Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 488
Alerts This Week
Warning Icon 1 488

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 182 articles for you...
197

Debian LTS grub2 Critical Code Execution Risk DLA-4685-1

Several issues were found in the GRUB2 bootloader, which could result in crashes and potentially execution of arbitrary code. These could lead to bypass of UEFI Secure Boot on affected systems. For Debian 11 bullseye, these problems have been fixed in version 2.06-3~deb11u7.. Debian LTS Advisory DLA-4685-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Emilio Pozuelo Monfort July 15, 2026 https://wiki.debian.org/LTS Package : grub2 Version : 2.06-3~deb11u7 CVE ID : CVE-2024-45774 CVE-2024-45775 CVE-2024-45776 CVE-2024-45777 CVE-2024-45778 CVE-2024-45779 CVE-2024-45780 CVE-2024-45781 CVE-2024-45782 CVE-2024-45783 CVE-2025-0622 CVE-2025-0624 CVE-2025-0677 CVE-2025-0678 CVE-2025-0684 CVE-2025-0685 CVE-2025-0686 CVE-2025-0689 CVE-2025-0690 CVE-2025-1118 CVE-2025-1125 Several issues were found in the GRUB2 bootloader, which could result in crashes and potentially execution of arbitrary code. These could lead to bypass of UEFI Secure Boot on affected systems. For Debian 11 bullseye, these problems have been fixed in version 2.06-3~deb11u7. We recommend that you upgrade your grub2 packages. For the detailed security status of grub2 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/grub2 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Critical grub2 update in Debian LTS fixes multiple issues preventing UEFI Secure Boot bypass and arbitrary code execution.. Debian LTS, grub2, security update, code execution, UEFI Secure Boot. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jul 15, 2026 Critical Debian LTS
202

openSUSE Leap 16.0 Python-Pydata-Sphinx-Theme Important Bypass 2026-21231-1

An update that solves one vulnerability and has one bug fix can now be installed.. openSUSE security update: security update for python-pydata-sphinx-theme ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:21231-1 Rating: important References: * bsc#1269597 Cross-References: * CVE-2026-13676 CVSS scores: * CVE-2026-13676 ( SUSE ): 7.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N * CVE-2026-13676 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has one bug fix can now be installed. Description: This update for python-pydata-sphinx-theme fixes the following issues: Changes in python-pydata-sphinx-theme: - CVE-2026-13676: fast-uri: failure to canonicalize Unicode/IDN hostnames for HTTP-family URLs allows for bypass (bsc#1269597) * revendor the vendored tarball with updated versions Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-packagehub-388=1 Package List: - openSUSE Leap 16.0: python313-pydata-sphinx-theme-0.16.1-bp160.3.1 References: * https://www.suse.com/security/cve/CVE-2026-13676.html . Critical update for openSUSE users addressing a significant issue in python-pydata-sphinx-theme with a security vulnerability.. openSUSE security patch, python package updates, CVE-2026-13676 fix. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jul 04, 2026 Important OpenSUSE
202

openSUSE 2026 Keylime Moderate Bypass Fix SUSE-SU-2026-21025-1

An update that solves one vulnerability and has one bug fix can now be installed.. openSUSE security update: security update for keylime ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:21025-1 Rating: moderate References: * bsc#1264265 Cross-References: * CVE-2026-6420 CVSS scores: * CVE-2026-6420 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2026-6420 ( SUSE ): 8.3 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has one bug fix can now be installed. Description: This update for keylime fixes the following issue - CVE-2026-6420: use of hardcoded challenge nonce for TPM quote attestation allows for security bypass (bsc#1264265). Changes for keylime: - Update to version 7.14.2. Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-1037=1 Package List: - openSUSE Leap 16.0: keylime-config-7.14.2-160000.1.1 keylime-firewalld-7.14.2-160000.1.1 keylime-logrotate-7.14.2-160000.1.1 keylime-registrar-7.14.2-160000.1.1 keylime-tenant-7.14.2-160000.1.1 keylime-tpm_cert_store-7.14.2-160000.1.1 keylime-verifier-7.14.2-160000.1.1 python313-keylime-7.14.2-160000.1.1 References: * https://www.suse.com/security/cve/CVE-2026-6420.html . Get essential updates for openSUSE keylime including a fix for a vulnerability and a bug. Stay secure with this essential patch.. openSUSE keylime update,bypass security fix,moderate vulnerability,TPM security fix. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jun 30, 2026 moderate OpenSUSE
87

