages.debian.org/src:golang-github-awslabs-soci-snapshotter
43: https://packages.debian.org/src:golang-github-containerd-imgcrypt
44:
https://packages.debian.org/src:golang-github-containerd-nydus-snapshotter
45:
https://packages.debian.org/src:golang-github-containerd-stargz-snapshotter
46: https://packages.debian.org/src:golang-github-containers-buildah
47: https://packages.debian.org/src:golang-github-openshift-imagebuilder
48: https://packages.debian.org/src:imagemagick
49: https://packages.debian.org/src:incus
50: https://packages.debian.org/src:integrit
51: https://packages.debian.org/src:intel-microcode
52: https://packages.debian.org/src:iperf3
53: https://packages.debian.org/src:kleopatra
54: https://packages.debian.org/src:libcap2
55: https://packages.debian.org/src:libcoap3
56: https://packages.debian.org/src:libcupsfilters
57: https://packages.debian.org/src:libphp-adodb
58: https://packages.debian.org/src:libreoffice
59: https://packages.debian.org/src:libvirt
60: https://packages.debian.org/src:linux
61: https://packages.debian.org/src:linux-signed-amd64
62: https://packages.debian.org/src:linux-signed-arm64
63: https://packages.debian.org/src:lua-wsapi
64: https://packages.debian.org/src:lxc
65: https://packages.debian.org/src:lxd
66: https://packages.debian.org/src:matlab-support
67: https://packages.debian.org/src:mbedtls
68: https://packages.debian.org/src:mirrorbits
69: https://packages.debian.org/src:mongo-c-driver
70: https://packages.debian.org/src:mutter
71: https://packages.debian.org/src:node-nodemailer
72: https://packages.debian.org/src:openconnect
73: https://packages.debian.org/src:pgbouncer
74: https://packages.debian.org/src:podman
75: https://packages.debian.org/src:postgresql-17
76: https://packages.debian.org/src:pylint-django
77: https://packages.debian.org/src:qemu
78: https://packages.debian.org/src:qiv
79: https://packages.debian.org/src:r-bioc-beachmat
80: https://packages.debian.org/src:r-cran-gh
81: https://packages.debian.org/src:reform-tools
82: https://packages.debian.org/src:rlottie
83: https://packages.debian.org/src:rsync
84: https://packages.debian.org/src:rust-repro-env
85: https://packages.debian.org/src:rust-ripasso-cursive
86: https://packages.debian.org/src:rust-sequoia-chameleon-gnupg
87: https://packages.debian.org/src:rust-sequoia-git
88: https://packages.debian.org/src:rust-sequoia-keystore-server
89: https://packages.debian.org/src:rust-sequoia-octopus-librnp
90: https://packages.debian.org/src:rust-sequoia-openpgp
91: https://packages.debian.org/src:rust-sequoia-sop
92: https://packages.debian.org/src:rust-sequoia-sq
93: https://packages.debian.org/src:rust-sequoia-sqv
94: https://packages.debian.org/src:sash
95: https://packages.debian.org/src:sbuild
96: https://packages.debian.org/src:snapd
97: https://packages.debian.org/src:sogo
98: https://packages.debian.org/src:suricata
99: https://packages.debian.org/src:survex
100: https://packages.debian.org/src:swupdate
101: https://packages.debian.org/src:symfony
102: https://packages.debian.org/src:tini
103: https://packages.debian.org/src:tripwire
104: https://packages.debian.org/src:tsocks
105: https://packages.debian.org/src:tzsetup
106: https://packages.debian.org/src:user-mode-linux
107: https://packages.debian.org/src:yorick-gy
108: https://packages.debian.org/src:zsh
Security Updates
----------------
This revision adds the following security updates to the stable release.
The Security Team has already released an advisory for each of these
updates:
+----------------+---------------------------------------+
| Advisory ID | Package |
+----------------+---------------------------------------+
| DSA-6041 [109] | strongswan [110] |
| | |
| DSA-6051 [111] | incus [112] |
| | |
| DSA-6052 [113] | rust-sudo-rs [114] |
| | |
| DSA-6055 [115] | chromium [116] |
| | |
| DSA-6056 [117] | keystone [118] |
| | |
| DSA-6056 [119] | swift [120] |
| | |
| DSA-6058 [121] | lasso [122] |
| | |
| DSA-6059 [123] | thunderbird [124] |
| | |
| DSA-6060 [125] | chromium [126] |
| | |
| DSA-6061 [127] | tryton-sao [128] |
| | |
| DSA-6062 [129] | pdfminer [130] |
| | |
| DSA-6063 [131] | kdeconnect [132] |
| | |
| DSA-6064 [133] | tryton-server [134] |
| | |
| DSA-6065 [135] | krita [136] |
| | |
| DSA-6066 [137] | gnome-shell-extension-gsconnect [138] |
| | |
| DSA-6067 [139] | containerd [140] |
| | |
| DSA-6068 [141] | xen [142] |
| | |
| DSA-6069 [143] | openvpn [144] |
| | |
| DSA-6070 [145] | webkit2gtk [146] |
| | |
| DSA-6071 [147] | unbound [148] |
| | |
| DSA-6072 [149] | chromium [150] |
| | |
| DSA-6073 [151] | ffmpeg [152] |
| | |
| DSA-6074 [153] | webkit2gtk [154] |
| | |
| DSA-6076 [155] | libpng1.6 [156] |
| | |
| DSA-6077 [157] | pdns-recursor [158] |
| | |
| DSA-6080 [159] | chromium [160] |
| | |
| DSA-6081 [161] | thunderbird [162] |
| | |
| DSA-6082 [163] | vlc [164] |
| | |
| DSA-6083 [165] | webkit2gtk [166] |
| | |
| DSA-6084 [167] | c-ares [168] |
| | |
| DSA-6085 [169] | mediawiki [170] |
| | |
| DSA-6086 [171] | dropbear [172] |
