Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 591 articles for you...
100
security advisorySuSEDoSSUSE glibc Critical Update Addresses DoS Vulnerability 2026-2440-1
An update that solves three vulnerabilities can now be installed.. # Security update for glibc Announcement ID: SUSE-SU-2026:2440-1 Release Date: 2026-06-18T07:08:20Z Rating: important References: * bsc#1261206 * bsc#1262464 * bsc#1262465 Cross-References: * CVE-2026-4046 * CVE-2026-5450 * CVE-2026-5928 CVSS scores: * CVE-2026-4046 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-4046 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-4046 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-5450 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-5450 ( SUSE ): 5.9 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-5450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-5928 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-5928 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-5928 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves three vulnerabilities can now be installed. ## Description: This update for glibc fixes the following issues: * CVE-2026-5928: libio: Fix ungetwc operating on byte stream (bsc#1262464, BZ #33998) * CVE-2026-5450: stdio-common: Fix buffer overflow in scanf %mc (bsc#1262465, BZ #34008) * CVE-2026-4046: Use pending character state in IBM1390, IBM1399 character sets (bsc#1261206, BZ #33980) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed foryour product: * SUSE Linux Enterprise Server 12 SP5 LTSS zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2026-2440=1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-2440=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS (noarch) * glibc-i18ndata-2.22-114.46.1 * glibc-info-2.22-114.46.1 * glibc-html-2.22-114.46.1 * SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 ppc64le s390x x86_64) * glibc-devel-debuginfo-2.22-114.46.1 * glibc-profile-2.22-114.46.1 * nscd-debuginfo-2.22-114.46.1 * glibc-devel-static-2.22-114.46.1 * glibc-2.22-114.46.1 * glibc-devel-2.22-114.46.1 * nscd-2.22-114.46.1 * glibc-locale-2.22-114.46.1 * glibc-debuginfo-2.22-114.46.1 * glibc-locale-debuginfo-2.22-114.46.1 * glibc-debugsource-2.22-114.46.1 * SUSE Linux Enterprise Server 12 SP5 LTSS (s390x x86_64) * glibc-locale-debuginfo-32bit-2.22-114.46.1 * glibc-locale-32bit-2.22-114.46.1 * glibc-devel-32bit-2.22-114.46.1 * glibc-debuginfo-32bit-2.22-114.46.1 * glibc-profile-32bit-2.22-114.46.1 * glibc-devel-debuginfo-32bit-2.22-114.46.1 * glibc-32bit-2.22-114.46.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * glibc-locale-2.22-114.46.1 * glibc-devel-debuginfo-2.22-114.46.1 * glibc-locale-debuginfo-32bit-2.22-114.46.1 * glibc-profile-2.22-114.46.1 * nscd-debuginfo-2.22-114.46.1 * glibc-locale-32bit-2.22-114.46.1 * glibc-devel-32bit-2.22-114.46.1 * glibc-devel-static-2.22-114.46.1 * glibc-2.22-114.46.1 * glibc-devel-2.22-114.46.1 * glibc-debuginfo-32bit-2.22-114.46.1 * nscd-2.22-114.46.1 * glibc-profile-32bit-2.22-114.46.1 * glibc-devel-debuginfo-32bit-2.22-114.46.1 * glibc-debuginfo-2.22-114.46.1 * glibc-locale-debuginfo-2.22-114.46.1 * glibc-debugsource-2.22-114.46.1 * glibc-32bit-2.22-114.46.1 * SUSE Linux Enterprise Server 12 SP5 LTSS ExtendedSecurity (noarch) * glibc-i18ndata-2.22-114.46.1 * glibc-info-2.22-114.46.1 * glibc-html-2.22-114.46.1 ## References: * https://www.suse.com/security/cve/CVE-2026-4046.html * https://www.suse.com/security/cve/CVE-2026-5450.html * https://www.suse.com/security/cve/CVE-2026-5928.html * https://bugzilla.suse.com/show_bug.cgi?id=1261206 * https://bugzilla.suse.com/show_bug.cgi?id=1262464 * https://bugzilla.suse.com/show_bug.cgi?id=1262465 . SUSE's important update for glibc addresses three vulnerabilities in the 12 SP5 version.. SUSE update, glibc vulnerabilities, Linux security update. . Severity: Important. LinuxSecurity.com Team
