An issue has been found in libnfs, am NFS client library. The issue is related to to a missing validation of a string size that might lead to an integer overflow. For Debian 11 bullseye, this problem has been fixed in version 4.0.0-1+deb11u1.
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. For Debian 12 bookworm, these problems have been fixed in version 6.1.177-1. This version additionally updates the Microsoft Azure
Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For Debian 12 bookworm, these problems have been fixed in version 150.0.7871.124-1~deb12u1.
Two vulnerabilities were discovered in dhcpcd5, a DHCP client, which may result in denial of service and possibly data corruption. For Debian 11 bullseye, these problems have been fixed in version 7.1.0-2+deb11u1. We recommend that you upgrade your dhcpcd5 packages.
Several issues were found in the GRUB2 bootloader, which could result in crashes and potentially execution of arbitrary code. These could lead to bypass of UEFI Secure Boot on affected systems. For Debian 11 bullseye, these problems have been fixed in version 2.06-3~deb11u7.