Alerts This Week
Warning Icon 1 560
Alerts This Week
Warning Icon 1 560

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisoryfile handlingimportant

openSUSE 15.4 Evolution Data Server Important File Deletion CVE-2026-2604

An update that solves one vulnerability can now be installed.. # Security update for evolution-data-server Announcement ID: SUSE-SU-2026:0776-1 Release Date: 2026-03-03T13:20:27Z Rating: moderate References: * bsc#1258307 Cross-References: * CVE-2026-2604 CVSS scores: * CVE-2026-2604 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2026-2604 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:L Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Linux Enterprise Workstation Extension 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves one vulnerability can now be installed. ## Description: This update for evolution-data-server fixes the following issue: * CVE-2026-2604: arbitrary file deletion via inconsistent URI handling (bsc#1258307). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-776=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-776=1 * SUSE Linux Enterprise Workstation Extension 15 SP7 zypper in -t patch SUSE-SLE-Product-WE-15-SP7-2026-776=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libebackend-1_2-10-debuginfo-3.42.5-150400.3.10.1 * libecal-2_0-1-3.42.5-150400.3.10.1 * typelib-1_0-EBackend-1_2-3.42.5-150400.3.10.1 * libedataserverui-1_2-3-3.42.5-150400.3.10.1 * typelib-1_0-EBook-1_2-3.42.5-150400.3.10.1 * libebook-contacts-1_2-3-debuginfo-3.42.5-150400.3.10.1 * typelib-1_0-Camel-1_2-3.42.5-150400.3.10.1 * libedata-book-1_2-26-3.42.5-150400.3.10.1 *libebook-contacts-1_2-3-3.42.5-150400.3.10.1 * typelib-1_0-EBookContacts-1_2-3.42.5-150400.3.10.1 * libebackend-1_2-10-3.42.5-150400.3.10.1 * libebook-1_2-20-debuginfo-3.42.5-150400.3.10.1 * libebook-1_2-20-3.42.5-150400.3.10.1 * libedata-cal-2_0-1-3.42.5-150400.3.10.1 * libcamel-1_2-63-3.42.5-150400.3.10.1 * evolution-data-server-devel-3.42.5-150400.3.10.1 * libedataserver-1_2-26-debuginfo-3.42.5-150400.3.10.1 * typelib-1_0-EDataServerUI-1_2-3.42.5-150400.3.10.1 * typelib-1_0-EDataServer-1_2-3.42.5-150400.3.10.1 * typelib-1_0-ECal-2_0-3.42.5-150400.3.10.1 * libedata-cal-2_0-1-debuginfo-3.42.5-150400.3.10.1 * typelib-1_0-EDataCal-2_0-3.42.5-150400.3.10.1 * evolution-data-server-debuginfo-3.42.5-150400.3.10.1 * libedataserverui-1_2-3-debuginfo-3.42.5-150400.3.10.1 * libedata-book-1_2-26-debuginfo-3.42.5-150400.3.10.1 * libecal-2_0-1-debuginfo-3.42.5-150400.3.10.1 * libedataserver-1_2-26-3.42.5-150400.3.10.1 * evolution-data-server-3.42.5-150400.3.10.1 * typelib-1_0-EDataBook-1_2-3.42.5-150400.3.10.1 * evolution-data-server-debugsource-3.42.5-150400.3.10.1 * libcamel-1_2-63-debuginfo-3.42.5-150400.3.10.1 * openSUSE Leap 15.4 (noarch) * evolution-data-server-lang-3.42.5-150400.3.10.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x) * libecal-2_0-1-debuginfo-3.42.5-150400.3.10.1 * libebackend-1_2-10-debuginfo-3.42.5-150400.3.10.1 * libebackend-1_2-10-3.42.5-150400.3.10.1 * libecal-2_0-1-3.42.5-150400.3.10.1 * libebook-1_2-20-debuginfo-3.42.5-150400.3.10.1 * libebook-1_2-20-3.42.5-150400.3.10.1 * libedata-cal-2_0-1-3.42.5-150400.3.10.1 * libedata-cal-2_0-1-debuginfo-3.42.5-150400.3.10.1 * evolution-data-server-debugsource-3.42.5-150400.3.10.1 * evolution-data-server-debuginfo-3.42.5-150400.3.10.1 * libedata-book-1_2-26-debuginfo-3.42.5-150400.3.10.1 * libebook-contacts-1_2-3-debuginfo-3.42.5-150400.3.10.1 * libedata-book-1_2-26-3.42.5-150400.3.10.1 *libebook-contacts-1_2-3-3.42.5-150400.3.10.1 * SUSE Linux Enterprise Workstation Extension 15 SP7 (x86_64) * libebackend-1_2-10-debuginfo-3.42.5-150400.3.10.1 * libebackend-1_2-10-3.42.5-150400.3.10.1 * libebook-1_2-20-debuginfo-3.42.5-150400.3.10.1 * libebook-1_2-20-3.42.5-150400.3.10.1 * libedataserver-1_2-26-3.42.5-150400.3.10.1 * libcamel-1_2-63-3.42.5-150400.3.10.1 * evolution-data-server-debugsource-3.42.5-150400.3.10.1 * evolution-data-server-debuginfo-3.42.5-150400.3.10.1 * libedata-book-1_2-26-debuginfo-3.42.5-150400.3.10.1 * libebook-contacts-1_2-3-debuginfo-3.42.5-150400.3.10.1 * libedataserver-1_2-26-debuginfo-3.42.5-150400.3.10.1 * libedata-book-1_2-26-3.42.5-150400.3.10.1 * libebook-contacts-1_2-3-3.42.5-150400.3.10.1 * libcamel-1_2-63-debuginfo-3.42.5-150400.3.10.1 ## References: * https://www.suse.com/security/cve/CVE-2026-2604.html * https://bugzilla.suse.com/show_bug.cgi?id=1258307 . Update for openSUSE fixes important issue in evolution-data-server addressing arbitrary file deletion risk.. openSUSE update, evolution-data-server security, file handling issue, CVE-2026-2604. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 03, 2026 Important OpenSUSE
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysoftware updateFedora

