Debian 12 Bookworm

Debian 12 — libsdl2 — multiple vulnerabilities (18 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — libsdl2 — multiple vulnerabilities (18 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-2888 CVE-2019-13616 CVE-2019-13626 CVE-2019-7572 CVE-2019-7573 CVE-2019-7574 CVE-2019-7575 CVE-2019-7576  +10 more Upstream summary: An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A […]

Read more
Debian 12 — jline3 — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — jline3 — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2023-50572 Upstream summary: An issue in the component GroovyEngine.execute of jline-groovy v3.24.1 allows attackers to cause an OOM (OutofMemory) error. Table of contents Symptom & Impact Environment & […]

Read more
Debian 12 — jose — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — jose — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2023-50967 Upstream summary: latchset jose through version 11 allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value. Table of […]

Read more
Debian 12 — gross — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — gross — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2023-52159 Upstream summary: A stack-based buffer overflow vulnerability in gross 0.9.3 through 1.x before 1.0.4 allows remote attackers to trigger a denial of service (grossd daemon crash) or […]

Read more
Debian 12 — rust-buffered-reader — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — rust-buffered-reader — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2023-53161 Upstream summary: The buffered-reader crate before 1.1.5 for Rust allows out-of-bounds array access and a panic. Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

Read more
Debian 12 — apache-directory-api — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — apache-directory-api — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2015-3250 Upstream summary: Apache Directory LDAP API before 1.0.0-M31 allows attackers to conduct timing attacks via unspecified vectors. Table of contents Symptom & Impact Environment & Reproduction Root […]

Read more
Debian 12 — mod-wsgi — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — mod-wsgi — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-0240 CVE-2014-0242 CVE-2014-8583 CVE-2022-2255 Upstream summary: The mod_wsgi module before 3.5 for Apache, when daemon mode is enabled, does not properly handle error codes returned by setuid when […]

Read more
Debian 12 — policykit-1 — multiple vulnerabilities (16 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — policykit-1 — multiple vulnerabilities (16 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2008-1658 CVE-2011-1485 CVE-2011-4945 CVE-2013-4288 CVE-2015-3218 CVE-2015-3255 CVE-2015-4625 CVE-2016-2568  +8 more Upstream summary: Format string vulnerability in the grant helper (polkit-grant-helper.c) in PolicyKit 0.7 and earlier allows attackers to […]

Read more
Debian 12 — lz4 — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — lz4 — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-4611 CVE-2014-4715 CVE-2019-17543 CVE-2021-3520 Upstream summary: Integer overflow in the LZ4 algorithm implementation, as used in Yann Collet LZ4 before r118 and in the lz4_uncompress function in lib/lz4/lz4_decompress.c […]

Read more
Debian 12 — golang-google-protobuf — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — golang-google-protobuf — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2024-24786 Upstream summary: The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which […]

Read more
CHAT