Critical Debian 12.11 Update: Must-Know Fixes
May 23, 2025
•
Brittany Day
- Application 1: Debian, Debian LTS
- Application 2: Debian, Debian LTS, Fedora, Gentoo, Mageia, openSUSE, Oracle, RockyLinux, Slackware, SuSE, Ubuntu
Linux admins -
Critical updates were just released to Debian 12 that improve the security of the most significant apps we use, like OpenSSL, nginx, and the kernel itself. Admins maintaining production servers or personal systems can greatly benefit from applying this update. From its critical security fixes addressing vulnerabilities like buffer overflows and XSS vulns to bug fixes to PHP and ghostscript, all of us should expect a much more secure and reliable release.
You'll also learn about a Branch Privilege Injection flaw threatening Intel processors that allows attackers to access kernel data or extract sensitive information from virtual machines.
If you found value in today’s newsletter, please share it with your friends! Do you have a Linux security-related topic you'd like to cover for our audience? We welcome contributions from passionate and insightful community members who share our love for Linux and security.
Yours in Open Source,
Dave Wreski
LinuxSecurity Founder
Debian 12The DiscoveryDebian has identified critical flaws in widely used apps, including OpenSSL, nginx, and the kernel itself. These issues include buffer overflows and XSS bugs. |
Intel ProcessorsThe DiscoveryA Branch Privilege Injection flaw threatening Intel processors (CVE-2024-45332) has been discovered. By exploiting this vulnerability, attackers can access arbitrary memory and read sensitive data stored outside their privilege domain. |
PREVIOUS
NEXT
