Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -6 articles for you...
217
security advisorysecurity updatebug fixOracle9: ELSA-2025-2668: .NET 9.0 security, bug fix, and enhancement Important Security Advisory Updates
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2025-2668 http://linux.oracle.com/errata/ELSA-2025-2668.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: aspnetcore-runtime-9.0-9.0.3-1.0.1.el9_5.x86_64.rpm aspnetcore-runtime-dbg-9.0-9.0.3-1.0.1.el9_5.x86_64.rpm aspnetcore-targeting-pack-9.0-9.0.3-1.0.1.el9_5.x86_64.rpm dotnet-apphost-pack-9.0-9.0.3-1.0.1.el9_5.x86_64.rpm dotnet-host-9.0.3-1.0.1.el9_5.x86_64.rpm dotnet-hostfxr-9.0-9.0.3-1.0.1.el9_5.x86_64.rpm dotnet-runtime-9.0-9.0.3-1.0.1.el9_5.x86_64.rpm dotnet-runtime-dbg-9.0-9.0.3-1.0.1.el9_5.x86_64.rpm dotnet-sdk-9.0-9.0.104-1.0.1.el9_5.x86_64.rpm dotnet-sdk-aot-9.0-9.0.104-1.0.1.el9_5.x86_64.rpm dotnet-sdk-dbg-9.0-9.0.104-1.0.1.el9_5.x86_64.rpm dotnet-targeting-pack-9.0-9.0.3-1.0.1.el9_5.x86_64.rpm dotnet-templates-9.0-9.0.104-1.0.1.el9_5.x86_64.rpm netstandard-targeting-pack-2.1-9.0.104-1.0.1.el9_5.x86_64.rpm dotnet-sdk-9.0-source-built-artifacts-9.0.104-1.0.1.el9_5.x86_64.rpm aarch64: aspnetcore-runtime-9.0-9.0.3-1.0.1.el9_5.aarch64.rpm aspnetcore-runtime-dbg-9.0-9.0.3-1.0.1.el9_5.aarch64.rpm aspnetcore-targeting-pack-9.0-9.0.3-1.0.1.el9_5.aarch64.rpm dotnet-apphost-pack-9.0-9.0.3-1.0.1.el9_5.aarch64.rpm dotnet-host-9.0.3-1.0.1.el9_5.aarch64.rpm dotnet-hostfxr-9.0-9.0.3-1.0.1.el9_5.aarch64.rpm dotnet-runtime-9.0-9.0.3-1.0.1.el9_5.aarch64.rpm dotnet-runtime-dbg-9.0-9.0.3-1.0.1.el9_5.aarch64.rpm dotnet-sdk-9.0-9.0.104-1.0.1.el9_5.aarch64.rpm dotnet-sdk-aot-9.0-9.0.104-1.0.1.el9_5.aarch64.rpm dotnet-sdk-dbg-9.0-9.0.104-1.0.1.el9_5.aarch64.rpm dotnet-targeting-pack-9.0-9.0.3-1.0.1.el9_5.aarch64.rpm dotnet-templates-9.0-9.0.104-1.0.1.el9_5.aarch64.rpm netstandard-targeting-pack-2.1-9.0.104-1.0.1.el9_5.aarch64.rpm dotnet-sdk-9.0-source-built-artifacts-9.0.104-1.0.1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//dotnet9.0-9.0.104-1.0.1.el9_5.src.rpm RelatedCVEs: CVE-2025-24070 Description of changes: [9.0.104-1.0.1] - Add support for Oracle Linux [9.0.104-1] - Update to .NET SDK 9.0.104 and Runtime 9.0.3 - Resolves: RHEL-81649 _______________________________________________ El-errata mailing list
Mar 14, 2025
•Important
Oracle
98
security advisoryRed HatDoS issueRed Hat: RHSA-2022-8761-01 Moderate: Spring Boot 2.7.2 DoS Threat
An update is now available for Red Hat OpenShift Application Runtimes. 2. Description: Red Hat support for Spring Boot provides an application platform that reduces the complexity of developing and operating applications (monoliths. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat support for Spring Boot 2.7.2 update Advisory ID: RHSA-2022:8761-01 Product: Red Hat OpenShift Application Runtimes Advisory URL: https://access.redhat.com/errata/RHSA-2022:8761 Issue date: 2022-12-14 CVE Names: CVE-2020-5404 CVE-2021-4178 CVE-2021-22569 CVE-2022-1259 CVE-2022-1319 CVE-2022-22950 ==================================================================== 1. Summary: An update is now available for Red Hat OpenShift Application Runtimes. 