Alerts This Week
Warning Icon 1 562
Alerts This Week
Warning Icon 1 562

Stay Secure with the Latest Linux Advisories

Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H800
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorybuffer overflowcritical

Fedora 20: 2015-5546 Critical arj Buffer Overflow & Traversal Fixes

- Added patch from Debian to avoid free on invalid pointer due to a buffer overflow (#1196751, #1207180) - Added patch from Debian for symlink directory traversal (#1178824) - Added patch from Debian to fix the directory traversal via //multiple/leading/slash (#1178824). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-5546 2015-04-05 11:01:36 -------------------------------------------------------------------------------- Name : arj Product : Fedora 20 Version : 3.10.22 Release : 22.fc20 URL : Summary : Archiver for .arj files Description : This package is an open source version of the arj archiver. It has been created with the intent to preserve maximum compatibility and retain the feature set of original ARJ archiver as provided by ARJ Software, Inc. -------------------------------------------------------------------------------- Update Information: - Added patch from Debian to avoid free on invalid pointer due to a buffer overflow (#1196751, #1207180) - Added patch from Debian for symlink directory traversal (#1178824) - Added patch from Debian to fix the directory traversal via //multiple/leading/slash (#1178824) -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 3 2015 Robert Scheck 3.10.22-22 - Added patch from Debian to avoid free on invalid pointer due to a buffer overflow (#1196751, #1207180) - Added patch from Debian for symlink directory traversal (#1178824) - Added patch from Debian to fix the directory traversal via //multiple/leading/slash (#1178824) * Sat Feb 21 2015 Till Maas - 3.10.22-21 - Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code * Fri Aug 15 2014 Fedora Release Engineering - 3.10.22-20 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering - 3.10.22-19 - Rebuilt forhttps://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sun Oct 20 2013 Robert Scheck 3.10.22-18 - Replaced compressed Debian patch file by regular patches -------------------------------------------------------------------------------- References: [ 1 ] Bug #1178824 - CVE-2015-0556 CVE-2015-0557 arj: two directory traversal flaws https://bugzilla.redhat.com/show_bug.cgi?id=1178824 [ 2 ] Bug #1207180 - CVE-2015-2782 arj: free on invalid pointer due to to buffer overflow https://bugzilla.redhat.com/show_bug.cgi?id=1207180 [ 3 ] Bug #1196751 - arj: buffer overflow write access initiated by a size read from a crafted archive https://bugzilla.redhat.com/show_bug.cgi?id=1196751 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update arj' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . -------------------------------------------------------------------------------- Fedora Update Notif. added, patch, debian, avoid, invalid, pointer, buffer, overflow, (#1196751, #1207. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 13, 2015 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorymoderatefedora

Fedora 21: 2015-5603 Moderate: arj Buffer Overflow and Directory Traversal

- Added patch from Debian to avoid free on invalid pointer due to a buffer overflow (#1196751, #1207180) - Added patch from Debian for symlink directory traversal (#1178824) - Added patch from Debian to fix the directory traversal via //multiple/leading/slash (#1178824). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-5603 2015-04-05 11:04:02 -------------------------------------------------------------------------------- Name : arj Product : Fedora 21 Version : 3.10.22 Release : 22.fc21 URL : Summary : Archiver for .arj files Description : This package is an open source version of the arj archiver. It has been created with the intent to preserve maximum compatibility and retain the feature set of original ARJ archiver as provided by ARJ Software, Inc. -------------------------------------------------------------------------------- Update Information: - Added patch from Debian to avoid free on invalid pointer due to a buffer overflow (#1196751, #1207180) - Added patch from Debian for symlink directory traversal (#1178824) - Added patch from Debian to fix the directory traversal via //multiple/leading/slash (#1178824) -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 3 2015 Robert Scheck 3.10.22-22 - Added patch from Debian to avoid free on invalid pointer due to a buffer overflow (#1196751, #1207180) - Added patch from Debian for symlink directory traversal (#1178824) - Added patch from Debian to fix the directory traversal via //multiple/leading/slash (#1178824) * Sat Feb 21 2015 Till Maas - 3.10.22-21 - Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code -------------------------------------------------------------------------------- References: [ 1 ] Bug #1178824 - CVE-2015-0556 CVE-2015-0557 arj: two directory traversal flaws https://bugzilla.redhat.com/show_bug.cgi?id=1178824 [ 2 ] Bug #1207180 - CVE-2015-2782 arj: free on invalid pointer due to to buffer overflow https://bugzilla.redhat.com/show_bug.cgi?id=1207180 [ 3 ] Bug #1196751 - arj: buffer overflow write access initiated by a size read from a crafted archive https://bugzilla.redhat.com/show_bug.cgi?id=1196751 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update arj' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . Recent Fedora release tackles memory corruption and directory traversal vulnerabilities in xz-utils. Upgrade today for improved protection and performance.. Fedora Security Update, arj Software Update, Buffer Overflow Fix, Directory Traversal Patch. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 10, 2015 Important Fedora
Banner 4 1028x280 1708121825 1771600306
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorysecurity issuebuffer overflow

Debian: DSA-3213-1 Critical: Arj Buffer Overflow and Traversal Risks

Multiple vulnerabilities have been discovered in arj, an open source version of the arj archiver. The Common Vulnerabilities and Exposures project identifies the following problems: . - ------------------------------------------------------------------------- Debian Security Advisory DSA-3213-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Salvatore Bonaccorso April 06, 2015 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : arj CVE ID : CVE-2015-0556 CVE-2015-0557 CVE-2015-2782 Debian Bug : 774015 774434 774435 Multiple vulnerabilities have been discovered in arj, an open source version of the arj archiver. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2015-0556 Jakub Wilk discovered that arj follows symlinks created during unpacking of an arj archive. A remote attacker could use this flaw to perform a directory traversal attack if a user or automated system were tricked into processing a specially crafted arj archive. CVE-2015-0557 Jakub Wilk discovered that arj does not sufficiently protect from directory traversal while unpacking an arj archive containing file paths with multiple leading slashes. A remote attacker could use this flaw to write to arbitrary files if a user or automated system were tricked into processing a specially crafted arj archive. CVE-2015-2782 Jakub Wilk and Guillem Jover discovered a buffer overflow vulnerability in arj. A remote attacker could use this flaw to cause an application crash or, possibly, execute arbitrary code with the privileges of the user running arj. For the stable distribution (wheezy), these problems have been fixed in version 3.10.22-10+deb7u1. For the upcoming stable distribution (jessie), these problems have been fixed in version 3.10.22-13. For the unstable distribution (sid), these problems have beenfixed in version 3.10.22-13. We recommend that you upgrade your arj packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Uncover essential arj security improvements highlighted in Debian Advisory DSA-3213-1 that tackle various vulnerabilities.. Debian Arj Security Fixes, Archiver Security Updates, Advisory DSA-3213-1. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 06, 2015 Critical Debian
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here