Debian GNU/Linux has recently received multiple updates that enhance security across various packages, including critical components like Sudo, gst-plugins-good1.0, RAR, Catdoc, Commons-Vfs, and mbedtls. The updates are part of the Extended Long Term Support (LTS) for Debian versions 8 (Jessie), 9 (Stretch), and 10 (Buster), as well as the current LTS for Debian 11 (Bullseye) and the latest release, Debian 12 (Bookworm).

Key updates include:

1. Sudo: A security update (ELA-1476-1) was issued for Sudo across multiple Debian versions (Jessie, Stretch, Buster) to address a vulnerability (CVE-2025-32462) related to improper handling of the host option, posing a potential local privilege escalation risk.

2. gst-plugins-good1.0: Debian 9 (Stretch) received a security update (ELA-1475-1) that addresses numerous vulnerabilities that could lead to denial of service or arbitrary code execution when processing malformed media files.

3. RAR: A security update (ELA-1478-1) for the RAR archiver fixed an ANSI escape injection vulnerability (CVE-2024-33899) in Debian 9 (Stretch).

4. Catdoc: Multiple vulnerabilities were fixed in Catdoc (ELA-1474-1) for Debian 9 and 10, including memory corruption and integer overflow issues (CVE-2024-48877, CVE-2024-52035, CVE-2024-54028).

5. Commons-Vfs: A security vulnerability in the Apache Commons VFS library was addressed in Debian 10 (Buster) (ELA-1479-1). This vulnerability (CVE-2025-27553) involved a relative path traversal issue that could allow unauthorized access to files.

6. mbedtls: Debian 11 (Bullseye) received updates (DLA 4236-1) to address multiple vulnerabilities in the mbedtls library, which is crucial for cryptographic operations. Issues included side-channel attacks, denial of service, and memory management flaws (CVE-2021-24119, CVE-2021-36647, CVE-2021-43666, CVE-2021-44732, CVE-2022-46392).

Users are strongly encouraged to upgrade their affected packages to mitigate these vulnerabilities effectively. For detailed instructions on applying these updates and the full security status of each package, users can refer to the Debian Security Advisory pages and the security tracker for each respective package.

In conclusion, these updates reflect Debian's ongoing commitment to maintaining the security and integrity of its operating system, ensuring that users have the most secure and stable experience possible. Regular updates and vigilance against vulnerabilities are essential for safeguarding systems against evolving threats in the cybersecurity landscape

Sudo, RAR, Catdoc, and more updates for Debian

Debian GNU/Linux has been updated with multiple security enhancements, including Sudo, gst-plugins-good1.0 , RAR, Catdoc, Commons-Vfs, and mbedtls

Debian GNU/Linux 8 (Jessie), 9 (Stretch) and 10 (Buster) Extended LTS:
ELA-1476-1 sudo security update

Debian GNU/Linux 9 (Stretch) Extended LTS:
ELA-1475-1 gst-plugins-good1.0 security update
ELA-1478-1 rar security update

Debian GNU/Linux 9 (Stretch) and 10 (Buster) Extended LTS:
ELA-1474-1 catdoc security update

Debian GNU/Linux 10 (Buster) Extended LTS:
ELA-1479-1 commons-vfs security update

Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4234-1] catdoc security update
[DLA 4235-1] sudo security update
[DLA 4236-1] mbedtls security update

Debian GNU/Linux 12 (Bookworm):
[DSA 5954-1] sudo security update

Sudo, RAR, Catdoc, and more updates for Debian @ Linux Compatible