Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 207 articles for you...
202

openSUSE Leap 15.6 Kernel Important Access Issue Fix 2026-2310-1

An update that solves 22 vulnerabilities and has five security fixes can now be installed.. # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:2310-1 Release Date: 2026-06-09T08:18:37Z Rating: important References: * bsc#1261700 * bsc#1262663 * bsc#1263068 * bsc#1263769 * bsc#1263774 * bsc#1263790 * bsc#1263995 * bsc#1264093 * bsc#1264449 * bsc#1264551 * bsc#1264989 * bsc#1265928 * bsc#1265960 * bsc#1266001 * bsc#1266009 * bsc#1266238 * bsc#1266402 * bsc#1266414 * bsc#1266711 * bsc#1266765 * bsc#1266889 * bsc#1266901 * bsc#1266969 * bsc#1266972 * bsc#1267205 * bsc#1267220 * bsc#1267222 Cross-References: * CVE-2026-31405 * CVE-2026-31473 * CVE-2026-31613 * CVE-2026-31614 * CVE-2026-31629 * CVE-2026-31758 * CVE-2026-43037 * CVE-2026-43206 * CVE-2026-43284 * CVE-2026-43362 * CVE-2026-43499 * CVE-2026-43501 * CVE-2026-43503 * CVE-2026-45852 * CVE-2026-45910 * CVE-2026-45970 * CVE-2026-46004 * CVE-2026-46021 * CVE-2026-46043 * CVE-2026-46113 * CVE-2026-46114 * CVE-2026-46243 CVSS scores: * CVE-2026-31405 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31405 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31473 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31473 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31473 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31613 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31613 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31613 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H * CVE-2026-31614 ( SUSE ): 6.1 CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31614 ( SUSE ): 7.1CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31614 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31629 ( SUSE ): 8.7 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31629 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31629 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31758 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31758 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31758 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43037 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43206 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43206 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43284 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43284 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43284 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43362 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2026-43362 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L * CVE-2026-43362 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2026-43499 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43499 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43499 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43501 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43501 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43501 ( NVD ): 9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-45852 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45852 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45852 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45910 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45910 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45910 