diff --git a/requirements.txt b/requirements.txt
index ec928f1402..e90bb178af 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -4,7 +4,7 @@ Babel==2.9.1 ; python_version < '3.11'  # min version = 2.6.0 (Focal with securi
 Babel==2.10.3 ; python_version >= '3.11'
 chardet==4.0.0 ; python_version < '3.11'  # (Jammy)
 chardet==5.2.0 ; python_version >= '3.11'
-cryptography==3.4.8; python_version < '3.12'  # incompatibility between pyopenssl 19.0.0 and cryptography>=37.0.0
+cryptography==46.0.5; python_version < '3.12'  # incompatibility between pyopenssl 19.0.0 and cryptography>=37.0.0
 cryptography==42.0.8 ; python_version >= '3.12'  # (Noble) min 41.0.7, pinning 42.0.8 for security fixes
 decorator==4.4.2  ; python_version < '3.11'  # (Jammy)
 decorator==5.1.1  ; python_version >= '3.11'
@@ -20,10 +20,10 @@ gevent==24.2.1 ; sys_platform != 'win32' and python_version >= '3.12'  # (Noble)
 greenlet==1.1.2 ; sys_platform != 'win32' and python_version == '3.10'  # (Jammy)
 greenlet==2.0.2 ; sys_platform != 'win32' and python_version > '3.10' and python_version < '3.12'
 greenlet==3.0.3 ; sys_platform != 'win32' and python_version >= '3.12'  # (Noble)
-idna==2.10 ; python_version < '3.12'  # requests 2.25.1 depends on idna<3 and >=2.5
+idna==3.7 ; python_version < '3.12'  # requests 2.25.1 depends on idna<3 and >=2.5
 idna==3.6 ; python_version >= '3.12'
 Jinja2==3.0.3 ; python_version <= '3.10'
-Jinja2==3.1.2 ; python_version > '3.10'
+Jinja2==3.1.6 ; python_version > '3.10'
 libsass==0.20.1 ; python_version < '3.11'
 libsass==0.22.0 ; python_version >= '3.11'  # (Noble) Mostly to have a wheel package
 lxml==4.8.0 ; python_version <= '3.10'
@@ -38,7 +38,7 @@ num2words==0.5.13 ; python_version >= '3.12'
 ofxparse==0.21
 passlib==1.7.4 # min version = 1.7.2 (Focal with security backports)
 Pillow==9.0.1 ; python_version <= '3.10'
-Pillow==9.4.0 ; python_version > '3.10' and python_version < '3.12'
+Pillow==12.1.1 ; python_version > '3.10' and python_version < '3.12'
 Pillow==10.2.0 ; python_version >= '3.12'  # (Noble) Mostly to have a wheel package
 polib==1.1.1
 psutil==5.9.0 ; python_version <= '3.10' 
@@ -65,18 +65,18 @@ pyusb==1.2.1
 qrcode==7.3.1 ; python_version < '3.11'  # (jammy)
 qrcode==7.4.2 ; python_version >= '3.11'
 reportlab==3.6.8 ; python_version <= '3.10'
-reportlab==3.6.12 ; python_version > '3.10' and python_version < '3.12'
+reportlab==3.6.13 ; python_version > '3.10' and python_version < '3.12'
 reportlab==4.1.0 ; python_version >= '3.12' # (Noble) Mostly to have a wheel package
-requests==2.25.1 ;  python_version < '3.11' # versions < 2.25 aren't compatible w/ urllib3 1.26. Bullseye = 2.25.1. min version = 2.22.0 (Focal)
+requests==2.32.4 ;  python_version < '3.11' # versions < 2.25 aren't compatible w/ urllib3 1.26. Bullseye = 2.25.1. min version = 2.22.0 (Focal)
 requests==2.31.0 ; python_version >= '3.11' # (Noble)
 rjsmin==1.1.0 ; python_version < '3.11'  # (jammy)
 rjsmin==1.2.0 ; python_version >= '3.11'
 rl-renderPM==4.0.3 ; sys_platform == 'win32' and python_version >= '3.12'  # Needed by reportlab 4.1.0 but included in deb package
-urllib3==1.26.5 ; python_version < '3.12' # indirect / min version = 1.25.8 (Focal with security backports)
+urllib3==2.6.3 ; python_version < '3.12' # indirect / min version = 1.25.8 (Focal with security backports)
 urllib3==2.0.7  ; python_version >= '3.12'  # (Noble) Compatibility with cryptography
 vobject==0.9.6.1
 Werkzeug==2.0.2 ; python_version <= '3.10' 
-Werkzeug==2.2.2 ; python_version > '3.10' and python_version < '3.12'
+Werkzeug==3.1.6 ; python_version > '3.10' and python_version < '3.12'
 Werkzeug==3.0.1 ; python_version >= '3.12'  # (Noble) Avoid deprecation warnings
 xlrd==1.2.0 ; python_version < '3.12'  # (jammy)
 xlrd==2.0.1 ; python_version >= '3.12'