Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 518
Alerts This Week
Warning Icon 1 518

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 20 articles for you...
100

SUSE Linux Micro 6.1: AIDE Moderate Vuln Fix SUSE-SU-2025:20754-1

* bsc#1247884 * bsc#1247885 Cross-References: * CVE-2025-54389 . # Security update for aide Announcement ID: SUSE-SU-2025:20754-1 Release Date: 2025-09-22T11:54:49Z Rating: moderate References: * bsc#1247884 * bsc#1247885 Cross-References: * CVE-2025-54389 * CVE-2025-54409 CVSS scores: * CVE-2025-54389 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-54389 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2025-54389 ( NVD ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2025-54389 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2025-54409 ( NVD ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-54409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves two vulnerabilities can now be installed. ## Description: This update for aide fixes the following issues: * CVE-2025-54389: Fixed improper output neutralization (bsc#1247884) * CVE-2025-54409: Fixed null pointer dereference after reading incorrectly encoded xattr attributes from database (bsc#1247885) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-274=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * aide-debugsource-0.18.6-slfo.1.1_2.1 * aide-0.18.6-slfo.1.1_2.1 * aide-debuginfo-0.18.6-slfo.1.1_2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54389.html * https://www.suse.com/security/cve/CVE-2025-54409.html * https://bugzilla.suse.com/show_bug.cgi?id=1247884 * https://bugzilla.suse.com/show_bug.cgi?id=1247885 . Security update for AIDE addresses moderate vulnerabilities identified by SUSE-SU-2025:20754-1.. SUSE Linux Micro 6.1, aidevulnerabilities, security updates, CVE-2025-54389. . LinuxSecurity.com Team

Calendar%202 Sep 26, 2025 SuSE
217

Oracle Linux 7 ELSA-2025-15728 Aide Important Security Update

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2025-15728 http://linux.oracle.com/errata/ELSA-2025-15728.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: aide-0.15.1-13.0.3.el7_9.1.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates/aide-0.15.1-13.0.3.el7_9.1.src.rpm Related CVEs: CVE-2025-54389 Description of changes: [0.15.1-13.0.3] - aide security update CVE-2025-54389 [Orabug: 38427919] _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . New rpm packages for Oracle Linux 7 have been released via the Unbreakable Linux Network, targeting critical security vulnerabilities.. Oracle Linux 7, aide update, security advisory, important issue, Unbreakable Linux Network. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Sep 26, 2025 Important Oracle
100

SUSE: Aide Moderate Control Char Null Pointer CVE-2025-54389 2025:20657-1

* bsc#1247884 * bsc#1247885 Cross-References: * CVE-2025-54389 . # Security update for aide Announcement ID: SUSE-SU-2025:20657-1 Release Date: 2025-09-05T12:55:51Z Rating: moderate References: * bsc#1247884 * bsc#1247885 Cross-References: * CVE-2025-54389 * CVE-2025-54409 CVSS scores: * CVE-2025-54389 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-54389 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2025-54389 ( NVD ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2025-54389 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2025-54409 ( NVD ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-54409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for aide fixes the following issues: * CVE-2025-54389: Escape control characters in report and log output (bsc#1247884). * CVE-2025-54409: Fix null pointer dereference after reading incorrectly encoded xattr attributes from database (bsc#1247885). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-449=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * aide-debuginfo-0.18.6-2.1 * aide-debugsource-0.18.6-2.1 * aide-0.18.6-2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54389.html * https://www.suse.com/security/cve/CVE-2025-54409.html * https://bugzilla.suse.com/show_bug.cgi?id=1247884 * https://bugzilla.suse.com/show_bug.cgi?id=1247885 . Important security patch for aide in SUSE Linux Micro fixes control character vulnerabilities and a Null pointer dereference issue.. SUSE LinuxMicro Aide Patch Security Update Moderate. . LinuxSecurity.com Team