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45970 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45970 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45970 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46004 ( SUSE ): 7.0 CVSS:4.0/AV:P/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46004 ( SUSE ): 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46021 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46021 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46043 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-46043 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46043 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-46113 ( SUSE ): 9.3 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-46113 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46113 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46114 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-46114 ( SUSE ): 5.4 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-46114 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-46243 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46243 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise High Availability Extension 15 SP6 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves 22 vulnerabilities and has five security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2026-31405: media: dvb-net: fix OOB access in ULE extension header tables (bsc#1261700). * CVE-2026-31473: media: mc, v4l2: serialize REINIT and REQBUFS with req_queue_mutex (bsc#1262663). * CVE-2026-31613: smb: client: fix OOB reads parsing symlink error response (bsc#1263769). * CVE-2026-31614: smb: client: fix off-by-8 bounds check in check_wsl_eas() (bsc#1263774). * CVE-2026-31629: nfc: llcp: add missing return after LLCP_CLOSED checks (bsc#1263790). * CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmc_release (bsc#1264093). * CVE-2026-43037: ip6_tunnel: clear skb2-> cb in ip4ip6_err() (bsc#1263995). * CVE-2026-43206: drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() (bsc#1264551). * CVE-2026-43362: smb: client: fix in-place encryption corruption in SMB2_write() (bsc#1264989). * CVE-2026-43499: rtmutex: Usewaiter::task instead of current in remove_waiter() (bsc#1266001). * CVE-2026-43501: ipv6: rpl: reserve mac_len headroom when recompressed SRH grows (bsc#1266009). * CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag- transfer helpers (bsc#1265960). * CVE-2026-45852: RDMA/rxe: Fix double free in rxe_srq_from_init (bsc#1266711). * CVE-2026-45910: RDMA/rxe: Fix race condition in QP timer handlers (bsc#1266889). * CVE-2026-45970: bonding: alb: fix UAF in rlb_arp_recv during bond up/down (bsc#1267205). * CVE-2026-46004: ALSA: caiaq: Handle probe errors properly (bsc#1267222). * CVE-2026-46021: thermal: core: Fix thermal zone governor cleanup issues (bsc#1267220). * CVE-2026-46043: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv (bsc#1266901). * CVE-2026-46113: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (bsc#1266969). * CVE-2026-46114: RDMA/rxe: Reject non-8-byte ATOMIC_WRITE payloads (bsc#1266972). * CVE-2026-46243: smb: client: reject userspace cifs.spnego descriptions (bsc#1266238). The following non security issues were fixed: * arm64: tlb: Allow XZR argument to TLBI ops (git-fixes). * arm64: tlb: Optimize ARM64_WORKAROUND_REPEAT_TLBI (git-fixes). * drm/hyperv: validate resolution_count and fix WIN8 fallback (git-fixes). * drm/hyperv: validate VMBus packet size in receive callback (git-fixes). * net: gro: don't merge zcopy skbs (git-fixes). * net: mana: Add NULL guards in teardown path to prevent panic on attach failure (git-fixes). * net: mana: Expose hardware diagnostic info via debugfs (bsc#1266414). * net: mana: Fix TOCTOU double-fetch of hwc_msg_id from DMA buffer (bsc#1265928). * net: mana: hardening: Reject zero max_num_queues from GDMA_QUERY_MAX_RESOURCES (git-fixes). * net: mana: Skip redundant detach on already-detached port (git-fixes). * net: mana: Use kvmalloc for large RX queue and buffer allocations (bsc#1266765). * net: mana: Useper-queue allocation for tx_qp to reduce allocation size (bsc#1266765). * net: mana: validate rx_req_idx to prevent out-of-bounds array access (bsc#1266402). * RDMA/mana_ib: Report max_msg_sz in mana_ib_query_port (git-fixes). * s390/barrier: Make array_index_mask_nospec() __always_inline (bsc#1263068). * s390/entry: Scrub r12 register on kernel entry (bsc#1263068). * s390/syscalls: Add spectre boundary for syscall dispatch table (bsc#1263068). * smb: client: correctly handle ErrorContextData as a flexible array (git- fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2310=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2310=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2310=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2026-2310=1 * SUSE Linux Enterprise High Availability Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-HA-15-SP6-2026-2310=1 ## Package List: * openSUSE Leap 15.6 (aarch64) * dtb-apm-6.4.0-150600.23.115.1 * dtb-allwinner-6.4.0-150600.23.115.1 * dlm-kmp-64kb-6.4.0-150600.23.115.1 * gfs2-kmp-64kb-debuginfo-6.4.0-150600.23.115.1 * dtb-rockchip-6.4.0-150600.23.115.1 * dtb-freescale-6.4.0-150600.23.115.1 * dlm-kmp-64kb-debuginfo-6.4.0-150600.23.115.1 * dtb-hisilicon-6.4.0-150600.23.115.1 * dtb-cavium-6.4.0-150600.23.115.1 * kernel-64kb-devel-debuginfo-6.4.0-150600.23.115.1 * kernel-64kb-debugsource-6.4.0-150600.23.115.1 * dtb-qcom-6.4.0-150600.23.115.1 * dtb-lg-6.4.0-150600.23.115.1 * cluster-md-kmp-64kb-debuginfo-6.4.0-150600.23.115.1 * gfs2-kmp-64kb-6.4.0-150600.23.115.1 * ocfs2-kmp-64kb-6.4.0-150600.23.115.1 * dtb-marvell-6.4.0-150600.23.115.1 * dtb-renesas-6.4.0-150600.23.115.1 * dtb-exynos-6.4.0-150600.23.115.1 * kernel-64kb-devel-6.4.0-150600.23.115.1 * kselftests-kmp-64kb-debuginfo-6.4.0-150600.23.115.1 * dtb-amd-6.4.0-150600.23.115.1 * kernel-64kb-extra-debuginfo-6.4.0-150600.23.115.1 * kernel-64kb-optional-debuginfo-6.4.0-150600.23.115.1 * kernel-64kb-extra-6.4.0-150600.23.115.1 * dtb-amazon-6.4.0-150600.23.115.1 * kernel-64kb-optional-6.4.0-150600.23.115.1 * reiserfs-kmp-64kb-debuginfo-6.4.0-150600.23.115.1 * dtb-xilinx-6.4.0-150600.23.115.1 * dtb-apple-6.4.0-150600.23.115.1 * dtb-mediatek-6.4.0-150600.23.115.1 * ocfs2-kmp-64kb-debuginfo-6.4.0-150600.23.115.1 * dtb-amlogic-6.4.0-150600.23.115.1 * cluster-md-kmp-64kb-6.4.0-150600.23.115.1 * dtb-socionext-6.4.0-150600.23.115.1 * dtb-broadcom-6.4.0-150600.23.115.1 * reiserfs-kmp-64kb-6.4.0-150600.23.115.1 * kernel-64kb-debuginfo-6.4.0-150600.23.115.1 * dtb-altera-6.4.0-150600.23.115.1 * kselftests-kmp-64kb-6.4.0-150600.23.115.1 * dtb-arm-6.4.0-150600.23.115.1 * dtb-sprd-6.4.0-150600.23.115.1 * dtb-nvidia-6.4.0-150600.23.115.1 * openSUSE Leap 15.6 (aarch64 nosrc) * kernel-64kb-6.4.0-150600.23.115.1 * openSUSE Leap 15.6 (aarch64 ppc64le x86_64) * kernel-default-base-6.4.0-150600.23.115.1.150600.12.54.1 * kernel-default-base-rebuild-6.4.0-150600.23.115.1.150600.12.54.1 * kernel-kvmsmall-devel-6.4.0-150600.23.115.1 * kernel-kvmsmall-debuginfo-6.4.0-150600.23.115.1 * kernel-kvmsmall-devel-debuginfo-6.4.0-150600.23.115.1 * kernel-kvmsmall-debugsource-6.4.0-150600.23.115.