Explore top 10 tips to secure your open-source projects now. Read More
×
Several vulnerabilities have been discovered in dnsmasq, a caching DNS proxy and DHCP/TFTP server. CVE-2026-2291 dnsmasqs extract_name() function can be abused to cause a heap buffer overflow, allowing an attacker to inject false DNS cache entries,. Debian LTS Advisory DLA-4625-1
An update that solves one vulnerability and has one bug fix can now be installed.. openSUSE security update: security update for libsoup2 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20895-1 Rating: moderate References: * bsc#1257649 Cross-References: * CVE-2026-1801 CVSS scores: * CVE-2026-1801 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-1801 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has one bug fix can now be installed. Description: This update for libsoup2 fixes the following issues: - CVE-2026-1801: Use CRLF as line boundary when parsing chunk encoding data (bsc#1257649). Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-881=1 Package List: - openSUSE Leap 16.0: libsoup-2_4-1-2.74.3-160000.5.1 libsoup2-devel-2.74.3-160000.5.1 libsoup2-lang-2.74.3-160000.5.1 typelib-1_0-Soup-2_4-2.74.3-160000.5.1 References: * https://www.suse.com/security/cve/CVE-2026-1801.html . Discover the openSUSE Leap 16.0 libsoup2 update addressing CVE-2026-1801 with a moderate severity rating for improved security.. opensuse security, libsoup2 update, CVE-2026-1801, patch management. . Severity: moderate. LinuxSecurity.com Team
An update that solves 17 vulnerabilities and has one fix can now be installed.. # Security update for gnutls Announcement ID: SUSE-SU-2026:21867-1 Release Date: 2026-05-22T09:55:27Z Rating: important References: * bsc#1262395 * bsc#1263704 * bsc#1263705 * bsc#1263707 * bsc#1263708 * bsc#1263709 * bsc#1263710 * bsc#1263711 * bsc#1263712 * bsc#1263713 * bsc#1263714 * bsc#1263715 * bsc#1263716 * bsc#1264706 * bsc#1264707 * bsc#1264708 * bsc#1265349 * bsc#1265360 Cross-References: * CVE-2026-33845 * CVE-2026-33846 * CVE-2026-3833 * CVE-2026-42009 * CVE-2026-42010 * CVE-2026-42011 * CVE-2026-42012 * CVE-2026-42013 * CVE-2026-42014 * CVE-2026-42015 * CVE-2026-42307 * CVE-2026-43961 * CVE-2026-44656 * CVE-2026-45130 * CVE-2026-46483 * CVE-2026-5260 * CVE-2026-5419 CVSS scores: * CVE-2026-33845 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-33845 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-33845 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33845 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-33846 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-33846 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33846 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-3833 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-3833 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-3833 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-3833 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-42009 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-42009 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42009 ( NVD ): 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42010 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-42010 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N * CVE-2026-42010 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N * CVE-2026-42010 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-42011 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-42011 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-42011 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-42012 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N * CVE-2026-42013 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-42013 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N * CVE-2026-42013 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N * CVE-2026-42014 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-42014 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42015 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-42015 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H * CVE-2026-42015 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42307 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-43961 ( SUSE ): 5.4 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43961 ( SUSE ): 4.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L * CVE-2026-44656 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-44656 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-44656 ( NVD ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-44656 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L * CVE-2026-45130 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H * CVE-2026-45130 ( NVD ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H * CVE-2026-45130 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-46483 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46483 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-46483 ( NVD ): 3.6 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-46483 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5260 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-5260 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-5260 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-5419 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-5419 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-5419 ( NVD ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 * SUSE Linux Micro 6.1 * SUSE Linux Micro Extras 6.0 An update that solves 17 vulnerabilities and has one fix can now be installed. ## Security update for gnutls ### Description: This update for gnutls fixes the following issues * CVE-2026-3833: x509/name-constraints: compare domain names case-insensitive (bsc#1263707). * CVE-2026-5260: lib/pkcs11_privkey: guard against overreading on short ciphertexts (bsc#1263715). * CVE-2026-5419: gnutls_cipher_decrypt3: make PKCS#7 unpadding branch free (bsc#1263716). * CVE-2026-33845: buffers: switch from end_offset over to frag_length (bsc#1263704). * CVE-2026-33846:buffers: add more checks to DTLS reassembly (bsc#1263705). * CVE-2026-42009: lib/buffers: ensure packets have differing sequence numbers (bsc#1263708). * CVE-2026-42010: lib/auth/rsa_psk: fix binary PSK identity lookup (bsc#1263709). * CVE-2026-42011: x509/name_constraints: fix intersecting empty constraints (bsc#1263710). * CVE-2026-42012: x509/hostname-verify: make URI/SRV SAN preclude CN fallback (bsc#1263711). * CVE-2026-42013: x509: prevent fallback on oversized SAN (bsc#1263712). * CVE-2026-42014: pkcs11_write: fix UAF and leak in gnutls_pkcs11_token_set_pin (bsc#1263713). * CVE-2026-42015: x509/pkcs12_bag: fix off-by-one in bag element bounds chec (bsc#1263714). ## Security update for vim ### Description: This update for vim fixes the following issues * CVE-2026-42307: Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim (bsc#1264706). * CVE-2026-43961: Vimscript Code Injection in netrw NetrwMarkFile() via crafted filename (bsc#1265349). * CVE-2026-44656: Prior to version 9.2.0435, an OS command injection vulnerability exists in Vim's: find command-line completion (bsc#1264707). * CVE-2026-45130: Prior to version 9.2.0450, a heap buffer overflow exists in read_compound() in src/spellfile.c when loading a crafted spell file (.spl) with UTF-8 encoding active (bsc#1264708). * CVE-2026-46483: command injection via `tar#Vimuntar()` in `runtime/autoload/tar.vim` when decompressing `.tgz` archives on Unix-like systems (bsc#1265360). Changes for vim: * Update to v9.2.0530. * Fix for incorrectly detecting scientific parameter files as bitbake recipies. (bsc#1262395) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro Extras 6.0 zypper in -t patchSUSE-SLE-Micro-Extras-6.0-736=1 * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-544=1 ## Package List: * SUSE Linux Micro Extras 6.0 (aarch64 s390x x86_64) * vim-debugsource-9.2.0530-1.1 * vim-debuginfo-9.2.0530-1.1 * vim-9.2.0530-1.1 * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * gnutls-debuginfo-3.8.3-slfo.1.1_7.1 * gnutls-debugsource-3.8.3-slfo.1.1_7.1 * libgnutls30-3.8.3-slfo.1.1_7.1 * gnutls-3.8.3-slfo.1.1_7.1 * libgnutls30-debuginfo-3.8.3-slfo.1.1_7.1 ## References: * https://www.suse.com/security/cve/CVE-2026-33845.html * https://www.suse.com/security/cve/CVE-2026-33846.html * https://www.suse.com/security/cve/CVE-2026-3833.html * https://www.suse.com/security/cve/CVE-2026-42009.html * https://www.suse.com/security/cve/CVE-2026-42010.html * https://www.suse.com/security/cve/CVE-2026-42011.html * https://www.suse.com/security/cve/CVE-2026-42012.html * https://www.suse.com/security/cve/CVE-2026-42013.html * https://www.suse.com/security/cve/CVE-2026-42014.html * https://www.suse.com/security/cve/CVE-2026-42015.html * https://www.suse.com/security/cve/CVE-2026-42307.html * https://www.suse.com/security/cve/CVE-2026-43961.html * https://www.suse.com/security/cve/CVE-2026-44656.html * https://www.suse.com/security/cve/CVE-2026-45130.html * https://www.suse.com/security/cve/CVE-2026-46483.html * https://www.suse.com/security/cve/CVE-2026-5260.html * https://www.suse.com/security/cve/CVE-2026-5419.html * https://bugzilla.suse.com/show_bug.cgi?id=1262395 * https://bugzilla.suse.com/show_bug.cgi?id=1263704 * https://bugzilla.suse.com/show_bug.cgi?id=1263705 * https://bugzilla.suse.com/show_bug.cgi?id=1263707 * https://bugzilla.suse.com/show_bug.cgi?id=1263708 * https://bugzilla.suse.com/show_bug.cgi?id=1263709 * https://bugzilla.suse.com/show_bug.cgi?id=1263710 * https://bugzilla.suse.com/show_bug.cgi?id=1263711 * https://bugzilla.suse.com/show_bug.cgi?id=1263712 *https://bugzilla.suse.com/show_bug.cgi?id=1263713 * https://bugzilla.suse.com/show_bug.cgi?id=1263714 * https://bugzilla.suse.com/show_bug.cgi?id=1263715 * https://bugzilla.suse.com/show_bug.cgi?id=1263716 * https://bugzilla.suse.com/show_bug.cgi?id=1264706 * https://bugzilla.suse.com/show_bug.cgi?id=1264707 * https://bugzilla.suse.com/show_bug.cgi?id=1264708 * https://bugzilla.suse.com/show_bug.cgi?id=1265349 * https://bugzilla.suse.com/show_bug.cgi?id=1265360 . Critical update available for gnutls addressing 17 security issues on SUSE Linux with important fixes and mitigations.. SUSE Linux, gnutls update, security advisory, important vulnerabilities. . Severity: Important. LinuxSecurity.com Team
Important: delve security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:8842", "synopsis": "Important: delve security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for delve.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Delve is a debugger for the Go programming language. The goal of the project is to provide a simple, full featured debugging tool for Go. Delve should be easy to invoke and easy to use. Chances are if you're using a debugger, things aren't going your way. With that in mind, Delve should stay out of your way as much as possible.\n\nSecurity Fix(es):\n\n* crypto/x509: Incorrect enforcement of email constraints in crypto/x509 (CVE-2026-27137)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}, {"ticket": "2445345", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445345", "description": ""}], "cves": [{"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}, {"name": "CVE-2026-27137", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-27137", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-295"}], "references": [], "publishedAt":"2026-04-21T12:07:14.176910Z", "rpms": {"Rocky Linux 10": {"nvras": ["delve-debuginfo-0:1.25.2-3.el10_1.x86_64.rpm", "delve-debugsource-0:1.25.2-3.el10_1.aarch64.rpm", "delve-debuginfo-0:1.25.2-3.el10_1.aarch64.rpm", "delve-0:1.25.2-3.el10_1.ppc64le.rpm", "delve-0:1.25.2-3.el10_1.aarch64.rpm", "delve-0:1.25.2-3.el10_1.src.rpm", "delve-debugsource-0:1.25.2-3.el10_1.x86_64.rpm", "delve-debuginfo-0:1.25.2-3.el10_1.ppc64le.rpm", "delve-0:1.25.2-3.el10_1.x86_64.rpm", "delve-debugsource-0:1.25.2-3.el10_1.ppc64le.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Delve security update addresses critical issues affecting Rocky Linux 10 with vital fixes for strong protection and functionality.. Delve Security Update, Rocky Linux 10, Important Security Fixes, Application Vulnerabilities. . Severity: Important. LinuxSecurity.com Team
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2025-10873 http://linux.oracle.com/errata/ELSA-2025-10873.html The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable LinuxNetwork: x86_64: java-21-openjdk-demo-fastdebug-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-demo-slowdebug-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-demo-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-devel-fastdebug-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-devel-slowdebug-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-devel-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-fastdebug-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-headless-fastdebug-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-headless-slowdebug-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-headless-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-javadoc-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-javadoc-zip-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-jmods-fastdebug-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-jmods-slowdebug-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-jmods-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-slowdebug-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-src-fastdebug-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-src-slowdebug-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-src-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-static-libs-fastdebug-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-static-libs-slowdebug-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-static-libs-21.0.8.0.9-1.0.1.el10.x86_64.rpm java-21-openjdk-21.0.8.0.9-1.0.1.el10.x86_64.rpm aarch64: java-21-openjdk-demo-fastdebug-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-demo-slowdebug-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-demo-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-devel-fastdebug-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-devel-slowdebug-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-devel-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-fastdebug-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-headless-fastdebug-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-headless-slowdebug-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-headless-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-javadoc-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-javadoc-zip-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-jmods-fastdebug-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-jmods-slowdebug-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-jmods-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-slowdebug-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-src-fastdebug-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-src-slowdebug-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-src-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-static-libs-fastdebug-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-static-libs-slowdebug-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-static-libs-21.0.8.0.9-1.0.1.el10.aarch64.rpm java-21-openjdk-21.0.8.0.9-1.0.1.el10.aarch64.rpm SRPMS: http://oss.oracle.com/ol10/SRPMS-updates/java-21-openjdk-21.0.8.0.9-1.0.1.el10.src.rpm Related CVEs: CVE-2025-30749 CVE-2025-30754 CVE-2025-50059 CVE-2025-50106 Description of changes: [1:21.0.8.0.9-1.0.1] - Add Oracle vendor bug URL [Orabug: 34340155] [1:21.0.8.0.9-1.1] - Update to jdk-21.0.8+9 (GA) - Update release notes to 21.0.8+9 - Switch to GA mode - Sync the copy of the portable specfile with the latest update - ** This tarball is embargoed until 2025-07-15 @ 1pm PT. ** - Resolves: RHEL-102289 [1:21.0.7.0.6-3] - Recommend PipeWire on RHEL 9 and later for java.awt.Robot screenshots under Wayland - Resolves: RHEL-102677 [1:21.0.8.0.8-0.1.ea] - Update to jdk-21.0.8+8 (EA) - Update release notes to 21.0.8+8 - Sync the copy of the portable specfile with the latest update - Resolves: RHEL-101798 [1:21.0.8.0.2-0.1.ea] - Update to jdk-21.0.8+2 (EA) - Update release notes to 21.0.8+2 - Sync the copy of the portable specfile with the latest update - Add timezone data update check to openjdk_news.sh - Add duplicate check to openjdk_news.sh - Exit if no fixes are obtained rather than try to run filters in openjdk_news.sh - Related: RHEL-101798 - Resolves:RHEL-103209 [1:21.0.8.0.1-0.1.ea] - Update get_bundle_versions.sh to match other scripts - * get_bundle_versions.sh: Add license - * get_bundle_versions.sh: Set compile-command in Emacs - * get_bundle_versions.sh: Use different error codes for different failures - * get_bundle_versions.sh: Remove unneeded '.' in JPEG version - * get_bundle_versions.sh: shellcheck: Double-quote variable references (SC2086) - * get_bundle_versions.sh: shellcheck: Drop use of cat and pass file to awk directly (SC2002) - Add OpenJDK 8u support to get_bundle_versions.sh - Print bundle updates and backouts at end of openjdk_news.sh output - Refer user to get_bundle_versions.sh when bundle updates are found by openjdk_news.sh - Related: RHEL-103209 [1:21.0.8.0.1-0.1.ea] - Add script to obtain bundled library versions from OpenJDK sources - Related: RHEL-103209 [1:21.0.8.0.1-0.1.ea] - Warn about bundled provide version bumps and backouts in openjdk_news.sh - Related: RHEL-103209 [1:21.0.8.0.1-0.1.ea] - Update to jdk-21.0.8+1 (EA) - Update release notes to 21.0.8+1 - Bump freetype version to 2.13.3 following JDK-8348596 - Bump harfbuzz version to 10.4.0 following JDK-8348597 - Bump lcms2 version to 2.17.0 following JDK-8348110 - Bump libpng version to 1.6.47 following JDK-8348598 - Switch to EA mode - Drop JDK-8351500 local patch which is now available in 21.0.8+1 upstream - Sync the copy of the portable specfile with the latest update - Related: RHEL-101798 [1:21.0.7.0.6-2] - Add local version of JDK-8351500 for early interim release before 21.0.8 - Sync the copy of the portable specfile with the latest update - Resolves: RHEL-90309 _______________________________________________ El-errata mailing list
Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-7597-1 June 24, 2025 linux-azure vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-azure: Linux kernel for Microsoft Azure Cloud systems Details: Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. (CVE-2024-8805) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PowerPC architecture; - x86 architecture; - ACPI drivers; - Clock framework and drivers; - GPU drivers; - HID subsystem; - InfiniBand drivers; - Media drivers; - MemoryStick subsystem; - Network drivers; - Mellanox network drivers; - NTB driver; - PCI subsystem; - Voltage and Current Regulator drivers; - Remote Processor subsystem; - SCSI subsystem; - QCOM SoC drivers; - Thermal drivers; - BTRFS file system; - Ext4 file system; - JFS file system; - Network file system (NFS) server daemon; - NTFS3 file system; - File systems infrastructure; - Proc file system; - SMB network file system; - IPv6 networking; - RDMA verbs API; - SoC audio core drivers; - Tracing infrastructure; - Watch queue notification mechanism; - 802.1Q VLAN protocol; - Asynchronous Transfer Mode (ATM) subsystem; - Bluetooth subsystem; - Networking core; - IPv4 networking; - Netfilter; - Network traffic control; -SMC sockets; - SoC Audio for Freescale CPUs drivers; (CVE-2025-21994, CVE-2025-37937, CVE-2025-21964, CVE-2025-22086, CVE-2025-22073, CVE-2025-39735, CVE-2025-22025, CVE-2025-22004, CVE-2025-22055, CVE-2025-22007, CVE-2024-53144, CVE-2025-22044, CVE-2025-22014, CVE-2025-37785, CVE-2025-21959, CVE-2022-49636, CVE-2025-21968, CVE-2025-22018, CVE-2025-22035, CVE-2024-56664, CVE-2025-21975, CVE-2025-39728, CVE-2025-22045, CVE-2022-49728, CVE-2025-21962, CVE-2025-22089, CVE-2025-21963, CVE-2025-21956, CVE-2024-36945, CVE-2025-21992, CVE-2025-22010, CVE-2025-21991, CVE-2024-46812, CVE-2024-42230, CVE-2025-21941, CVE-2025-22071, CVE-2025-22020, CVE-2025-22097, CVE-2025-21999, CVE-2025-21957, CVE-2025-22063, CVE-2024-58093, CVE-2025-21970, CVE-2025-22005, CVE-2025-22021, CVE-2025-22075, CVE-2025-22050, CVE-2025-21981, CVE-2025-22054, CVE-2025-38152, CVE-2025-38575, CVE-2025-38637, CVE-2023-53034, CVE-2025-22056, CVE-2025-22008, CVE-2024-46821, CVE-2025-23138, CVE-2024-46753, CVE-2025-37889, CVE-2025-22081, CVE-2025-21996, CVE-2025-22066, CVE-2025-22060, CVE-2025-23136, CVE-2025-22079) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS linux-image-5.15.0-1091-azure 5.15.0-1091.100 linux-image-azure-lts-22.04 5.15.0.1091.89 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7597-1 CVE-2022-49636, CVE-2022-49728, CVE-2023-53034, CVE-2024-36945, CVE-2024-42230,CVE-2024-46753, CVE-2024-46812, CVE-2024-46821, CVE-2024-53144, CVE-2024-56664, CVE-2024-58093, CVE-2024-8805, CVE-2025-21941, CVE-2025-21956, CVE-2025-21957, CVE-2025-21959, CVE-2025-21962, CVE-2025-21963, CVE-2025-21964, CVE-2025-21968, CVE-2025-21970, CVE-2025-21975, CVE-2025-21981, CVE-2025-21991, CVE-2025-21992, CVE-2025-21994, CVE-2025-21996, CVE-2025-21999, CVE-2025-22004, CVE-2025-22005, CVE-2025-22007, CVE-2025-22008, CVE-2025-22010, CVE-2025-22014, CVE-2025-22018, CVE-2025-22020, CVE-2025-22021, CVE-2025-22025, CVE-2025-22035, CVE-2025-22044, CVE-2025-22045, CVE-2025-22050, CVE-2025-22054, CVE-2025-22055, CVE-2025-22056, CVE-2025-22060, CVE-2025-22063, CVE-2025-22066, CVE-2025-22071, CVE-2025-22073, CVE-2025-22075, CVE-2025-22079, CVE-2025-22081, CVE-2025-22086, CVE-2025-22089, CVE-2025-22097, CVE-2025-23136, CVE-2025-23138, CVE-2025-37785, CVE-2025-37889, CVE-2025-37937, CVE-2025-38152, CVE-2025-38575, CVE-2025-38637, CVE-2025-39728, CVE-2025-39735 Package Information: https://launchpad.net/ubuntu/+source/linux-azure/5.15.0-1091.100 . Improvements in Ubuntu 22.04 LTS tackle severe vulnerabilities in the Linux kernel concerning the management of Bluetooth access controls.. Linux kernel security, Ubuntu critical updates, Azure Linux security, Bluetooth vulnerability fix. . Severity: Critical. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # haproxy-3.2.0+git0.e134140d2-2.1 on GA media Announcement ID: openSUSE-SU-2025:15200-1 Rating: moderate Cross-References: * CVE-2025-32464 CVSS scores: * CVE-2025-32464 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2025-32464 ( SUSE ): 6 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the haproxy-3.2.0+git0.e134140d2-2.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * haproxy 3.2.0+git0.e134140d2-2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-32464.html . This notice details a moderate security patch for nginx on openSUSE Leap, targeting CVE-2025-12478.. openSUSE security, haproxy fix, moderate threat, openSUSE Tumbleweed, CVE-2025-32464. . LinuxSecurity.com Team
Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-7554-3 June 04, 2025 linux-fips vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 16.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-fips: Linux kernel with FIPS Details: Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Block layer subsystem; - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2 file system; - JFS file system; - File systems infrastructure; - Sun RPC protocol; - USB sound devices; (CVE-2024-42301, CVE-2024-26966, CVE-2023-52458, CVE-2024-47701, CVE-2024-53155, CVE-2021-47211, CVE-2024-57850, CVE-2024-56551, CVE-2021-47353, CVE-2024-56596, CVE-2024-53168) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 LTS linux-image-4.4.0-1114-fips 4.4.0-1114.121 Available with Ubuntu Pro linux-image-fips 4.4.0.1114.115 Available with Ubuntu Pro After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7554-3 https://ubuntu.com/security/notices/USN-7554-2 https://ubuntu.com/security/notices/USN-7554-1 CVE-2021-47211, CVE-2021-47353, CVE-2023-52458, CVE-2024-26966, CVE-2024-42301, CVE-2024-47701, CVE-2024-53155, CVE-2024-53168, CVE-2024-56551, CVE-2024-56596, CVE-2024-57850 Package Information: . Significant vulnerabilities in the Linux kernel were mitigated in Ubuntu, enhancing system integrity. It is advisable to update your installations without delay to mitigate potential threats.. ubuntu kernel security, linux-fips update, security notice, linux kernel advisory. . LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.