Guillaume Winter discovered that pgextwlist, an extension for PostgreSQL implementing a whitelist mechanism for PostgreSQL extensions, was susceptible to SQL injection via crafted schema and user names. For the stable distribution (trixie), this problem has been fixed in version 1.19-1+deb13u1.
Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the stable distribution (trixie), this problem has been fixed in version 150.0.7871.100-1~deb13u1.
Multiple security vulnerabilities were discovered in imagemagick, a software suite used for editing and manipulating digital images, which could lead to denial of service, information disclosure or potentially arbitrary code execution if malformed images are processed. For the stable distribution (trixie), these problems have been fixed in
Multiple security vulnerabilities were discovered in the Postfix mail transport agent, which could result in denial of service. For the stable distribution (trixie), this problem has been fixed in version 3.10.12-0+deb13u2. We recommend that you upgrade your postfix packages.
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. For the stable distribution (trixie), these problems have been fixed in version 6.12.95-1.