The stretch 9.12 point release brings a number of bugfixes (including some security fixes):
https://lists.debian.org/debian-announce/2020/msg00001.html
Use this ticket to track the respective updates across the cluster. I've verified that all removed packages are not in use in our infrastructure.
[x] base-files
[] cups
[] freetype
[] glib2.0
[] libdatetime-timezone-perl
[] libidn
[] libjaxen-java
[] libperl4-corelibs-perl
[] libtimedate-perl
[x] libvncserver
[] libxslt
[x] linux
[x] linux-latest
[x] llvm-toolchain-7
[] mariadb-10.1
[] node-fstream
[] openjpeg2
[] perl
[] postgresql-9.6
[x] python-acme
[] python-cryptography
[] python-werkzeug
[x] tmpreaper
[x] tzdata
[x] unhide
These are unused by us:
[x] cargo
[x] clamav
[x] debian-security-support
[x] dehydrated
[x] dispmua
[x] dpdk
[x] fence-agents
[x] fig2dev
[x] flightcrew
[x] gnustep-base
[x] italc
[x] libdate-holidays-de-perl
[x] libofx
[x] libole-storage-lite-perl
[x] libparse-win32registry-perl
[x] libpst
[x] libsixel
[x] libsolv
[x] libtest-mocktime-perl
[x] limnoria
[x] monit
[x] node-mixin-deep
[x] nodejs-mozilla
[x] nvidia-graphics-drivers-legacy-340xx
[x] nyancat
[x] php-horde
[x] postfix
[x] proftpd-dfsg
[x] pykaraoke
[x] python-flask-rdf
[x] python-pgmagick
[x] ros-ros-comm
[x] ruby-encryptor
[x] rust-cbindgen
[x] rustc
[x] safe-rm
[x] sorl-thumbnail
[x] sssd
[x] tigervnc
[x] tightvnc
[x] ublock-origin
[x] x2goclient
[x] xml-security-c
These are only used by the installer, which has been rebuilt:
[x] debian-installer
[x] debian-installer-netboot-images