https://www.freexian.com/./index.xml · source : Home | Freexian
Recent content in Home on Freexian
📈 1 article / mois — soit ~1 article tous les 29,8 jours · dernier le 27/06/2026 14:36
100 articles datés · regroupés par mois.
✅ 5 bons points ❌ 1 à corriger sur 6 critères évalués.
🔒 Le détail du calcul (note par critère : intégrité technique, découvrabilité, conformité podcast ouvert…) est réservé aux abonnés — connectez-vous.
How can I access the package repositories? The package repositories are private. Only customers of the service have access to them. See the documentation for details on how you can access them. On how many servers can I use the package repositories? This depends on the offer that you picked. Up to 3…
Lire l'article →After subscription to the Extended LTS (ELTS) service, Freexian hands over credentials — under the form of a username and a password — to the technical contact listed on the service order form. You will need those to access the APT repositories, they are referred to as ${username} and ${password} in…
Lire l'article →The package repositories hosting the various PHP releases are private. That means that only customers of this service can get access to them. This document explains the various options available and the required steps to configure those repositories. Installing the freexian archive GPG key All the p…
Lire l'article →The kernel versions originally shipped with each Debian release are no longer maintained during the Extended LTS phase of each release’s lifecycle. Instead, we provide backports of Linux from more recent Debian releases. Currently, this means that for Debian 9 “stretch” and Debian 10 “buster” we pro…
Lire l'article →Follow with an RSS feed The Extended LTS Advisories (ELA) are published in the Updates section of this website. They can be monitored through this RSS feed. Follow by email If you want to be notified by email, you can subscribe to our dedicated mailing list. Click here, fill the fields, submit the f…
Lire l'article →One package list per Debian release We need a list of packages to support for each Debian release that you are using. The best way to build this list is to gather the list of installed packages on all the Debian systems that you are running. The dpkg-query command can be used for this: $ dpkg-query …
Lire l'article →Explanations about the ELTS cost estimation We have been doing security support of Debian packages since 2014 so we have a long history of data that lets us estimate the workload (and thus cost) required to keep each package secure. We also have historical data of our customers so we know which pack…
Lire l'article →Extended LTS for Debian 13 Trixie Support period 2025-08-09: Publication of Debian 13 Trixie 2028-08-10: Security support handed over to the Debian LTS team. 2030-06-30: End of support in Debian. Security support now handled by Freexian’s Extended LTS service. 2035-06-30: End of support. Architectur…
Lire l'article →Extended LTS for Debian 12 Bookworm Support period 2023-06-10: Publication of Debian 12 Bookworm 2026-06-11: Security support handed over to the Debian LTS team. 2028-06-30: End of support in Debian. Security support now handled by Freexian’s Extended LTS service. 2033-06-30: End of support. Archite…
Lire l'article →Extended LTS for Debian 11 Bullseye Support period 2021-08-14: Publication of Debian 11 Bullseye 2024-08-15: Security support handed over to the Debian LTS team. 2026-08-31: End of support in Debian. Security support now handled by Freexian’s Extended LTS service. 2031-06-30: End of support. Archite…
Lire l'article →Extended LTS for Debian 10 Buster Support period 2019-07-06: Publication of Debian 10 Buster 2022-06-30: Security support handed over to the Debian LTS team. 2024-06-30: End of support in Debian. Security support now handled by Freexian’s Extended LTS service. 2029-06-30: End of support. Architectur…
Lire l'article →Extended LTS for Debian 9 Stretch Support period 2017-06-17: Publication of Debian 9 Stretch 2020-06-30: Security support handed over to the Debian LTS team. 2022-06-30: End of support in Debian. Security support now handled by Freexian’s Extended LTS service. 2027-06-30: End of support. Architectur…
Lire l'article →Extended LTS for Debian 8 Jessie Support period 2015-04-26: Publication of Debian 8 Jessie 2018-06-17: Security support handed over to the Debian LTS team. 2020-06-30: End of support in Debian. Security support now handled by Freexian’s Extended LTS service. 2025-06-30: End of support. Architectures…
Lire l'article →Why setup a private mirror? Only customers of the “enterprise” offer have the required access to setup a private mirror with rsync (which is what’s described on this page). They typically have very large setup with several thousands of servers needing access to the PHP LTS repositories and it makes …
