37 Debian LTS Advisories about security updates for various packages were released by Debian LTS contributors in October. These include notable security updates for https-everywhere, openjdk 11 & 17 and intel-microcode. LTS team also contributed towards updates for Debian packages in various releases.

Read about these and more in our report for October: https://www.freexian.com/blog/debian-lts-report-2025-10/?utm_source=mastodon&utm_medium=social

This work is funded by Freexian's Debian LTS offering. Become a sponsor of Debian LTS (https://www.freexian.com/lts/debian/?utm_source=mastodon&utm_medium=social) and enjoy the benefits (https://www.freexian.com/lts/debian/details/#benefits).

#freexian #debian #debianlts #openjdk

38 Debian LTS Advisories about security updates for various packages were released by Debian LTS contributors last month. These include notable security updates for modsecurity-apache, cups, python-django, thunderbird and many more.

Read our monthly report for September to know more details: https://www.freexian.com/blog/debian-lts-report-2025-09/?utm_source=mastodon&utm_medium=social

This work is funded by Freexian's Debian LTS offering. Become a sponsor of Debian LTS (https://www.freexian.com/lts/debian/?utm_source=mastodon&utm_medium=social) and enjoy the benefits (https://www.freexian.com/lts/debian/details/#benefits).

#freexian #debian #debianlts #cups #modsecurity-apache #thunderbird #django

27 Debian LTS Advisories about security updates were released by Debian LTS contributors in August 2025. These included critical security updates for gnutls28, mdebtls, apache2 and openjdk-17 in addition to other security updates. LTS team also contributed to updates for various packages in Debian stable.

Get the full details in our August report: https://www.freexian.com/blog/debian-lts-report-2025-08/?utm_source=mastodon&utm_medium=social

This work is funded by Freexian's Debian LTS offering. Your organization too can sponsor the Debian LTS (https://www.freexian.com/lts/debian/?utm_source=mastodon&utm_medium=social) and join the esteemed list of sponsors in the monthly report.

#debianlts #freexian #apache2 #openjdk17

The critical security updates for angular.js, tomcat9, mediawiki, php7.4 and more landed in Debian 11 "bullseye" by the efforts of the Debian LTS team in July 2025. The security tracker sprint involving members from the LTS team and Debian Security team also happened during July as part of DebCamp 25.

Get the full report covering the details here: https://www.freexian.com/blog/debian-lts-report-2025-07/

This work is funded by Freexian's Debian LTS offering. Your organization too can sponsor the Debian LTS (https://www.freexian.com/lts/debian/) and join the esteemed list of sponsors in the monthly report.

#debianlts #freexian #angular #php7.4

Interested in how Debian LTS works and what’s ahead?

The recorded BoF session from #DebConf25 is now online!

The session had engaging discussions on having point-update “releases” for LTS with Debusine, packaging security updates for firmware-nonfree, ca-certificates, and work towards compliance with new regulations like the #CRA.

Watch the recording here: https://meetings-archive.debian.net/pub/debian-meetings/2025/DebConf25/debconf25-670-debian-lts-bof.av1.webm

#debian #debianLTS #linuxsecurity #freexian

Debian 13 “trixie” is now the new Debian stable!

It will be supported for the next 5 years by the Debian Security team (https://security-team.debian.org/) and Debian LTS (https://wiki.debian.org/LTS) team, with up to 10 years of support via Freexian’s Extended LTS (https://www.freexian.com/lts/extended/).

A big congratulations and thank you to everyone who made this release possible!

#debian #debian13 #trixie #debianlts #LongTermSupport #linuxsecurity #freexian

54 Debian LTS Advisories about security updates for various packages were released by Debian LTS contributors last month. These include critical security bug fixes for containerd, postgresql-13, request-tracker4, glibc and many more.

You can also read about LTS contributors testing out Debusine, an advanced CI platform for Debian-based distributions developed by Freexian, to upload packages into Debian and plans for an upcoming "sprint" during DebCamp 25.

Find more details in our monthly report for May: https://www.freexian.com/blog/debian-lts-report-2025-05/

This work is funded by Freexian's Debian LTS offering. Your organization too can sponsor the Debian LTS (https://www.freexian.com/lts/debian/) and join the esteemed list of sponsors in the monthly report.

#openjdk #postgres13 #debusine #freexian #debianlts

Debian LTS contributors released 46 Debian LTS Advisories about security updates for various packages in April 2025.

These include critical security bug fixes for jetty9, zabbix and glibc and more. Also several LTS contributors prepared packages for the recent point release of current stable Debian 12, with many prepared in conjunction with related LTS updates of the same packages.

Read more about this in our monthly report for April here: https://www.freexian.com/blog/debian-lts-report-2025-04/

This work is funded by Freexian's Debian LTS offering.

