LinuxSecurity Advisories

Advisories

What Are You Looking For?

Popular Tags

Contribute

Advisories This Week: 288

Advisories

Scouring the Web for those critical security advisories and updates? Find the information you need for your favorite open source distribution all in one place on our Advisories page.

Customize Your Advisories

ArchLinux

 

Apr 12, 2022

202204-9: python-django: sql injection

The package python-django before version 4.0.4-1 is vulnerable to...
 

Apr 12, 2022

202204-8: xz: arbitrary command execution

The package xz before version 5.2.5-3 is vulnerable to arbitrary ...
 

Apr 12, 2022

202204-7: gzip: arbitrary command execution

The package gzip before version 1.12-1 is vulnerable to arbitrary...
 

Apr 07, 2022

202204-6: libtiff: multiple issues

The package libtiff before version 4.3.0-2 is vulnerable to multi...
 

Apr 06, 2022

202204-5: bind: multiple issues

The package bind before version 9.18.1-1 is vulnerable to multipl...
 

Apr 05, 2022

202204-4: rizin: multiple issues

The package rizin before version 0.3.2-1 is vulnerable to multipl...
 

Apr 04, 2022

202204-3: zlib: arbitrary code execution

The package zlib before version 1:1.2.12-1 is vulnerable to arbit...
 

Apr 04, 2022

202204-2: polkit: multiple issues

The package polkit before version 0.120-5 is vulnerable to multip...
 

Apr 04, 2022

202204-1: postgresql: man-in-the-middle

The package postgresql before version 13.5-1 is vulnerable to man...
 

Dec 12, 2021

202112-12: grafana-agent: information disclosure

The package grafana-agent before version 0.21.2-1 is vulnerable t...
View More

CentOS

 

Aug 15, 2022

CESA-2022-5937: Moderate CentOS 7 kernel

Upstream details at : https://access.redhat.com/errata/RHSA-2022:...
 

Aug 04, 2022

CESA-2022-5905: Important CentOS 7 xorg-x11-server

Upstream details at : https://access.redhat.com/errata/RHSA-2022:...
 

Aug 04, 2022

CESA-2022-5773: Important CentOS 7 thunderbird

Upstream details at : https://access.redhat.com/errata/RHSA-2022:...
 

Aug 04, 2022

CESA-2022-5776: Important CentOS 7 firefox

Upstream details at : https://access.redhat.com/errata/RHSA-2022:...
 

Aug 02, 2022

CESA-2022-4891: Important CentOS 7 thunderbird

Upstream details at : https://access.redhat.com/errata/RHSA-2022:...
 

Aug 02, 2022

CESA-2022-5480: Important CentOS 7 thunderbird

Upstream details at : https://access.redhat.com/errata/RHSA-2022:...
 

Aug 02, 2022

CESA-2022-5479: Important CentOS 7 firefox

Upstream details at : https://access.redhat.com/errata/RHSA-2022:...
 

Aug 02, 2022

CESA-2022-4870: Important CentOS 7 firefox

Upstream details at : https://access.redhat.com/errata/RHSA-2022:...
 

Aug 02, 2022

CESA-2022-5232: Important CentOS 7 kernel

Upstream details at : https://access.redhat.com/errata/RHSA-2022:...
 

Aug 02, 2022

CESA-2022-4930: Important CentOS 7 python-twisted-web

Upstream details at : https://access.redhat.com/errata/RHSA-2022:...
View More

Debian

 

Aug 18, 2022

DSA-5213-1: schroot security update

Julian Gilbey discovered that schroot, a tool allowing users to e...
 

Aug 17, 2022

DSA-5212-1: chromium security update

Multiple security issues were discovered in Chromium, which could...
 

Aug 16, 2022

DSA-5211-1: wpewebkit security update

The following vulnerabilities have been discovered in the WPE Web...
 

Aug 16, 2022

DSA-5210-1: webkit2gtk security update

The following vulnerabilities have been discovered in the WebKitG...
 

Aug 16, 2022

DSA-5209-1: net-snmp security update

Yu Zhang and Nanyu Zhong discovered several vulnerabilities in ne...
 

Aug 16, 2022

DSA-5208-1: epiphany-browser security update

Michael Catanzaro discovered a buffer overflow in the Epiphany we...
 