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * kernel-obs-qa-6.4.0-150600.23.115.1 * kernel-obs-build-6.4.0-150600.23.115.1 * kernel-obs-build-debugsource-6.4.0-150600.23.115.1 *kernel-default-debugsource-6.4.0-150600.23.115.1 * kernel-default-devel-6.4.0-150600.23.115.1 * dlm-kmp-default-debuginfo-6.4.0-150600.23.115.1 * kselftests-kmp-default-debuginfo-6.4.0-150600.23.115.1 * gfs2-kmp-default-6.4.0-150600.23.115.1 * kernel-default-optional-debuginfo-6.4.0-150600.23.115.1 * kselftests-kmp-default-6.4.0-150600.23.115.1 * kernel-default-livepatch-6.4.0-150600.23.115.1 * kernel-default-extra-debuginfo-6.4.0-150600.23.115.1 * kernel-default-extra-6.4.0-150600.23.115.1 * gfs2-kmp-default-debuginfo-6.4.0-150600.23.115.1 * kernel-default-optional-6.4.0-150600.23.115.1 * kernel-syms-6.4.0-150600.23.115.1 * kernel-default-debuginfo-6.4.0-150600.23.115.1 * cluster-md-kmp-default-6.4.0-150600.23.115.1 * kernel-default-devel-debuginfo-6.4.0-150600.23.115.1 * ocfs2-kmp-default-6.4.0-150600.23.115.1 * reiserfs-kmp-default-debuginfo-6.4.0-150600.23.115.1 * dlm-kmp-default-6.4.0-150600.23.115.1 * ocfs2-kmp-default-debuginfo-6.4.0-150600.23.115.1 * reiserfs-kmp-default-6.4.0-150600.23.115.1 * cluster-md-kmp-default-debuginfo-6.4.0-150600.23.115.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-6.4.0-150600.23.115.1 * openSUSE Leap 15.6 (noarch nosrc) * kernel-docs-6.4.0-150600.23.115.1 * openSUSE Leap 15.6 (noarch) * kernel-macros-6.4.0-150600.23.115.1 * kernel-docs-html-6.4.0-150600.23.115.1 * kernel-devel-6.4.0-150600.23.115.1 * kernel-source-6.4.0-150600.23.115.1 * kernel-source-vanilla-6.4.0-150600.23.115.1 * openSUSE Leap 15.6 (nosrc ppc64le x86_64) * kernel-debug-6.4.0-150600.23.115.1 * openSUSE Leap 15.6 (ppc64le x86_64) * kernel-debug-debugsource-6.4.0-150600.23.115.1 * kernel-debug-devel-6.4.0-150600.23.115.1 * kernel-debug-debuginfo-6.4.0-150600.23.115.1 * kernel-debug-devel-debuginfo-6.4.0-150600.23.115.1 * openSUSE Leap 15.6 (x86_64) * kernel-default-vdso-debuginfo-6.4.0-150600.23.115.1 *kernel-kvmsmall-vdso-6.4.0-150600.23.115.1 * kernel-debug-vdso-debuginfo-6.4.0-150600.23.115.1 * kernel-debug-vdso-6.4.0-150600.23.115.1 * kernel-kvmsmall-vdso-debuginfo-6.4.0-150600.23.115.1 * kernel-default-vdso-6.4.0-150600.23.115.1 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-default-livepatch-devel-6.4.0-150600.23.115.1 * kernel-livepatch-SLE15-SP6_Update_27-debugsource-1-150600.13.3.1 * kernel-livepatch-6_4_0-150600_23_115-default-debuginfo-1-150600.13.3.1 * kernel-livepatch-6_4_0-150600_23_115-default-1-150600.13.3.1 * openSUSE Leap 15.6 (aarch64 nosrc ppc64le x86_64) * kernel-kvmsmall-6.4.0-150600.23.115.1 * openSUSE Leap 15.6 (nosrc s390x) * kernel-zfcpdump-6.4.0-150600.23.115.1 * openSUSE Leap 15.6 (s390x) * kernel-zfcpdump-debugsource-6.4.0-150600.23.115.1 * kernel-zfcpdump-debuginfo-6.4.0-150600.23.115.1 * openSUSE Leap 15.6 (nosrc) * dtb-aarch64-6.4.0-150600.23.115.