Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 7 articles for you...
219
security advisorysecurity issueupdateRocky Linux: RLSA-2022:1808 Moderate: Aspell Security Issue
Moderate: aspell security update. \{'type': 'Security', 'shortCode': 'RL', 'name': 'RLSA-2022:1808', 'synopsis': 'Moderate: aspell security update', 'severity': 'Moderate', 'topic': 'An update for aspell is now available for Rocky Linux 8.\nRocky Linux Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.', 'description': 'GNU Aspell is a spell checker designed to eventually replace Ispell. It can either be used as a library or as an independent spell checker.\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\nAdditional Changes:\nFor detailed information on changes in this release, see the Rocky Linux 8.6 Release Notes linked from the References section.', 'solution': None, 'affectedProducts': ['Rocky Linux 8'], 'fixes': ['1984066'], 'cves': ['Red Hat:::https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-25051.json:::CVE-2019-25051'], 'references': [], 'publishedAt': '2022-05-18T19:43:29.006106Z', 'rpms': ['aspell-0.60.6.1-22.el8.aarch64.rpm', 'aspell-0.60.6.1-22.el8.i686.rpm', 'aspell-0.60.6.1-22.el8.src.rpm', 'aspell-0.60.6.1-22.el8.x86_64.rpm', 'aspell-debuginfo-0.60.6.1-22.el8.aarch64.rpm', 'aspell-debuginfo-0.60.6.1-22.el8.i686.rpm', 'aspell-debuginfo-0.60.6.1-22.el8.x86_64.rpm', 'aspell-debugsource-0.60.6.1-22.el8.aarch64.rpm', 'aspell-debugsource-0.60.6.1-22.el8.i686.rpm', 'aspell-debugsource-0.60.6.1-22.el8.x86_64.rpm', 'aspell-devel-0.60.6.1-22.el8.aarch64.rpm', 'aspell-devel-0.60.6.1-22.el8.i686.rpm', 'aspell-devel-0.60.6.1-22.el8.x86_64.rpm']}\. Aspell security enhancement for Rocky Linux mitigates moderate risks. Refer to the announcement for comprehensive information on upgrades and solutions.. Rocky Linux,Aspell,Security Update,Moderate Severity.. LinuxSecurity.com Team
Sep 02, 2022
Rocky Linux
98
security advisorysecurity fixRed Hat Enterprise LinuxRed Hat Enterprise Linux 8: RHSA-2022-1808-01, Moderate Aspell Overflow
An update for aspell is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: aspell security update Advisory ID: RHSA-2022:1808-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:1808 Issue date: 2022-05-10 CVE Names: CVE-2019-25051 ==================================================================== 1. Summary: An update for aspell is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat CodeReady Linux Builder (v. 8) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64 3. Description: GNU Aspell is a spell checker designed to eventually replace Ispell. It can either be used as a library or as an independent spell checker. Security Fix(es): * aspell: Heap-buffer-overflow in acommon::ObjStack::dup_top (CVE-2019-25051) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.6 Release Notes linked from the References section. 4. Solution: For details on how to apply this update, which includes the changes described in thisadvisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1984066 - CVE-2019-25051 aspell: Heap-buffer-overflow in acommon::ObjStack::dup_top 6. Package List: Red Hat Enterprise Linux AppStream (v. 8): Source: aspell-0.60.6.1-22.el8.src.rpm aarch64: aspell-0.60.6.1-22.el8.aarch64.rpm aspell-debuginfo-0.60.6.1-22.el8.aarch64.rpm aspell-debugsource-0.60.6.1-22.el8.aarch64.rpm ppc64le: aspell-0.60.6.1-22.el8.ppc64le.rpm aspell-debuginfo-0.60.6.1-22.el8.ppc64le.rpm aspell-debugsource-0.60.6.1-22.el8.ppc64le.rpm s390x: aspell-0.60.6.1-22.el8.s390x.rpm aspell-debuginfo-0.60.6.1-22.el8.s390x.rpm aspell-debugsource-0.60.6.1-22.el8.s390x.rpm x86_64: aspell-0.60.6.1-22.el8.i686.rpm aspell-0.60.6.1-22.el8.x86_64.rpm aspell-debuginfo-0.60.6.1-22.el8.i686.rpm aspell-debuginfo-0.60.6.1-22.el8.x86_64.rpm aspell-debugsource-0.60.6.1-22.el8.i686.rpm aspell-debugsource-0.60.6.1-22.el8.x86_64.rpm Red Hat CodeReady Linux Builder (v. 8): aarch64: aspell-debuginfo-0.60.6.1-22.el8.aarch64.rpm aspell-debugsource-0.60.6.1-22.el8.aarch64.rpm aspell-devel-0.60.6.1-22.el8.aarch64.rpm ppc64le: aspell-debuginfo-0.60.6.1-22.el8.ppc64le.rpm aspell-debugsource-0.60.6.1-22.el8.ppc64le.rpm aspell-devel-0.60.6.1-22.el8.ppc64le.rpm s390x: aspell-debuginfo-0.60.6.1-22.el8.s390x.rpm aspell-debugsource-0.60.6.1-22.el8.s390x.rpm aspell-devel-0.60.6.1-22.el8.s390x.rpm x86_64: aspell-debuginfo-0.60.6.1-22.el8.i686.rpm aspell-debuginfo-0.60.6.1-22.el8.x86_64.rpm aspell-debugsource-0.60.6.1-22.el8.i686.rpm aspell-debugsource-0.60.6.1-22.el8.x86_64.rpm aspell-devel-0.60.6.1-22.el8.i686.rpm aspell-devel-0.60.6.1-22.el8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7.References: https://access.redhat.com/security/cve/CVE-2019-25051 https://access.redhat.com/security/updates/classification#moderate https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.6_release_notes/ 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYnqQdNzjgjWX9erEAQgLJw//RwqO1zft5n9WGvzdc+i6WuA8t2C3T0nW vf4qRTmra4ApglTIASsa/PdqnybJORHi6ZD3j43q1MAcJPMrMnqBPQ3KKouCov2s NQC9aRukfKNpGD22NpHBNuUTWaa5Wzg9D0meBB8qWMzQyA4svxgzycreciT+1Npt PWKCetJpuFrTFS4vZug1bBKUHwNkizz8qYApZgviF+txB9FstfzGmvGByD6QS+8T vk5AqWKLcTT+EMEX0ggy4oer05eSbQpewhalLursvfTpcbM/YepOlMP4lkdZqaTO ktX7gG9sEBBA26gtPFypk6G5gMuEgcApDxtBPG9nHWB1bCCrYfioAHJryV2XUAt2 FDnJ7sp37HJZ9Dwu/r3LAimmz4AdCJCgnXKndNaFTNKWq/Oc0RIDyj+C0NzHCtRv 7wUMfU90I/A71AaXj9t2suhtXNuaxERA6mWEEtrWxEt6xIWzkA4jLO6MdVMRy/FM XMGYJZCNbR6NcipuH8LIZagEcvPcJDIOn8IG1ObPjy1CEnDqC30BcLmDaLHD/oJO 4NNMEsSwZklVcQOzPrHGrBmD0r5lMdECB2riBI+VHbmauQjm6R05Mv8oU+CpjGiT wMR115MI5L9aJxxsCvO9kVxvztVaDoalEFb0cUV4U6bmjcuvKC1yOPUWk+Mp190N TKSi7LCT1sk=MR4/ -----END PGP SIGNATURE----- -- RHSA-announce mailing list
May 10, 2022
Red Hat
100
security advisorysoftware updatepatchSUSE: 2021:2849-1 Critical: Aspell Buffer Overflow Update
An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for aspell ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:2848-1 Rating: important References: #1188576 Cross-References: CVE-2019-25051 CVSS scores: CVE-2019-25051 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2019-25051 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE OpenStack Cloud Crowbar 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud 8 SUSE Linux Enterprise Software Development Kit 12-SP5 SUSE Linux Enterprise Server for SAP 12-SP4 SUSE Linux Enterprise Server for SAP 12-SP3 SUSE Linux Enterprise Server 12-SP5 SUSE Linux Enterprise Server 12-SP4-LTSS SUSE Linux Enterprise Server 12-SP3-LTSS SUSE Linux Enterprise Server 12-SP3-BCL SUSE Linux Enterprise Server 12-SP2-BCL HPE Helion Openstack 8 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for aspell fixes the following issues: - CVE-2019-25051: Fixed heap-buffer-overflow in acommon:ObjStack:dup_top (bsc#1188576). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud Crowbar 9: zypper in -t patch SUSE-OpenStack-Cloud-Crowbar-9-2021-2848=1 - SUSE OpenStack Cloud Crowbar 8: zypper in -t patch SUSE-OpenStack-Cloud-Crowbar-8-2021-2848=1 - SUSE OpenStack Cloud9: zypper in -t patch SUSE-OpenStack-Cloud-9-2021-2848=1 - SUSE OpenStack Cloud 8: zypper in -t patch SUSE-OpenStack-Cloud-8-2021-2848=1 - SUSE Linux Enterprise Software Development Kit 12-SP5: zypper in -t patch SUSE-SLE-SDK-12-SP5-2021-2848=1 - SUSE Linux Enterprise Server for SAP 12-SP4: zypper in -t patch SUSE-SLE-SAP-12-SP4-2021-2848=1 - SUSE Linux Enterprise Server for SAP 12-SP3: zypper in -t patch SUSE-SLE-SAP-12-SP3-2021-2848=1 - SUSE Linux Enterprise Server 12-SP5: zypper in -t patch SUSE-SLE-SERVER-12-SP5-2021-2848=1 - SUSE Linux Enterprise Server 12-SP4-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP4-LTSS-2021-2848=1 - SUSE Linux Enterprise Server 12-SP3-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2021-2848=1 - SUSE Linux Enterprise Server 12-SP3-BCL: zypper in -t patch SUSE-SLE-SERVER-12-SP3-BCL-2021-2848=1 - SUSE Linux Enterprise Server 12-SP2-BCL: zypper in -t patch SUSE-SLE-SERVER-12-SP2-BCL-2021-2848=1 - HPE Helion Openstack 8: zypper in -t patch HPE-Helion-OpenStack-8-2021-2848=1 Package List: - SUSE OpenStack Cloud Crowbar 9 (x86_64): aspell-0.60.6.1-18.11.1 aspell-debuginfo-0.60.6.1-18.11.1 aspell-debugsource-0.60.6.1-18.11.1 aspell-ispell-0.60.6.1-18.11.1 libaspell15-0.60.6.1-18.11.1 libaspell15-32bit-0.60.6.1-18.11.1 libaspell15-debuginfo-0.60.6.1-18.11.1 libaspell15-debuginfo-32bit-0.60.6.1-18.11.1 - SUSE OpenStack Cloud Crowbar 8 (x86_64): aspell-0.60.6.1-18.11.1 aspell-debuginfo-0.60.6.1-18.11.1 aspell-debugsource-0.60.6.1-18.11.1 aspell-ispell-0.60.6.1-18.11.1 libaspell15-0.60.6.1-18.11.1 libaspell15-32bit-0.60.6.1-18.11.1 libaspell15-debuginfo-0.60.6.1-18.11.1 libaspell15-debuginfo-32bit-0.60.6.1-18.11.1 - SUSE OpenStack Cloud 9 (x86_64): aspell-0.60.6.1-18.11.1 aspell-debuginfo-0.60.6.1-18.11.1 aspell-debugsource-0.60.6.1-18.11.1 aspell-ispell-0.60.6.1-18.11.1 libaspell15-0.60.6.1-18.11.1 libaspell15-32bit-0.60.6.1-18.11.1 libaspell15-debuginfo-0.60.6.1-18.11.1 libaspell15-debuginfo-32bit-0.60.6.1-18.11.1 - SUSE OpenStack Cloud 8 (x86_64): aspell-0.60.6.1-18.11.1 aspell-debuginfo-0.60.6.1-18.11.1 aspell-debugsource-0.60.6.1-18.11.1 aspell-ispell-0.60.6.1-18.11.1 libaspell15-0.60.6.1-18.11.1 libaspell15-32bit-0.60.6.1-18.11.1 libaspell15-debuginfo-0.60.6.1-18.11.1 libaspell15-debuginfo-32bit-0.60.6.1-18.11.1 - SUSE Linux Enterprise Software Development Kit 12-SP5 (aarch64 ppc64le s390x x86_64): aspell-debuginfo-0.60.6.1-18.11.1 aspell-debugsource-0.60.6.1-18.11.1 aspell-devel-0.60.6.1-18.11.1 libpspell15-0.60.6.1-18.11.1 libpspell15-debuginfo-0.60.6.1-18.11.1 - SUSE Linux Enterprise Server for SAP 12-SP4 (ppc64le x86_64): aspell-0.60.6.1-18.11.1 aspell-debuginfo-0.60.6.1-18.11.1 aspell-debugsource-0.60.6.1-18.11.1 aspell-ispell-0.60.6.1-18.11.1 libaspell15-0.60.6.1-18.11.1 libaspell15-debuginfo-0.60.6.1-18.11.1 - SUSE Linux Enterprise Server for SAP 12-SP4 (x86_64): libaspell15-32bit-0.60.6.1-18.11.1 libaspell15-debuginfo-32bit-0.60.6.1-18.11.1 - SUSE Linux Enterprise Server for SAP 12-SP3 (ppc64le x86_64): aspell-0.60.6.1-18.11.1 aspell-debuginfo-0.60.6.1-18.11.1 aspell-debugsource-0.60.6.1-18.11.1 aspell-ispell-0.60.6.1-18.11.1 libaspell15-0.60.6.1-18.11.1 libaspell15-debuginfo-0.60.6.1-18.11.1 - SUSE Linux Enterprise Server for SAP 12-SP3 (x86_64): libaspell15-32bit-0.60.6.1-18.11.1 libaspell15-debuginfo-32bit-0.60.6.1-18.11.1 - SUSE Linux Enterprise Server 12-SP5 (aarch64 ppc64le s390x x86_64): aspell-0.60.6.1-18.11.1 aspell-debuginfo-0.60.6.1-18.11.1 aspell-debugsource-0.60.6.1-18.11.1 aspell-ispell-0.60.6.1-18.11.1 libaspell15-0.60.6.1-18.11.1 libaspell15-debuginfo-0.60.6.1-18.11.1 - SUSE Linux Enterprise Server 12-SP5 (s390x x86_64): libaspell15-32bit-0.60.6.1-18.11.1 libaspell15-debuginfo-32bit-0.60.6.1-18.11.1 - SUSE Linux Enterprise Server 12-SP4-LTSS (aarch64 ppc64le s390x x86_64): aspell-0.60.6.1-18.11.1 aspell-debuginfo-0.60.6.1-18.11.1 aspell-debugsource-0.60.6.1-18.11.1 aspell-ispell-0.60.6.1-18.11.1 libaspell15-0.60.6.1-18.11.1 libaspell15-debuginfo-0.60.6.1-18.11.1 - SUSE Linux Enterprise Server 12-SP4-LTSS (s390x x86_64): libaspell15-32bit-0.60.6.1-18.11.1 libaspell15-debuginfo-32bit-0.60.6.1-18.11.1 - SUSE Linux Enterprise Server 12-SP3-LTSS (aarch64 ppc64le s390x x86_64): aspell-0.60.6.1-18.11.1 aspell-debuginfo-0.60.6.1-18.11.1 aspell-debugsource-0.60.6.1-18.11.1 aspell-ispell-0.60.6.1-18.11.1 libaspell15-0.60.6.1-18.11.1 libaspell15-debuginfo-0.60.6.1-18.11.1 - SUSE Linux Enterprise Server 12-SP3-LTSS (s390x x86_64): libaspell15-32bit-0.60.6.1-18.11.1 libaspell15-debuginfo-32bit-0.60.6.1-18.11.1 - SUSE Linux Enterprise Server 12-SP3-BCL (x86_64): aspell-0.60.6.1-18.11.1 aspell-debuginfo-0.60.6.1-18.11.1 aspell-debugsource-0.60.6.1-18.11.1 aspell-ispell-0.60.6.1-18.11.1 libaspell15-0.60.6.1-18.11.1 libaspell15-32bit-0.60.6.1-18.11.1 libaspell15-debuginfo-0.60.6.1-18.11.1 libaspell15-debuginfo-32bit-0.60.6.1-18.11.1 - SUSE Linux Enterprise Server 12-SP2-BCL (x86_64): aspell-0.60.6.1-18.11.1 aspell-debuginfo-0.60.6.1-18.11.1 aspell-debugsource-0.60.6.1-18.11.1 aspell-ispell-0.60.6.1-18.11.1 libaspell15-0.60.6.1-18.11.1 libaspell15-32bit-0.60.6.1-18.11.1 libaspell15-debuginfo-0.60.6.1-18.11.1 libaspell15-debuginfo-32bit-0.60.6.1-18.11.1 - HPE Helion Openstack 8 (x86_64): aspell-0.60.6.1-18.11.1 aspell-debuginfo-0.60.6.1-18.11.1 aspell-debugsource-0.60.6.1-18.11.1 aspell-ispell-0.60.6.1-18.11.1 libaspell15-0.60.6.1-18.11.1 libaspell15-32bit-0.60.6.1-18.11.1 libaspell15-debuginfo-0.60.6.1-18.11.1 libaspell15-debuginfo-32bit-0.60.6.1-18.11.1 References: https://www.suse.com/security/cve/CVE-2019-25051.html https://bugzilla.suse.com/1188576 . SUSE announces a vital patch for aspell targeting a serious buffer overflow vulnerability, strengthening overall system security.. SUSE Aspell Update, Security Fix, Heap Overflow. . Severity: Important. LinuxSecurity.com Team
Aug 25, 2021
•Important
SuSE
202
security advisoryupdateheap overflowopenSUSE 15.2: 2021:1181-1 Important: Aspell Heap Overflow
An update that solves one vulnerability and has one errata is now available. . openSUSE Security Update: Security update for aspell ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:1181-1 Rating: important References: #1177523 #1188576 Cross-References: CVE-2019-25051 CVSS scores: CVE-2019-25051 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2019-25051 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.2 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for aspell fixes the following issues: - CVE-2019-25051: Fixed heap-buffer-overflow in acommon:ObjStack:dup_top (bsc#1188576). This update was imported from the SUSE:SLE-15-SP2:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2021-1181=1 Package List: - openSUSE Leap 15.2 (i586 x86_64): aspell-0.60.8-lp152.2.3.1 aspell-debuginfo-0.60.8-lp152.2.3.1 aspell-debugsource-0.60.8-lp152.2.3.1 aspell-devel-0.60.8-lp152.2.3.1 aspell-ispell-0.60.8-lp152.2.3.1 aspell-spell-0.60.8-lp152.2.3.1 libaspell15-0.60.8-lp152.2.3.1 libaspell15-debuginfo-0.60.8-lp152.2.3.1 libpspell15-0.60.8-lp152.2.3.1 libpspell15-debuginfo-0.60.8-lp152.2.3.1 - openSUSE Leap 15.2 (x86_64): libaspell15-32bit-0.60.8-lp152.2.3.1 libaspell15-32bit-debuginfo-0.60.8-lp152.2.3.1 libpspell15-32bit-0.60.8-lp152.2.3.1 libpspell15-32bit-debuginfo-0.60.8-lp152.2.3.1 References: https://www.suse.com/security/cve/CVE-2019-25051.html https://bugzilla.suse.com/1177523 https://bugzilla.suse.com/1188576 . Important patch released for openSUSE aspell, tackling buffer overflow vulnerability and reinforcing security measures.. openSUSE Security Update, Aspell Patch, Heap Overflow Fix. . Severity: Important. LinuxSecurity.com Team
Aug 23, 2021
•Important
OpenSUSE
100
security advisoryimportantSUSE LinuxSUSE: 2021:2795-2 Important: Fix for Glibc Memory Leak Issue Released
An update that solves one vulnerability and has one errata is now available. . SUSE Security Update: Security update for aspell ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:2794-1 Rating: important References: #1177523 #1188576 Cross-References: CVE-2019-25051 CVSS scores: CVE-2019-25051 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2019-25051 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP2 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for aspell fixes the following issues: - CVE-2019-25051: Fixed heap-buffer-overflow in acommon:ObjStack:dup_top (bsc#1188576). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2021-2794=1 - SUSE Linux Enterprise Module for Basesystem 15-SP2: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP2-2021-2794=1 Package List: - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): aspell-0.60.8-3.3.1 aspell-debuginfo-0.60.8-3.3.1 aspell-debugsource-0.60.8-3.3.1 aspell-devel-0.60.8-3.3.1 libaspell15-0.60.8-3.3.1 libaspell15-debuginfo-0.60.8-3.3.1 libpspell15-0.60.8-3.3.1 libpspell15-debuginfo-0.60.8-3.3.1 - SUSE Linux Enterprise Module for Basesystem 15-SP2 (aarch64 ppc64le s390x x86_64): aspell-0.60.8-3.3.1 aspell-debuginfo-0.60.8-3.3.1 aspell-debugsource-0.60.8-3.3.1 aspell-devel-0.60.8-3.3.1 libaspell15-0.60.8-3.3.1 libaspell15-debuginfo-0.60.8-3.3.1 libpspell15-0.60.8-3.3.1 libpspell15-debuginfo-0.60.8-3.3.1 References: https://www.suse.com/security/cve/CVE-2019-25051.html https://bugzilla.suse.com/1177523 https://bugzilla.suse.com/1188576 . This Oracle security patch targets a vital vulnerability within gzip, providing detailed guidance for impacted systems.. SUSE Linux Enterprise, aspell, heap Buffer Overflow, Security Update. . Severity: Important. LinuxSecurity.com Team
Aug 20, 2021
•Important
SuSE
100
security advisoryupdatepatchSUSE: 2022:15834-2 Critical: FileZilla Directory Traversal Vulnerability
An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for aspell ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:14783-1 Rating: important References: #1188576 Cross-References: CVE-2019-25051 CVSS scores: CVE-2019-25051 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2019-25051 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE Linux Enterprise Server 11-SP4-LTSS SUSE Linux Enterprise Point of Sale 11-SP3 SUSE Linux Enterprise Debuginfo 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for aspell fixes the following issues: - CVE-2019-25051: Fixed heap-buffer-overflow in acommon:ObjStack:dup_top (bsc#1188576). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11-SP4-LTSS: zypper in -t patch slessp4-aspell-14783=1 - SUSE Linux Enterprise Point of Sale 11-SP3: zypper in -t patch sleposp3-aspell-14783=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-aspell-14783=1 - SUSE Linux Enterprise Debuginfo 11-SP3: zypper in -t patch dbgsp3-aspell-14783=1 Package List: - SUSE Linux Enterprise Server 11-SP4-LTSS (i586 ppc64 s390x x86_64): aspell-0.60.6-26.36.1 aspell-ispell-0.60.6-26.36.1 - SUSE Linux Enterprise Server 11-SP4-LTSS (ppc64 s390x x86_64): aspell-32bit-0.60.6-26.36.1 - SUSE Linux Enterprise Point of Sale 11-SP3 (i586): aspell-0.60.6-26.36.1 aspell-ispell-0.60.6-26.36.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ppc64 s390x x86_64): aspell-debuginfo-0.60.6-26.36.1 aspell-debugsource-0.60.6-26.36.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (ppc64 s390x x86_64): aspell-debuginfo-32bit-0.60.6-26.36.1 - SUSE Linux Enterprise Debuginfo 11-SP3 (i586 s390x x86_64): aspell-debuginfo-0.60.6-26.36.1 aspell-debugsource-0.60.6-26.36.1 - SUSE Linux Enterprise Debuginfo 11-SP3 (s390x x86_64): aspell-debuginfo-32bit-0.60.6-26.36.1 References: https://www.suse.com/security/cve/CVE-2019-25051.html https://bugzilla.suse.com/1188576 . SUSE Security Update addresses critical heap overflow flaw in various SUSE distributions. Review the specifics.. SUSE Update, aspell Patch, Security Alert, Heap Overflow Fix, Linux Security. . Severity: Important. LinuxSecurity.com Team
Aug 12, 2021
•Important
SuSE
87
security advisorybuffer overflowcode executionDebian: DSA-4951-2 urgent: aspell buffer overflow threat
A buffer overflow was discovered in the Aspell spell checker, which could result in the execution of arbitrary code. For the stable distribution (buster), these problems have been fixed in . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4948-1
Aug 01, 2021
•Critical
Debian
203
security advisorymoderatebuffer overflowMageia 8: 2021-0388 Moderate: Aspell Buffer Overflow Fix
objstack in GNU Aspell 0.60.8 has a heap-based buffer overflow in acommon::ObjStack::dup_top (called from acommon::StringMap::add and acommon::Config::lookup_list) (CVE-2019-25051). References: . MGASA-2021-0388 - Updated aspell packages fix security vulnerability Publication date: 28 Jul 2021 URL: https://advisories.mageia.org/MGASA-2021-0388.html Type: security Affected Mageia releases: 8 CVE: CVE-2019-25051 objstack in GNU Aspell 0.60.8 has a heap-based buffer overflow in acommon::ObjStack::dup_top (called from acommon::StringMap::add and acommon::Config::lookup_list) (CVE-2019-25051). References: - https://bugs.mageia.org/show_bug.cgi?id=29294 - https://ubuntu.com/security/notices/USN-5023-1 - https://www.cve.org/CVERecord?id=CVE-2019-25051 SRPMS: - 8/core/aspell-0.60.8-4.1.mga8 . The newly released packages of aspell for Mageia resolve a critical heap overflow vulnerability linked to CVE-2019-25051, which became available on July 28, 2021.. Mageia Security Update, Aspell Buffer Overflow, Heap Flaw Fix. . LinuxSecurity.com Team
Jul 28, 2021
Mageia
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!