2. Description: Red Hat support for Spring Boot provides an application platform that reduces the complexity of developing and operating applications (monoliths and microservices) for OpenShift as a containerized platform. This release of Red Hat support for Spring Boot 2.7.2 serves as a replacement for Red Hat support for Spring Boot 2.5.12, and includes security, bug fixes and enhancements. For more information, see the release notes listed in the References section. Security Fix(es): * reactor-netty: specific redirect configuration allows for a credentials leak (CVE-2020-5404) * kubernetes-client: Insecure deserialization in unmarshalYaml method (CVE-2021-4178) * protobuf-java: potential DoS in the parsing procedure for binary data (CVE-2021-22569) * undertow: potential security issue in flow control over HTTP/2 may lead to DOS(incomplete fix for CVE-2021-3629) (CVE-2022-1259) * undertow: Double AJP response for 400 from EAP 7 results in CPING failures (CVE-2022-1319) * spring-expression: Denial of service via specially crafted SpEL expression (CVE-2022-22950) For moredetails about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on. The References section of this erratum contains a download link for the update. You must be logged in to download the update. 4. Bugs fixed (https://bugzilla.redhat.com/): 1975160 - CVE-2020-5404 reactor-netty: specific redirect configuration allows for a credentials leak 2034388 - CVE-2021-4178 kubernetes-client: Insecure deserialization in unmarshalYaml method 2039903 - CVE-2021-22569 protobuf-java: potential DoS in the parsing procedure for binary data 2069414 - CVE-2022-22950 spring-expression: Denial of service via specially crafted SpEL expression 2072339 - CVE-2022-1259 undertow: potential security issue in flow control over HTTP/2 may lead to DOS(incomplete fix for CVE-2021-3629) 2073890 - CVE-2022-1319 undertow: Double AJP response for 400 from EAP 7 results in CPING failures 5. References: https://access.redhat.com/security/cve/CVE-2020-5404 https://access.redhat.com/security/cve/CVE-2021-4178 https://access.redhat.com/security/cve/CVE-2021-22569 https://access.redhat.com/security/cve/CVE-2022-1259 https://access.redhat.com/security/cve/CVE-2022-1319 https://access.redhat.com/security/cve/CVE-2022-22950 https://access.redhat.com/security/updates/classification#moderate https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=catRhoar.spring.boot&version=2.7.2 https://docs.redhat.com/en/documentation/red_hat_support_for_spring_boot/2.7/html/release_notes_for_spring_boot_2.7/index 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBY5n7DNzjgjWX9erEAQiKPxAAmoYF+t4ACJYF2K5F++ihf3FMAZZFW1uZ O21DM6vLF8Vr0W5R/ySQU3P3bmXj5nL7dxXKsF4qybaUpzRhVztpuMNBxYUTuGC2 NjjrJ3M6a3Kairtf7utXB63qBdWrEAnFm5KOHTkcYMijFxmNgwlA9NyNd3Ogy56U glBojHJDZucexAiEl6XZVY0LcNgFWH6RjTxIsHlZwCGJ53isUGeclAiQqFEhwUAg 5uHa3RGwUr/Qpbqkhg7LOeiWGcthQz+/99A7n/DGgST87IUMFnEUUALiJW3p7v85 2ZAeUFxgjxOCYPPqKV5TDsSxoIn8CROji48Zj4Z+rX5AgiQgTr7qfAwFmGcItuXn z16h9xrng/sGi70nfPpsPwRK8xPkRTKbbUx9QjQhUWz1EROoz6H6/ZmH9Uoyl8p3 xDaSLTixQftyTJiMIldcrqfShlXQ3PIg/fgG1wcmCzh/y2+9Q3yBRO6FGMRpc5vN oE/UkQYoLx70ac9p70cfhJR95KCe36SIOz709ttnJPFhj+VhoMO+P3JCZCMaUutZ 2JU0PWLkI7aDfGJYM9Sdcd2PyWweyQXx7QYcxXd8t2lmnnvwaGd4n7e62ZL5D/go sHPxfngfBG6SYCBnDixpspjFUXa79Xyzcu6jaxKYWJSRu/jHhJcApjWXYedoNl4u m/Y35FxA4Zc=z+xe -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Dec 14, 2022
