Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -6 articles for you...
219
security advisorymoderateIPMIRocky Linux 10 RLSA-2026-13519 libxml2 Critical Heap Overflow Security Flaw
Moderate: freeipmi security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:13515", "synopsis": "Moderate: freeipmi security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for freeipmi.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The freeipmi packages contain an Intelligent Platform Management Interface (IPMI) remote console and system management software based on the IPMI specification.\n\nSecurity Fix(es):\n\n* freeipmi: buffer overflows on response messages via ipmi-oem (CVE-2026-33554)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2450778", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450778", "description": ""}], "cves": [{"name": "CVE-2026-33554", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33554", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "8.8", "cwe": "CWE-120"}], "references": [], "publishedAt": "2026-05-06T12:05:16.751656Z", "rpms": {"Rocky Linux 10": {"nvras": ["freeipmi-debugsource-0:1.6.17-1.el10_1.aarch64.rpm", "freeipmi-ipmiseld-0:1.6.17-1.el10_1.aarch64.rpm", "freeipmi-0:1.6.17-1.el10_1.ppc64le.rpm", "freeipmi-ipmidetectd-0:1.6.17-1.el10_1.x86_64.rpm", "freeipmi-bmc-watchdog-0:1.6.17-1.el10_1.aarch64.rpm", "freeipmi-ipmiseld-debuginfo-0:1.6.17-1.el10_1.ppc64le.rpm", "freeipmi-ipmidetectd-debuginfo-0:1.6.17-1.el10_1.x86_64.rpm", "freeipmi-ipmiseld-0:1.6.17-1.el10_1.ppc64le.rpm", "freeipmi-ipmidetectd-debuginfo-0:1.6.17-1.el10_1.aarch64.rpm", "freeipmi-0:1.6.17-1.el10_1.src.rpm", "freeipmi-debuginfo-0:1.6.17-1.el10_1.ppc64le.rpm","freeipmi-ipmiseld-0:1.6.17-1.el10_1.s390x.rpm", "freeipmi-bmc-watchdog-0:1.6.17-1.el10_1.s390x.rpm", "freeipmi-0:1.6.17-1.el10_1.s390x.rpm", "freeipmi-0:1.6.17-1.el10_1.x86_64.rpm", "freeipmi-0:1.6.17-1.el10_1.aarch64.rpm", "freeipmi-ipmiseld-debuginfo-0:1.6.17-1.el10_1.x86_64.rpm", "freeipmi-debuginfo-0:1.6.17-1.el10_1.s390x.rpm", "freeipmi-debugsource-0:1.6.17-1.el10_1.x86_64.rpm", "freeipmi-bmc-watchdog-0:1.6.17-1.el10_1.x86_64.rpm", "freeipmi-debuginfo-0:1.6.17-1.el10_1.x86_64.rpm", "freeipmi-devel-0:1.6.17-1.el10_1.x86_64.rpm", "freeipmi-ipmiseld-0:1.6.17-1.el10_1.x86_64.rpm", "freeipmi-devel-0:1.6.17-1.el10_1.ppc64le.rpm", "freeipmi-debuginfo-0:1.6.17-1.el10_1.aarch64.rpm", "freeipmi-ipmidetectd-0:1.6.17-1.el10_1.ppc64le.rpm", "freeipmi-debugsource-0:1.6.17-1.el10_1.s390x.rpm", "freeipmi-devel-0:1.6.17-1.el10_1.s390x.rpm", "freeipmi-ipmidetectd-0:1.6.17-1.el10_1.aarch64.rpm", "freeipmi-ipmiseld-debuginfo-0:1.6.17-1.el10_1.aarch64.rpm", "freeipmi-ipmiseld-debuginfo-0:1.6.17-1.el10_1.s390x.rpm", "freeipmi-bmc-watchdog-0:1.6.17-1.el10_1.ppc64le.rpm", "freeipmi-bmc-watchdog-debuginfo-0:1.6.17-1.el10_1.s390x.rpm", "freeipmi-bmc-watchdog-debuginfo-0:1.6.17-1.el10_1.ppc64le.rpm", "freeipmi-bmc-watchdog-debuginfo-0:1.6.17-1.el10_1.x86_64.rpm", "freeipmi-ipmidetectd-debuginfo-0:1.6.17-1.el10_1.s390x.rpm", "freeipmi-ipmidetectd-0:1.6.17-1.el10_1.s390x.rpm", "freeipmi-ipmidetectd-debuginfo-0:1.6.17-1.el10_1.ppc64le.rpm", "freeipmi-devel-0:1.6.17-1.el10_1.aarch64.rpm", "freeipmi-bmc-watchdog-debuginfo-0:1.6.17-1.el10_1.aarch64.rpm", "freeipmi-debugsource-0:1.6.17-1.el10_1.ppc64le.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. A moderate security update is available for freeipmi affecting Rocky Linux 10. Immediate action is recommended to address the buffer overflow issue.. freeipmi update, buffer overflow, security fix, Rocky Linux 10. . LinuxSecurity.com Team
May 06, 2026
Rocky Linux
100
security advisorySuSEremote accessSUSE Linux 15 SP7 Kernel RT Important Security Update 2026-1691-1