Jun 18, 2026 •Important SuSE 202
security advisoryimportantOpenSUSEopenSUSE rustup Important Input Parsing Stack Exhaustion CVE-2026-25727
An update that solves one vulnerability and has one security fix can now be installed.. # Security update for rustup Announcement ID: SUSE-SU-2026:2441-1 Release Date: 2026-06-18T07:10:45Z Rating: important References: * bsc#1230032 * bsc#1257902 Cross-References: * CVE-2026-25727 CVSS scores: * CVE-2026-25727 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-25727 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-25727 ( NVD ): 6.8 CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-25727 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * Development Tools Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for rustup fixes the following issues * CVE-2026-25727: time: parsing of user-provided input by the RFC 2822 date parser can lead to stack exhaustion (bsc#1257902). * rust-shlex: Multiple issues involving quote API (RUSTSEC-2024-0006, GHSA-r7qv-8r2h-pg27) (bsc#1230032). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2441=1 * Development Tools Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP7-2026-2441=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2441=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2441=1 ## Package List: * openSUSE Leap 15.6 (aarch64 x86_64) * rustup-debugsource-1.28.2~0-150600.10.10.1 * rustup-1.28.2~0-150600.10.10.1 * rustup-debuginfo-1.28.2~0-150600.10.10.1 * Development Tools Module 15-SP7 (aarch64 x86_64) * rustup-1.28.2~0-150600.10.10.1 * rustup-debuginfo-1.28.2~0-150600.10.10.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 x86_64) * rustup-1.28.2~0-150600.10.10.1 * rustup-debuginfo-1.28.2~0-150600.10.10.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (x86_64) * rustup-1.28.2~0-150600.10.10.1 * rustup-debuginfo-1.28.2~0-150600.10.10.1 ## References: * https://www.suse.com/security/cve/CVE-2026-25727.html * https://bugzilla.suse.com/show_bug.cgi?id=1230032 * https://bugzilla.suse.com/show_bug.cgi?id=1257902 . An important update for openSUSE resolves a severe stack exhaustion issue in rustup, requiring immediate attention.. openSUSE security,rustup update,stack exhaustion issue. . Severity: Important. LinuxSecurity.com Team
Jun 18, 2026 •Important OpenSUSE 
100
security advisorysecurity updateSuSESUSE Rustup Important Stack Exhaustion Fix Advisory 2026-2441-1
An update that solves one vulnerability and has one security fix can now be installed.. # Security update for rustup Announcement ID: SUSE-SU-2026:2441-1 Release Date: 2026-06-18T07:10:45Z Rating: important References: * bsc#1230032 * bsc#1257902 Cross-References: * CVE-2026-25727 CVSS scores: * CVE-2026-25727 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-25727 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-25727 ( NVD ): 6.8 CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-25727 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * Development Tools Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for rustup fixes the following issues * CVE-2026-25727: time: parsing of user-provided input by the RFC 2822 date parser can lead to stack exhaustion (bsc#1257902). * rust-shlex: Multiple issues involving quote API (RUSTSEC-2024-0006, GHSA-r7qv-8r2h-pg27) (bsc#1230032). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2441=1 * Development Tools Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP7-2026-2441=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2441=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2441=1 ## Package List: * openSUSE Leap 15.6 (aarch64 x86_64) * rustup-debugsource-1.28.2~0-150600.10.10.1 * rustup-1.28.2~0-150600.10.10.1 * rustup-debuginfo-1.28.2~0-150600.10.10.1 * Development Tools Module 15-SP7 (aarch64 x86_64) * rustup-1.28.2~0-150600.10.10.1 * rustup-debuginfo-1.28.2~0-150600.10.10.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 x86_64) * rustup-1.28.2~0-150600.10.10.1 * rustup-debuginfo-1.28.2~0-150600.10.10.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (x86_64) * rustup-1.28.2~0-150600.10.10.1 * rustup-debuginfo-1.28.2~0-150600.10.10.1 ## References: * https://www.suse.com/security/cve/CVE-2026-25727.html * https://bugzilla.suse.com/show_bug.cgi?id=1230032 * https://bugzilla.suse.com/show_bug.cgi?id=1257902 . An important update for SUSE addressing a vulnerability in rustup, preventing stack exhaustion through date parsing issues.. SUSE rustup patch important security update. . Severity: Important. LinuxSecurity.com Team
Jun 18, 2026 •Important SuSE 100
security advisorySuSEimportantSUSE perl-HTTP-Daemon Important OS Command Injection Sec Fix 2026-2442-1
An update that solves one vulnerability can now be installed.. # Security update for perl-HTTP-Daemon Announcement ID: SUSE-SU-2026:2442-1 Release Date: 2026-06-18T07:24:22Z Rating: important References: * bsc#1266370 Cross-References: * CVE-2026-8450 CVSS scores: * CVE-2026-8450 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-8450 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: * Basesystem Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for perl-HTTP-Daemon fixes the following issues: * CVE-2026-8450: Fixed OS command injection via send_file() (bsc#1266370). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patchSUSE-SLE-Product-SLES_SAP-15-SP6-2026-2442=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2442=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2442=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2442=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2442=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2442=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2442=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2442=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2442=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2442=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2442=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch) * perl-HTTP-Daemon-6.01-150000.3.8.1 * Basesystem Module 15-SP7 (noarch) * perl-HTTP-Daemon-6.01-150000.3.8.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * perl-HTTP-Daemon-6.01-150000.3.8.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * perl-HTTP-Daemon-6.01-150000.3.8.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * perl-HTTP-Daemon-6.01-150000.3.8.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * perl-HTTP-Daemon-6.01-150000.3.8.