There are 149 open security issues in trixie.
There are 22 open security issues in sid.
There are 23 open security issues in forky.
There are 1456 open security issues in bullseye.
There are 632 open security issues in bookworm.
You can find information about how to handle these issues in the security team's documentation.
There are 636 open security issues in buster.
commit 8c3f3a1311b84480fb910fb7e68dccbcfe861717
Author: Bastian Blank <waldi@debian.org>
Date: Thu Nov 27 13:46:08 2025 +0100
Fix changelog, again
commit 8822dc182c1d07274f27d94106547014d8564434
Merge: 57e49bf9a1 4c0e981c85
Author: Bastian Blank <waldi@debian.org>
Date: Thu Nov 27 12:27:54 2025 +0000
Merge branch 'rust' into 'debian/latest'
Support for drivers in Rust
See merge request kernel-team/linux!1615
commit 4c0e981c854445d7e7f7488eb28ce7f3c13e0b62
Author: Ben Hutchings <benh@debian.org>
Date: Sun Aug 24 22:50:37 2025 +0200
drm: Enable panic QR codes
- Enable DRM_PANIC and DRM_PANIC_SCREEN_QR_CODE
- Set DRM_PANIC_SCREEN="qr_code"
- Point DRM_PANIC_SCREEN_QR_CODE_URL at a Debian-hosted decoder
commit ec826adca16d9437c01dd161a97c0fb0f7acd351
Author: Ben Hutchings <benh@debian.org>
Date: Mon Sep 22 11:19:39 2025 +0100
net/phy: Enable drivers written in Rust
- Change PHYLIB from module to built-in
- Enable RUST_PHYLIB_ABSTRACTIONS
- Eable AMCC_QT2025_PHY as module, and AX88796B_RUST_PHY
commit e9b592e67e46f7079705fb56372a59e30febe347
Author: Ben Hutchings <benh@debian.org>
Date: Mon Sep 22 11:19:09 2025 +0100
firmware: Enable RUST_FW_LOADER_ABSTRACTIONS
This will be needed by various drivers.
commit 1f1fb8a738a664fd0f220d33e37866dc5e033198
Author: Ben Hutchings <benh@debian.org>
Date: Mon Aug 18 17:10:16 2025 +0200
[amd64,arm64,armhf,loong64,riscv64] Enable building Rust drivers and features
- Enable RUST, RUST_OVERFLOW_CHECKS
- Build-Depend on bindgen, rustc, and rust-src (with the minimum
versions as specified upstream)
commit 8b3c370a0967f2f5cf1dd1639d3de2aaffc4fa1d
Author: Ben Hutchings <benh@debian.org>
Date: Mon Aug 18 21:22:26 2025 +0200
d/rules.real: Set KRUSTFLAGS and HOSTRUSTFLAGS to make filenames relative
To avoid a regression of build reproducibility, add
--remap-path-prefix to the Rust compiler flags.
commit 58b7300f9ff6f1de5818ffe465a1e8d790700093
Author: Ben Hutchings <benh@debian.org>
Date: Mon Aug 18 17:08:38 2025 +0200
Implement configuration for Rust compiler and other build-dependencies
- Add build.rust_build_depends, and build.enable_rust configuration
fields. The enable_rust field is expected to be set
per-architecture while rust_build_depends can be global.
- Define a pkg.linux.norust build profile which disables use of Rust.
- For architectures where build.enable_rust is set, Build-Depend on
everything in build.rust_build_depends, with a restriction to
<!pkg.linux.nokernel !pkg.linux.norust>.
This doesn't support compiling OOT modules written in Rust, which is a
rather harder problem.
commit 531df6658df75c8b2397606e754b125faa4cce9e
Author: Ben Hutchings <benh@debian.org>
Date: Sun Nov 16 15:50:56 2025 +0100
d/l/p/debian_linux/debian.py: Allow adding restrictions to PackageRelationGroup
PackageRelationGroup already supports adding architecture
qualification to all its entries. Add support for adding restrictions
(i.e. build profiles) in a similar way.
commit 7bd1d0e7ad4a2d874ffbb37ffa5195033175450a
Author: Ben Hutchings <benh@debian.org>
Date: Mon Aug 18 20:37:01 2025 +0200
module: Disable MODVERSIONS and MODULE_ALLOW_BTF_MISMATCH
MODVERSIONS was useful when we used to build multiple versions with
the same release string and mostly compatible ABI. Now that we change
the release string with every upload, MODVERSIONS doesn't buy us
anything.
Similarly, MODULE_ALLOW_BTF_MISMATCH was useful then but not when we
change the release string with every upload.
Further, supporting MODVERSIONS together with Rust requires enabling
DEBUG_INFO and GENKDWARFSYMS. Currently we don't build debug info in
the pkg.linux.quick build profile used for CI, and changing that would
likely slow it down significantly.
So disable both of these.
commit a1e4fd68ccb8c24c4b50f88b6c4bf30ea8aa6146
Author: Ben Hutchings <benh@debian.org>
Date: Mon Aug 18 16:45:14 2025 +0200
Add 'c_' prefix to compiler configuration field and variables
In preparation for adding a Rust compiler, qualify the existing
settings for the C compiler.
Among the 72 debian patches available in version 6.17.9-1 of the package, we noticed the following issues:
![[bug history graph]](https://qa.debian.org/data/bts/graphs/l/linux.png){kind=link}