Linux Security Advisories
Scouring the Web for those critical security advisories and updates? Find the information you need for your favorite open source distribution all in one place on our Advisories page.
ArchLinux
202407-1: openssh: authentication bypass
The package openssh before version 9.8p1-1 is vulnerable to authe...
202403-1: xz: arbitrary code execution
The package xz before version 5.6.1-2 is vulnerable to arbitrary ...
202210-4: linux-zen: multiple issues
The package linux-zen before version 6.0.1.zen2-1 is vulnerable t...
202210-3: linux-lts: multiple issues
The package linux-lts before version 5.15.73-3 is vulnerable to m...
202210-2: linux: multiple issues
The package linux before version 6.0.1.arch2-1 is vulnerable to m...
202210-1: linux-hardened: multiple issues
The package linux-hardened before version 5.19.15.hardened2-1 is ...
202204-9: python-django: sql injection
The package python-django before version 4.0.4-1 is vulnerable to...
202204-8: xz: arbitrary command execution
The package xz before version 5.2.5-3 is vulnerable to arbitrary ...
202204-7: gzip: arbitrary command execution
The package gzip before version 1.12-1 is vulnerable to arbitrary...
202204-6: libtiff: multiple issues
The package libtiff before version 4.3.0-2 is vulnerable to multi...
CentOS
CESA-2024-1498: Moderate CentOS 7 thunderbird
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2024-1486: Critical CentOS 7 firefox
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2024-1249: Important CentOS 7 kernel
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2024-0957: Important CentOS 7 thunderbird
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2024-0976: Important CentOS 7 firefox
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2024-0857: Important CentOS 7 python-pillow
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2023-5616: Important CentOS 7 python-reportlab
Upstream details at : https://access.redhat.com/errata/RHSA-2023:...
CESA-2024-0753: Moderate CentOS 7 linux-firmware
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2024-0629: Important CentOS 7 tigervnc
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
CESA-2024-0013: Important CentOS 7 gstreamer1-plugins-bad-free
Upstream details at : https://access.redhat.com/errata/RHSA-2024:...
Debian
DSA-5746-1: postgresql-13 Security Advisory Updates
Noah Misch discovered a race condition in the pg_dump tool includ...
DSA-5745-1: postgresql-15 Security Advisory Updates
Noah Misch discovered a race condition in the pg_dump tool includ...
DSA-5744-1: thunderbird Security Advisory Updates
Multiple security issues were discovered in Thunderbird, which co...
DSA-5742-1: odoo Security Advisory Updates
A vulnerability was discovered in odoo, a suite of web based open...
DSA-5743-1: roundcube Security Advisory Updates
Multiple cross-site scripting vulnerabilities were discovered in ...
DSA-5741-1: chromium Security Advisory Updates
Security issues were discovered in Chromium which could result in...
DSA-5740-1: firefox-esr Security Advisory Updates
Multiple security issues have been found in the Mozilla Firefox w...
DSA-5739-1: wpa Security Advisory Updates
Rory McNamara reported a local privilege escalation in wpasupplic...
DSA-5738-1: openjdk-17 Security Advisory Updates
Several vulnerabilities have been discovered in the OpenJDK Java ...
DSA-5737-1: libreoffice Security Advisory Updates
If LibreOffice failed to validate a signed macro, it displayed a ...
Debian LTS
DLA-3854-1: tryton-client Security Advisory Updates
Cédric Krier has found that trytond, the Tryton application serv...
DLA-3853-1: tryton-server Security Advisory Updates
Cédric Krier has found that trytond, the Tryton application serv...
DLA-3852-1: edk2 Security Advisory Updates
Mate Kukri discovered the Debian build of EDK2, a UEFI firmware i...
DLA-3851-1: gunicorn Security Advisory Updates
Gunicorn, an event-based HTTP/WSGI server, fails to properly vali...
DLA-3850-1: glibc Security Advisory Updates
Multiple vulnerabilities have been fixed in the Name Service Cach...
DLA-3846-1: libmojolicious-perl Security Advisory Updates
Mojolicious is a Perl Web Application Framework built around the ...
DLA-3849-1: org-mode Security Advisory Updates
A vulnerability was discovered in GNU Emacs, the extensible, cust...
DLA-3848-1: org-mode Security Advisory Updates
A vulnerability was discovered in Org-mode, a GNU Emacs major mod...
DLA-3847-1: dcmtk Security Advisory Updates
Multiple vulnerabilities havebenn fixed in DCMTK, a collection of...