Aug 15, 2022

DSA-5207-1: linux security update

Several vulnerabilities have been discovered in the Linux kernel ...
 

Aug 12, 2022

DSA-5206-1: trafficserver security update

Several vulnerabilities were discovered in Apache Traffic Server,...
 

Aug 11, 2022

DSA-5205-1: samba security update

Several vulnerabilities have been discovered in Samba, a SMB/CIFS...
 

Aug 09, 2022

DSA-5204-1: gst-plugins-good1.0 security update

Adam Doupe discovered multiple vulnerabilities in the Gstreamer p...
View More

Debian LTS

 

Aug 18, 2022

DLA-3076-1: freecad security update

A command injection vulnerability was found in FreeCAD, a paramet...
 

Aug 18, 2022

DLA-3075-1: schroot security update

Julian Gilbey discovered that schroot, a tool allowing users to e...
 

Aug 18, 2022

DLA-3074-1: epiphany-browser security update

Several issues were discovered in Epiphany, the GNOME web browser...
 

Aug 17, 2022

DLA-3073-1: webkit2gtk security update

The following vulnerabilities have been discovered in the WebKitG...
 

Aug 11, 2022

DLA-3072-1: postgresql-11 security update

Sven Klemm found that some extensions in the PostgreSQL database ...
 

Aug 11, 2022

DLA-3071-1: libtirpc security update

It was discovered that libtirpc, a transport-independent RPC libr...
 

Aug 11, 2022

DLA-3070-1: gnutls28 security update

Two issues were found in GnuTLS, a library implementing the TLS a...
 

Aug 09, 2022

DLA-3069-1: gst-plugins-good1.0 security update

Multiple vulnerabilities were discovered in plugins for the GStre...
 

Aug 04, 2022

DLA-3068-1: xorg-server security update

Jan-Niklas Sohn discovered two out of bound memory writes in X.Or...
 

Jul 01, 2022

DLA-3066-1: isync security update

Several security vulnerabilities have been discovered in isync, a...
View More

Fedora

 

Aug 19, 2022

trafficserver 2022-23043f5a0b

Update to 9.1.3, resolves CVE-2022-25763, CVE-2022-31779, CVE-202...
 

Aug 19, 2022

trafficserver 2022-9832c0c04b

Update to 9.1.3, resolves CVE-2022-25763, CVE-2022-31779, CVE-202...
 

Aug 17, 2022

microcode_ctl 2022-b7d8dcefc5

- Update to upstream 2.1-37. 20220809 - Update of 06-55-03/0x97 ...
 

Aug 17, 2022

freeciv 2022-3cbf2184bd

2.6.7...
 

Aug 17, 2022

rsync 2022-25e4dbedf9

New version 3.2.5 Fix for CVE-2022-29154, CVE-2022-37434...
 

Aug 17, 2022

qemu 2022-baf3c3b781

lsi53c895a: Do not abort when DMA requested and no data queued (#...
 

Aug 16, 2022

yara 2022-21cf5402fc

Update to yara-4.2.3 ---- Update to 4.2.0 ---- Update to 4.2.2...
 

Aug 16, 2022

python-yara 2022-21cf5402fc

Update to yara-4.2.3 ---- Update to 4.2.0 ---- Update to 4.2.2...
 

Aug 15, 2022

webkit2gtk3 2022-513f28a4be

Update to WebKitGTK 2.36.6. Changes from 2.36.4: * Add support f...
 

Aug 14, 2022

rust-ffsend 2022-dfa24fa7d4

Rebuild against websocket 0.26.5 for CVE-2022-35922 / RUSTSEC-202...
View More

Gentoo

 

Aug 14, 2022

GLSA-202208-31: GStreamer, GStreamer Plugins: Multiple Vulnerabilities

Multiple vulnerabilities have been found in GStreamer and its plu...
 

Aug 14, 2022

GLSA-202208-30: GNU Binutils: Multiple Vulnerabilities

Multiple vulnerabilities have been discovered in Binutils, the wo...
 

Aug 14, 2022

GLSA-202208-29: Nokogiri: Multiple Vulnerabilities

Multiple vulnerabilities have been discovered in Nokogiri, the wo...
 

