Find the information you need for your favorite open source distribution .
Two security vulnerabilities have been found in jackson-core, a fast and powerful JSON library for Java, which may allow an attacker to cause a denial of service by using deeply nested JSON data or disclose sensitive information by abusing a flaw in how certain exception messages are handled in jackson- core.
Several vulnerabilities have been discovered in the GNU C Library, the C standard library implementation used by Debian. CVE-2025-8058 posix: Fix double-free after allocation failure in regcomp The regcomp function in the GNU C library version from 2.4 to 2.41 is
Multiple security issues were found in libxml2, the GNOME XML library, which could lead to Denial of Service. CVE-2025-8732 Catalog parsing functions were missing cycle detection. When a catalog file contains a CATALOG directive pointing to itself,
It was discovered that incorrect cookie header accounting in the HTTP/2 implementation of the Apache HTTP server may result in denial of service (excessive resources consumption). For Debian 11 bullseye, this problem has been fixed in version 2.4.67-1~deb11u2.
Multiple security vulnerabilities have been discovered in Tomcat 9, a Java based web server, servlet and JSP engine which may result in a denial of service, authentication bypass or the disclosure of sensitive information. In order to address certain vulnerabilities and restore the compatibility with Tomcat 9, an upgrade of the Tomcat native library, libtcnative-1, was required
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