Fedora
thunderbird 2024-a060f26e22 Security Advisory Updates
Update to 115.14.0 https://www.thunderbird.net/en-US/thunderbird/...
frr 2024-e60ca8feb0 Security Advisory Updates
New version 9.1.1. Includes fixes for CVE-2024-31950, CVE-2024-31...
vim 2024-5e87ad4678 Security Advisory Updates
The newest upstream commit Security fixes for CVE-2024-41957, CVE...
microcode_ctl 2024-96f3c3f3d3 Security Advisory Updates
Update to upstream 2.1-43. 20240531 Addition of 06-aa-04/0xe6 (MT...
vim 2024-fe5420ed3f Security Advisory Updates
The newest upstream commit Security fixes for CVE-2024-41965, CVE...
opentofu 2024-c83208238d Security Advisory Updates
Update to 1.8.0 Fix for CVE-2024-6257 CVE-2024-6104 CVE-2024-2478...
Gentoo
GLSA-202408-23: GnuPG: Security Advisory Updates
Multiple vulnerabilities have been discovered in GnuPG, the worst...
GLSA-202408-22: Bundler: Security Advisory Updates
Multiple vulnerabilities have been discovered in Bundler, the wor...
GLSA-202408-21: GPAC: Security Advisory Updates
Multiple vulnerabilities have been discovered in GPAC, the worst ...
GLSA-202408-20: libde265: Security Advisory Updates
Multiple vulnerabilities have been discovered in libde265, the wo...
GLSA-202408-19: ncurses: Security Advisory Updates
Multiple vulnerabilities have been discovered in ncurses, the wor...
GLSA-202408-18: QEMU: Security Advisory Updates
Multiple vulnerabilities have been discovered in QEMU, the worst ...
GLSA-202408-17: Nautilus: Denial of ServiceSecurity Advisory Updates
A vulnerability has been discovered in Nautilus, which can lead t...
GLSA-202408-16: re2c: Denial of ServiceSecurity Advisory Updates
A vulnerability has been discovered in re2c, which can lead to a ...
GLSA-202408-15: Percona XtraBackup: Security Advisory Updates
Multiple vulnerabilities have been discovered in Percona XtraBack...
GLSA-202408-14: Librsvg: Arbitrary File ReadSecurity Advisory Updates
A vulnerability has been discovered in Librsvg, which can lead to...
Mageia
kernel-linus Security Advisory Updates
Vanilla upstream kernel version 6.6.43 fix bugs and vulnerabiliti...
kernel, kmod-xtables-addons & kmod-virtualbox Security Advisory Updates
Upstream kernel version 6.6.43 fix bugs and vulnerabilities. The ...
virtualbox & kmod-virtualbox Security Advisory Updates
Easily exploitable vulnerability allows high privileged attacker ...
thunderbird Security Advisory Updates
Memory corruption in WebGL API. (CVE-2024-6600) Race condition in...
chromium-browser-stable Security Advisory Updates
Inappropriate implementation in V8. (CVE-2024-6772) Type Confusio...
apache Security Advisory Updates
CVE-2024-40898: Apache HTTP Server: SSRF with mod_rewrite in serv...
libfm & libfm-qt Security Advisory Updates
Fixed a vulnerability about trusted locations References: - http...
sendmail Security Advisory Updates
sendmail through 8.17.2 allows SMTP smuggling in certain configur...
nss & firefox Security Advisory Updates
Memory corruption in WebGL API. (CVE-2024-6600) Race condition in...
libreoffice Security Advisory Updates
TLS certificates are not properly verified when utilizing LibreOf...
Oracle
ELSA-2024-5079: libtiff security Moderate Security Advisory Updates
The following updated rpms for Oracle Linux 8 have been uploaded ...
ELSA-2024-12571: kernel Important Security Advisory Updates
The following updated rpms for Oracle Linux 7 have been uploaded ...
ELSA-2024-12570: Extended Lifecycle Support (ELS) Unbreakable Enterprise kernel Important Security Advisory Updates
The following updated rpms for Oracle Linux 6 Extended Lifecycle ...
ELSA-2024-4935: freeradius Important Security Advisory Updates
The following updated rpms for Oracle Linux 9 have been uploaded ...
ELSA-2024-4928: kernel security Moderate Security Advisory Updates
The following updated rpms for Oracle Linux 9 have been uploaded ...
ELSA-2024-4936: freeradius:3.0 Important Security Advisory Updates
The following updated rpms for Oracle Linux 8 have been uploaded ...
ELSA-2024-4861: squid security Moderate Security Advisory Updates
The following updated rpms for Oracle Linux 9 have been uploaded ...
ELSA-2024-4779: python3 Low Security Advisory Updates
The following updated rpms for Oracle Linux 9 have been uploaded ...
ELSA-2024-4776: cups security Moderate Security Advisory Updates
The following updated rpms for Oracle Linux 9 have been uploaded ...
ELSA-2024-4766: python3 Low Security Advisory Updates
The following updated rpms for Oracle Linux 9 have been uploaded ...
openSUSE
2024:0227-1 moderate: gh Advisory Security Update
An update that fixes one vulnerability is now available. ...
2024:0225-1 moderate: assimp Advisory Security Update
An update that solves one vulnerability and has one errata is now...
