[SECURITY] [DLA 4499-1] linux-6.1 security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 4499-1] linux-6.1 security update
From: Ben Hutchings <benh@debian.org>
Date: Fri, 13 Mar 2026 14:14:21 +0100
Message-id: <[🔎] abQNrf0ok3F3r0ID@decadent.org.uk>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-------------------------------------------------------------------------
Debian LTS Advisory DLA-4499-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                        Ben Hutchings
March 13, 2026                                https://wiki.debian.org/LTS
-------------------------------------------------------------------------

Package        : linux-6.1
Version        : 6.1.164-1~deb11u1
CVE ID         : CVE-2023-53424 CVE-2024-26822 CVE-2024-57895 CVE-2025-22026 
                 CVE-2025-23155 CVE-2025-37786 CVE-2025-37822 CVE-2025-37920 
                 CVE-2025-38201 CVE-2025-38643 CVE-2025-39763 CVE-2025-40082 
                 CVE-2025-40251 CVE-2025-68358 CVE-2025-71089 CVE-2025-71144 
                 CVE-2025-71220 CVE-2025-71222 CVE-2025-71224 CVE-2025-71232 
                 CVE-2025-71233 CVE-2025-71235 CVE-2025-71236 CVE-2025-71237 
                 CVE-2025-71238 CVE-2026-23111 CVE-2026-23112 CVE-2026-23169 
                 CVE-2026-23176 CVE-2026-23178 CVE-2026-23180 CVE-2026-23182 
                 CVE-2026-23187 CVE-2026-23190 CVE-2026-23193 CVE-2026-23198 
                 CVE-2026-23202 CVE-2026-23205 CVE-2026-23206 CVE-2026-23209 
                 CVE-2026-23216 CVE-2026-23220 CVE-2026-23221 CVE-2026-23222 
                 CVE-2026-23228 CVE-2026-23229 CVE-2026-23230 CVE-2026-23234 
                 CVE-2026-23235 CVE-2026-23236 CVE-2026-23237 CVE-2026-23238
Debian Bug     : 1127597

Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation, denial of service or information
leaks.

The Qualys Threat Research Unit (TRU) discovered several vulnerabilities
in Apparmor. Details can be found in the Qualys advisory at
https://www.qualys.com/2026/03/10/crack-armor.txt

For Debian 11 bullseye, these problems have been fixed in version
6.1.164-1~deb11u1.  This version also fixes a regression in the
previous update.  It additionally includes many more bug fixes from
stable updates 6.1.163 and 6.1.164.

We recommend that you upgrade your linux-6.1 packages.

For the detailed security status of linux-6.1 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/linux-6.1

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Attachment: signature.asc
Description: PGP signature

Reply to:

Prev by Date: [SECURITY] [DLA 4498-1] linux security update
Next by Date: [SECURITY] [DLA 4501-1] wireless-regdb new upstream version
Previous by thread: [SECURITY] [DLA 4498-1] linux security update
Next by thread: [SECURITY] [DLA 4501-1] wireless-regdb new upstream version
Index(es):
- Date
- Thread