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * kernel-obs-build-6.4.0-150600.23.115.1 * kernel-default-devel-debuginfo-6.4.0-150600.23.115.1 * kernel-default-devel-6.4.0-150600.23.115.1 * gfs2-kmp-default-debuginfo-6.4.0-150600.23.115.1 * ocfs2-kmp-default-6.4.0-150600.23.115.1 * dlm-kmp-default-debuginfo-6.4.0-150600.23.115.1 * reiserfs-kmp-default-debuginfo-6.4.0-150600.23.115.1 * ocfs2-kmp-default-debuginfo-6.4.0-150600.23.115.1 * dlm-kmp-default-6.4.0-150600.23.115.1 * gfs2-kmp-default-6.4.0-150600.23.115.1 * reiserfs-kmp-default-6.4.0-150600.23.115.1 * cluster-md-kmp-default-6.4.0-150600.23.115.1 * kernel-syms-6.4.0-150600.23.115.1 * kernel-default-debuginfo-6.4.0-150600.23.115.1 * cluster-md-kmp-default-debuginfo-6.4.0-150600.23.115.1 * kernel-obs-build-debugsource-6.4.0-150600.23.115.1 * kernel-default-debugsource-6.4.0-150600.23.115.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 nosrc) * kernel-64kb-6.4.0-150600.23.115.1 * SUSE Linux EnterpriseServer 15 SP6 LTSS (aarch64) * kernel-64kb-debugsource-6.4.0-150600.23.115.1 * kernel-64kb-debuginfo-6.4.0-150600.23.115.1 * kernel-64kb-devel-debuginfo-6.4.0-150600.23.115.1 * kernel-64kb-devel-6.4.0-150600.23.115.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-6.4.0-150600.23.115.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le x86_64) * kernel-default-base-6.4.0-150600.23.115.1.150600.12.54.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch) * kernel-source-6.4.0-150600.23.115.1 * kernel-macros-6.4.0-150600.23.115.1 * kernel-devel-6.4.0-150600.23.115.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch nosrc) * kernel-docs-6.4.0-150600.23.115.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (nosrc s390x) * kernel-zfcpdump-6.4.0-150600.23.115.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (s390x) * kernel-zfcpdump-debugsource-6.4.0-150600.23.115.1 * kernel-zfcpdump-debuginfo-6.4.0-150600.23.115.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * kernel-default-debugsource-6.4.0-150600.23.115.1 * kernel-obs-build-6.4.0-150600.23.115.1 * kernel-default-devel-debuginfo-6.4.0-150600.23.115.1 * kernel-default-devel-6.4.0-150600.23.115.1 * ocfs2-kmp-default-6.4.0-150600.23.115.1 * reiserfs-kmp-default-debuginfo-6.4.0-150600.23.115.1 * dlm-kmp-default-debuginfo-6.4.0-150600.23.115.1 * gfs2-kmp-default-debuginfo-6.4.0-150600.23.115.1 * ocfs2-kmp-default-debuginfo-6.4.0-150600.23.115.1 * dlm-kmp-default-6.4.0-150600.23.115.1 * reiserfs-kmp-default-6.4.0-150600.23.115.1 * gfs2-kmp-default-6.4.0-150600.23.115.1 * kernel-default-base-6.4.0-150600.23.115.1.150600.12.54.1 * kernel-syms-6.4.0-150600.23.115.1 * kernel-default-debuginfo-6.4.0-150600.23.115.1 * cluster-md-kmp-default-debuginfo-6.4.0-150600.23.115.1 * kernel-obs-build-debugsource-6.4.0-150600.23.115.1 *cluster-md-kmp-default-6.4.0-150600.23.115.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (nosrc ppc64le x86_64) * kernel-default-6.4.0-150600.23.115.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch) * kernel-source-6.4.0-150600.23.115.1 * kernel-macros-6.4.0-150600.23.115.1 * kernel-devel-6.4.0-150600.23.115.