2024:0223-1 important: opera Advisory Security Update
An update that fixes 29 vulnerabilities is now available. ...
2024:0222-1 important: python-nltk Advisory Security Update
An update that fixes one vulnerability is now available. ...
2024:0218-1 important: exim Advisory Security Update
An update that fixes one vulnerability is now available. ...
2024:0214-1 moderate: python-sentry-sdk Advisory Security Update
An update that fixes one vulnerability is now available. ...
2024:0212-1 important: chromium Advisory Security Update
An update that fixes 8 vulnerabilities is now available. ...
2024:0211-1 moderate: caddy Advisory Security Update
An update that fixes two vulnerabilities is now available. ...
2024:0210-1 important: global Advisory Security Update
An update that fixes one vulnerability is now available. ...
2024:0205-1 important: opera Advisory Security Update
An update that fixes 22 vulnerabilities is now available. ...
RockyLinux
RLSA-2024:4935 freeradius security update Security Advisories Updates
Important: freeradius security update...
RLSA-2024:4928 kernel security update Security Advisories Updates
Moderate: kernel security update...
RLSA-2024:4502 skopeo security update Security Advisories Updates
Important: skopeo security update...
RLSA-2024:4624 thunderbird security update Security Advisories Updates
Important: thunderbird security update...
RLSA-2024:4623 qt5-qtbase security update Security Advisories Updates
Important: qt5-qtbase security update...
RLSA-2024:4636 libndp security update Security Advisories Updates
Important: libndp security update...
RLSA-2024:4583 kernel security update Security Advisories Updates
Important: kernel security update...
Slackware
2024-219-01: mozilla-firefox Security Advisory Update
New mozilla-firefox packages are available for Slackware 15.0 and...
2024-213-01: curl Security Advisory Update
New curl packages are available for Slackware 15.0 and -current t...
2024-206-02: libxml2 Security Advisory Update
New libxml2 packages are available for Slackware XXX 15.0 and -cu...
2024-206-01: htdig Security Advisory Update
New htdig packages are available for Slackware 15.0 and -current ...
2024-205-03: mozilla-thunderbird Security Advisory Update
New mozilla-thunderbird packages are available for Slackware 15.0...
2024-205-02: glibc Security Advisory Update
New glibc packages are available for Slackware 15.0 and -current ...
2024-205-01: bind Security Advisory Update
New bind packages are available for Slackware 15.0 and -current t...
2024-200-01: httpd Security Advisory Update
New httpd packages are available for Slackware 15.0 and -current ...
2024-199-01: openssl Security Advisory Update
New openssl packages are available for Slackware 15.0 and -curren...
2024-192-01: mozilla-firefox Security Advisory Update
New mozilla-firefox packages are available for Slackware 15.0 and...
SuSE
2024:2868-1 important: bind Security Advisory Updates
* bsc#1228256 * bsc#1228257 Cross-References: * CVE-2024-1737 ...
2024:2869-1 important: ca-certificates-mozilla Security Advisory Updates
* bsc#1220356 * bsc#1227525 Affected Products: * Basesystem Modul...
2024:2860-1 important: python3-Twisted Security Advisory Updates
* bsc#1228549 * bsc#1228552 Cross-References: * CVE-2024-41671 ...
2024:2861-1 important: python-Django Security Advisory Updates
* bsc#1228630 Cross-References: * CVE-2024-41990 ...
2024:2862-1 important: bind Security Advisory Updates
* bsc#1228256 * bsc#1228257 * bsc#1228258 Cross-References: ...
2024:2863-1 important: bind Security Advisory Updates
* bsc#1228256 * bsc#1228257 * bsc#1228258 Cross-References: ...
2024:2864-1 moderate: ffmpeg-4 Security Advisory Updates
* bsc#1223304 * bsc#1227296 Cross-References: * CVE-2023-51798 ...
2024:2818-1 important: the Linux Kernel (Live Patch 52 for SLE 12 SP5) Security Advisory Updates
* bsc#1225013 * bsc#1225310 Cross-References: * CVE-2024-27398 ...
2024:2821-1 important: the Linux Kernel (Live Patch 54 for SLE 12 SP5) Security Advisory Updates
* bsc#1210619 * bsc#1220145 * bsc#1220537 * bsc#1222685 * bsc#122...
2024:2822-1 important: the Linux Kernel (Live Patch 56 for SLE 12 SP5) Security Advisory Updates
* bsc#1210619 * bsc#1220537 * bsc#1223363 * bsc#1223683 * bsc#122...
Ubuntu
Linux kernel (Oracle) Security Advisory Updates
Several security issues were fixed in the Linux kernel....
Kerberos Security Advisory Updates
Kerberos could be made to crash if it received specially crafted ...
wpa_supplicant and hostapd Security Advisory Updates
wpa_supplicant could be made to run programs as an administrator ...
