Alerts This Week
Warning Icon 1 666
Alerts This Week
Warning Icon 1 666

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of serviceXSS

Ubuntu 13.04 LTS: USN-1925-1 Moderate: Thunderbird Memory Safety Issues

Several security issues were fixed in Thunderbird.. =========================================================================Ubuntu Security Notice USN-1925-1 August 07, 2013 thunderbird vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 13.04 - Ubuntu 12.10 - Ubuntu 12.04 LTS Summary: Several security issues were fixed in Thunderbird. Software Description: - thunderbird: Mozilla Open Source mail and newsgroup client Details: Jeff Gilbert and Henrik Skupin discovered multiple memory safety issues in Thunderbird. If the user were tricked in to opening a specially crafted message with scripting enabled, an attacker could possibly exploit these to cause a denial of service via application crash, or potentially execute arbitrary code with the privileges of the user invoking Thunderbird. (CVE-2013-1701) It was discovered that a document's URI could be set to the URI of a different document. If a user had scripting enabled, an attacker could potentially exploit this to conduct cross-site scripting (XSS) attacks. (CVE-2013-1709) A flaw was discovered when generating a CRMF request in certain circumstances. If a user had scripting enabled, an attacker could potentially exploit this to conduct cross-site scripting (XSS) attacks, or execute arbitrary code with the privileges of the user invoking Thunderbird. (CVE-2013-1710) Cody Crews discovered that some Javascript components performed security checks against the wrong URI, potentially bypassing same-origin policy restrictions. If a user had scripting enabled, an attacker could exploit this to conduct cross-site scripting (XSS) attacks or install addons from a malicious site. (CVE-2013-1713) Federico Lanusse discovered that web workers could bypass cross-origin checks when using XMLHttpRequest. If a user had scripting enabled, an attacker could potentially exploit this to conduct cross-sitescripting (XSS) attacks. (CVE-2013-1714) Georgi Guninski and John Schoenick discovered that Java applets could access local files under certain circumstances. If a user had scripting enabled, an attacker could potentially exploit this to steal confidential data. (CVE-2013-1717) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 13.04: thunderbird 17.0.8+build1-0ubuntu0.13.04.1 Ubuntu 12.10: thunderbird 17.0.8+build1-0ubuntu0.12.10.1 Ubuntu 12.04 LTS: thunderbird 17.0.8+build1-0ubuntu0.12.04.1 After a standard system update you need to restart Thunderbird to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-1925-1 CVE-2013-1701, CVE-2013-1709, CVE-2013-1710, CVE-2013-1713, CVE-2013-1714, CVE-2013-1717, https://bugs.launchpad.net/ubuntu/+source/thunderbird/+bug/1208041 Package Information: https://launchpad.net/ubuntu/+source/thunderbird/17.0.8+build1-0ubuntu0.13.04.1 https://launchpad.net/ubuntu/+source/thunderbird/17.0.8+build1-0ubuntu0.12.10.1 https://launchpad.net/ubuntu/+source/thunderbird/17.0.8+build1-0ubuntu0.12.04.1 . A variety of security flaws have been mitigated in Thunderbird for Ubuntu. Ensure you implement the latest updates to protect your system from possible threats.. Thunderbird Exploits, Ubuntu Security Notices, Application Vulnerabilities. . LinuxSecurity.com Team

Calendar 2 Aug 07, 2013 Ubuntu
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatesecurity update

