Alerts This Week
Warning Icon 1 562
Alerts This Week
Warning Icon 1 562

Stay Secure with the Latest Linux Advisories

Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H800
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 5 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydenial of servicecritical

Debian 10 Buster DLA-3527-1 Critical: SoX Denial Of Service Issue

SoX is a command line utility that can convert various formats of computer audio files in to other formats. It can also apply various effects to these sound files during the conversion. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3527-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Bastien Roucariès August 13, 2023 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : sox Version : 14.4.2+git20190427-1+deb10u3 CVE ID : CVE-2023-32627 Debian Bug : 1041112 SoX is a command line utility that can convert various formats of computer audio files in to other formats. It can also apply various effects to these sound files during the conversion. Sox was vulnerable to divide by zero vulnerability by reading an specialy crafted Creative Voice File (.voc) file, in the read_samples function. This flaw can lead to a denial of service. For Debian 10 buster, this problem has been fixed in version 14.4.2+git20190427-1+deb10u3. We recommend that you upgrade your sox packages. For the detailed security status of sox please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/sox Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Ubuntu Security Notice USN-5102-1 tackles a severe buffer overflow vulnerability in GIMP impacting image processing capabilities.. Debian LTS, SoX Denial Of Service, Critical Update, Audio File Security. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Aug 13, 2023 Critical Debian LTS
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorymoderatebuffer overflow

Debian Buster DLA-3513-1 Moderate: TIFF Buffer Overflow Risks

Multiple vulnerabilities were found in tiff, a library and tools providing support for the Tag Image File Format (TIFF). . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3513-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Adrian Bunk July 31, 2023 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : tiff Version : 4.1.0+git191117-2~deb10u8 CVE ID : CVE-2023-2908 CVE-2023-3316 CVE-2023-3618 CVE-2023-25433 CVE-2023-26965 CVE-2023-26966 CVE-2023-38288 CVE-2023-38289 Debian Bug : 1040945 Multiple vulnerabilities were found in tiff, a library and tools providing support for the Tag Image File Format (TIFF). CVE-2023-2908 NULL pointer dereference in tif_dir.c CVE-2023-3316 NULL pointer dereference in TIFFClose() CVE-2023-3618 Buffer overflow in tiffcrop CVE-2023-25433 Buffer overflow in tiffcrop CVE-2023-26965 Use after free in tiffcrop CVE-2023-26966 Buffer overflow in uv_encode() CVE-2023-38288 Integer overflow in tiffcp CVE-2023-38289 Integer overflow in raw2tiff For Debian 10 buster, these problems have been fixed in version 4.1.0+git191117-2~deb10u8. We recommend that you upgrade your tiff packages. For the detailed security status of tiff please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/tiff Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Debian LTS Advisory DLA-3514-1 highlights various vulnerabilities in the png library. It is advisable to upgrade for enhanced security.. Debian LTS,tiff security,library vulnerabilities,buffer overflow,image format security. . LinuxSecurity.com Team

Calendar 2 Jul 31, 2023 Debian LTS
Banner 2 1028x280 1708121730 1 1771599631
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorycriticalbuster

Debian 10 Buster DLA-3292-1 Critical: STUN Package Fix for sofia-sip

Missing message length and attributes length checks when handling STUN packages have been fixed in sofia-sip, a SIP (Session Initiation Protocol) User-Agent library. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3292-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Adrian Bunk January 29, 2023 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : sofia-sip Version : 1.12.11+20110422.1-2.1+deb10u2 CVE ID : CVE-2023-22741 Debian Bug : 1029654 Missing message length and attributes length checks when handling STUN packages have been fixed in sofia-sip, a SIP (Session Initiation Protocol) User-Agent library. For Debian 10 buster, this problem has been fixed in version 1.12.11+20110422.1-2.1+deb10u2. We recommend that you upgrade your sofia-sip packages. For the detailed security status of sofia-sip please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/sofia-sip Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Enhance sofia-sip to rectify absent validation for message lengths in STUN packets. Crucial for Debian LTS maintainers.. sofia-sip Security,Debian Updates,STUN Packet Fix,Buster Advisory. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 29, 2023 Critical Debian LTS
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydebianrequest smuggling

Debian 10 Buster DLA-3224-1 Critical: HTTP-Parser Request Smuggling Fix

There was a potential HTTP request smuggling vulnerability in http-parser, a popular library for parsing HTTP messages. For Debian 10 buster, this problem has been fixed in version . - ----------------------------------------------------------------------- Debian LTS Advisory DLA-3224-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Utkarsh Gupta December 05, 2022 https://wiki.debian.org/LTS - ----------------------------------------------------------------------- Package : http-parser Version : 2.8.1-1+deb10u3 CVE ID : CVE-2020-8287 Debian Bug : 1016690 There was a potential HTTP request smuggling vulnerability in http-parser, a popular library for parsing HTTP messages. For Debian 10 buster, this problem has been fixed in version 2.8.1-1+deb10u3. We recommend that you upgrade your http-parser packages. For the detailed security status of http-parser please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/http-parser Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Enhance http-parser on Debian 10 to mitigate risks associated with potential HTTP request smuggling vulnerabilities. Refer to advisory DLA-3224-1 for comprehensive details.. http-parser security,Debian update,request smuggling threat. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 05, 2022 Critical Debian LTS
Banner 2 1028x280 1708121730 1 1771599631
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydenial of servicecritical

