Security

Tim Scheckenbach reported a flaw in GnuTLS, a library implementing the TLS and SSL protocols. Processing of specially crafted certificates containing a large number of name constraints may result in denial of service (resource exhaustion).

https://security-tracker.debian.org/tracker/DSA-6140-1

Several vulnerabilities were discovered in GIMP, the GNU Image Manipulation Program, which could result in denial of service or potentially the execution of arbitrary code if malformed PSD, PSP or ICO files are opened.

https://security-tracker.debian.org/tracker/DSA-6139-1

A buffer overflow was discovered in libpng, a library implementing an interface for reading and writing PNG (Portable Network Graphics) files, which could result in denial of service or potentially the execution of arbitrary code.

https://security-tracker.debian.org/tracker/DSA-6138-1

CERT Polska and nullcathedral discovered that roundcube, a skinnable AJAX based webmail solution for IMAP servers, did not correctly process and sanitize requests. This would allow an attacker to perform CSS injection attacks, or leak sensitive information.

https://security-tracker.debian.org/tracker/DSA-6137-1

Multiple security issues were found in Django, a Python web development framework, which could result in denial of service, information disclosure, directory traversal or SQL injection.

https://security-tracker.debian.org/tracker/DSA-6136-1

Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. Google is aware that an exploit for CVE-2026-2441 exists in the wild.

https://security-tracker.debian.org/tracker/DSA-6135-1

Two vulnerabiliites have been discovered in PDNS Recursor, a resolving name server which result result in denial of service when processing a malformed zone file.

https://security-tracker.debian.org/tracker/DSA-6134-1

Multiple security issues were discovered in PostgreSQL, which may result in memory disclosure or the execution of arbitrary code.

https://security-tracker.debian.org/tracker/DSA-6133-1

Multiple security issues were discovered in PostgreSQL, which may result in memory disclosure or the execution of arbitrary code.

https://security-tracker.debian.org/tracker/DSA-6132-1

A vulnerability has been discovered in Nginx, a high-performance web and reverse proxy server: If configured to proxy to an upstream TLS server, a man-in-the-middle injection attack was possible.

https://security-tracker.debian.org/tracker/DSA-6131-1

Asim Viladi Oglu Manizada reported that HAProxy, a load balancing reverse proxy, does not properly validate an INITIAL QUIC packet with specially crafted data, which may result in denial of service (process crash).

https://security-tracker.debian.org/tracker/DSA-6130-1

Titouan Lazard discovered a buffer overflow vulnerability in munge, an authentication service to create and validate credentials, which may allow local users to leak the MUNGE cryptographic key and forge arbitrary credentials.

Additional details can be found in the upstream advisory: https://github.com/dun/munge/security/advisories/GHSA-r9cr-jf4v-75gh

https://security-tracker.debian.org/tracker/DSA-6129-1

Moritz Woermann discovered that missing input sanitising in Shaarli, a personal bookmarking service, could result in cross-site scripting.

https://security-tracker.debian.org/tracker/DSA-6128-1

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.

https://security-tracker.debian.org/tracker/DSA-6127-1

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.

https://security-tracker.debian.org/tracker/DSA-6126-1

A path traversal vulnerability was discovered in usbmuxd, a multiplexor daemon used to coordinate USB connections from and to Apple devices (iPhone, iPad, iPod).

Exploiting this vulnerability enables an unprivileged user to create and delete files named `*.plist` (and, in some cases, arbitrarily named) as the user running the daemon (`usbmux` by default).

https://security-tracker.debian.org/tracker/DSA-6125-1

Multiple vulnerabilities have been discocvered in Wireshark, a network protocol analyzer which could result in denial of service or the execution of arbitrary code.

https://security-tracker.debian.org/tracker/DSA-6124-1

Denis Skvortsov discovered that xrdp, a Remote Desktop Protocol (RDP) server, was susceptible to an unauthenticated stack-based buffer overflow vulnerability, which may result in remote execution of arbitrary code.

https://security-tracker.debian.org/tracker/DSA-6123-1

Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure.

https://security-tracker.debian.org/tracker/DSA-6122-1

Several security vulnerabilities have been found in Tomcat 11, a Java web server and servlet engine. This update improves the handling of HTTP/2 connections and corrects various flaws which can lead to uncontrolled resource consumption and a denial of service.

https://security-tracker.debian.org/tracker/DSA-6121-1