Red Hat 5 RHSA-2011:1324 Moderate: Qt4 Buffer Overflow Issue

Updated qt4 packages that fix two security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Moderate: qt4 security update Advisory ID: RHSA-2011:1324-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2011:1324.html Issue date: 2011-09-21 CVE Names: CVE-2007-0242 CVE-2011-3193 ==================================================================== 1. Summary: Updated qt4 packages that fix two security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: RHEL Desktop Workstation (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 3. Description: Qt 4 is a software toolkit that simplifies the task of writing and maintaining GUI (Graphical User Interface) applications for the X Window System. HarfBuzz is an OpenType text shaping engine. A flaw in the way Qt 4 expanded certain UTF-8 characters could be used to prevent a Qt 4 based application from properly sanitizing user input. Depending on the application, this could allow an attacker to perform directory traversal, or for web applications, a cross-site scripting (XSS) attack. (CVE-2007-0242) A buffer overflow flaw was found in the harfbuzz module in Qt 4. If a user loaded a specially-crafted font file with an application linked against Qt 4, it could cause the application to crash or, possibly, execute arbitrary code with the privileges of theuser running the application. (CVE-2011-3193) Users of Qt 4 should upgrade to these updated packages, which contain backported patches to correct these issues. All running applications linked against Qt 4 libraries must be restarted for this update to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259 5. Bugs fixed (http://bugzilla.redhat.com/): 234633 - CVE-2007-0242 QT UTF8 improper character expansion 733118 - CVE-2011-3193 qt/harfbuzz buffer overflow 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: i386: qt4-4.2.1-1.el5_7.1.i386.rpm qt4-debuginfo-4.2.1-1.el5_7.1.i386.rpm qt4-doc-4.2.1-1.el5_7.1.i386.rpm qt4-mysql-4.2.1-1.el5_7.1.i386.rpm qt4-odbc-4.2.1-1.el5_7.1.i386.rpm qt4-postgresql-4.2.1-1.el5_7.1.i386.rpm qt4-sqlite-4.2.1-1.el5_7.1.i386.rpm x86_64: qt4-4.2.1-1.el5_7.1.i386.rpm qt4-4.2.1-1.el5_7.1.x86_64.rpm qt4-debuginfo-4.2.1-1.el5_7.1.i386.rpm qt4-debuginfo-4.2.1-1.el5_7.1.x86_64.rpm qt4-doc-4.2.1-1.el5_7.1.x86_64.rpm qt4-mysql-4.2.1-1.el5_7.1.x86_64.rpm qt4-odbc-4.2.1-1.el5_7.1.x86_64.rpm qt4-postgresql-4.2.1-1.el5_7.1.x86_64.rpm qt4-sqlite-4.2.1-1.el5_7.1.x86_64.rpm RHEL Desktop Workstation (v. 5 client): Source: i386: qt4-debuginfo-4.2.1-1.el5_7.1.i386.rpm qt4-devel-4.2.1-1.el5_7.1.i386.rpm x86_64: qt4-debuginfo-4.2.1-1.el5_7.1.i386.rpm qt4-debuginfo-4.2.1-1.el5_7.1.x86_64.rpm qt4-devel-4.2.1-1.el5_7.1.i386.rpm qt4-devel-4.2.1-1.el5_7.1.x86_64.rpm Red Hat Enterprise Linux (v. 5server): Source: i386: qt4-4.2.1-1.el5_7.1.i386.rpm qt4-debuginfo-4.2.1-1.el5_7.1.i386.rpm qt4-devel-4.2.1-1.el5_7.1.i386.rpm qt4-doc-4.2.1-1.el5_7.1.i386.rpm qt4-mysql-4.2.1-1.el5_7.1.i386.rpm qt4-odbc-4.2.1-1.el5_7.1.i386.rpm qt4-postgresql-4.2.1-1.el5_7.1.i386.rpm qt4-sqlite-4.2.1-1.el5_7.1.i386.rpm ia64: qt4-4.2.1-1.el5_7.1.ia64.rpm qt4-debuginfo-4.2.1-1.el5_7.1.ia64.rpm qt4-devel-4.2.1-1.el5_7.1.ia64.rpm qt4-doc-4.2.1-1.el5_7.1.ia64.rpm qt4-mysql-4.2.1-1.el5_7.1.ia64.rpm qt4-odbc-4.2.1-1.el5_7.1.ia64.rpm qt4-postgresql-4.2.1-1.el5_7.1.ia64.rpm qt4-sqlite-4.2.1-1.el5_7.1.ia64.rpm ppc: qt4-4.2.1-1.el5_7.1.ppc.rpm qt4-4.2.1-1.el5_7.1.ppc64.rpm qt4-debuginfo-4.2.1-1.el5_7.1.ppc.rpm qt4-debuginfo-4.2.1-1.el5_7.1.ppc64.rpm qt4-devel-4.2.1-1.el5_7.1.ppc.rpm qt4-devel-4.2.1-1.el5_7.1.ppc64.rpm qt4-doc-4.2.1-1.el5_7.1.ppc.rpm qt4-mysql-4.2.1-1.el5_7.1.ppc.rpm qt4-odbc-4.2.1-1.el5_7.1.ppc.rpm qt4-postgresql-4.2.1-1.el5_7.1.ppc.rpm qt4-sqlite-4.2.1-1.el5_7.1.ppc.rpm s390x: qt4-4.2.1-1.el5_7.1.s390.rpm qt4-4.2.1-1.el5_7.1.s390x.rpm qt4-debuginfo-4.2.1-1.el5_7.1.s390.rpm qt4-debuginfo-4.2.1-1.el5_7.1.s390x.rpm qt4-devel-4.2.1-1.el5_7.1.s390.rpm qt4-devel-4.2.1-1.el5_7.1.s390x.rpm qt4-doc-4.2.1-1.el5_7.1.s390x.rpm qt4-mysql-4.2.1-1.el5_7.1.s390x.rpm qt4-odbc-4.2.1-1.el5_7.1.s390x.rpm qt4-postgresql-4.2.1-1.el5_7.1.s390x.rpm qt4-sqlite-4.2.1-1.el5_7.1.s390x.rpm x86_64: qt4-4.2.1-1.el5_7.1.i386.rpm qt4-4.2.1-1.el5_7.1.x86_64.rpm qt4-debuginfo-4.2.1-1.el5_7.1.i386.rpm qt4-debuginfo-4.2.1-1.el5_7.1.x86_64.rpm qt4-devel-4.2.1-1.el5_7.1.i386.rpm qt4-devel-4.2.1-1.el5_7.1.x86_64.rpm qt4-doc-4.2.1-1.el5_7.1.x86_64.rpm qt4-mysql-4.2.1-1.el5_7.1.x86_64.rpm qt4-odbc-4.2.1-1.el5_7.1.x86_64.rpm qt4-postgresql-4.2.1-1.el5_7.1.x86_64.rpm qt4-sqlite-4.2.1-1.el5_7.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7.References: https://access.redhat.com/security/cve/CVE-2007-0242 https://access.redhat.com/security/cve/CVE-2011-3193 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2011 Red Hat, Inc. . A cautionary announcement regarding qt5 security patch on CentOS reveals significant vulnerabilities and potential hazards.. qt4 Update, Security Advisory, Red Hat Enterprise, Qt4 Fix, Security Issues. . LinuxSecurity.com Team

Calendar 2 Sep 21, 2011 Red Hat
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here