Lire l'article →This document provides a base to backport security patches provided by Freexian Debian ELTS into Raspberry PI OS packages. We describe a git-based workflow, particularly using git-buildpackage, focusing also on source debian packages in "3.0 (quilt)" format, so the (security) patches to be backporte…
Lire l'article →Package : openvpn Version : 2.4.0-6+deb9u6 (stretch), 2.4.7-1+deb10u3 (buster) Related CVEs : CVE-2026-40215 A vulnerability has been discovered in OpenVPN, a virtual private network application. CVE-2026-40215 A race condition allows remote attackers to potentially cause a server crash or leak heap…
Lire l'article →Package : python-urllib3 Version : 1.19.1-1+deb9u5 (stretch), 1.24.1-1+deb10u6 (buster) Related CVEs : CVE-2026-44431 It was discovered that python-urllib3, did not strip out sensitive headers (such as Authorization or Cookie) during cross-origin redirects followed from the low-level API. The issue …
Lire l'article →Package : yelp Version : 3.22.0-1+deb9u2 (stretch), 3.31.90-1+deb10u2 (buster) A vulnerability was discovered in yelp, the GNOME help browser, that allows a crafted help document to read files accessible to the user and exfiltrate them to a remote server through resources loaded by the embedded web …
Lire l'article →Package : ansible Version : 2.7.7+dfsg-1+deb10u3 (buster) Related CVEs : CVE-2019-14858 CVE-2019-14905 CVE-2020-1737 CVE-2020-14330 CVE-2021-3583 CVE-2023-4237 CVE-2023-5115 CVE-2023-5764 CVE-2024-0690 CVE-2024-8775 CVE-2024-9902 CVE-2024-11079 Several flaws were found in ansible, a configuration ma…
Lire l'article →Package : libdbi-perl Version : 1.636-1+deb9u3 (stretch), 1.642-1+deb10u3 (buster) Related CVEs : CVE-2026-9698 CVE-2026-10879 CVE-2026-9698 Error messages that were returned when RaiseError, PrintError or HandleError were set were written to a 200-byte buffer without a length limit. Attackers that …
Lire l'article →Package : giflib Version : 5.1.4-0.4+deb9u2 (stretch), 5.1.4-3+deb10u2 (buster) Related CVEs : CVE-2026-23868 CVE-2026-26740 Two vulnerabilties have been found in giflib, a package of portable tools and library routines for working with GIF images, potentially allowing Denial of Service. CVE-2026-23…
Lire l'article →Package : libtext-csv-xs-perl Version : 1.26-1+deb9u1 (stretch), 1.38-1+deb10u1 (buster) Related CVEs : CVE-2026-7111 A use-after-free issue was found in libtext-csv-xs-perl (Text::CSV_XS module), which may yield type confusion or memory corruption when registered callbacks extend the Perl argument …
Lire l'article →Package : libhttp-daemon-perl Version : 6.01-1+deb9u2 (stretch), 6.01-3+deb10u2 (buster) Related CVEs : CVE-2026-8450 A flaw was discovered in libhttp-daemon-perl, a simple http server class for Perl, which may result in the execution of arbitrary shell commands or file overwrite when processing spe…
Lire l'article →The Debian LTS Team, funded by Freexian’s Debian LTS offering, is pleased to report its activities for May. Activity summary During the month of May, 21 contributors have been paid to work on Debian LTS (links to individual contributor reports are located below). The team released 56 DLAs fixing 877…
Lire l'article →Package : linux-5.10 Version : 5.10.257-1~deb10u2 (buster) No-changes update to fix issues related to the repository metadata and relationship among the packages, due to infrastructure hiccups.
Lire l'article →Package : linux-6.1 Version : 6.1.174-1~deb10u2 (buster) No-changes update to fix issues related to the repository metadata and relationship among the packages, due to infrastructure hiccups.
Lire l'article →Debian Contributions: 2026-05 Contributing to Debian is part of Freexian’s mission. This article covers the latest achievements of Freexian and their collaborators. All of this is made possible by organizations subscribing to our Long Term Support contracts and consulting services. Go default compat…
Lire l'article →Package : apache2 Version : 2.4.59-1~deb10u9 (buster) Related CVEs : CVE-2026-29167 CVE-2026-29170 CVE-2026-34355 CVE-2026-34356 CVE-2026-42535 CVE-2026-42536 CVE-2026-43951 CVE-2026-44119 CVE-2026-44185 CVE-2026-44186 CVE-2026-44631 CVE-2026-48913 Multiple vulnerabilities have been discovered in th…
Lire l'article →Package : libxml2 Version : 2.9.4+dfsg1-2.2+deb9u16 (stretch), 2.9.4+dfsg1-7+deb10u14 (buster) Related CVEs : CVE-2025-8732 CVE-2026-0989 CVE-2026-0990 CVE-2026-0992 CVE-2026-1757 Several security issues were found in libxml2, the GNOME XML library, which could lead to Denial of Service. CVE-2025-87…
Lire l'article →Package : apache2 Version : 2.4.25-3+deb9u24 (stretch), 2.4.59-1~deb10u8 (buster) Related CVEs : CVE-2026-49975 It was discovered that incorrect cookie header accounting in the HTTP/2 implementation of the Apache HTTP server may result in denial of service (excessive resources consumption).
