Debian GNU/Linux has released several important security updates across its various versions. Notably, the updates include a regression fix for the proftpd-dfsg package in Debian 9 ELTS, a security update for libbssolv-perl in Debian 11 LTS, and a Chromium security update for Debian 12.
1. ProFTPD Update (ELA-1343-2): The proftpd-dfsg package, a widely used FTP server, was impacted by a regression that caused SFTP authentication via public key to be rejected by default. This has been addressed in the latest update, ensuring proper functionality for users relying on this type of authentication.
2. Libsolv-Perl Update (DLA 4122-1): The libbssolv-perl package has received an update to version 0.17-3+deb11u1. This fix introduces an upstream patch allowing "0" to be recognized as a valid epoch in Debian packages processed by BSSolv. Prior to this update, a bug hindered the Open Build Service backend, preventing the Download on Demand feature from functioning correctly and causing the immediate deletion of downloaded .deb files, particularly affecting the woff-tools package.
3. Chromium Update (DSA 5898-1): The Chromium browser has been updated to fix multiple security vulnerabilities that could lead to arbitrary code execution, denial of service, or information disclosure. The stable version for Debian 12 (bookworm) has been updated to 135.0.7049.84-1~deb12u1 to address these issues.
Users are encouraged to upgrade their packages to benefit from these critical security improvements. For detailed information regarding the security status of each package, users can consult the respective security tracker pages.
Further Recommendations: To maintain system security and stability, it is essential for users to regularly check for updates and apply them. Additional resources about Debian LTS and security advisories can be found on Debian's official wiki and security pages. This proactive approach helps in safeguarding systems against potential vulnerabilities and ensures optimal performance
1. ProFTPD Update (ELA-1343-2): The proftpd-dfsg package, a widely used FTP server, was impacted by a regression that caused SFTP authentication via public key to be rejected by default. This has been addressed in the latest update, ensuring proper functionality for users relying on this type of authentication.
2. Libsolv-Perl Update (DLA 4122-1): The libbssolv-perl package has received an update to version 0.17-3+deb11u1. This fix introduces an upstream patch allowing "0" to be recognized as a valid epoch in Debian packages processed by BSSolv. Prior to this update, a bug hindered the Open Build Service backend, preventing the Download on Demand feature from functioning correctly and causing the immediate deletion of downloaded .deb files, particularly affecting the woff-tools package.
3. Chromium Update (DSA 5898-1): The Chromium browser has been updated to fix multiple security vulnerabilities that could lead to arbitrary code execution, denial of service, or information disclosure. The stable version for Debian 12 (bookworm) has been updated to 135.0.7049.84-1~deb12u1 to address these issues.
Users are encouraged to upgrade their packages to benefit from these critical security improvements. For detailed information regarding the security status of each package, users can consult the respective security tracker pages.
Further Recommendations: To maintain system security and stability, it is essential for users to regularly check for updates and apply them. Additional resources about Debian LTS and security advisories can be found on Debian's official wiki and security pages. This proactive approach helps in safeguarding systems against potential vulnerabilities and ensures optimal performance
ProFTPD, Libsolv-Perl, Chromium updates for Debian
Debian GNU/Linux has been updated with multiple security updates, including a proftpd-dfsg regression update for Debian 9 ELTS, libbssolv-perl for Debian 11 LTS, and a Chromium update for Debian 12:
ELA-1343-2 proftpd-dfsg regression update
[DLA 4122-1] libbssolv-perl security update
[DSA 5898-1] chromium security updateProFTPD, Libsolv-Perl, Chromium updates for Debian @ Linux Compatible
