Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the oldstable distribution (bookworm), these problems have been fixed in version 143.0.7499.40-1~deb12u1.
It was discovered that incorrect handling of promiscuous NS RRSets in Unbound, a validating, recursive, caching DNS resolver, could result in cache poisoning. For the stable distribution (trixie), this problem has been fixed in version 1.22.0-2+deb13u1.
CUPS could be made to stop responding if it received specially crafted network traffic.
Several security issues were fixed in MAME.
Rebuilt with stb_image patched for two new security bugs.
Patch two newly-reported memory-safety bugs in stb_image: https://github.com/nothings/stb/issues/1860 https://github.com/nothings/stb/issues/1861
It was discovered that openvpn, a virtual private network application, does not properly handle HMAC verification checks. A remote attacker can take advantage of this flaw to bypass source IP address validation. For the oldstable distribution (bookworm), this problem has been fixed in version 2.6.3-1+deb12u4.
State of the Word 2025 brought the WordPress community together for an afternoon that felt both reflective and forward-moving, blending stories of global growth with technical milestones and glimpses of the future. This year also marked the twentieth State of the Word since the first address in 2006, a milestone noted in the WordPress history […]
Ghostscript could be made to crash if it wrote certain files.
Several security issues were fixed in PostgreSQL.
update to upstream 2.4.4, which fixed CVE-2025-64761 Adds hsm tag. The fedora-41 build was done with golang-1.24.10 which fixed CVE-2025-58189, CVE-2025-61725, CVE-2025-61723, CVE-2025-58185, and CVE-2025-58183.
Update to 0.18.1
Two security vulnerabilities were discovered in the Containerd container runtime, which may result in denial of service or local privilege escalation. For the oldstable distribution (bookworm), these problems have been fixed in version 1.6.20~ds1-1+deb12u2.
Multiple vulnerabilities have been discovered in the Xen hypervisor, which could result in memory disclosure, denial of service or privilege escalation. For the oldstable distribution (bookworm), these problems have been fixed in version 4.17.5+72-g01140da4e8-1.
WordPress 6.9, code-named “Gene,” brings major upgrades to how teams collaborate and create. The Notes feature introduces block-level commenting to streamline reviewing and polishing content, navigating across the entire dashboard with the Command Palette is now faster for power users, and the new Abilities API provides a standardized way to open the door for AI-powered and automated workflows. Combined with all the performance and accessibility improvements, 6.9 is one to write home about.
Several security issues were fixed in Django.
USN-7855-1 introduced a regression in Unbound
update to version 2.25.2
Update to 1.24.2 (rhbz#2417261) Additional fix for CVE-2025-11411 https://nlnetlabs.nl/projects/unbound/download/#unbound-1-24-2
Several security issues were fixed in GNU binutils.
Update to 2.86.2 Fix CVE-2025-13601 or #YWH-PGM9867-134
Update to pgadmin-9.10
50 queries. 8.5 mb Memory usage. 0.709 seconds.