The Debian Security Audit Project was started to focus on security issues in Debian packages. The project's goal is to audit applications that are included in a stable Debian Linux release. Since its inception, the project has paid off in identifying and fixing issues before they were in general release.
Recent security advisories have identified vulnerabilities in the following packages:
Due to the Debian distribution size, not every package can be tested. The following are the guidelines that Debian uses to decide what packages get tested:
I like the aggressive approach that Debian is taking rather than waiting for users or developers to stumble on vulnerabilities. Security should start with application architecture through testing, and in most cases it does. However, sometimes bugs get through and it's nice to see additional testing.
You can subscribe to the Debian security announce mailing list to receive E-mail alerts.