Red Hat
98
security advisorysecurity issuered hatRedHat: RHSA-2020-4213-01 Low: Spring Boot 2.2.10 Issue
An update is now available for Red Hat OpenShift Application Runtimes. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Low: Red Hat support for Spring Boot 2.2.10 security update Advisory ID: RHSA-2020:4213-01 Product: Red Hat OpenShift Application Runtimes Advisory URL: https://access.redhat.com/errata/RHSA-2020:4213 Issue date: 2020-10-08 CVE Names: CVE-2020-1728 ==================================================================== 1. Summary: An update is now available for Red Hat OpenShift Application Runtimes. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: Red Hat support for Spring Boot provides an application platform that reduces the complexity of developing and operating applications (monoliths and microservices) for OpenShift as a containerized platform. This release of Red Hat support for Spring Boot 2.2.10 serves as a replacement for Red Hat support for Spring Boot 2.2.6.SP2, and includes security and bug fixes and enhancements. For further information, refer to the release notes linked to in the References section. Security Fix(es): * keycloak: security headers missing on REST endpoints (CVE-2020-1728) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: Before applying the update, back up your existing installation,including all applications, configuration files, databases and database settings, and so on. The References section of this erratum contains a download link (you must log in to download the update). 4. Bugs fixed (https://bugzilla.redhat.com/): 1800585 - CVE-2020-1728 keycloak: security headers missing on REST endpoints 5. References: https://access.redhat.com/security/cve/CVE-2020-1728 https://access.redhat.com/security/updates/classification/#low https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=catRhoar.spring.boot&version=2.2.10 https://access.redhat.com/documentation/en-us/red_hat_support_for_spring_boot/2.2/ 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBX37p/tzjgjWX9erEAQjzng//cQp9Pr5Mcu5e3wtBnCcTQy7rzB/T519O rfaGyWO8KGs71kLHf9btfEhoTtKRhgacg9k/SUZAH8BOFwrdeu1QApMGBfEtDcsZ 44J/W90b3jp2hL1oUPx/Xjv3cfZ6349NxAvSrzt1aL3Cmb0X8VDaF5PaXhXg9LEN it5WPWwWt5mk2JH6dTaVAN8gZrCSosR7hjQzyGGrIzT4hnWGKFaCcRE/NTeTBrB2 C8hglDoXw0LFNtHA8gQTh/BCRojXZ0tj2xGbysY+iPpyPFx9KaQ2AtRmCm9g3WUS K8pbu5G4+bOfeG9fFWjVLP1TcOiQ9mhlTlRtyMIRRizxtM4uIBjilYTE9CsOBZZe yVab5LUJiRpAh1qUVT6vXo/lrmXfgJXRPfnsj9TgJqeDbUNzasfNU5bJMadblc5p rjTy7FxvKPgdgzaBbz7aes1f1PiSTDbgCeKn8GBb3rVkMlGooYMaIdkAW0yO0h4Y +IdOtWoXkIemD8+7jhxP35WMOGEB1GjR45HGSQp+9QhoWmmKXuUsCqlZ0xA0Nslf bzEn3bJDl4ywSxxq8kY1gZ3WWTerwBQTKK0t+yoQnkJNUBBNJkVzFDiwBAQF9Lnw cdq7jyDwNa1xbG66PEpkKOGhxeflo3LrTsSMpUcOCjjkyWIlrYr28rVBxzhEqHn5 gfOd/FhuS1c=hOVY -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Oct 08, 2020
•Low
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!