Debian GNU/Linux has released multiple security updates across various versions, addressing vulnerabilities in several key packages: Ghostscript, Microcode, Libraw, Dropbear, Firefox, and Net Tools. These updates are part of the Extended Long Term Support (ELTS) for Debian versions 8 (Jessie), 9 (Stretch), and 10 (Buster), with some updates also applicable to Debian 11 (Bullseye) and 12 (Bookworm).

Key Updates:

1. Ghostscript:
- Versions affected: 9.26a~dfsg-0+deb8u15 (Jessie), 9.26a~dfsg-0+deb9u14 (Stretch), 9.27~dfsg-2+deb10u11 (Buster).
- Multiple CVEs were identified, including CVE-2025-27830 (buffer overflow) and CVE-2025-27831 (Unicode decoding overrun).

2. Intel Microcode:
- Versions affected: 3.20250512.1~deb8u1 (Jessie), 3.20250512.1~deb9u1 (Stretch), 3.20250512.1~deb10u1 (Buster).
- Updates address vulnerabilities potentially allowing denial of service or information disclosure, including CVE-2024-28956 and CVE-2025-20054.

3. Libraw:
- Updates for versions in Stretch and Buster address CVEs related to out-of-bounds reads and buffer access issues.

4. Dropbear:
- Version affected: 2018.76-5+deb10u3 (Buster).
- A critical CVE, CVE-2025-47203, was resolved which involved security implications when processing untrusted hostname arguments.

5. Firefox (firefox-esr):
- Updates for Bookworm fix multiple security vulnerabilities (CVE-2025-4920, CVE-2025-4921) that could potentially allow arbitrary code execution.

6. Net Tools:
- Version affected: 2.10-0.1+deb12u1 (Bookworm).
- A stack-based buffer overflow vulnerability (CVE-2025-46836) was addressed.

Recommendations:

Users of Debian are strongly advised to upgrade their packages to the latest versions to mitigate these vulnerabilities. Detailed security advisories and the status of each package can be found on the Debian security tracker pages.

Conclusion:

These updates reinforce Debian's commitment to security and stability, ensuring that users have access to the latest protections against potential threats. Regular updates and adherence to security advisories are essential for maintaining a secure operating environment

Ghostscript, Microcode, Libraw, Dropbear, Firefox, Net Tools updates for Debian

Debian GNU/Linux has been updated with multiple security enhancements, including updates to firefox-esr, dropbear, libraw, net-tools, intel-microcode, ghostscript, and intel-microcode:

Debian GNU/Linux 8 (Jessie), 9 (Stretch) and 10 (Buster) Extended LTS:
ELA-1426-1 ghostscript security update
ELA-1425-1 intel-microcode security update

Debian GNU/Linux 9 (Stretch) and 10 (Buster) Extended LTS:
ELA-1424-1 libraw security update

Debian GNU/Linux 10 (Buster) Extended LTS:
ELA-1423-1 dropbear security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4170-1] intel-microcode security update

Debian GNU/Linux 12 (Bookworm):
[DSA 5922-1] firefox-esr security update
[DSA 5923-1] net-tools security update

Ghostscript, Microcode, Libraw, Dropbear, Firefox, Net Tools updates for Debian @ Linux Compatible