Debian 12 Bookworm

Debian 12 — node-terser — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — node-terser — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2022-25858 Upstream summary: The package terser before 4.8.1, from 5.0.0 and before 5.14.2 are vulnerable to Regular Expression Denial of Service (ReDoS) due to insecure usage of regular […]

Read more
Debian 12 — automake1.11 — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — automake1.11 — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2012-3386 Upstream summary: The "make distcheck" rule in GNU Automake before 1.11.6 and 1.12.x before 1.12.2 grants world-writable permissions to the extraction directory, which introduces a race condition […]

Read more
Debian 12 — calligra — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — calligra — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2012-3456 Upstream summary: Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in Calligra 2.4.3 and earlier allows remote attackers to cause a […]

Read more
Debian 12 — haproxy — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — haproxy — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2012-2942 CVE-2013-1912 CVE-2013-2175 CVE-2014-6269 CVE-2015-3281 CVE-2016-5360 CVE-2018-10184 CVE-2018-11469  +12 more Upstream summary: Buffer overflow in the trash buffer in the header capture functionality in HAProxy before 1.4.21, when […]

Read more
Debian 12 — libxml-security-java — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — libxml-security-java — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2013-2172 CVE-2013-4517 CVE-2019-12400 CVE-2021-40690 CVE-2023-44483 Upstream summary: jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java in Apache Santuario XML Security for Java 1.4.x before 1.4.8 and 1.5.x before 1.5.5 allows context-dependent attackers to spoof an […]

Read more
Debian 12 — exo — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — exo — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2022-32278 Upstream summary: XFCE 4.16 allows attackers to execute arbitrary code because xdg-open can execute a .desktop file on an attacker-controlled FTP server. Table of contents Symptom & […]

Read more
Debian 12 — apt-xapian-index — vulnerability — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — apt-xapian-index — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2013-1064 Upstream summary: apt-xapian-index before 0.45ubuntu2.1, 0.44ubuntu7.1, and 0.44ubuntu5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access […]

Read more
Debian 12 — node-ws — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — node-ws — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2016-10518 CVE-2016-10542 CVE-2021-32640 CVE-2024-37890 CVE-2026-45736 Upstream summary: A vulnerability was found in the ping functionality of the ws module before 1.0.0 which allowed clients to allocate memory by […]

Read more
Debian 12 — dbus — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on Debian 12

Debian 12 — dbus — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2005-0201 CVE-2006-6107 CVE-2008-0595 CVE-2008-3834 CVE-2008-4311 CVE-2009-1189 CVE-2010-4352 CVE-2011-2200  +12 more Upstream summary: D-BUS (dbus) before 0.22 does not properly restrict access to a socket, if the socket address […]

Read more
CHAT