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) *perl-HTTP-Daemon-6.01-150000.3.8.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * perl-HTTP-Daemon-6.01-150000.3.8.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch) * perl-HTTP-Daemon-6.01-150000.3.8.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * perl-HTTP-Daemon-6.01-150000.3.8.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * perl-HTTP-Daemon-6.01-150000.3.8.1 ## References: * https://www.suse.com/security/cve/CVE-2026-8450.html * https://bugzilla.suse.com/show_bug.cgi?id=1266370 . Addressing important configurations in perl-HTTP-Daemon to mitigate security risks and maintain system integrity.. SUSE update, command injection, perl daemon, system security. . Severity: Important. LinuxSecurity.com Team
Jun 18, 2026 •Important SuSE 172
security advisoryremote accessUbuntuUbuntu 26.04 LTS ldns Important Spoofed DNS Response Risk USN-8449-1
ldns could be made to accept spoofed DNS responses.. ========================================================================== Ubuntu Security Notice USN-8449-1 June 18, 2026 ldns vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: ldns could be made to accept spoofed DNS responses. Software Description: - ldns: ldns library for DNS programming Details: Pablo Ruiz discovered that ldns did not properly validate DNS responses when used as a stub resolver over UDP. A remote attacker could possibly use this issue to inject arbitrary DNS responses. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS ldnsutils 1.8.4-2ubuntu0.26.04.1~esm1 Available with Ubuntu Pro libldns3t64 1.8.4-2ubuntu0.26.04.1~esm1 Available with Ubuntu Pro Ubuntu 24.04 LTS ldnsutils 1.8.3-2ubuntu0.1~esm1 Available with Ubuntu Pro libldns3t64 1.8.3-2ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 22.04 LTS ldnsutils 1.7.1-2ubuntu4+esm2 Available with Ubuntu Pro libldns3 1.7.1-2ubuntu4+esm2 Available with Ubuntu Pro Ubuntu 20.04 LTS ldnsutils 1.7.0-4.1ubuntu1+esm2 Available with Ubuntu Pro libldns2 1.7.0-4.1ubuntu1+esm2 Available with Ubuntu Pro Ubuntu 18.04 LTS ldnsutils 1.7.0-3ubuntu4.1+esm1 Available with Ubuntu Pro libldns2 1.7.0-3ubuntu4.1+esm1 Available with Ubuntu Pro Ubuntu 16.04 LTS ldnsutils 1.6.17-8ubuntu0.1+esm2 Available with Ubuntu Pro libldns1 1.6.17-8ubuntu0.1+esm2 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8449-1 CVE-2026-10846 . A crucial update on ldns vulnerabilities affecting multiple Ubuntu LTS versions. Important patch instructions included.. DNS Spoofing, ldns Security, Ubuntu Vulnerability. . Severity: Important. LinuxSecurity.com Team
Jun 18, 2026 •Important Ubuntu 217
security advisoryimportantkernelOracle Linux 9 ELSA-2026-50318 Important Kernel Security Issues
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-50318 http://linux.oracle.com/errata/ELSA-2026-50318.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: bpftool-5.15.0-321.202.5.2.el9uek.x86_64.rpm kernel-uek-5.15.0-321.202.5.2.el9uek.x86_64.rpm kernel-uek-core-5.15.0-321.202.5.2.el9uek.x86_64.rpm kernel-uek-debug-5.15.0-321.202.5.2.el9uek.x86_64.rpm kernel-uek-debug-core-5.15.0-321.202.5.2.el9uek.x86_64.rpm kernel-uek-debug-devel-5.15.0-321.202.5.2.el9uek.x86_64.rpm kernel-uek-debug-modules-5.15.0-321.202.5.2.el9uek.x86_64.rpm kernel-uek-debug-modules-extra-5.15.0-321.202.5.2.el9uek.x86_64.rpm kernel-uek-devel-5.15.0-321.202.5.2.el9uek.x86_64.rpm kernel-uek-doc-5.15.0-321.202.5.2.el9uek.noarch.rpm kernel-uek-modules-5.15.0-321.202.5.2.el9uek.x86_64.rpm