Aug 14, 2022

GLSA-202208-28: Puma: Multiple Vulnerabilities

Multiple vulnerabilities have been discovered in Puma, the worst ...
 

Aug 14, 2022

GLSA-202208-26: libarchive: Multiple Vulnerabilities

Multiple vulnerabilities have been discovered in libarchive, the ...
 

Aug 14, 2022

GLSA-202208-27: QEMU: Multiple Vulnerabilities

Multiple vulnerabilities have been discovered in QEMU, the worst ...
 

Aug 14, 2022

GLSA-202208-25: Chromium, Google Chrome, Microsoft Edge, QtWebEngine: Multiple Vul

Multiple vulnerabilities have been found in Chromium and its deri...
 

Aug 14, 2022

GLSA-202208-24: GNU C Library: Multiple Vulnerabilities

Multiple vulnerabilities have been discovered in the GNU C Librar...
 

Aug 14, 2022

GLSA-202208-23: Xen: Multiple Vulnerabilities

Multiple vulnerabilities have been discovered in Xen, the worst o...
 

Aug 13, 2022

GLSA-202208-22: xterm: Multiple Vulnerabilities

Multiple vulnerabilities have been discovered in xterm, the worst...
View More

Mageia

 

Aug 18, 2022

nvidia390 security update

Updated nvidia390 packages fix security vulnerabilities: NVIDIA ...
 

Aug 18, 2022

nvidia-current security update

Updated nvidia-current packages fix security vulnerabilities: NV...
 

Aug 12, 2022

libtiff security update

A stack overflow was discovered in the _TIFFVGetField function of...
 

Aug 12, 2022

golang security update

A too-short encoded message can cause a panic in Float.GobDecode ...
 

Aug 12, 2022

poppler security update

A logic error in the Hints::Hints function of Poppler v22.03.0 al...
 

Aug 12, 2022

python-django security update

An issue was discovered in Django 3.2 before 3.2.14 and 4.0 befor...
 

Aug 12, 2022

ruby-sinatra security update

Sinatra before 2.2.0 does not validate that the expanded path mat...
 

Aug 06, 2022

kernel-linus security update

This kernel-linus update is based on upstream 5.15.58 and fixes a...
 

Aug 06, 2022

kernel security update

This kernel update is based on upstream 5.15.58 and fixes at leas...
 

Aug 05, 2022

chromium-browser-stable security update

[1325699] High CVE-2022-2603: Use after free in Omnibox. Reported...
View More

Oracle

 

Aug 17, 2022

ELSA-2022-9714: Extended Important Security Update

The following updated rpms for Oracle Linux 6 Extended Lifecycle ...
 

Aug 15, 2022

ELSA-2022-6058: Oracle Moderate Security Update

The following updated rpms for Oracle Linux 8 have been uploaded ...
 

Aug 15, 2022

ELSA-2022-6057: Oracle Moderate Security Update

The following updated rpms for Oracle Linux 8 have been uploaded ...
 

Aug 15, 2022

ELSA-2022-9710: kernel Important Security Update

...
 

Aug 15, 2022

ELSA-2022-9709: kernel Important Security Update

...
 

Aug 15, 2022

ELSA-2022-9710: kernel Important Security Update

...
 

Aug 15, 2022

ELSA-2022-9709: kernel Important Security Update

...
 

Aug 11, 2022

ELSA-2022-5937: kernel Moderate Security Update

The following updated rpms for Oracle Linux 7 have been uploaded ...
 

Aug 11, 2022

ELSA-2022-9682: httpd Important Security Update

The following updated rpms for Oracle Linux 8 have been uploaded ...
 

Aug 11, 2022

ELSA-2022-6043: Oracle Moderate Security Update

The following updated rpms for Oracle Linux 9 have been uploaded ...
View More

openSUSE

 

Aug 16, 2022

2022:10092-1 important: chromium

An update that fixes 22 vulnerabilities is now available. ...
 

Aug 16, 2022

2022:10089-1 important: seamonkey

An update that contains security fixes can now be installed. ...
 

Aug 16, 2022

2022:10091-1 important: canna

An update that fixes one vulnerability is now available. ...
 

Aug 16, 2022

2022:10090-1 important: canna

An update that fixes one vulnerability is now available. ...
 

Aug 15, 2022

2022:10087-1 important: opera

An update that fixes 9 vulnerabilities is now available. ...
 