Fedora 35: FEDORA-2022-0f1653e269 moderate: thefuck Path Traversal

Security fix for CVE-2021-34363. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-0f1653e269 2022-01-19 02:10:14.239494 --------------------------------------------------------------------------------Name : thefuck Product : Fedora 35 Version : 3.32 Release : 1.fc35 URL : https://github.com/nvbn/thefuck Summary : App that corrects your previous console command Description : This application corrects your previous console command. If you use BASH, you should add these lines to your .bashrc: alias fuck='eval $(thefuck $(fc -ln -1)); history -r' alias FUCK='fuck' For other shells please check /usr/share/doc/thefuck/README.md --------------------------------------------------------------------------------Update Information: Security fix for CVE-2021-34363 --------------------------------------------------------------------------------ChangeLog: * Mon Jan 10 2022 Arthur Bols - 3.32-1 - Upstream release 3.32 - Updated spec to comply with updated guidelines --------------------------------------------------------------------------------References: [ 1 ] Bug #1970598 - CVE-2021-34363 thefuck: arbitrary file deletion via path traversal https://bugzilla.redhat.com/show_bug.cgi?id=1970598 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-0f1653e269' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Resolution implemented for the vulnerability CVE-2021-34363 impacting the Fedora package thefuck utilized for command adjustments.. Fedora Thefuck Update, Path Traversal Security, Command Correction Tool. . LinuxSecurity.com Team