Calendar%202 Sep 10, 2025 SuSE
203

Mageia 9: AIDE Important Local DoS & Detection Bypass MGASA-2025-0224

MGASA-2025-0224 - Updated aide packages fix vulnerabilities. MGASA-2025-0224 - Updated aide packages fix vulnerabilities Publication date: 02 Sep 2025 URL: https://advisories.mageia.org/MGASA-2025-0224.html Type: security Affected Mageia releases: 9 CVE: CVE-2025-54389, CVE-2025-54409 Description: Improper output neutralization (potential AIDE detection bypass). (CVE-2025-54389) Null pointer dereference after reading incorrectly encoded xattr attributes from database (local DoS). (CVE-2025-54409) References: - https://bugs.mageia.org/show_bug.cgi?id=34586 - https://www.openwall.com/lists/oss-security/2025/08/14/7 - https://www.openwall.com/lists/oss-security/2025/08/14/8 - https://www.cve.org/CVERecord?id=CVE-2025-54389 - https://www.cve.org/CVERecord?id=CVE-2025-54409 SRPMS: - 9/core/aide-0.18.6-1.1.mga9 . Mageia 9 maintenance updates applied to resolve severe security flaws and enhance overall system resilience against evasion techniques and local denial of service threats.. Mageia AIDE update vulnerabilities detection bypass local DoS. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Sep 02, 2025 Important Mageia
217

Oracle Linux 10 ELSA-2025-14592: Aide Important Bypass Threat

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2025-14592 http://linux.oracle.com/errata/ELSA-2025-14592.html The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network: x86_64: aide-0.18.6-8.el10_0.2.x86_64.rpm aarch64: aide-0.18.6-8.el10_0.2.aarch64.rpm SRPMS: http://oss.oracle.com/ol10/SRPMS-updates/aide-0.18.6-8.el10_0.2.src.rpm Related CVEs: CVE-2025-54389 Description of changes: [0.18.6-8.2] - aide: improper output neutralization enables bypassing (CVE-2025-54389) Resolves: rhbz#2388019 _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Enhanced security patches for Oracle Linux 10 via ELSA-2025-14592 resolve a critical vulnerability in aide, preventing potential bypass attacks.. Oracle Linux 10,Aide Security Advisory,bypass vulnerability. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Aug 27, 2025 Important Oracle
217

Oracle Linux 8: ELSA-2025-14573 Aide Important Output Bypass

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2025-14573 http://linux.oracle.com/errata/ELSA-2025-14573.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: aide-0.16-15.el8_10.2.x86_64.rpm aarch64: aide-0.16-15.el8_10.2.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates/aide-0.16-15.el8_10.2.src.rpm Related CVEs: CVE-2025-54389 Description of changes: [0.16.15.2] - CVE-2025-54389 aide: improper output neutralization enables bypassing resolves: RHEL-109907 _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . The latest enhancements in Oracle Linux 8 feature a significant advisory ELSA-2025-14573 for aide, which resolves a critical output concern.. Oracle Linux 8,aide security advisory,ELSA-2025-14573,important security update. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Aug 26, 2025 Important Oracle
217

Oracle Linux 9 ELSA-2025-14493 Aide Important Bypass Risk

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2025-14493 http://linux.oracle.com/errata/ELSA-2025-14493.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: aide-0.16-103.el9_6.2.x86_64.rpm aarch64: aide-0.16-103.el9_6.2.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/aide-0.16-103.el9_6.2.src.rpm Related CVEs: CVE-2025-54389 Description of changes: [0.16-103.2] RHEL 9.6.Z ERRATUM - CVE-2025-54389 aide: improper output neutralization enables bypassing Resolves: RHEL-109910 _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Revised packages for Oracle Linux 9 tackle crucial vulnerabilities related to aide exploit risks. Discover the details today.. Oracle Linux Update, Aide Security Patch, Important Vulnerability Fix. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Aug 26, 2025 Important Oracle
202

openSUSE Tumbleweed: Key Updates for CVE-2025-54389 and 54409 Alert

An update that solves 2 vulnerabilities can now be installed.. # aide-0.19.2-1.1 on GA media Announcement ID: openSUSE-SU-2025:15475-1 Rating: moderate Cross-References: * CVE-2025-54389 * CVE-2025-54409 Affected Products: * openSUSE Tumbleweed An update that solves 2 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the aide-0.19.2-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * aide 0.19.2-1.1 * aide-test 0.19.2-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54389.html * https://www.suse.com/security/cve/CVE-2025-54409.html . The newest Fedora update resolves 3 medium-level vulnerabilities in ssh, improving security measures.. openSUSE security advisory, aide package update, moderate severity vulnerabilities. . LinuxSecurity.com Team

Calendar%202 Aug 22, 2025 OpenSUSE
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200