Alerts This Week
Warning Icon 1 560
Alerts This Week
Warning Icon 1 560

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryred hatremote code execution

Red Hat: RHSA-2022-0467-01 Important Fixes for AMQ Streams 1.6.7

Red Hat AMQ Streams 1.6.7 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: Red Hat AMQ Streams 1.6.7 release and security update Advisory ID: RHSA-2022:0467-01 Product: Red Hat JBoss AMQ Advisory URL: https://access.redhat.com/errata/RHSA-2022:0467 Issue date: 2022-02-08 CVE Names: CVE-2021-4178 CVE-2021-44832 CVE-2022-23302 CVE-2022-23305 CVE-2022-23307 ==================================================================== 1. Summary: Red Hat AMQ Streams 1.6.7 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: Red Hat AMQ Streams, based on the Apache Kafka project, offers a distributed backbone that allows microservices and other applications to share data with extremely high throughput and extremely low latency. This release of Red Hat AMQ Streams 1.6.7 serves as a replacement for Red Hat AMQ Streams 1.6.6, and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section. Security Fix(es): * log4j: SQL injection in Log4j 1.x when application is configured to use JDBCAppender (CVE-2022-23305) * log4j: Unsafe deserialization flaw in Chainsaw log viewer (CVE-2022-23307) * kubernetes-client: Insecure deserialization in unmarshalYaml method (CVE-2021-4178) * log4j-core: remote code execution via JDBC Appender (CVE-2021-44832) * log4j: Remote code executionin Log4j 1.x when application is configured to use JMSSink (CVE-2022-23302) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on. The References section of this erratum contains a download link (you must log in to download the update). 4. Bugs fixed (https://bugzilla.redhat.com/): 2034388 - CVE-2021-4178 kubernetes-client: Insecure deserialization in unmarshalYaml method 2035951 - CVE-2021-44832 log4j-core: remote code execution via JDBC Appender 2041949 - CVE-2022-23302 log4j: Remote code execution in Log4j 1.x when application is configured to use JMSSink 2041959 - CVE-2022-23305 log4j: SQL injection in Log4j 1.x when application is configured to use JDBCAppender 2041967 - CVE-2022-23307 log4j: Unsafe deserialization flaw in Chainsaw log viewer 5. References: https://access.redhat.com/security/cve/CVE-2021-4178 https://access.redhat.com/security/cve/CVE-2021-44832 https://access.redhat.com/security/cve/CVE-2022-23302 https://access.redhat.com/security/cve/CVE-2022-23305 https://access.redhat.com/security/cve/CVE-2022-23307 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=jboss.amq.streams&version=1.6.7 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYgKqGtzjgjWX9erEAQjqJg//d1l6vhkQTwqd2JAy7nqgZd8EWf9qyQPG n17MQcnCwEYg0uMX8qYbQO6QPb3XJuNfYBXHVPjzLhh6gXa5lm/0abnGIvG9Rgst poBYdoT/9RD5Gnq2s5GutFExPDjv6uiXFNpPiHTVu/UENpbcnCYpAaQJHccvmnRK GWFxHPAX+OEPcAo0BQ4zY3b4OZlI0OzJabnrRRrXAX3nK54Gydky9fkJT5kTxfu7 O4HxQ2vS8/PT+H3S7NUs1OszBaQmXQXkXHloe5rpvch0DbQQzKnbCUupO/jortGP YOSM0KYnX6BB+1bvmBD7/XNlBp48uimHUyWFu6ZW9y9cZF4ia2V909vEB3m9cTkv 0eoSdVtf5HbwWKmNfd7jdgYjRwDE6YkZAu7zSJ7HtMvt4hMftP8bivBzAUXk+v8S g5j6lbhqqDq2BHYL4udqQlUzdLQM3ayH9nilFdYQ0TSJIidpFjkurKtClONw/KWS hdu3mz24PBFkcr/iMZTIPHp3qzw0D37tUJBpomiY+TvNkIY73IllxtmL2JP+CL6p lK9b85jo+Zxrp6nifp9qSQinnj1XKrrkw3yRY4kH2USsVjSq0pEmilAY/pRXXQ6d zaaab/29L6e5vrkqx3grMYvs67UWee2i2ktiXmybgjcn8pjddqGh+Ry2zaLFvQdY 6487pT0AGLk=pDsO -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Apache Kafka 2.7.0 launched, addressing critical security gaps and enhancing overall system stability.. Red Hat AMQ Streams, Security Advisory, SQL Injection, Remote Code Execution, Update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 08, 2022 Important Red Hat
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatered hat