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch nosrc) * kernel-docs-6.4.0-150600.23.115.1 * SUSE Linux Enterprise Live Patching 15-SP6 (nosrc) * kernel-default-6.4.0-150600.23.115.1 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_23_115-default-debuginfo-1-150600.13.3.1 * kernel-default-livepatch-devel-6.4.0-150600.23.115.1 * kernel-livepatch-6_4_0-150600_23_115-default-1-150600.13.3.1 * kernel-default-debuginfo-6.4.0-150600.23.115.1 * kernel-default-livepatch-6.4.0-150600.23.115.1 * kernel-default-debugsource-6.4.0-150600.23.115.1 * kernel-livepatch-SLE15-SP6_Update_27-debugsource-1-150600.13.3.1 * SUSE Linux Enterprise High Availability Extension 15 SP6 (nosrc) * kernel-default-6.4.0-150600.23.115.1 * SUSE Linux Enterprise High Availability Extension 15 SP6 (aarch64 ppc64le s390x x86_64) * kernel-default-debugsource-6.4.0-150600.23.115.1 * kernel-default-debuginfo-6.4.0-150600.23.115.1 ## References: * https://www.suse.com/security/cve/CVE-2026-31405.html * https://www.suse.com/security/cve/CVE-2026-31473.html * https://www.suse.com/security/cve/CVE-2026-31613.html * https://www.suse.com/security/cve/CVE-2026-31614.html * https://www.suse.com/security/cve/CVE-2026-31629.html * https://www.suse.com/security/cve/CVE-2026-31758.html * https://www.suse.com/security/cve/CVE-2026-43037.html * https://www.suse.com/security/cve/CVE-2026-43206.html * https://www.suse.com/security/cve/CVE-2026-43284.html * https://www.suse.com/security/cve/CVE-2026-43362.html *https://www.suse.com/security/cve/CVE-2026-43499.html * https://www.suse.com/security/cve/CVE-2026-43501.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://www.suse.com/security/cve/CVE-2026-45852.html * https://www.suse.com/security/cve/CVE-2026-45910.html * https://www.suse.com/security/cve/CVE-2026-45970.html * https://www.suse.com/security/cve/CVE-2026-46004.html * https://www.suse.com/security/cve/CVE-2026-46021.html * https://www.suse.com/security/cve/CVE-2026-46043.html * https://www.suse.com/security/cve/CVE-2026-46113.html * https://www.suse.com/security/cve/CVE-2026-46114.html * https://www.suse.com/security/cve/CVE-2026-46243.html * https://bugzilla.suse.com/show_bug.cgi?id=1261700 * https://bugzilla.suse.com/show_bug.cgi?id=1262663 * https://bugzilla.suse.com/show_bug.cgi?id=1263068 * https://bugzilla.suse.com/show_bug.cgi?id=1263769 * https://bugzilla.suse.com/show_bug.cgi?id=1263774 * https://bugzilla.suse.com/show_bug.cgi?id=1263790 * https://bugzilla.suse.com/show_bug.cgi?id=1263995 * https://bugzilla.suse.com/show_bug.cgi?id=1264093 * https://bugzilla.suse.com/show_bug.cgi?id=1264449 * https://bugzilla.suse.com/show_bug.cgi?id=1264551 * https://bugzilla.suse.com/show_bug.cgi?id=1264989 * https://bugzilla.suse.com/show_bug.cgi?id=1265928 * https://bugzilla.suse.com/show_bug.cgi?id=1265960 * https://bugzilla.suse.com/show_bug.cgi?id=1266001 * https://bugzilla.suse.com/show_bug.cgi?id=1266009 * https://bugzilla.suse.com/show_bug.cgi?id=1266238 * https://bugzilla.suse.com/show_bug.cgi?id=1266402 * https://bugzilla.suse.com/show_bug.cgi?id=1266414 * https://bugzilla.suse.com/show_bug.cgi?id=1266711 * https://bugzilla.suse.com/show_bug.cgi?id=1266765 * https://bugzilla.suse.com/show_bug.cgi?id=1266889 * https://bugzilla.suse.com/show_bug.cgi?id=1266901 * https://bugzilla.suse.com/show_bug.cgi?id=1266969 * https://bugzilla.suse.com/show_bug.cgi?id=1266972 * https://bugzilla.suse.com/show_bug.cgi?id=1267205 *https://bugzilla.suse.com/show_bug.cgi?id=1267220 * https://bugzilla.suse.com/show_bug.cgi?id=1267222 . An important security update for openSUSE addresses multiple kernel issues, enhancing system integrity and access security.. openSUSE security update, Linux kernel vulnerabilities, system integrity fixes. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 09, 2026 Important OpenSUSE
202

