Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydebiancache poisoning

Debian LTS DLA-3128-1 Moderate: Libhttp-Daemon-Perl API Access Issue

An issue has been found in libhttp-daemon-perl, a simple http server class. Due to insufficient Content-Length: handling in HTTP-header an attacker . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3127-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Thorsten Alteholz September 30, 2022 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : libhttp-daemon-perl Version : 6.01-3+deb10u1 CVE ID : CVE-2022-31081 An issue has been found in libhttp-daemon-perl, a simple http server class. Due to insufficient Content-Length: handling in HTTP-header an attacker could gain privileged access to APIs or poison intermediate caches. For Debian 10 buster, this problem has been fixed in version 6.01-3+deb10u1. We recommend that you upgrade your libhttp-daemon-perl packages. For the detailed security status of libhttp-daemon-perl please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/libhttp-daemon-perl Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Enhance libhttp-daemon-perl for better resilience and fortified defense against possible API vulnerabilities and cache contamination.. Debian LTS Security, libhttp-daemon-perl Update, HTTP Security Fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Sep 30, 2022 Important Debian LTS
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorysecurity issuecritical

Debian 9: DLA-2499-1 Urgent: Sympa API Access Vulnerability Mitigation

Sympa, a modern mailing list manager, grants full SOAP API access by sending invalid string as the cookie value, if the SOAP endpoint was enabled. An attacker could manipulate the mailing lists, including subscribing e-mails or getting the list of subscribers. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2499-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ December 17, 2020 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : sympa Version : 6.2.16~dfsg-3+deb9u5 CVE ID : CVE-2020-29668 Debian Bug : 976020 Sympa, a modern mailing list manager, grants full SOAP API access by sending invalid string as the cookie value, if the SOAP endpoint was enabled. An attacker could manipulate the mailing lists, including subscribing e-mails or getting the list of subscribers. For Debian 9 stretch, this problem has been fixed in version 6.2.16~dfsg-3+deb9u5. We recommend that you upgrade your sympa packages. For the detailed security status of sympa please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/sympa Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Ubuntu Security Notice USN-4895-1 addresses serious flaw in APT. Urgent patch advised to enhance protection.. Sympa Update, Debian Security, API Exposure, Mailing List Manager. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 17, 2020 Important Debian LTS
Banner 1 1028x280 1708121660 1771599717
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryimportantmemory growth