Calendar 2 Jan 18, 2022 Fedora
Banner 1 1028x280 1708121660 1771599717
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisoryremote code executionimportant update

openSUSE Leap 15.2: Security Update for xstream - Important Issues Resolved

An update that fixes three vulnerabilities is now available. . openSUSE Security Update: Security update for xstream ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:0140-1 Rating: important References: #1180145 #1180146 #1180994 Cross-References: CVE-2020-26217 CVE-2020-26258 CVE-2020-26259 Affected Products: openSUSE Leap 15.2 ______________________________________________________________________________ An update that fixes three vulnerabilities is now available. Description: This update for xstream fixes the following issues: xstream was updated to version 1.4.15. - CVE-2020-26217: Fixed a remote code execution due to insecure XML deserialization when relying on blocklists (bsc#1180994). - CVE-2020-26258: Fixed a server-side request forgery vulnerability (bsc#1180146). - CVE-2020-26259: Fixed an arbitrary file deletion vulnerability (bsc#1180145). This update was imported from the SUSE:SLE-15-SP2:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2021-140=1 Package List: - openSUSE Leap 15.2 (noarch): xstream-1.4.15-lp152.2.3.1 xstream-benchmark-1.4.15-lp152.2.3.1 xstream-javadoc-1.4.15-lp152.2.3.1 xstream-parent-1.4.15-lp152.2.3.1 References: https://www.suse.com/security/cve/CVE-2020-26217.html https://www.suse.com/security/cve/CVE-2020-26258.html https://www.suse.com/security/cve/CVE-2020-26259.html https://bugzilla.suse.com/1180145 https://bugzilla.suse.com/1180146 https://bugzilla.suse.com/1180994 . openSUSE has released a security patch for xstream to address severe vulnerabilities, accompanied by installationinstructions.. openSUSE Security Update,xstream 1.4.15,remote code execution,arbitrary file deletion,server-side request forgery. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 22, 2021 Important OpenSUSE
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoracommand execution

Fedora 10: 2009-1824 Critical Update for Jhead Command Execution

* fixes "CVE-2008-4640 jhead: arbitrary file deletion" (#468056) * fixes "CVE-2008-4641 jhead: command exection caused by incorrect handling of the shell escapes" (#468057). --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2009-1824 2009-02-17 14:51:58 --------------------------------------------------------------------------------Name : jhead Product : Fedora 10 Version : 2.86 Release : 1.fc10 URL : https://www.sentex.ca/~mwandel/jhead/ Summary : Tool for displaying EXIF data embedded in JPEG images Description : Jhead displays and manipulates the non-image portions of EXIF formatted JPEG images, such as the images produced by most digital cameras. --------------------------------------------------------------------------------Update Information: * fixes "CVE-2008-4640 jhead: arbitrary file deletion" (#468056) * fixes "CVE-2008-4641 jhead: command exection caused by incorrect handling of the shell escapes" (#468057) --------------------------------------------------------------------------------ChangeLog: * Mon Feb 16 2009 Adrian Reber - 2.86-1 - updated to 2.86 - fixes "CVE-2008-4640 jhead: arbitrary file deletion" (#468056) - fixes "CVE-2008-4641 jhead: command exection caused by incorrect handling of the shell escapes" (#468057) - fixes "build ignores optflags" (#485697) --------------------------------------------------------------------------------References: [ 1 ] Bug #468056 - CVE-2008-4640 jhead: arbitrary file deletion https://bugzilla.redhat.com/show_bug.cgi?id=468056 [ 2 ] Bug #468057 - CVE-2008-4641 jhead: command exection caused by incorrect handling of the shell escapes https://bugzilla.redhat.com/show_bug.cgi?id=468057 --------------------------------------------------------------------------------This update can be installed with the "yum" update program. Use su -c 'yum update jhead' at the command line. For more information,refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Fedora 10 jhead revision addresses command injection and unauthorized removal vulnerabilities discovered in CVE-2008-4650 and CVE-2008-4651.. Fedora Update,jhead Security,Arbitrary Deletion Fix,Command Execution Issue. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 05, 2009 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here