openSUSE Tumbleweed Grafana Vulnerability 2026-10922-1 Moderate Access

An update that solves one vulnerability can now be installed.. # grafana-11.6.14+security01-4.1 on GA media Announcement ID: openSUSE-SU-2026:10922-1 Rating: moderate Cross-References: * CVE-2025-30153 CVSS scores: * CVE-2025-30153 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the grafana-11.6.14+security01-4.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * grafana 11.6.14+security01-4.1 ## References: * https://www.suse.com/security/cve/CVE-2025-30153.html . Update available for grafana on openSUSE to fix moderate security issue from CVE-2025-30153.. openSUSE Tumbleweed grafana security update CVE-2025-30153. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jun 05, 2026 moderate OpenSUSE
89

Fedora 43 Wordpress 6.9.4 Important REST API Access Issue 2026-5774d46593

Upstream announcements: WordPress 6.9.2 Release WordPress 6.9.3 and 7.0 beta 4 WordPress 6.9.4 Release. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-5774d46593 2026-03-21 00:54:25.948585+00:00 -------------------------------------------------------------------------------- Name : wordpress Product : Fedora 43 Version : 6.9.4 Release : 1.fc43 URL : https://wordpress.org/ Summary : Blog tool and publishing platform Description : Wordpress is an online publishing / weblog package that makes it very easy, almost trivial, to get information out to people on the web. Important information in /usr/share/doc/wordpress/README.fedora -------------------------------------------------------------------------------- Update Information: Upstream announcements: WordPress 6.9.2 Release WordPress 6.9.3 and 7.0 beta 4 WordPress 6.9.4 Release -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 12 2026 Remi Collet - 6.9.4-1 - WordPress 6.9.4 Release * Wed Mar 11 2026 Remi Collet - 6.9.3-1 - WordPress 6.9.3 Release -------------------------------------------------------------------------------- References: [ 1 ] Bug #2446481 - CVE-2026-3906 wordpress: WordPress: Unauthorized access to post notes via improper REST API permission check [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2446481 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-5774d46593' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Update for WordPress 6.9.4 on Fedora addresses access issues via the REST API. Stay secure and informed.. Fedora 43 Wordpress Update, REST API Access Issue, WordPress 6.9.4, Henrietta Remi, Fedora Security Fix. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Mar 21, 2026 Important Fedora
172

Ubuntu 20.04 LTS Inetutils Important Access Issue CVE-2026-24061

Inetutils could allow unintended access to network services.. ========================================================================== Ubuntu Security Notice USN-7992-2 February 18, 2026 inetutils vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: Inetutils could allow unintended access to network services. Software Description: - inetutils: Collection of common network programs Details: USN-7992-1 fixed vulnerabilities in telnetd in Inetutils. This update provides the corresponding update for Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. Original advisory details: Kyu Neushwaistein discovered that telnetd in Inetutils incorrectly handled certain environment variables. A remote attacker could use this issue to bypass authentication and open a session as an administrator. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS inetutils-telnetd 2:1.9.4-11ubuntu0.2+esm3 Available with Ubuntu Pro Ubuntu 18.04 LTS inetutils-telnetd 2:1.9.4-3ubuntu0.1+esm4 Available with Ubuntu Pro Ubuntu 16.04 LTS inetutils-telnetd 2:1.9.4-1ubuntu0.1~esm5 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7992-2 https://ubuntu.com/security/notices/USN-7992-1 CVE-2026-24061 . Inetutils fixes important access issue in Ubuntu releases, allowing correction of unintended network service access.. Inetutils Ubuntu Telnet Network Services Access Fix. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Feb 18, 2026 Important Ubuntu
202

openSUSE Tumbleweed moderate libp11-kit access issue CVE-2026-2100

An update that solves one vulnerability can now be installed.. # libp11-kit0-0.26.2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10169-1 Rating: moderate Cross-References: * CVE-2026-2100 CVSS scores: * CVE-2026-2100 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-2100 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the libp11-kit0-0.26.2-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * libp11-kit0 0.26.2-1.1 * libp11-kit0-32bit 0.26.2-1.1 * p11-kit 0.26.2-1.1 * p11-kit-32bit 0.26.2-1.1 * p11-kit-devel 0.26.2-1.1 * p11-kit-nss-trust 0.26.2-1.1 * p11-kit-nss-trust-32bit 0.26.2-1.1 * p11-kit-server 0.26.2-1.1 * p11-kit-tools 0.26.2-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-2100.html . A libp11-kit update for openSUSE addresses a moderate access issue with CVE-2026-2100. Security fixes are now available.. openSUSE libp11-kit CVE-2026-2100 security update. . LinuxSecurity.com Team

Calendar%202 Feb 11, 2026 OpenSUSE
217

Oracle Linux 10 Wireshark Moderate Fix ELSA-2026-1714 CVE-2025-9817

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-1714 http://linux.oracle.com/errata/ELSA-2026-1714.html The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network: x86_64: wireshark-4.4.2-4.0.1.el10_1.2.x86_64.rpm wireshark-cli-4.4.2-4.0.1.el10_1.2.x86_64.rpm wireshark-devel-4.4.2-4.0.1.el10_1.2.x86_64.rpm aarch64: wireshark-4.4.2-4.0.1.el10_1.2.aarch64.rpm wireshark-cli-4.4.2-4.0.1.el10_1.2.aarch64.rpm wireshark-devel-4.4.2-4.0.1.el10_1.2.aarch64.rpm SRPMS: http://oss.oracle.com/ol10/SRPMS-updates/wireshark-4.4.2-4.0.1.el10_1.2.src.rpm Related CVEs: CVE-2025-9817 Description of changes: [4.4.2-4.0.1.el10_1.2] - Fix post script to not fail during initial installation [Orabug: 37565359] [1:4.4.2-4.2] - Resolves: RHEL-136916 - NULL Pointer Dereference in Wireshark (CVE-2025-9817) [1:4.4.2-4.1] - Resolves: RHEL-130425 - Access of Uninitialized Pointer in Wireshark _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Updated Wireshark packages for Oracle Linux fix moderate issues related to NULL pointer dereference and access problems.. Oracle Linux, Wireshark update, Moderate security fix, NULL pointer dereference, Access issue. . LinuxSecurity.com Team