RedHat: RHSA-2019-2769-01 Important Memory Problems in OpenShift 3.9

An security update is now available for Red Hat OpenShift Container Platform 3.9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, . -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: OpenShift Container Platform 3.9 security update Advisory ID: RHSA-2019:2769-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2019:2769 Issue date: 2019-10-24 CVE Names: CVE-2019-9512 CVE-2019-9514 CVE-2019-11247 ==================================================================== 1. Summary: An security update is now available for Red Hat OpenShift Container Platform 3.9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenShift Container Platform 3.9 - noarch, x86_64 3. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains RPM packages for Red Hat OpenShift Container Platform 3.9, which have been rebuilt with an updated version of golang. Security Fix(es): * HTTP/2: flood using PING frames results in unbounded memory growth (CVE-2019-9512) * HTTP/2: flood using HEADERS frames results in unbounded memory growth (CVE-2019-9514) * kubernetes: API server allows access to cluster-scoped custom resources as if resources were namespaced (CVE-2019-11247) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and otherrelated information, refer to the CVE page(s) listed in the References section. 4. Solution: For OpenShift Container Platform 3.9 see the following documentation, which will be updated shortly for release 3.9.100, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: ease_notes.html 5. Bugs fixed (https://bugzilla.redhat.com/): 1732192 - CVE-2019-11247 kubernetes: API server allows access to cluster-scoped custom resources as if resources were namespaced 1735645 - CVE-2019-9512 HTTP/2: flood using PING frames results in unbounded memory growth 1735744 - CVE-2019-9514 HTTP/2: flood using HEADERS frames results in unbounded memory growth 6. Package List: Red Hat OpenShift Container Platform3.9: Source: ansible-service-broker-1.1.20-2.el7.src.rpm atomic-openshift-3.9.101-1.git.0.150f595.el7.src.rpm atomic-openshift-descheduler-3.9.13-2.git.267.bb59a3f.el7.src.rpm atomic-openshift-node-problem-detector-3.9.13-2.git.167.5d6b0d4.el7.src.rpm atomic-openshift-web-console-3.9.101-1.git.1.601c6d2.el7.src.rpm cockpit-195-2.rhaos.el7.src.rpm containernetworking-plugins-0.5.2-6.el7.src.rpm cri-o-1.9.16-3.git858756d.el7.src.rpm cri-tools-1.0.0-6.rhaos3.9.git8e6013a.el7.src.rpm golang-github-openshift-oauth-proxy-2.1-3.git885c9f40.el7.src.rpm golang-github-openshift-prometheus-alert-buffer-0-3.gitceca8c1.el7.src.rpm golang-github-prometheus-alertmanager-0.14.0-2.git30af4d0.el7.src.rpm golang-github-prometheus-node_exporter-3.9.101-1.git.1.8295224.el7.src.rpm golang-github-prometheus-prometheus-2.2.1-2.gitbc6058c.el7.src.rpm golang-github-prometheus-promu-0-5.git85ceabc.el7.src.rpm hawkular-openshift-agent-1.2.2-3.el7.src.rpm heapster-1.3.0-4.el7.src.rpm image-inspector-2.1.3-2.el7.src.rpm openshift-enterprise-image-registry-3.8.0-2.git.216.b6b90bb.el7.src.rpm openshift-eventrouter-0.1-3.git5bd9251.el7.src.rpm openshift-external-storage-0.0.1-9.git78d6339.el7.src.rpm openvswitch-ovn-kubernetes-0.1.0-3.el7.src.rpm noarch: ansible-service-broker-container-scripts-1.1.20-2.el7.noarch.rpm ansible-service-broker-selinux-1.1.20-2.el7.noarch.rpm atomic-openshift-docker-excluder-3.9.101-1.git.0.150f595.el7.noarch.rpm atomic-openshift-excluder-3.9.101-1.git.0.150f595.el7.noarch.rpm x86_64: ansible-service-broker-1.1.20-2.el7.x86_64.rpm atomic-openshift-3.9.101-1.git.0.150f595.el7.x86_64.rpm atomic-openshift-clients-3.9.101-1.git.0.150f595.el7.x86_64.rpm atomic-openshift-clients-redistributable-3.9.101-1.git.0.150f595.el7.x86_64.rpm atomic-openshift-cluster-capacity-3.9.101-1.git.0.150f595.el7.x86_64.rpm