There are 108 open security issues in trixie.
There are 105 open security issues in sid.
There are 1047 open security issues in bullseye.
There are 478 open security issues in bookworm.
You can find information about how to handle these issues in the security team's documentation.
There are 636 open security issues in buster.
commit 72694efbb74957f0cac969e466f97d42d722546b
Merge: f0c6ce602 5f7d7d793
Author: Bastian Blank <waldi@debian.org>
Date: Sun Jun 8 17:07:04 2025 +0000
Merge branch 'release-abi-name' into 'debian/latest'
Generate unique ABI names that mostly sort like their package versions
See merge request kernel-team/linux!1524
commit 5f7d7d79366dbd11766d63d2493772cd48b18cb3
Author: Ben Hutchings <benh@debian.org>
Date: Sat Jun 7 20:35:14 2025 +0200
Add suffix to ABI name to distinguish Debian versions with same upstream
Currently we set the ABI name to the upstream version plus a
release-specific suffix. This produces a unique ABI name so long as
each Debian version bumps the upstream version, which is usually
the case.
However it is possible that we will need to upload multiple
Debian versions with the same upstream version and release.
Change the gencontrol.py script to:
- Count the number of changelog entries with the same upstream
version and release as the current one
- Add a serial number suffix to the ABI name if it's greater than 1
Since the release suffix appears before the serial number suffix, this
could result in ABI names not sorting the right way. It doesn't seem
to be possible to resolve that without a full transformation of Debian
versions to kernel version strings, including support for the ~
character.
For example, suppose we have:
- linux 6.12.42-1 (trixie) -> ABI name 6.12.42+deb13
- linux 6.12.42-1~bpo12+1 (bookworm-backports) -> ABI name 6.12.42+deb12
- linux 6.12.42-1~bpo12+2 (bookworm-backports) -> ABI name 6.12.42+deb12+1
- linux 6.12.42-2 (trixie) -> ABI name 6.12.42+deb13+1
- linux 6.12.42-2~bpo12+1 (bookworm-backports) -> ABI name 6.12.42+deb12+2
Then ABI name 6.12.42+deb13 would sort after 6.12.42+deb12+2 even though
its package version is lower.
If we swapped the suffixes around, and added a 'u' to the serial
suffix so it sorts higher than 'deb', we would get:
- linux 6.12.42-1 (trixie) -> ABI name 6.12.42+deb13
- linux 6.12.42-1~bpo12+1 (bookworm-backports) -> ABI name 6.12.42+deb12
- linux 6.12.42-1~bpo12+2 (bookworm-backports) -> ABI name 6.12.42+u1+deb12
- linux 6.12.42-2 (trixie) -> ABI name 6.12.42+u1+deb13
- linux 6.12.42-2~bpo12+1 (bookworm-backports) -> ABI name 6.12.42+u2+deb12
Then ABI name 6.12.42+u1+deb12 would sort after 6.12.42+deb13 even
though its package version is lower.
I think this situation will be rare enough to be acceptable.
commit 706d933bc83bff0979467a4eea5e335e04e0dda5
Author: Ben Hutchings <benh@debian.org>
Date: Wed Apr 30 18:29:56 2025 +0200
Include target Debian release number in ABI name
Currently we add a +bpo suffix to the ABI name for bookworm-backports
(previously for any -backports suite), which causes the kernel version
string to sort higher than the corresponding version in unstable.
This is undesirable as it is the opposite of the package version
ordering.
Once bookworm enters LTS we will also currently generate the same ABI
names from linux in trixie(-security) and linux-6.12 in
bookworm-security, although they will not be ABI compatible.
To address both of these issues, set the ABI suffixes:
- +deb12 in bookworm-backports (instead of +bpo)
- +deb13 in trixie
- +deb13 in unstable (to be replaced by +deb14 after trixie release)
commit f0c6ce60259de8ba28f3c2b9cc443081dfc4168d
Merge: 2ce63f843 6705e89d9
Author: Salvatore Bonaccorso <carnil@debian.org>
Date: Sat Jun 7 11:05:06 2025 +0000
Merge branch 'bug1106268-amdgpu-dmcub-eerors-and-lookups' into 'debian/latest'
Revert "drm/amd/display: more liberal vmin/vmax update for freesync"
See merge request kernel-team/linux!1540
commit 6705e89d928be365b35ada282ddd52c64d5a7457
Author: Salvatore Bonaccorso <carnil@debian.org>
Date: Sat Jun 7 11:48:34 2025 +0200
Revert "drm/amd/display: more liberal vmin/vmax update for freesync"
Closes: #1106743
Closes: #1106268
Among the 78 debian patches available in version 6.12.32-1 of the package, we noticed the following issues:
![[bug history graph]](https://qa.debian.org/data/bts/graphs/l/linux.png){kind=link}