Calendar%202 Feb 02, 2026 Oracle
89

Fedora 43 perl-HarfBuzz-Shaper Critical Null Pointer Issue CVE-2026-22693

Merge branch 'rawhide' into f43 Upgrade to upstream 0.032 to fix CVE-2026-22693.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-2b5249b4b6 2026-01-29 00:55:04.138829+00:00 -------------------------------------------------------------------------------- Name : perl-HarfBuzz-Shaper Product : Fedora 43 Version : 0.033 Release : 2.fc43 URL : https://metacpan.org/release/HarfBuzz-Shaper Summary : Access to a small subset of the native HarfBuzz library Description : HarfBuzz::Shaper is a perl module that provides access to a small subset of the native HarfBuzz library. The subset is suitable for typesetting programs that need to deal with complex languages like Devanagari. This module is intended to be used with module L . -------------------------------------------------------------------------------- Update Information: Merge branch 'rawhide' into f43 Upgrade to upstream 0.032 to fix CVE-2026-22693. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 20 2026 Johan Vromans - 0.033-1 - Upgrade to upstream. Eliminates distributing harfbuzz sources. * Sat Jan 17 2026 Fedora Release Engineering - 0.032-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Wed Jan 14 2026 Johan Vromans - 0.032-1 - Upgrade to upstream 0.032. Upgrade embedded harfbuzz to 12.3.0 to fix CVE-2026-22693. -------------------------------------------------------------------------------- References: [ 1 ] Bug #2342927 - perl-HarfBuzz-Shaper-0.033 is available https://bugzilla.redhat.com/show_bug.cgi?id=2342927 [ 2 ] Bug #2429296 - CVE-2026-22693 perl-HarfBuzz-Shaper: Null Pointer Dereference in harfbuzz [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2429296 [ 3 ] Bug #2430874 - CVE-2026-0943 perl-HarfBuzz-Shaper: HarfBuzz::Shaper null pointer dereference vulnerability [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2430874 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-2b5249b4b6' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Fedora 43 update for perl-HarfBuzz-Shaper addresses access issues and null pointer impact from CVE-2026-22693.. Fedora 43 perl-HarfBuzz-Shaper security update. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jan 29, 2026 Critical Fedora
100

SUSE: rsync Moderate Out Of Bounds Access CVE-2025-10158 2026:20044-1

An update that solves one vulnerability can now be installed.. # Security update for rsync Announcement ID: SUSE-SU-2026:20044-1 Release Date: 2026-01-08T15:50:07Z Rating: moderate References: * bsc#1254441 Cross-References: * CVE-2025-10158 CVSS scores: * CVE-2025-10158 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2025-10158 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves one vulnerability can now be installed. ## Description: This update for rsync fixes the following issues: * CVE-2025-10158: Fixed out of bounds array access via negative index (bsc#1254441) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-551=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * rsync-3.2.7-5.1 * rsync-debugsource-3.2.7-5.1 * rsync-debuginfo-3.2.7-5.1 ## References: * https://www.suse.com/security/cve/CVE-2025-10158.html * https://bugzilla.suse.com/show_bug.cgi?id=1254441 . SUSE updates rsync to fix a moderate vulnerability related to out of bounds access, enhancing system protection.. Suse Linux,Rsync,Security Update,Out of Bounds. . LinuxSecurity.com Team

Calendar%202 Jan 15, 2026 SuSE
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200