atomic-openshift-descheduler-3.9.13-2.git.267.bb59a3f.el7.x86_64.rpm atomic-openshift-dockerregistry-3.9.101-1.git.1.13625cf.el7.x86_64.rpm atomic-openshift-federation-services-3.9.101-1.git.0.150f595.el7.x86_64.rpm atomic-openshift-master-3.9.101-1.git.0.150f595.el7.x86_64.rpm atomic-openshift-node-3.9.101-1.git.0.150f595.el7.x86_64.rpm atomic-openshift-node-problem-detector-3.9.13-2.git.167.5d6b0d4.el7.x86_64.rpm atomic-openshift-pod-3.9.101-1.git.0.150f595.el7.x86_64.rpm atomic-openshift-sdn-ovs-3.9.101-1.git.0.150f595.el7.x86_64.rpm atomic-openshift-service-catalog-3.9.101-1.git.0.150f595.el7.x86_64.rpm atomic-openshift-template-service-broker-3.9.101-1.git.0.150f595.el7.x86_64.rpm atomic-openshift-tests-3.9.101-1.git.0.150f595.el7.x86_64.rpm atomic-openshift-web-console-3.9.101-1.git.1.601c6d2.el7.x86_64.rpm cockpit-debuginfo-195-2.rhaos.el7.x86_64.rpm cockpit-kubernetes-195-2.rhaos.el7.x86_64.rpm containernetworking-plugins-0.5.2-6.el7.x86_64.rpm containernetworking-plugins-debuginfo-0.5.2-6.el7.x86_64.rpm cri-o-1.9.16-3.git858756d.el7.x86_64.rpm cri-o-debuginfo-1.9.16-3.git858756d.el7.x86_64.rpm cri-tools-1.0.0-6.rhaos3.9.git8e6013a.el7.x86_64.rpm cri-tools-debuginfo-1.0.0-6.rhaos3.9.git8e6013a.el7.x86_64.rpm golang-github-openshift-oauth-proxy-2.1-3.git885c9f40.el7.x86_64.rpm golang-github-openshift-prometheus-alert-buffer-0-3.gitceca8c1.el7.x86_64.rpm golang-github-prometheus-promu-0-5.git85ceabc.el7.x86_64.rpm hawkular-openshift-agent-1.2.2-3.el7.x86_64.rpm heapster-1.3.0-4.el7.x86_64.rpm image-inspector-2.1.3-2.el7.x86_64.rpm openshift-enterprise-image-registry-3.8.0-2.git.216.b6b90bb.el7.x86_64.rpm openshift-eventrouter-0.1-3.git5bd9251.el7.x86_64.rpm openshift-eventrouter-debuginfo-0.1-3.git5bd9251.el7.x86_64.rpm openshift-external-storage-debuginfo-0.0.1-9.git78d6339.el7.x86_64.rpm openshift-external-storage-efs-provisioner-0.0.1-9.git78d6339.el7.x86_64.rpm openshift-external-storage-local-provisioner-0.0.1-9.git78d6339.el7.x86_64.rpm openshift-external-storage-snapshot-controller-0.0.1-9.git78d6339.el7.x86_64.rpm openshift-external-storage-snapshot-provisioner-0.0.1-9.git78d6339.el7.x86_64.rpm openvswitch-ovn-kubernetes-0.1.0-3.el7.x86_64.rpm prometheus-2.2.1-2.gitbc6058c.el7.x86_64.rpm prometheus-alertmanager-0.14.0-2.git30af4d0.el7.x86_64.rpm prometheus-node-exporter-3.9.101-1.git.1.8295224.el7.x86_64.rpm prometheus-promu-0-5.git85ceabc.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2019-9512 https://access.redhat.com/security/cve/CVE-2019-9514 https://access.redhat.com/security/cve/CVE-2019-11247 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE-----Version: GnuPG v1 iQIVAwUBXbEV1NzjgjWX9erEAQjdxg/+O4UlfBKcvoTpBuZP6DMuMcAUjgtHbsDo GO58tRkBBtTXh3FT5ud1kpOIPlcc2XrTtpL+uIsahDi5fNybfFoYfTQBj69VJl+Z fqQlGOJz4hcyVIC5cfAnAaHSDGmbLHDw8fQLMh50pdIxScglhxv1E9dQTNxQMZFy OtCUKq7TqC7v8a+c0rXo8XMButSt5l3+dP00UP2xxZKsF83jZKeo/+ASh9mSUqxK +ivzjkyZ6/DOsDBJgkL2KLIkMI/IsQRwtzyCGnyza3j7HCvhxhv9nASVYKrHUTmm OaNUfToArmtwoeDISP0t1IBel+Wiu7cayHHcik7b6i64iwtS5s0O8Xf2jbTU2TSC bmxQ2cjWp6hnjphPFwdiYcIFXoTHjqT+WP00YEV0D5p6qYIGbCgOCxsdeFbL1Om0 iVw2gRncGE/8hPU2TwnyGOM5tCR7QD9cxD3Ibh4fIHcYecrgSHiCh0Hu3GS7AfYK BzsrI7wy5kmEwn/BqIcJ8GmmgYnsbwXQAodvU1yBn+unxtGGguPaMvFoAKNJU18y 52lZqvX6dvvbj1JyaF9uk8RdLtE1WkJlMU5loppEthCyEOtrrRdcEDhqpMzoglE3 Z/8E2nrQxdQX5zUSNw0dHs0OjhCC6flGdUM+Up7hMOetUzpSwqu2C/t767Tlzdhg VnsB0gtLBwk=CHrC -----END PGP SIGNATURE-------RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Red Hat issues a crucial security notice for OpenShift Container Platform 3.9, tackling serious flaws.. openshift container platform, red hat security, important update, api access, memory growth. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 23, 2019 Important Red Hat
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here