Alerts This Week
Warning Icon 1 560
Alerts This Week
Warning Icon 1 560

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -1 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisoryupdateremote code execution

Debian 11: binwalk Critical Path Traversal RCE DLA-4410-1 CVE-2022-4510

A path traversal vulnerability was identified in binwalk. By crafting a malicious PFS filesystem file, an attacker can get binwalk's PFS extractor to extract files at arbitrary locations when binwalk is run in extraction mode (-e option). Remote code execution can be achieved by building a PFS filesystem that, upon extraction, would extract a. Debian LTS Advisory DLA-4410-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Abhijith PA December 16, 2025 https://wiki.debian.org/LTS Package : binwalk Version : 2.3.1+dfsg1-1+deb11u1 CVE ID : CVE-2022-4510 A path traversal vulnerability was identified in binwalk. By crafting a malicious PFS filesystem file, an attacker can get binwalk's PFS extractor to extract files at arbitrary locations when binwalk is run in extraction mode (-e option). Remote code execution can be achieved by building a PFS filesystem that, upon extraction, would extract a malicious binwalk module into the folder .config/binwalk/plugins. For Debian 11 bullseye, this problem has been fixed in version 2.3.1+dfsg1-1+deb11u1. We recommend that you upgrade your binwalk packages. For the detailed security status of binwalk please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/binwalk Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . A critical path traversal flaw in binwalk allows remote attackers to extract files arbitrarily and execute malicious code.. binwalk update, Debian security, path traversal risk, remote execution vulnerability. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 16, 2025 Critical Debian LTS
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentoosoftware update

Gentoo: GLSA 202309-07 Normal Severity: Binwalk Remote Code Execution

Multiple vulnerabilities have been discovered in Binwalk, the worst of which could result in remote code execution.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 202309-07 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Binwalk: Multiple Vulnerabilities Date: September 17, 2023 Bugs: #820614, #903652 ID: 202309-07 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Multiple vulnerabilities have been discovered in Binwalk, the worst of which could result in remote code execution. Background ========== Binwalk is a tool for identifying files embedded inside firmware images. Affected packages ================= Package Vulnerable Unaffected ---------------- ------------ ------------ app-misc/binwalk < 2.3.4 > = 2.3.4 Description =========== Multiple vulnerabilities have been discovered in Binwalk. Please review the CVE identifiers referenced below for details. Impact ====== Please review the referenced CVE identifiers for details. Workaround ========== There is no known workaround at this time. Resolution ========== All Binwalk users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =app-misc/binwalk-2.3.4" References ========== [ 1 ] CVE-2022-4510 https://nvd.nist.gov/vuln/detail/CVE-2022-4510 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/202309-07 Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. oralternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2023 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . Gentoo Linux Advisory GLSA 202309-08 outlines several security flaws in Gnome Terminal, potentially leading to severe denial of service attacks.. Gentoo Linux, Binwalk Update, Remote Code Execution, Software Security. . LinuxSecurity.com Team

Calendar 2 Sep 17, 2023 Gentoo
Banner 4 1028x280 1708121825 1771600306
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorymoderateremote code execution

Mageia 8: MGASA-2023-0074 Moderate: Binwalk Remote Code Execution

Remote code execution using crafted PFS filesystem. (CVE-2022-4510) References: - https://bugs.mageia.org/show_bug.cgi?id=31375 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/M2TTCIDC6ZNFMU5XFFFDFZEBHO2CU5NG/ . MGASA-2023-0074 - Updated binwalk packages fix security vulnerability Publication date: 01 Mar 2023 URL: https://advisories.mageia.org/MGASA-2023-0074.html Type: security Affected Mageia releases: 8 CVE: CVE-2022-4510 Remote code execution using crafted PFS filesystem. (CVE-2022-4510) References: - https://bugs.mageia.org/show_bug.cgi?id=31375 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/M2TTCIDC6ZNFMU5XFFFDFZEBHO2CU5NG/ - https://lists.debian.org/debian-lts-announce/2023/02/msg00033.html - https://www.cve.org/CVERecord?id=CVE-2022-4510 SRPMS: - 8/core/binwalk-2.3.4-1.mga8 . To fix the remote code execution vulnerability in Mageia's binwalk, update to the latest March 1, 2023 security patch and follow essential steps to ensure security.. Mageia Security Update, Binwalk Fix, Remote Code Execution. . LinuxSecurity.com Team

Calendar 2 Mar 01, 2023 Mageia
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorycode executiondebian

Debian 10: DLA-3339-1 Critical: Binwalk Code Execution Issue

Code execution through crafted PFS filesystems was fixed in binwalk, a tool and Python module for analyzing binary blobs and executable code. For Debian 10 buster, this problem has been fixed in version . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3339-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Adrian Bunk February 23, 2023 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : binwalk Version : 2.1.2~git20180830+dfsg1-1+deb10u1 CVE ID : CVE-2022-4510 Code execution through crafted PFS filesystems was fixed in binwalk, a tool and Python module for analyzing binary blobs and executable code. For Debian 10 buster, this problem has been fixed in version 2.1.2~git20180830+dfsg1-1+deb10u1. We recommend that you upgrade your binwalk packages. For the detailed security status of binwalk please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/binwalk Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Debian LTS has issued a binwalk update to fix vulnerabilities that may allow code execution via specially crafted PFS filesystems. Users should upgrade for better security. Debian Binwalk Update, Code Execution Fix, Security Advisory. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 23, 2023 Critical Debian LTS
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorymoderatefedora

Ubuntu 22.04: 2023-24058a6c8f Critical: CUPS Remote Code Execution Patch

Security fix for CVE-2022-4510. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-23047a5f4f 2023-02-05 01:52:43.638628 --------------------------------------------------------------------------------Name : binwalk Product : Fedora 36 Version : 2.3.3 Release : 3.fc36 URL : https://github.com/ReFirmLabs/binwalk Summary : Firmware analysis tool Description : Binwalk is a tool for searching a given binary image for embedded files and executable code. Specifically, it is designed for identifying files and code embedded inside of firmware images. Binwalk uses the python-magic library, so it is compatible with magic signatures created for the Unix file utility. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2022-4510 --------------------------------------------------------------------------------ChangeLog: * Fri Jan 27 2023 Scott Talbert - 2.3.3-3 - Fix path traversal in PFS extractor script (#2165006) * Wed Jan 18 2023 Fedora Release Engineering - 2.3.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild --------------------------------------------------------------------------------References: [ 1 ] Bug #2165005 - CVE-2022-4510 binwalk: path traversal in PFS extractor script https://bugzilla.redhat.com/show_bug.cgi?id=2165005 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-23047a5f4f' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Fedora 36 update resolves critical remote code execution issue in binwalk due to CVE-2022-4510 affecting system security.. Firmware Analysis,Fedora Update,Binwalk Security Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 05, 2023 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedorasecurity fix

Fedora 37: 32eb9d8ee7 Critical Path Traversal Fix for Binwalk

Security fix for CVE-2022-4510. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-32eb9d8ee7 2023-02-05 01:46:08.509414 --------------------------------------------------------------------------------Name : binwalk Product : Fedora 37 Version : 2.3.3 Release : 3.fc37 URL : https://github.com/ReFirmLabs/binwalk Summary : Firmware analysis tool Description : Binwalk is a tool for searching a given binary image for embedded files and executable code. Specifically, it is designed for identifying files and code embedded inside of firmware images. Binwalk uses the python-magic library, so it is compatible with magic signatures created for the Unix file utility. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2022-4510 --------------------------------------------------------------------------------ChangeLog: * Fri Jan 27 2023 Scott Talbert - 2.3.3-3 - Fix path traversal in PFS extractor script (#2165006) * Wed Jan 18 2023 Fedora Release Engineering - 2.3.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild --------------------------------------------------------------------------------References: [ 1 ] Bug #2165005 - CVE-2022-4510 binwalk: path traversal in PFS extractor script https://bugzilla.redhat.com/show_bug.cgi?id=2165005 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-32eb9d8ee7' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Fedora 38 release for binwalk resolves CVE-2022-4509 with an important directory traversal vulnerability patch.. Fedora 37,Binwalk,Security Fix,Path Traversal. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 05, 2023 Critical Fedora
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoradirectory traversal

Fedora 36: FEDORA-2022-3727f00e4b Critical: binwalk Symlink Traversal

Security fix for CVE-2021-4287. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-3727f00e4b 2023-01-05 01:20:43.490546 --------------------------------------------------------------------------------Name : binwalk Product : Fedora 36 Version : 2.3.3 Release : 1.fc36 URL : https://github.com/ReFirmLabs/binwalk Summary : Firmware analysis tool Description : Binwalk is a tool for searching a given binary image for embedded files and executable code. Specifically, it is designed for identifying files and code embedded inside of firmware images. Binwalk uses the python-magic library, so it is compatible with magic signatures created for the Unix file utility. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2021-4287 --------------------------------------------------------------------------------ChangeLog: * Tue Dec 27 2022 Scott Talbert - 2.3.3-1 - Update to new upstream release 2.3.3 (#2003337 #2156566) * Wed Jul 20 2022 Fedora Release Engineering - 2.3.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild * Mon Jun 13 2022 Python Maint - 2.3.2-3 - Rebuilt for Python 3.11 --------------------------------------------------------------------------------References: [ 1 ] Bug #2156565 - CVE-2021-4287 binwalk: symlink directory traversal vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=2156565 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-3727f00e4b' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Fedora 36 binwalk release fixes a symbolic link directory traversal vulnerability, improving the efficiency of firmware analysis protection.. Fedora Security Update,Binwalk Analysis Tool,Firmware Vulnerability Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 05, 2023 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoradirectory traversal

Fedora 37: FEDORA-2022-a36ba48049 Moderate: Binwalk Symlink Issue

Security fix for CVE-2021-4287. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-a36ba48049 2023-01-05 01:16:36.900007 --------------------------------------------------------------------------------Name : binwalk Product : Fedora 37 Version : 2.3.3 Release : 1.fc37 URL : https://github.com/ReFirmLabs/binwalk Summary : Firmware analysis tool Description : Binwalk is a tool for searching a given binary image for embedded files and executable code. Specifically, it is designed for identifying files and code embedded inside of firmware images. Binwalk uses the python-magic library, so it is compatible with magic signatures created for the Unix file utility. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2021-4287 --------------------------------------------------------------------------------ChangeLog: * Tue Dec 27 2022 Scott Talbert - 2.3.3-1 - Update to new upstream release 2.3.3 (#2003337 #2156566) --------------------------------------------------------------------------------References: [ 1 ] Bug #2156565 - CVE-2021-4287 binwalk: symlink directory traversal vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=2156565 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-a36ba48049' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. Tounsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Essential vulnerability patch for binwalk targets directory traversal in Fedora 37, striving to safeguard against potential exploits.. binwalk, Fedora Distribution, directory traversal, security patch. . LinuxSecurity.com Team

Calendar 2 Jan 05, 2023 Fedora
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here