kernel-uek-modules-extra-5.15.0-321.202.5.2.el9uek.x86_64.rpm kernel-uek-container-5.15.0-321.202.5.2.el9uek.x86_64.rpm kernel-uek-container-debug-5.15.0-321.202.5.2.el9uek.x86_64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/kernel-uek-5.15.0-321.202.5.2.el9uek.src.rpm Related CVEs: CVE-2022-50073 CVE-2026-31504 CVE-2026-31533 CVE-2026-31657 CVE-2026-31669 Description of changes: [5.15.0-321.202.5.2] - net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (Muhammad Alifa Ramdhan) [Orabug: 39543209] {CVE-2026-31533} - net: fix fanout UAF in packet_release() via NETDEV_UP race (Yochai Eisenrich) [Orabug: 39543208] {CVE-2026-31504} - net: tap: NULL pointer derefence in dev_parse_header_protocol when skb-> dev is null (Cezar Bulinaru) [Orabug: 39543201] {CVE-2022-50073} - mptcp: fix slab-use-after-free in __inet_lookup_established (Jiayuan Chen) [Orabug: 39543200] {CVE-2026-31669} - batman-adv: hold claim backbone gateways by reference (Haoze Xie) [Orabug: 39543197] {CVE-2026-31657} - arm64: dts: pensando: drop elba penfw firmware node (Tom Saeger) [Orabug:39543196] _______________________________________________ El-errata mailing list
Jun 18, 2026 •Important Oracle 217
security advisoryupdatevulnerabilityOracle Linux 9 Kernel Security Advisory ELSA-2026-50318 for CVEs
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-50318 http://linux.oracle.com/errata/ELSA-2026-50318.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: aarch64: bpftool-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek-container-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek-container-debug-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek-core-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek-debug-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek-debug-core-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek-debug-devel-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek-debug-modules-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek-debug-modules-extra-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek-devel-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek-doc-5.15.0-321.202.5.2.el9uek.noarch.rpm kernel-uek-modules-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek-modules-extra-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek64k-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek64k-core-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek64k-devel-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek64k-modules-5.15.0-321.202.5.2.el9uek.aarch64.rpm kernel-uek64k-modules-extra-5.15.0-321.202.5.2.el9uek.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/kernel-uek-5.15.0-321.202.5.2.el9uek.src.rpm Related CVEs: CVE-2022-50073 CVE-2026-31504 CVE-2026-31533 CVE-2026-31657 CVE-2026-31669 Description of changes: [5.15.0-321.202.5.2] - net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (Muhammad Alifa Ramdhan) [Orabug: 39543209] {CVE-2026-31533} - net: fix fanout UAF in packet_release() via NETDEV_UP race (Yochai Eisenrich) [Orabug: 39543208] {CVE-2026-31504} - net: tap: NULL pointer derefence in dev_parse_header_protocol when skb-> dev is null (Cezar Bulinaru) [Orabug: 39543201] {CVE-2022-50073} -mptcp: fix slab-use-after-free in __inet_lookup_established (Jiayuan Chen) [Orabug: 39543200] {CVE-2026-31669} - batman-adv: hold claim backbone gateways by reference (Haoze Xie) [Orabug: 39543197] {CVE-2026-31657} - arm64: dts: pensando: drop elba penfw firmware node (Tom Saeger) [Orabug: 39543196] [5.15.0-321.202.5.1] - arm64: errata: Mitigate TLBI errata on various Arm CPUs (Mark Rutland) [Orabug: 39017590] {CVE-2025-10263} - arm64: tlb: Add ARM64_WORKAROUND_REPEAT_TLBI_SYNC (Mark Rutland) [Orabug: 39017590] - ARM: uek: Disable CONFIG_NVIDIA_CARMEL_CNP_ERRATUM (Boris Ostrovsky) [Orabug: 39017590] - arm64: tlb: allow XZR argument to TLBI ops (Mark Rutland) [Orabug: 39017590] - arm64: cputype: Add C1-Premium definitions (Mark Rutland) [Orabug: 39017590] - arm64: cputype: Add C1-Ultra definitions (Mark Rutland) [Orabug: 39017590] [5.15.0-321.202.5] - Revert "ip6_tunnel: Fix usage of skb_vlan_inet_prepare()" (Harshit Mogalapalli) [Orabug: 39476647] - smb: client: reject userspace cifs.spnego descriptions (Asim Viladi Oglu Manizada) [Orabug: 39463672] [5.15.0-321.202.4] - tun: free page on build_skb failure in tun_xdp_one() (Weiming Shi) [Orabug: 39429143] - tap: free page on error paths in tap_get_user_xdp() (Weiming Shi) [Orabug: 39429143] - tun: free page on short-frame rejection in tun_xdp_one() (Weiming Shi) [Orabug: 39429143] [5.15.0-321.202.3] - net: skbuff: propagate shared-frag marker through frag-transfer helpers (Hyunwoo Kim) [Orabug: 39368827] {CVE-2026-46300} - net: skbuff: preserve shared-frag marker during coalescing (William Bowling) [Orabug: 39368827] - ptrace: slightly saner 'get_dumpable()' logic (Linus Torvalds) [Orabug: 39384274] {CVE-2026-46333} - mm/hugetlb: fix excessive IPI broadcasts when unsharing PMD tables using mmu_gather (David Hildenbrand (Red Hat)) [Orabug: 38474901] - Revert "mm/hugetlb: add option to allows disabling CVE-2025-38085 mitigation" (Samasth Norway Ananda) [Orabug: 38474901] - mm/rmap: fix two comments related to huge_pmd_unshare() (DavidHildenbrand (Red Hat)) [Orabug: 38474901] - mm/hugetlb: fix two comments related to huge_pmd_unshare() (David Hildenbrand (Red Hat)) [Orabug: 38474901] - mm/hugetlb: fix hugetlb_pmd_shared() (David Hildenbrand (Red Hat)) [Orabug: 38474901] [5.15.0-321.202.2] - dpaa2-switch: Fix interrupt storm after receiving bad if_id in IRQ handler (Guenter Roeck) - Revert "arm64: dts: qcom: sdm845-oneplus: Mark l14a regulator as boot-on" (Sasha Levin) - ip6_tunnel: Fix usage of skb_vlan_inet_prepare() (Ben Hutchings) - hwmon: (max16065) Use READ/WRITE_ONCE to avoid compiler optimization induced race (Gui-Dong Han) - wifi: wlcore: Return -ENOMEM instead of -EAGAIN if there is not enough headroom (Guenter Roeck) - sched: idle: Make skipping governor callbacks more consistent (Rafael J. Wysocki) - nvmet-tcp: fix use-before-check of sg in bounds validation (Cengiz Can) - remoteproc: mediatek: Unprepare SCP clock during system suspend (Tzung-Bi Shih) - net: openvswitch: Avoid releasing netdev before teardown completes (Toke Høiland-Jørgensen) - ACPI: processor: Fix previous acpi_processor_errata_piix4() fix (Rafael J. Wysocki) - net: hsr: fix VLAN add unwind on slave errors (Luka Gejak) - x86/CPU/AMD: Add a fix for AMD-SB-7052 (Prathyushi Nangia) [Orabug: 39327141] {CVE-2025-54518} - xfrm: esp: ipv4: fix up flags setting (Greg Kroah-Hartman) [Orabug: 39342679] {CVE-2026-43284} - xfrm: esp: avoid in-place decrypt on shared skb frags (Kuan-Ting Chen) [Orabug: 39342679] {CVE-2026-43284} - KVM: x86: disable preemption around the call to kvm_arch_vcpu_{un|}blocking (Maxim Levitsky) [Orabug: 39334996] - KVM: Don't block+unblock when halt-polling is successful (Sean Christopherson) [Orabug: 