Debian 12 Bookworm

Debian 12 — monero — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — monero — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2025-26819 Upstream summary: Monero through 0.18.3.4 before ec74ff4 does not have response limits on HTTP server connections. Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

Read more
Debian 12 — ruby-graphql — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — ruby-graphql — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2025-27407 Upstream summary: graphql-ruby is a Ruby implementation of GraphQL. Starting in version 1.11.5 and prior to versions 1.11.8, 1.12.25, 1.13.24, 2.0.32, 2.1.14, 2.2.17, and 2.3.21, loading a […]

Read more
Debian 12 — breezy — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — breezy — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-14176 Upstream summary: Bazaar through 2.7.0, when Subprocess SSH is used, allows remote attackers to execute arbitrary commands via a bzr+ssh URL with an initial dash character in […]

Read more
Debian 12 — network-manager — multiple vulnerabilities (13 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — network-manager — multiple vulnerabilities (13 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2006-7246 CVE-2009-0365 CVE-2011-2176 CVE-2012-2736 CVE-2015-0272 CVE-2015-2924 CVE-2016-0764 CVE-2018-1000135  +5 more Upstream summary: NetworkManager 0.9.x does not pin a certificate's subject to an ESSID when 802.11X authentication is used. […]

Read more
Debian 12 — xdg-user-dirs — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — xdg-user-dirs — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-15131 Upstream summary: It was found that system umask policy is not being honored when creating XDG user directories, since Xsession sources xdg-user-dirs.sh before setting umask policy. This […]

Read more
Debian 12 — libcatalyst-authentication-credential-http-perl — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — libcatalyst-authentication-credential-http-perl — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2025-40920 Upstream summary: Catalyst::Authentication::Credential::HTTP versions 1.018 and earlier for Perl generate nonces using the Perl Data::UUID library. * Data::UUID does not use a strong cryptographic source for generating […]

Read more
Debian 12 — janus — multiple vulnerabilities (13 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — janus — multiple vulnerabilities (13 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2020-10573 CVE-2020-10574 CVE-2020-10575 CVE-2020-10576 CVE-2020-10577 CVE-2020-13898 CVE-2020-13899 CVE-2020-13900  +5 more Upstream summary: An issue was discovered in Janus through 0.9.1. janus_audiobridge.c has a double mutex unlock when listing […]

Read more
Debian 12 — cadaver — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — cadaver — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2004-0398 CVE-2009-3560 CVE-2009-3720 Upstream summary: Heap-based buffer overflow in the ne_rfc1036_parse date parsing function for the neon library (libneon) 0.24.5 and earlier, as used by cadaver before 0.22, […]

Read more
Debian 12 — node-jose — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — node-jose — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2022-36083 CVE-2025-45767 Upstream summary: JOSE is "JSON Web Almost Everything" – JWA, JWS, JWE, JWT, JWK, JWKS with no dependencies using runtime's native crypto in Node.js, Browser, Cloudflare […]

Read more
Debian 12 — pycares — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — pycares — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2025-48945 Upstream summary: pycares is a Python module which provides an interface to c-ares. c-ares is a C library that performs DNS requests and name resolutions asynchronously. Prior […]

Read more
CHAT