RedHat: RHSA-2022-0138 Moderate: AMQ Streams 2.0.0 Security Update

Red Hat AMQ Streams 2.0.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat AMQ Streams 2.0.0 release and security update Advisory ID: RHSA-2022:0138-01 Product: Red Hat JBoss AMQ Advisory URL: https://access.redhat.com/errata/RHSA-2022:0138 Issue date: 2022-01-13 Cross references: CVE-2021-34429 CVE-2021-38153 CVE-2021-37137 CVE-2021-37136 CVE-2021-44832 CVE Names: CVE-2021-34429 CVE-2021-37136 CVE-2021-37137 CVE-2021-38153 CVE-2021-44832 ==================================================================== 1. Summary: Red Hat AMQ Streams 2.0.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: Red Hat AMQ Streams, based on the Apache Kafka project, offers a distributed backbone that allows microservices and other applications to share data with extremely high throughput and extremely low latency. This release of Red Hat AMQ Streams 2.0.0 serves as a replacement for Red Hat AMQ Streams 1.8.4, and includes security and bug fixes, and enhancements. Security Fix(es): * jetty: crafted URIs allow bypassing security constraints (CVE-2021-34429) * netty-codec: Bzip2Decoder doesn't allow setting size restrictions for decompressed data (CVE-2021-37136) * netty-codec: SnappyFrameDecoder doesn't restrict chunk length and may buffer skippable chunks in an unnecessary way (CVE-2021-37137) * Kafka: Timing Attack Vulnerability forApache Kafka Connect and Clients (CVE-2021-38153) * log4j-core: remote code execution via JDBC Appender (CVE-2021-44832) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on. The References section of this erratum contains a download link (you must log in to download the update). 4. Bugs fixed (https://bugzilla.redhat.com/): 1985223 - CVE-2021-34429 jetty: crafted URIs allow bypassing security constraints 2004133 - CVE-2021-37136 netty-codec: Bzip2Decoder doesn't allow setting size restrictions for decompressed data 2004135 - CVE-2021-37137 netty-codec: SnappyFrameDecoder doesn't restrict chunk length and may buffer skippable chunks in an unnecessary way 2009041 - CVE-2021-38153 Kafka: Timing Attack Vulnerability for Apache Kafka Connect and Clients 2035951 - CVE-2021-44832 log4j-core: remote code execution via JDBC Appender 5. References: https://access.redhat.com/security/cve/CVE-2021-34429 https://access.redhat.com/security/cve/CVE-2021-37136 https://access.redhat.com/security/cve/CVE-2021-37137 https://access.redhat.com/security/cve/CVE-2021-38153 https://access.redhat.com/security/cve/CVE-2021-44832 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=jboss.amq.streams&version=2.0.0 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYeBrYNzjgjWX9erEAQiMmA//QMy0pzkNbwRhQCwBMvH9Ui7yYr2uaEd7 Eka3AZDiWFTuozAdKhlGqKgwCIrYiHtazg1+lbz00mAYnjmljOSjDQ/M+11jeneO m9aNjZlpb7NtgIPRszQ/Ei53LRDHboWPVASvE8ectVG2cigXQqL2WfImPCtfXIGf tc6socUa83fQ7gVvkQfwtZOXwqFwNZRl2Zl5CdwdCRlIzG7pXqNlLv5EJr779cf2 z7Jz7n3faefDztog7i69/bHXHr0PSz93JQ2FGCj9+nKd+g4YmwKMD9QdmYdmsNCR qfOeSguPKEM3YK3if0K0T2SmxQxq13RZWFAdgN5hFXxzDa6xX2J5TVcu3FoiBHA4 21uqCQEWqJntvZYJKRtE9hBLTw1qHLpfDz8RdonQaAaRgwZV8k5WJ1+0ly+tm+3z I455bMmPiW6YMH92/1JLrP7WRT5O9QUb9Eaxya2gt04FBifuDF2SyuE/7kS4knsI K7oVp/YjYIhc0h8RO8YjhnXQShATZqxVApbYEXUNui1k+PYwDo1bu3grBCifZR6q aqghZeB1TLahB+vrf2O5zRlpbOv86jTD6U/9eN2TQ3XmfqjxPR5wRImX2CrSSBP8 +gSu89pIMwAFs5tmKyV0ayMTnyJkJqzxjeN/Gp0GTrjizzWJNz3QfE8FyOe302Y+ 4IJt5YgL8Eo=ONcY -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Cautionary notice for Red Hat AMQ Streams 2.0.0 details security implications and remediations related to identified vulnerabilities.. amq streams, red hat, security updates, product releases, customer portal. . LinuxSecurity.com Team

Calendar 2 Jan 13, 2022 Red Hat
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here