Aug 15, 2022

2022:10088-1 important: opera

An update that fixes 9 vulnerabilities is now available. ...
 

Aug 12, 2022

2022:10086-1 important: chromium

An update that fixes 22 vulnerabilities is now available. ...
 

Aug 06, 2022

2022:10081-1 moderate: trivy

An update that fixes one vulnerability is now available. ...
 

Aug 06, 2022

2022:10080-1 moderate: caddy

An update that fixes one vulnerability is now available. ...
 

Aug 03, 2022

2022:10077-1 important: seamonkey

An update that contains security fixes can now be installed. ...
View More

Red Hat

 

Aug 18, 2022

RHSA-2022-6051:01 Important: Logging Subsystem 5.5.0 - Red Hat

An update is now available for RHOL-5.5-RHEL-8. Red Hat Product S...
 

Aug 18, 2022

RHSA-2022-6113:01 Important: Red Hat Application Interconnect 1.0

Red Hat Application Interconnect 1.0 introduces a service network...
 

Aug 16, 2022

RHSA-2022-6073:01 Important: kernel security update

An update for kernel is now available for Red Hat Enterprise Linu...
 

Aug 16, 2022

RHSA-2022-6075:01 Important: kpatch-patch security update

An update is now available for Red Hat Enterprise Linux 7.7 Updat...
 

Aug 16, 2022

RHSA-2022-6078:01 Important: Red Hat Ansible Automation Platform

An update is now available for Red Hat Ansible Automation Platfor...
 

Aug 16, 2022

RHSA-2022-6079:01 Important: Red Hat Ansible Automation Platform

An update is now available for Red Hat Ansible Automation Platfor...
 

Aug 15, 2022

RHSA-2022-6057:01 Moderate: .NET Core 3.1 security, bug fix,

An update for .NET Core 3.1 is now available for Red Hat Enterpri...
 

Aug 15, 2022

RHSA-2022-6062:01 Important: Red Hat OpenStack Platform 16.2

An update for collectd-libpod-stats is now available for Red Hat ...
 

Aug 15, 2022

RHSA-2022-6065:01 Important: Red Hat OpenStack Platform 16.1

An update for collectd-libpod-stats is now available for Red Hat ...
 

Aug 15, 2022

RHSA-2022-6058:01 Moderate: .NET 6.0 security, bug fix,

An update for .NET 6.0 is now available for Red Hat Enterprise Li...
View More

Scientific Linux

 

Aug 09, 2022

SLSA-2022-5937-1 Moderate: kernel on SL7.x x86_64

Incomplete cleanup of multi-core shared buffers (aka SBDR) (CVE-2...
 

Aug 04, 2022

SLSA-2022-5905-1 Important: xorg-x11-server on SL7.x x86_64

xorg-x11-server: X.Org Server ProcXkbSetGeometry out-of-bounds ac...
 

Aug 03, 2022

SLSA-2022-5773-1 Important: thunderbird on SL7.x x86_64

This update upgrades Thunderbird to version 91.12.0. * Mozilla: M...
 

Aug 03, 2022

SLSA-2022-5776-1 Important: firefox on SL7.x x86_64

This update upgrades Firefox to version 91.12.0 ESR. * Mozilla: M...
 

Aug 01, 2022

SLSA-2022-5687-1 Important: java-11-openjdk on SL7.x x86_64

OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407) (CVE...
 

Aug 01, 2022

SLSA-2022-5698-1 Important: java-1.8.0-openjdk on SL7.x x86_64

OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407) (CVE...
 

Aug 01, 2022

SLSA-2022-5542-1 Important: squid on SL7.x x86_64

squid: DoS when processing gopher server responses (CVE-2021-4678...
 

Jul 01, 2022

SLSA-2022-5480-1 Important: thunderbird on SL7.x x86_64

This update upgrades Thunderbird to version 91.11. * Mozilla: CSP...
 

Jul 01, 2022

SLSA-2022-5479-1 Important: firefox on SL7.x x86_64

This update upgrades Firefox to version 91.11 ESR. * Mozilla: CSP...
 