Debian Buster DSA-4942-2 Urgent: Systemd Buffer Overflow Vulnerability

The Qualys Research Labs discovered that an attacker-controlled allocation using the alloca() function could result in memory corruption, allowing to crash systemd and hence the entire operating system. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-4942-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Salvatore Bonaccorso July 20, 2021 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : systemd CVE ID : CVE-2021-33910 The Qualys Research Labs discovered that an attacker-controlled allocation using the alloca() function could result in memory corruption, allowing to crash systemd and hence the entire operating system. Details can be found in the Qualys advisory at https://www.qualys.com/2021/07/20/cve-2021-33910/denial-of-service-systemd.txt For the stable distribution (buster), this problem has been fixed in version 241-7~deb10u8. We recommend that you upgrade your systemd packages. For the detailed security status of systemd please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/systemd Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . A timely announcement for Ubuntu's kernel module highlights a severe security vulnerability that could lead to system instability.. Debian Systemd Update, Memory Corruption Fix, Denial of Service. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 20, 2021 Critical Debian
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydenial of servicedebian

Debian DSA-4891-1: Tomcat9 Security Flaw Causes Denial Of Service

Two vulnerabilities were discovered in the Tomcat servlet and JSP engine, which could result in information disclosure or denial of service. For the stable distribution (buster), these problems have been fixed in . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4891-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff April 13, 2021 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : tomcat9 CVE ID : CVE-2021-25122 CVE-2021-25329 Two vulnerabilities were discovered in the Tomcat servlet and JSP engine, which could result in information disclosure or denial of service. For the stable distribution (buster), these problems have been fixed in version 9.0.31-1~deb10u4. We recommend that you upgrade your tomcat9 packages. For the detailed security status of tomcat9 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/tomcat9 Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Debian Security Update DSA-4892-1 enhances php7 to rectify severe vulnerabilities in the stable release.. Debian Security Advisory, Tomcat Security Issues, Service Denial Vulnerability. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 13, 2021 Critical Debian
Banner 2 1028x280 1708121730 1 1771599631
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydenial of serviceauthentication issue

Debian Buster: DSA-4792-1 Critical: OpenLDAP Denial of Service

Two vulnerabilities in the certificate list syntax verification and in the handling of CSN normalization were discovered in OpenLDAP, a free implementation of the Lightweight Directory Access Protocol. An unauthenticated remote attacker can take advantage of these . - ------------------------------------------------------------------------- Debian Security Advisory DSA-4792-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Salvatore Bonaccorso November 17, 2020 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : openldap CVE ID : CVE-2020-25709 CVE-2020-25710 Two vulnerabilities in the certificate list syntax verification and in the handling of CSN normalization were discovered in OpenLDAP, a free implementation of the Lightweight Directory Access Protocol. An unauthenticated remote attacker can take advantage of these flaws to cause a denial of service (slapd daemon crash) via specially crafted packets. For the stable distribution (buster), these problems have been fixed in version 2.4.47+dfsg-3+deb10u4. We recommend that you upgrade your openldap packages. For the detailed security status of openldap please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/openldap Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Debian Security Advisory DSA-4793-2 concerning Python vulnerabilities and suggested updates for system integrity.. Debian Security Advisory, OpenLDAP Update, Denial of Service, Security Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 17, 2020 Critical Debian
87
Ls Advisories Debian Esm H240
Price Tag 1security advisoryremote code executionhttpcomponents-client

Debian Buster: DSA-4772-1 Critical: Httpcomponents Client Misinterpretation

Priyank Nigam discovered that HttpComponents Client, a Java HTTP agent implementation, could misinterpret malformed authority component in a request URI and pick the wrong target host for request execution. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4772-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff October 14, 2020 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : httpcomponents-client CVE ID : CVE-2020-13956 Priyank Nigam discovered that HttpComponents Client, a Java HTTP agent implementation, could misinterpret malformed authority component in a request URI and pick the wrong target host for request execution. For the stable distribution (buster), this problem has been fixed in version 4.5.7-1+deb10u1. We recommend that you upgrade your httpcomponents-client packages. For the detailed security status of httpcomponents-client please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/httpcomponents-client Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . HttpClient library fails to accurately parse incorrect authority segments, posing risk for vulnerabilities. Suggested to update.. Httpcomponents Client Security, Debian DSA-4772-1, Java HTTP Agent, Security Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 14, 2020 Critical Debian
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here