The Debian 13 distribution has received its sixth corrective update, addressing stability issues and vulnerabilities. This update includes 124 stability fixes and 120 vulnerability fixes. The changes in Debian 13.6 include an update to the shim-signed layer for verified booting in UEFI Secure Boot mode. The new version of the package is now certified by the Microsoft UEFI CA certificate, issued in 2023, due to the expiration of the previous Microsoft certificate.
Additionally, the firmware downloading toolkit fwupd has been updated to version 2.0.20. This new version allows users to update databases of certification authorities, public keys, and revoked keys for Secure Boot. Users are advised to update these databases using firmware updates from their equipment manufacturer. For more information on updating, visit the Debian website.
However, due to licensing issues, the “geoip-database” package in Debian 13.6 has been replaced with an outdated version from December 2019. Users may need to download the GeoLite database directly for current location results. Other notable updates include the latest stable versions of packages like postfix, samba, wireless-regdb, and wireshark.
New installation assemblies with Debian 13.6 will be available shortly for download and installation from scratch. Existing systems can receive the updates included in Debian 13.6 through the standard update installation system. Security fixes will also be provided through the security.debian.org service.
Furthermore, a new release of the previous stable branch, Debian 12.15, is now available. This release includes 88 stability fixes and 97 vulnerability fixes. This marks the last regular update for the Debian 12 branch, as it has completed its three-year maintenance cycle. Moving forward, vulnerability updates for Debian 11 will be released under the Extended Support Program.