Your organization too can sponsor the Debian LTS (https://www.freexian.com/lts/debian/) and join the esteemed list of sponsors in the monthly report.

#debian #debianlts #freexian #infosec #glibc

31 Debian LTS Advisories were released in March about security updates for various packages including but not limited to linux-6.1, firefox-esr, intel-microcode and vim.

Read more about work done by Debian LTS contributors in our monthly report for March at https://www.freexian.com/blog/debian-lts-report-2025-03/

This work is funded by Freexian's Debian LTS offering.

Your organization too can sponsor the Debian LTS (https://www.freexian.com/lts/debian/) and join the esteemed list of sponsors in the monthly report.

#debian #debianlts #freexian #infosec #linux #vim

February was a very busy month for the Debian LTS contributors. 38 Debian LTS Advisories were released in February about security updates for various packages including but not limited to pam-u2f, openjdk-17, postgresql-13, openssh, thunderbird, freerdp2 and ffmpeg.

The monthly report on the work done is available at https://www.freexian.com/blog/debian-lts-report-2025-02/

This work is funded by Freexian's Debian LTS offering.

Your organization too can sponsor the Debian LTS (https://www.freexian.com/lts/debian/) and join the esteemed list of sponsors in the monthly report.

#debian #debianlts #freexian #infosec

Did you know that the Debian LTS team released 33 Debian LTS Advisories regarding security updates during January 2025?

Read the work done by Debian LTS contributors in our monthly report, now available at https://www.freexian.com/blog/debian-lts-report-2025-01/

This work is funded by Freexian's Debian LTS offering.

Your organization too can sponsor the Debian LTS (https://www.freexian.com/lts/debian/) and join the esteemed list of sponsors in the monthly report.

#debian #debianlts #freexian #cybersecurity

The monthly report about the work done by Debian LTS contributors in December 2024 is available now - https://www.freexian.com/blog/debian-lts-report-2024-12/

This work is funded by Freexian's Debian LTS offering.

Sponsor the Debian LTS (https://www.freexian.com/lts/debian/) to join the esteemed list of sponsors in the monthly report.

#debianLTS #debian #freexian

I was wondering, are LTS #Linux distros more secure (as in #softwaresecurity not stability) than bleeding edge rolling release distros?
When distros like Debian have to backport fixes to older versions they have to know what they do in order to not introduce new bugs. 🤔

#Security #Debian #debianLTS #ubuntu #opensusetumbleweed #rhel #AlmaLinux #question #CyberSecurity

Thanks to all the sponsors and different Debian Teams that have made Debian LTS possible.

#debianLTS #debian #freexian

When Debian LTS (https://wiki.debian.org/LTS) started in 2014 for Debian 6 "squeeze",
(https://web.archive.org/web/20240720200316/https://www.debian.org/News/2014/20140616)
we didn't have any certainty about its future success.

Ten years later, we are happy to announce that more than 4000 security updates have been published under the LTS initiative.

More precisely, DLA 4000-1 (https://lists.debian.org/debian-lts-announce/2024/12/msg00022.html)
was released on 21st December 2024 by Guilhem Moulin to fix three CVEs in sqlparse.

#debianLTS #debian #freexian

The monthly report of the work done by Debian LTS contributors in November is now available at - https://www.freexian.com/blog/debian-lts-report-2024-11/
This work is funded by Freexian's Debian LTS offering.

Your organization too can sponsor the Debian LTS (https://www.freexian.com/lts/debian/) and join the esteemed list of sponsors in the monthly report.

#debianLTS #debian #freexian

By the way, the monthly report for this September is published and is available at https://www.freexian.com/blog/debian-lts-report-2024-09/

#debian #debianlts #freexian

@osm_tech

Congratulations on the successful upgrade to Debian 12. We are glad that #debianLTS project also helped in making this choice.

Temporary remediation

While we prepare updates for the different Debian releases, this is a list of actions that remediate the exposure to the vulnerabilities:
Remove cups from BrowseRemoteProtocols in /etc/cups/cups-browsed.conf or disable cups-browsed if possible
Block any incoming traffic to the 631 UDP port

Thanks to the Debian Security Team for their collaboration on addressing these issues!

#debian #freexian #debianlts #debiansecurity

You may be aware of the OpenPrinting CUPS vulnerabilities disclosed yesterday by Simone Margaritelli.

Unfortunately, this disclosure happened without the planned coordination between the reporter, the developers and the different distributions, without waiting for proper and tested patches to be available. As a result, vulnerable machines are currently exposed.

The Debian LTS team is working on preparing updates for the different Debian releases

#debian #freexian #debianlts #debiansecurity