| | |
| DSA-6087 [173] | roundcube [174] |
| | |
| DSA-6089 [175] | chromium [176] |
| | |
| DSA-6090 [177] | rails [178] |
| | |
| DSA-6091 [179] | wordpress [180] |
| | |
| DSA-6092 [181] | smb4k [182] |
| | |
+----------------+---------------------------------------+
109: https://www.debian.org/security/2025/dsa-6041
110: https://packages.debian.org/src:strongswan
111: https://www.debian.org/security/2025/dsa-6051
112: https://packages.debian.org/src:incus
113: https://www.debian.org/security/2025/dsa-6052
114: https://packages.debian.org/src:rust-sudo-rs
115: https://www.debian.org/security/2025/dsa-6055
116: https://packages.debian.org/src:chromium
117: https://www.debian.org/security/2025/dsa-6056
118: https://packages.debian.org/src:keystone
119: https://www.debian.org/security/2025/dsa-6056
120: https://packages.debian.org/src:swift
121: https://www.debian.org/security/2025/dsa-6058
122: https://packages.debian.org/src:lasso
123: https://www.debian.org/security/2025/dsa-6059
124: https://packages.debian.org/src:thunderbird
125: https://www.debian.org/security/2025/dsa-6060
126: https://packages.debian.org/src:chromium
127: https://www.debian.org/security/2025/dsa-6061
128: https://packages.debian.org/src:tryton-sao
129: https://www.debian.org/security/2025/dsa-6062
130: https://packages.debian.org/src:pdfminer
131: https://www.debian.org/security/2025/dsa-6063
132: https://packages.debian.org/src:kdeconnect
133: https://www.debian.org/security/2025/dsa-6064
134: https://packages.debian.org/src:tryton-server
135: https://www.debian.org/security/2025/dsa-6065
136: https://packages.debian.org/src:krita
137: https://www.debian.org/security/2025/dsa-6066
138: https://packages.debian.org/src:gnome-shell-extension-gsconnect
139: https://www.debian.org/security/2025/dsa-6067
140: https://packages.debian.org/src:containerd
141: https://www.debian.org/security/2025/dsa-6068
142: https://packages.debian.org/src:xen
143: https://www.debian.org/security/2025/dsa-6069
144: https://packages.debian.org/src:openvpn
145: https://www.debian.org/security/2025/dsa-6070
146: https://packages.debian.org/src:webkit2gtk
147: https://www.debian.org/security/2025/dsa-6071
148: https://packages.debian.org/src:unbound
149: https://www.debian.org/security/2025/dsa-6072
150: https://packages.debian.org/src:chromium
151: https://www.debian.org/security/2025/dsa-6073
152: https://packages.debian.org/src:ffmpeg
153: https://www.debian.org/security/2025/dsa-6074
154: https://packages.debian.org/src:webkit2gtk
155: https://www.debian.org/security/2025/dsa-6076
156: https://packages.debian.org/src:libpng1.6
157: https://www.debian.org/security/2025/dsa-6077
158: https://packages.debian.org/src:pdns-recursor
159: https://www.debian.org/security/2025/dsa-6080
160: https://packages.debian.org/src:chromium
161: https://www.debian.org/security/2025/dsa-6081
162: https://packages.debian.org/src:thunderbird
163: https://www.debian.org/security/2025/dsa-6082
164: https://packages.debian.org/src:vlc
165: https://www.debian.org/security/2025/dsa-6083
166: https://packages.debian.org/src:webkit2gtk
167: https://www.debian.org/security/2025/dsa-6084
168: https://packages.debian.org/src:c-ares
169: https://www.debian.org/security/2025/dsa-6085
170: https://packages.debian.org/src:mediawiki
171: https://www.debian.org/security/2025/dsa-6086
172: https://packages.debian.org/src:dropbear
173: https://www.debian.org/security/2025/dsa-6087
174: https://packages.debian.org/src:roundcube
175: https://www.debian.org/security/2025/dsa-6089
176: https://packages.debian.org/src:chromium
177: https://www.debian.org/security/2025/dsa-6090
178: https://packages.debian.org/src:rails
179: https://www.debian.org/security/2025/dsa-6091
180: https://packages.debian.org/src:wordpress
181: https://www.debian.org/security/2026/dsa-6092
182: https://packages.debian.org/src:smb4k
Debian Installer
----------------
The installer has been updated to include the fixes incorporated into
stable by the point release.
URLs
----
The complete lists of packages that have changed with this revision:
https://deb.debian.org/debian/dists/trixie/ChangeLog
The current stable distribution:
https://deb.debian.org/debian/dists/stable/
Proposed updates to the stable distribution:
https://deb.debian.org/debian/dists/proposed-updates
stable distribution information (release notes, errata etc.):
https://www.debian.org/releases/stable/
Security announcements and information:
https://www.debian.org/security/
About Debian
------------
The Debian Project is an association of Free Software developers who
volunteer their time and effort in order to produce the completely free
operating system Debian.
Contact Information
-------------------
For further information, please visit the Debian web pages at
https://www.debian.org/, send mail to <press@debian.org>, or contact the
stable release team at <debian-release@lists.debian.org>.
Attachment:
signature.asc
Description: This is a digitally signed message part