An update that solves four vulnerabilities can now be installed.. # Security update for the Linux Kernel RT (Live Patch 8 for SUSE Linux Enterprise 15 SP7) Announcement ID: SUSE-SU-2026:1691-1 Release Date: 2026-05-05T07:04:40Z Rating: important References: * bsc#1258005 * bsc#1258655 * bsc#1259126 * bsc#1263689 Cross-References: * CVE-2025-71066 * CVE-2026-23004 * CVE-2026-23204 * CVE-2026-31431 CVSS scores: * CVE-2025-71066 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23004 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23004 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23004 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23004 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23204 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23204 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23204 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23204 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31431 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31431 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Live Patching 15-SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves four vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise kernel 6.4.0-150700.7.28 fixes various security issues The following security issues were fixed: * CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1258005). * CVE-2026-23004: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list() (bsc#1258655). *CVE-2026-23204: net/sched: cls_u32: use skb_header_pointer_careful() (bsc#1259126). * CVE-2026-31431: crypto: algif_aead - Revert to operating out-of-place (bsc#1263689). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP7 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP7-2026-1691=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP7 (x86_64) * kernel-livepatch-6_4_0-150700_7_28-rt-debuginfo-5-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_8-debugsource-5-150700.2.1 * kernel-livepatch-6_4_0-150700_7_28-rt-5-150700.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-71066.html * https://www.suse.com/security/cve/CVE-2026-23004.html * https://www.suse.com/security/cve/CVE-2026-23204.html * https://www.suse.com/security/cve/CVE-2026-31431.html * https://bugzilla.suse.com/show_bug.cgi?id=1258005 * https://bugzilla.suse.com/show_bug.cgi?id=1258655 * https://bugzilla.suse.com/show_bug.cgi?id=1259126 * https://bugzilla.suse.com/show_bug.cgi?id=1263689 . Four vulnerabilities addressed in SUSE's live patch for kernel RT in 15 SP7. Install updates to improve system security now.. SUSE Linux Kernel RT patches, Important security updates, Kernel vulnerabilities, Linux security issues. . Severity: Important. LinuxSecurity.com Team
May 05, 2026
•Important
SuSE
100
security advisorycriticalimportantSUSE 15 SP3: 2025:1519-1 important: libsoup buffer overflows
* bsc#1240750 * bsc#1240752 * bsc#1240756 * bsc#1240757 * bsc#1241164 . # Security update for libsoup Announcement ID: SUSE-SU-2025:1519-1 Release Date: 2025-05-09T00:07:48Z Rating: important References: * bsc#1240750 * bsc#1240752 * bsc#1240756 * bsc#1240757 * bsc#1241164 * bsc#1241222 * bsc#1241686 * bsc#1241688 Cross-References: * CVE-2025-2784 * CVE-2025-32050 * CVE-2025-32052 * CVE-2025-32053 * CVE-2025-32907 * CVE-2025-32914 * CVE-2025-46420 * CVE-2025-46421 CVSS scores: * CVE-2025-2784 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-2784 ( SUSE ): 7.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2025-2784 ( NVD ): 7.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2025-32050 ( SUSE ): 6.0 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-32050 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-32050 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-32052 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-32052 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2025-32052 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2025-32053 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-32053 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2025-32053 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2025-32907 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-32907 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-32907 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-32914 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2025-32914 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2025-46420 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-46420 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-46420 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-46421 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N * CVE-2025-46421 ( NVD ): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N Affected Products: * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves eight vulnerabilities can now be installed. ## Description: This update for libsoup fixes the following issues: * CVE-2025-2784: Fixed heap buffer over-read in `skip_insignificant_space` when sniffing content (bsc#1240750) * CVE-2025-32050: Fixed Integer overflow in append_param_quoted (bsc#1240752) * CVE-2025-32052: Fixed heap buffer overflow in sniff_unknown() (bsc#1240756) * CVE-2025-32053: Fixed heap buffer overflows in sniff_feed_or_html() and skip_insignificant_space() (bsc#1240757) * CVE-2025-32907: Fixed excessive memory consumption in server when client requests a large amount of overlapping ranges in a single HTTP request (bsc#1241222) * CVE-2025-32914: Fixed out of bounds read in `soup_multipart_new_from_message()` (bsc#1241164) * CVE-2025-46420: Fixed memory leak on soup_header_parse_quality_list() via soup-headers.c (bsc#1241686) * CVE-2025-46421: Fixed HTTP Authorization Header leak via an HTTP redirect (bsc#1241688) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux EnterpriseHigh Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-1519=1 * SUSE Linux Enterprise Server 15 SP3 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-1519=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2025-1519=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2025-1519=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-1519=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-1519=1 ## Package List: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * libsoup-2_4-1-debuginfo-2.68.4-150200.4.6.1 * libsoup-2_4-1-2.68.4-150200.4.6.1 * libsoup-debugsource-2.68.4-150200.4.6.1 * libsoup-devel-2.68.4-150200.4.6.1 * typelib-1_0-Soup-2_4-2.68.4-150200.4.6.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * libsoup-lang-2.68.4-150200.4.6.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (aarch64 ppc64le s390x x86_64) * libsoup-2_4-1-debuginfo-2.68.4-150200.4.6.1 * libsoup-2_4-1-2.68.4-150200.4.6.1 * libsoup-debugsource-2.68.4-150200.4.6.1 * libsoup-devel-2.68.4-150200.4.6.1 * typelib-1_0-Soup-2_4-2.68.4-150200.4.6.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (noarch) * libsoup-lang-2.68.4-150200.4.6.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * libsoup-2_4-1-debuginfo-2.68.4-150200.4.6.1 * libsoup-2_4-1-2.68.4-150200.4.6.1 * libsoup-debugsource-2.68.4-150200.4.6.1 * libsoup-devel-2.68.4-150200.4.6.1 * typelib-1_0-Soup-2_4-2.68.4-150200.4.6.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * libsoup-lang-2.68.4-150200.4.6.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * libsoup-2_4-1-debuginfo-2.68.4-150200.4.6.1 * libsoup-2_4-1-2.68.4-150200.4.6.1 *libsoup-debugsource-2.68.4-150200.4.6.1 * libsoup-devel-2.68.4-150200.4.6.1 * typelib-1_0-Soup-2_4-2.68.4-150200.4.6.1 * SUSE Enterprise Storage 7.1 (noarch) * libsoup-lang-2.68.4-150200.4.6.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * libsoup-debugsource-2.68.4-150200.4.6.1 * libsoup-2_4-1-debuginfo-2.68.4-150200.4.6.1 * libsoup-2_4-1-2.68.4-150200.4.6.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * libsoup-debugsource-2.68.4-150200.4.6.1 * libsoup-2_4-1-debuginfo-2.68.4-150200.4.6.1 * libsoup-2_4-1-2.68.4-150200.4.6.1 ## References: * https://www.suse.com/security/cve/CVE-2025-2784.html * https://www.suse.com/security/cve/CVE-2025-32050.html * https://www.suse.com/security/cve/CVE-2025-32052.html * https://www.suse.com/security/cve/CVE-2025-32053.html * https://www.suse.com/security/cve/CVE-2025-32907.html * https://www.suse.com/security/cve/CVE-2025-32914.html * https://www.suse.com/security/cve/CVE-2025-46420.html * https://www.suse.com/security/cve/CVE-2025-46421.html * https://bugzilla.suse.com/show_bug.cgi?id=1240750 * https://bugzilla.suse.com/show_bug.cgi?id=1240752 * https://bugzilla.suse.com/show_bug.cgi?id=1240756 * https://bugzilla.suse.com/show_bug.cgi?id=1240757 * https://bugzilla.suse.com/show_bug.cgi?id=1241164 * https://bugzilla.suse.com/show_bug.cgi?id=1241222 * https://bugzilla.suse.com/show_bug.cgi?id=1241686 * https://bugzilla.suse.com/show_bug.cgi?id=1241688 . An important patch for SUSE focusing on various vulnerabilities in libsoup to improve safety. Crucial for system reliability.. libsoup security update,SUSE important security,buffer overflow fixes,heap overflow vulnerabilities. . Severity: Important. LinuxSecurity.com Team
May 09, 2025
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!