Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -6 articles for you...
89
security advisorylocal root exploitfedoraFedora 42 smb4k 4.0.6 Critical Local Root Exploit Vulnerabilities Revealed
Update to version 4.0.6. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-4ce552d940 2026-04-18 01:08:05.671412+00:00 -------------------------------------------------------------------------------- Name : smb4k Product : Fedora 42 Version : 4.0.6 Release : 1.fc42 URL : https://smb4k.sourceforge.net/ Summary : The SMB/CIFS Share Browser for KDE Description : Smb4K is an SMB/CIFS share browser for KDE. It uses the Samba software suite to access the SMB/CIFS shares of the local network neighborhood. Its purpose is to provide a program that's easy to use and has as many features as possible. -------------------------------------------------------------------------------- Update Information: Update to version 4.0.6 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 15 2026 Packit - 4.0.6-1 - Update to version 4.0.6 - Resolves: rhbz#2365800 * Sat Jan 17 2026 Fedora Release Engineering - 4.0.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Fri Jul 25 2025 Fedora Release Engineering - 4.0.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2365800 - smb4k-4.0.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2365800 [ 2 ] Bug #2443263 - CVE-2025-66003 smb4k: smb4k local root exploit [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2443263 [ 3 ] Bug #2443267 - CVE-2025-66002 smb4k: SMB4K Arbitrary Mount [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2443267 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-4ce552d940' at the command line. For more information, refer to the dnfdocumentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Apr 18, 2026
•Critical
Fedora
89
security advisoryupdateFedoraFedora 40 - FEDORA-2024-69528c0ba6 moderate: podman file descriptor leak
release 1.13.3. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-69528c0ba6 2024-10-28 03:52:20.506230 -------------------------------------------------------------------------------- Name : prometheus-podman-exporter Product : Fedora 40 Version : 1.13.3 Release : 1.fc40 URL : https://github.com/containers/prometheus-podman-exporter Summary : Prometheus exporter for podman environment Description : Prometheus exporter for podman environments exposing containers, pods, images, volumes and networks information. -------------------------------------------------------------------------------- Update Information: release 1.13.3 -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 19 2024 Navid Yaghoobi - 1.13.3-1 - release v1.13.3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2317466 - CVE-2024-9675 prometheus-podman-exporter: Buildah allows arbitrary directory mount [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2317466 [ 2 ] Bug #2318177 - [Major Incident] CVE-2024-21626 prometheus-podman-exporter: file descriptor leak [fedora-39] https://bugzilla.redhat.com/show_bug.cgi?id=2318177 [ 3 ] Bug #2318188 - [Major Incident] CVE-2024-21626 prometheus-podman-exporter: file descriptor leak [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2318188 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-69528c0ba6' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can befound at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Oct 28, 2024
Fedora
100
security advisorymoderateCVE fixSUSE: 2024:3728-1 moderate: buildah arbitrary mount fix
* bsc#1231499 Cross-References: * CVE-2024-9675 . # Security update for buildah Announcement ID: SUSE-SU-2024:3728-1 Release Date: 2024-10-18T13:15:57Z Rating: moderate References: * bsc#1231499 Cross-References: * CVE-2024-9675 CVSS scores: * CVE-2024-9675 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N * CVE-2024-9675 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2024-9675 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N Affected Products: * Containers Module 15-SP5 * Containers Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for buildah fixes the following issues: * CVE-2024-9675: Fixed arbitrary cache directory mount (bsc#1231499) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-3728=1 openSUSE-SLE-15.5-2024-3728=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-3728=1 * Containers Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Containers-15-SP5-2024-3728=1 * Containers Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Containers-15-SP6-2024-3728=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * buildah-1.35.4-150500.3.16.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * buildah-1.35.4-150500.3.16.1 * Containers Module 15-SP5 (aarch64 ppc64les390x x86_64) * buildah-1.35.4-150500.3.16.1 * Containers Module 15-SP6 (aarch64 ppc64le s390x x86_64) * buildah-1.35.4-150500.3.16.1 ## References: * https://www.suse.com/security/cve/CVE-2024-9675.html * https://bugzilla.suse.com/show_bug.cgi?id=1231499 . Essential security enhancement for buildah resolving uncertain cache directory mount vulnerability. Apply update using suggested procedures.. Buildah Security Advisory, SUSE Update, Container Security Patch. . LinuxSecurity.com Team
Oct 18, 2024
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!