39334996] - nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (Jeff Layton) [Orabug: 39167616] {CVE-2026-31402} - net/sched: Only allow act_ct to bind to clsact/ingress qdiscs and shared blocks (Victor Nogueira) [Orabug: 39103230] {CVE-2026-23270} - exadata: tools: perf: update column to comm_nodigit (Stephen Brennan) [Orabug:39327019] - perf report: Add comm_nodigit sort key (Stephen Brennan) [Orabug: 39327019] - Revert "tools: perf: add comm_ignore_digit column" (Stephen Brennan) [Orabug: 39327019] [5.15.0-321.202.1] - virtio-net: add cond_resched() to the command waiting loop (Jason Wang) [Orabug: 39291988] - virtio-net: convert rx mode setting to use workqueue (Jason Wang) [Orabug: 39291988] - x86: KVM: Add common feature flag for AMD's PSFD (Sean Christopherson) [Orabug: 35586248] - KVM: x86: Insert "AMD" in KVM_X86_FEATURE_PSFD (Jim Mattson) [Orabug: 35586248] - KVM: x86: Expose Predictive Store Forwarding Disable (Babu Moger) [Orabug: 35586248] - i2c: designware: fix __i2c_dw_disable() in case master is holding SCL low (Yann Sionneau) [Orabug: 39174661] [5.15.0-320.202.8] - iommu/arm-smmu-v3: Handle zeroed A4-2C HTTU override settings (Joao Martins) [Orabug: 39186453] - iommu: Move IOMMU_DIRTY_NO_CLEAR define (Shameer Kolothum) [Orabug: 39186453] - iommu/arm-smmu-v3: Enable HTTU for stage1 with io-pgtable mapping (Kunkun Jiang) [Orabug: 39186453] - iommu/arm-smmu-v3: Add support for dirty tracking in domain alloc (Joao Martins) [Orabug: 39186453] - iommu/io-pgtable-arm: Add read_and_clear_dirty() support (Shameer Kolothum) [Orabug: 39186453] - iommu/arm-smmu-v3: Add feature detection for HTTU (Jean-Philippe Brucker) [Orabug: 39186453] [5.15.0-320.202.7] - crypto: algif_aead - Fix minimum RX size check for decryption (Herbert Xu) [Orabug: 39250686,39331104] {CVE-2026-43077} - crypto: af_alg - Fix page reassignment overflow in af_alg_pull_tsgl (Herbert Xu) [Orabug: 39250686,39331109] {CVE-2026-43078} - crypto: authencesn - Fix src offset when decrypting in-place (Herbert Xu) [Orabug: 39250686] - crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption (Herbert Xu) [Orabug: 39250686,39300910] {CVE-2026-43033} - crypto: authenc - use memcpy_sglist() instead of null skcipher (Eric Biggers) [Orabug: 39250686] - crypto: algif_aead - snapshot IV for async AEAD requests (Douya Le) [Orabug: 39250686] -crypto: algif_aead - Revert to operating out-of-place (Herbert Xu) [Orabug: 39250686,39283867,39291961] {CVE-2026-31431} - crypto: algif_aead - use memcpy_sglist() instead of null skcipher (Eric Biggers) [Orabug: 39250686] {CVE-2026-31431} - crypto: scatterwalk - Backport memcpy_sglist() (Eric Biggers) [Orabug: 39250686] - uek-rpm: Enable FWCTL for aarch64 (Dave Kleikamp) [Orabug: 39252913] [5.15.0-320.202.6] - Revert "rds: Drop rds conn in connect worker if not in down state." (Vijayendra Suman) [Orabug: 39277795] - uek-rpm: CONFIG_INTEL_IOMMU_SCALABLE_MODE_DEFAULT_ON should be set (Dave Kleikamp) [Orabug: 39109819] - iommu/vt-d: Disallow dirty tracking if incoherent page walk (Lu Baolu) [Orabug: 39109819] - iommu/vt-d: Set variable intel_dirty_ops to static (Kunwu Chan) [Orabug: 39109819] - iommu/vt-d: Access/Dirty bit support for SS domains (Joao Martins) [Orabug: 39109819] - iommu/amd: reduce GA Log overflow printk noise (Alejandro Jimenez) [Orabug: 39209012] - iommu/amd: add reschedule points to GA Log draining (Alejandro Jimenez) [Orabug: 39209012] - iommu/amd: Rework GAInt handling in overflow case (Joao Martins) [Orabug: 39209012] - iommu/amd: Disable GAInt while GA Log is processed (Joao Martins) [Orabug: 39209012] - iommu/amd: Move helpers to update IOMMU features to amd_iommu.h (Alejandro Jimenez) [Orabug: 39209012] - iommu/amd: Increase GA Log buffer size to 8192 entries (Joao Martins) [Orabug: 39209012] - x86/CPU: Fix FPDSS on Zen1 (Borislav Petkov) [Orabug: 39241228,39273722] {CVE-2026-31628} _______________________________________________ El-errata mailing list