Jun 28, 2022

SLSA-2022-5235-1 Moderate: python on SL7.x x86_64

python: CRLF injection via HTTP request method in httplib/http.cl...
View More

Slackware

 

Aug 15, 2022

2022-227-01: rsync Security Update

New rsync packages are available for Slackware 14.0, 14.1, 14.2, ...
 

Jul 29, 2022

2022-210-01: gnutls Security Update

New gnutls packages are available for Slackware 15.0 and -current...
 

Jul 27, 2022

2022-208-01: samba Security Update

New samba packages are available for Slackware 15.0 and -current ...
 

Jul 21, 2022

2022-202-01: net-snmp Security Update

New net-snmp packages are available for Slackware 15.0 and -curre...
 

Jul 13, 2022

2022-194-01: xorg-server Security Update

New xorg-server packages are available for Slackware 15.0 and -cu...
 

Jul 11, 2022

2022-192-01: seamonkey Security Update

New seamonkey packages are available for Slackware 15.0 and -curr...
 

Jul 10, 2022

2022-191-01: wavpack Security Update

New wavpack packages are available for Slackware 14.0, 14.1, 14.2...
 

Jul 05, 2022

2022-186-01: openssl Security Update

New openssl packages are available for Slackware 15.0 and -curren...
 

Jun 28, 2022

2022-179-03: Slackware 14.2 openssl Security Update

New openssl packages are available for Slackware 14.2 to fix a se...
 

Jun 28, 2022

2022-179-02: mozilla-firefox Security Update

New mozilla-firefox packages are available for Slackware 15.0 and...
View More

SuSE

 

Aug 19, 2022

2022:2855-1 important: nodejs10

An update that fixes 8 vulnerabilities is now available. ...
 

Aug 19, 2022

2022:2859-1 important: rsync

An update that fixes one vulnerability is now available. ...
 

Aug 19, 2022

2022:2856-1 important: java-1_8_0-openjdk

An update that solves three vulnerabilities and has one errata is...
 

Aug 19, 2022

2022:2858-1 important: rsync

An update that fixes one vulnerability is now available. ...
 

Aug 19, 2022

2022:2854-1 important: the Linux Kernel (Live Patch 0 for SLE 15 SP4)

An update that fixes 7 vulnerabilities is now available. ...
 

Aug 19, 2022

2022:1864-1 suse/sles12sp5 Security Update

The container suse/sles12sp5 was updated. The following patches h...
 

Aug 19, 2022

2022:1863-1 suse/sles12sp4 Security Update

The container suse/sles12sp4 was updated. The following patches h...
 

Aug 18, 2022

2022:2846-1 important: zlib

An update that fixes one vulnerability is now available. ...
 

Aug 18, 2022

2022:2845-1 important: zlib

An update that fixes one vulnerability is now available. ...
 

Aug 18, 2022

2022:2847-1 important: zlib

An update that fixes one vulnerability is now available. ...
View More

Ubuntu

 

Aug 18, 2022

rsync vulnerability

rsync could be made to crash or run programs if it received speci...
 

Aug 18, 2022

Linux kernel (AWS) vulnerabilities

Several security issues were fixed in the Linux kernel....
 

Aug 18, 2022

PostgreSQL vulnerability

PostgreSQL could be made to run programs when creating or updatin...
 

Aug 17, 2022

zlib vulnerability

zlib could be made to crash or run programs if it received specia...
 

Aug 17, 2022

PyJWT regression

USN-5526-1 introduced a regression in PyJWT....
 

Aug 16, 2022

Unbound vulnerabilities

Unbound could be made to cache rogue domain names....
 

Aug 15, 2022

WebKitGTK vulnerabilities

Several security issues were fixed in WebKitGTK....
 

Aug 11, 2022

Booth vulnerability

Booth could be made to be stop working under certain circumstance...
 

Aug 10, 2022

Moment.js vulnerabilities

Several security issues were fixed in Moment.js....
 

Aug 10, 2022

Linux kernel (OEM) vulnerabilities

Several security issues were fixed in the Linux kernel....
View More

News

Advisories

HOWTOs

Features

Open-Source VPN Protocols Compared: Why WireGuard is on the Rise!
Open Source OSINT Tools and Techniques
The Story Behind the Linux Security Quick Reference Guide
Benefits & Drawbacks of Using a VPN on Linux
How a WAF Could Improve the Security of Your Linux Web Applications

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy