Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian LTS openssl Important Use-After-Free NULL Pointer Issues DLA-4624-1

Calendar White Jun 09, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 alsa-lib Important Denial of Service Fix USN-8044-2

Calendar White Jun 09, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS node-shell-quote Important Denial of Service CVE-2026-9277

Calendar White Jun 09, 2026
Important
Mageia Large Esm H800
Mageia

Mageia 9 Suricata Critical Performance Security Issues MGASA-2026-0181

Calendar White Jun 09, 2026
Critical
Mageia Large Esm H900
Mageia

Mageia 9 PackageKit Important TOCTOU Race Escalation CVE-2026-41651

Calendar White Jun 09, 2026
Important
Mageia Large Esm H900
Mageia

Mageia 9 Unbound Critical Remote Code Execution Advisory 2026-0034

Calendar White Jun 09, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS Netatalk Multiple Security Issues USN-8395-1

Calendar White Jun 09, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 mingw-objfw 1.5.5 Update Security Fix FEDORA-2026-de23fedf3e

Calendar White Jun 08, 2026
Fedora Large Esm H900
Fedora

Fedora 43 objfw Important Update 1.5.5 Bug Fixes June 2026

Calendar White Jun 08, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorythunderbirdheap buffer overflow

SciLinux: SLSA-2022-0127-1 Important: Thunderbird Critical Updates

This update upgrades Thunderbird to version 91.5.0. * Mozilla: Iframe sandbox bypass with XSLT (CVE-2021-4140) * Mozilla: Race condition when playing audio files (CVE-2022-22737) * Mozilla: Heap-buffer-overflow in blendGaussianBlur (CVE-2022-22738) * Mozilla: Use-after-free of ChannelEventQueue::mOwner (CVE-2022-22740) * Mozilla: Browser window spoof using fullscreen mode (CVE-2022-22741) [More...]. Synopsis: Important: thunderbird security update Advisory ID: SLSA-2022:0127-1 Issue Date: 2022-01-13 CVE Numbers: CVE-2022-22743 CVE-2022-22742 CVE-2022-22741 CVE-2022-22740 CVE-2022-22738 CVE-2022-22737 CVE-2021-4140 CVE-2022-22748 CVE-2022-22745 CVE-2022-22747 CVE-2022-22739 CVE-2022-22751 -- This update upgrades Thunderbird to version 91.5.0. Security Fix(es): * Mozilla: Iframe sandbox bypass with XSLT (CVE-2021-4140) * Mozilla: Race condition when playing audio files (CVE-2022-22737) * Mozilla: Heap-buffer-overflow in blendGaussianBlur (CVE-2022-22738) * Mozilla: Use-after-free of ChannelEventQueue::mOwner (CVE-2022-22740) * Mozilla: Browser window spoof using fullscreen mode (CVE-2022-22741) * Mozilla: Out-of-bounds memory access when inserting text in edit mode (CVE-2022-22742) * Mozilla: Browser window spoof using fullscreen mode (CVE-2022-22743) * Mozilla: Memory safety bugs fixed in Firefox 96 and Firefox ESR 91.5 (CVE-2022-22751) * Mozilla: Leaking cross-origin URLs through securitypolicyviolation event (CVE-2022-22745) * Mozilla: Spoofed origin on external protocol launch dialog (CVE-2022-22748) * Mozilla: Missing throttling on external protocol launch dialog (CVE-2022-22739) * Mozilla: Crash when handling empty pkcs7 sequence (CVE-2022-22747) -- SL7 x86_64 thunderbird-91.5.0-1.el7_9.x86_64.rpm thunderbird-debuginfo-91.5.0-1.el7_9.x86_64.rpm -Scientific Linux Development Team . Important revision for Firefox tackles various security challenges, including memory corruption and privilege escalation vulnerabilities.. thunderbird security update, sandbox bypass, heap overflow, audio race condition, browser spoofing. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 13, 2022 Important Scientific Linux
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorysecurity issuered hat

RedHat: RHSA-2022-0126-01 Important: Firefox Security Issues

An update for firefox is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: firefox security update Advisory ID: RHSA-2022:0126-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:0126 Issue date: 2022-01-12 CVE Names: CVE-2021-4140 CVE-2022-22737 CVE-2022-22738 CVE-2022-22739 CVE-2022-22740 CVE-2022-22741 CVE-2022-22742 CVE-2022-22743 CVE-2022-22745 CVE-2022-22747 CVE-2022-22748 CVE-2022-22751 ==================================================================== 1. Summary: An update for firefox is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream EUS (v.8.4) - aarch64, ppc64le, s390x, x86_64 3. Description: Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 91.5.0 ESR. Security Fix(es): * Mozilla: Iframe sandbox bypass with XSLT (CVE-2021-4140) * Mozilla: Race condition when playing audio files (CVE-2022-22737) * Mozilla: Heap-buffer-overflow in blendGaussianBlur (CVE-2022-22738) * Mozilla: Use-after-free of ChannelEventQueue::mOwner (CVE-2022-22740) * Mozilla: Browser window spoof using fullscreen mode (CVE-2022-22741) * Mozilla: Out-of-boundsmemory access when inserting text in edit mode (CVE-2022-22742) * Mozilla: Browser window spoof using fullscreen mode (CVE-2022-22743) * Mozilla: Memory safety bugs fixed in Firefox 96 and Firefox ESR 91.5 (CVE-2022-22751) * Mozilla: Leaking cross-origin URLs through securitypolicyviolation event (CVE-2022-22745) * Mozilla: Spoofed origin on external protocol launch dialog (CVE-2022-22748) * Mozilla: Missing throttling on external protocol launch dialog (CVE-2022-22739) * Mozilla: Crash when handling empty pkcs7 sequence (CVE-2022-22747) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 After installing the update, Firefox must be restarted for the changes to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 2039561 - CVE-2022-22743 Mozilla: Browser window spoof using fullscreen mode 2039563 - CVE-2022-22742 Mozilla: Out-of-bounds memory access when inserting text in edit mode 2039564 - CVE-2022-22741 Mozilla: Browser window spoof using fullscreen mode 2039565 - CVE-2022-22740 Mozilla: Use-after-free of ChannelEventQueue::mOwner 2039566 - CVE-2022-22738 Mozilla: Heap-buffer-overflow in blendGaussianBlur 2039567 - CVE-2022-22737 Mozilla: Race condition when playing audio files 2039568 - CVE-2021-4140 Mozilla: Iframe sandbox bypass with XSLT 2039569 - CVE-2022-22748 Mozilla: Spoofed origin on external protocol launch dialog 2039570 - CVE-2022-22745 Mozilla: Leaking cross-origin URLs through securitypolicyviolation event 2039572 - CVE-2022-22747 Mozilla: Crash when handling empty pkcs7 sequence 2039573 - CVE-2022-22739 Mozilla: Missing throttling on external protocol launch dialog 2039574 - CVE-2022-22751 Mozilla: Memory safety bugs fixed in Firefox 96 and Firefox ESR 91.5 6. Package List: Red HatEnterprise Linux AppStream EUS (v.8.4): Source: firefox-91.5.0-1.el8_4.src.rpm aarch64: firefox-91.5.0-1.el8_4.aarch64.rpm firefox-debuginfo-91.5.0-1.el8_4.aarch64.rpm firefox-debugsource-91.5.0-1.el8_4.aarch64.rpm ppc64le: firefox-91.5.0-1.el8_4.ppc64le.rpm firefox-debuginfo-91.5.0-1.el8_4.ppc64le.rpm firefox-debugsource-91.5.0-1.el8_4.ppc64le.rpm s390x: firefox-91.5.0-1.el8_4.s390x.rpm firefox-debuginfo-91.5.0-1.el8_4.s390x.rpm firefox-debugsource-91.5.0-1.el8_4.s390x.rpm x86_64: firefox-91.5.0-1.el8_4.x86_64.rpm firefox-debuginfo-91.5.0-1.el8_4.x86_64.rpm firefox-debugsource-91.5.0-1.el8_4.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2021-4140 https://access.redhat.com/security/cve/CVE-2022-22737 https://access.redhat.com/security/cve/CVE-2022-22738 https://access.redhat.com/security/cve/CVE-2022-22739 https://access.redhat.com/security/cve/CVE-2022-22740 https://access.redhat.com/security/cve/CVE-2022-22741 https://access.redhat.com/security/cve/CVE-2022-22742 https://access.redhat.com/security/cve/CVE-2022-22743 https://access.redhat.com/security/cve/CVE-2022-22745 https://access.redhat.com/security/cve/CVE-2022-22747 https://access.redhat.com/security/cve/CVE-2022-22748 https://access.redhat.com/security/cve/CVE-2022-22751 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYd/YONzjgjWX9erEAQhuHA//fpp6oewFZK1W42TyLZ2QbDe1KdDNNACh 9/5FJYfSuhYDPrSZRczhq33aI8PUMrE1DYEwZy17rssxSN7ei4M1HBtwbbqg/q0K FkZc8Zt+KgcQX/h64AKUV3SuPki6A+76T8pXifWm7sbpkK0d4eFHPibMHvZ2P9Eh 1mHs/bCR7UO4Qt5KK7Si7gsLAU0GUGYEtO+nWpXTmbVrPm48hdVZziR4V/sJApe2 E7q0aoaT3prwxmS+/2l5tfnlYd8faWGt4hpX/D9WjBqXIxN7oPktHMYzCC6inajf vkNWcr1FFQBakVUyYJANyP9ME7OqYYW0ihicts07sqoOfHa9WcfuyiCxXV4yw6l9 ncBW3bKpLBwcl4I25fCDUl4nd4Eq1V+VuCdBoNV5TrTAYsH8I64ZR2tHv86KcgCJ tcj2HBS0wShChSwrizHd1WQFa8zk5c8ZyEO1hu8c1Yj6EqvjmYgWk6AH3/37eYTx fC/b4UNHSV+qTfhcs3YBBMgyuD9U/q4vfaxx4VoDHNvAbMYxwJKvFzhRadNWjmof jfMP8rhR4iVuhlY3EnlVzpaFQxfst4v9mna85ozUWpdojuVGtoIwvWJTfunI/lDc KZ/FU/TlU9AjQdLWTkrDZKo8JpbgY3fVN7HSulL93RYBeW/UqBTrSFzlfODjcFBL 6L/y4LBuclg=pZoe -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Critical announcement regarding Firefox on Red Hat Enterprise Linux, featuring crucial security patches addressing identified vulnerabilities.. Firefox Update, Red Hat Enterprise, Security Fix, Important Advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 13, 2022 Important Red Hat
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here