Lire l'article →Package : dovecot Version : 1:2.3.4.1-5+deb10u9 (buster) Related CVEs : CVE-2025-59031 CVE-2025-59032 CVE-2026-0394 CVE-2026-27856 CVE-2026-27857 CVE-2026-27858 CVE-2026-27859 CVE-2026-33603 CVE-2026-40020 Multiple vulnerabilities were discovered in dovecot, a POP3/IMAP server, which could lead to D…
Lire l'article →Package : gsasl Version : 1.8.0-8+deb9u2 (stretch), 1.8.0-8+deb10u2 (buster) Related CVEs : CVE-2026-48829 It was discovered that missing input sanitising in the DIGEST-MD5 parser of the GNU SASL library could result in denial of service.
Lire l'article →Package : exim4 Version : 4.89-2+deb9u15 (stretch), 4.92-8+deb10u12 (buster) Related CVEs : CVE-2026-48840 Warisjeet Singh discovered that Exim, a mail transport agent, does not properly handle PROXY frames whose declared payload length is too short for the claimed address family, which may result i…
Lire l'article →Package : gimp Version : 2.8.18-1+deb9u10 (stretch) Related CVEs : CVE-2026-4150 CVE-2026-4153 Several vulnerabilities were discovered in GIMP, the GNU Image Manipulation Program, which could result in denial of service or potentially the execution of arbitrary code if malformed PSP or PSD files are…
Lire l'article →Package : gimp Version : 2.10.8-2+deb10u9 (buster) Related CVEs : CVE-2026-4150 CVE-2026-4152 CVE-2026-4153 Several vulnerabilities were discovered in GIMP, the GNU Image Manipulation Program, which could result in denial of service or potentially the execution of arbitrary code if malformed PSP, JP…
Lire l'article →Package : corosync Version : 2.4.2-3+deb9u3 (stretch), 3.0.1-2+deb10u3 (buster) Related CVEs : CVE-2026-35091 CVE-2026-35092 Two vulnerabilities have been found in corosync, a cluster engine daemon and utilities, that allow a remote, unauthenticated attacker to cause a denial of service. CVE-2026-35…
Lire l'article →Package : imagemagick Version : 8:6.9.7.4+dfsg-11+deb9u29 (stretch) Related CVEs : CVE-2026-33901 CVE-2026-42326 CVE-2026-45358 CVE-2026-45624 CVE-2026-45664 CVE-2026-46520 CVE-2026-46521 CVE-2026-46522 CVE-2026-46523 CVE-2026-46559 CVE-2026-46692 CVE-2026-46693 CVE-2026-47165 CVE-2026-47166 Multipl…
Lire l'article →Package : p7zip-rar Version : 16.02+really25.00+ds-0+deb9u1 (stretch) Related CVEs : CVE-2018-5996 CVE-2018-10115 CVE-2025-53816 The ELA-1742-1 update for p7zip breaks compatibility with p7zip-rar. While p7zip-rar is currently not supported for stretch, we applied the same codebase upgrade so both p…
Lire l'article →Package : p7zip-rar Version : 16.02+really25.00+ds-0+deb10u1 (buster) Related CVEs : CVE-2025-53816 The ELA-1742-1 update for p7zip breaks compatibility with p7zip-rar. While p7zip-rar is currently not supported for stretch, we applied the same codebase upgrade so both packages work together again.
Lire l'article →Package : p7zip Version : 16.02+really25.01+dfsg-0+deb9u1 (stretch), 16.02+really25.01+dfsg-0+deb10u1 (buster) Related CVEs : CVE-2022-47069 CVE-2023-31102 CVE-2023-40481 CVE-2023-52168 CVE-2023-52169 CVE-2024-11612 CVE-2025-11001 CVE-2025-11002 CVE-2025-53817 CVE-2025-55188 Multiple vulnerabilities…
Lire l'article →