Jun 18, 2026 •Important Oracle 217
security advisorysecurity issueremote accessOracle Linux 8 ELSA-2026-50318 Kernel Important Security Issue
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-50318 http://linux.oracle.com/errata/ELSA-2026-50318.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: bpftool-5.15.0-321.202.5.2.el8uek.x86_64.rpm kernel-uek-5.15.0-321.202.5.2.el8uek.x86_64.rpm kernel-uek-core-5.15.0-321.202.5.2.el8uek.x86_64.rpm kernel-uek-debug-5.15.0-321.202.5.2.el8uek.x86_64.rpm kernel-uek-debug-core-5.15.0-321.202.5.2.el8uek.x86_64.rpm kernel-uek-debug-devel-5.15.0-321.202.5.2.el8uek.x86_64.rpm kernel-uek-debug-modules-5.15.0-321.202.5.2.el8uek.x86_64.rpm kernel-uek-debug-modules-extra-5.15.0-321.202.5.2.el8uek.x86_64.rpm kernel-uek-devel-5.15.0-321.202.5.2.el8uek.x86_64.rpm kernel-uek-doc-5.15.0-321.202.5.2.el8uek.noarch.rpm kernel-uek-modules-5.15.0-321.202.5.2.el8uek.x86_64.rpm kernel-uek-modules-extra-5.15.0-321.202.5.2.el8uek.x86_64.rpm kernel-uek-container-5.15.0-321.202.5.2.el8uek.x86_64.rpm kernel-uek-container-debug-5.15.0-321.202.5.2.el8uek.x86_64.rpm aarch64: bpftool-5.15.0-321.202.5.2.el8uek.aarch64.rpm kernel-uek-5.15.0-321.202.5.2.el8uek.aarch64.rpm kernel-uek-core-5.15.0-321.202.5.2.el8uek.aarch64.rpm kernel-uek-debug-5.15.0-321.202.5.2.el8uek.aarch64.rpm kernel-uek-debug-core-5.15.0-321.202.5.2.el8uek.aarch64.rpm kernel-uek-debug-devel-5.15.0-321.202.5.2.el8uek.aarch64.rpm kernel-uek-debug-modules-5.15.0-321.202.5.2.el8uek.aarch64.rpm kernel-uek-debug-modules-extra-5.15.0-321.202.5.2.el8uek.aarch64.rpm kernel-uek-devel-5.15.0-321.202.5.2.el8uek.aarch64.rpm kernel-uek-doc-5.15.0-321.202.5.2.el8uek.noarch.rpm kernel-uek-modules-5.15.0-321.202.5.2.el8uek.aarch64.rpm kernel-uek-modules-extra-5.15.0-321.202.5.2.el8uek.aarch64.rpm kernel-uek-container-5.15.0-321.202.5.2.el8uek.aarch64.rpm kernel-uek-container-debug-5.15.0-321.202.5.2.el8uek.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates/kernel-uek-5.15.0-321.202.5.2.el8uek.src.rpm RelatedCVEs: CVE-2022-50073 CVE-2026-31504 CVE-2026-31533 CVE-2026-31657 CVE-2026-31669 Description of changes: [5.15.0-321.202.5.2] - net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (Muhammad Alifa Ramdhan) [Orabug: 39543209] {CVE-2026-31533} - net: fix fanout UAF in packet_release() via NETDEV_UP race (Yochai Eisenrich) [Orabug: 39543208] {CVE-2026-31504} - net: tap: NULL pointer derefence in dev_parse_header_protocol when skb-> dev is null (Cezar Bulinaru) [Orabug: 39543201] {CVE-2022-50073} - mptcp: fix slab-use-after-free in __inet_lookup_established (Jiayuan Chen) [Orabug: 39543200] {CVE-2026-31669} - batman-adv: hold claim backbone gateways by reference (Haoze Xie) [Orabug: 39543197] {CVE-2026-31657} - arm64: dts: pensando: drop elba penfw firmware node (Tom Saeger) [Orabug: 39543196] _______________________________________________ El-errata mailing list
Jun 18, 2026 •Important Oracle 
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!