Debian LXD Critical Command Execution Bypass Issues DSA-6373-1

Multiple security issues were discovered in LXD, a system container and virtual machine manager, which could result in a bypass of security restrictions or the execution of arbitrary commands. For the stable distribution (trixie), these problems have been fixed in version 5.0.2+git20231211.1364ae4-9+deb13u7.. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6373-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff June 28, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : lxd CVE ID : CVE-2026-9639 CVE-2026-9640 CVE-2026-48749 CVE-2026-48750 CVE-2026-48751 CVE-2026-48752 CVE-2026-48755 CVE-2026-48769 CVE-2026-55621 CVE-2026-55622 Multiple security issues were discovered in LXD, a system container and virtual machine manager, which could result in a bypass of security restrictions or the execution of arbitrary commands. For the stable distribution (trixie), these problems have been fixed in version 5.0.2+git20231211.1364ae4-9+deb13u7. We recommend that you upgrade your lxd packages. For the detailed security status of lxd please refer to its security tracker page at: https://security-tracker.debian.org/tracker/lxd Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Multiple security issues in LXD lead to potential bypass of restrictions and command execution. Upgrade immediately.. Debian LXD update command execution bypass security. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 28, 2026 Important Debian
87

Debian Incus Critical Bypass Command Exec Vulnerability DSA-6370-1

Multiple security issues were discovered in Incus, a system container and virtual machine manager, which could result in a bypass of security restrictions or the execution of arbitrary commands. For the stable distribution (trixie), these problems have been fixed in version 6.0.4-2+deb13u8.. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6370-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff June 26, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : incus CVE ID : CVE-2026-48749 CVE-2026-48750 CVE-2026-48751 CVE-2026-48752 CVE-2026-48755 CVE-2026-48756 CVE-2026-48769 CVE-2026-55621 CVE-2026-55622 Multiple security issues were discovered in Incus, a system container and virtual machine manager, which could result in a bypass of security restrictions or the execution of arbitrary commands. For the stable distribution (trixie), these problems have been fixed in version 6.0.4-2+deb13u8. We recommend that you upgrade your incus packages. For the detailed security status of incus please refer to its security tracker page at: https://security-tracker.debian.org/tracker/incus Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Debian Advisory DSA-6370-1 addresses critical security flaws in Incus that could enable bypassing restrictions and command execution.. Debian Security Advisory, Incus Update, System Container Management, Virtual Machine Security, Debian Vulnerabilities. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jun 26, 2026 Critical Debian
219

Rocky Linux 10 Keylime Addresses Security Bypass in CVE-2026-6420 Fix

Moderate: keylime security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:28582", "synopsis": "Moderate: keylime security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for keylime.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution.\n\nSecurity Fix(es):\n\n* keylime: Keylime: Security bypass due to hardcoded TPM quote nonce (CVE-2026-6420)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2458889", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2458889", "description": ""}], "cves": [{"name": "CVE-2026-6420", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6420", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L", "cvss3BaseScore": "6.3", "cwe": "CWE-1241"}], "references": [], "publishedAt": "2026-06-25T12:05:27.708216Z", "rpms": {"Rocky Linux 10": {"nvras": ["keylime-base-0:7.14.1-5.el10_2.1.s390x.rpm", "python3-keylime-0:7.14.1-5.el10_2.1.ppc64le.rpm", "keylime-tools-0:7.14.1-5.el10_2.1.x86_64.rpm", "keylime-base-0:7.14.1-5.el10_2.1.aarch64.rpm", "keylime-0:7.14.1-5.el10_2.1.x86_64.rpm", "keylime-0:7.14.1-5.el10_2.1.ppc64le.rpm", "keylime-verifier-0:7.14.1-5.el10_2.1.aarch64.rpm", "keylime-registrar-0:7.14.1-5.el10_2.1.ppc64le.rpm", "keylime-0:7.14.1-5.el10_2.1.src.rpm", "python3-keylime-0:7.14.1-5.el10_2.1.s390x.rpm", "keylime-tools-0:7.14.1-5.el10_2.1.aarch64.rpm", "keylime-tools-0:7.14.1-5.el10_2.1.ppc64le.rpm", "keylime-base-0:7.14.1-5.el10_2.1.x86_64.rpm","keylime-registrar-0:7.14.1-5.el10_2.1.aarch64.rpm", "keylime-verifier-0:7.14.1-5.el10_2.1.x86_64.rpm", "keylime-0:7.14.1-5.el10_2.1.s390x.rpm", "python3-keylime-0:7.14.1-5.el10_2.1.x86_64.rpm", "keylime-tools-0:7.14.1-5.el10_2.1.s390x.rpm", "keylime-verifier-0:7.14.1-5.el10_2.1.s390x.rpm", "keylime-0:7.14.1-5.el10_2.1.aarch64.rpm", "keylime-registrar-0:7.14.1-5.el10_2.1.x86_64.rpm", "keylime-tenant-0:7.14.1-5.el10_2.1.aarch64.rpm", "keylime-base-0:7.14.1-5.el10_2.1.ppc64le.rpm", "keylime-registrar-0:7.14.1-5.el10_2.1.s390x.rpm", "keylime-tenant-0:7.14.1-5.el10_2.1.ppc64le.rpm", "keylime-tenant-0:7.14.1-5.el10_2.1.x86_64.rpm", "keylime-selinux-0:7.14.1-5.el10_2.1.noarch.rpm", "keylime-tenant-0:7.14.1-5.el10_2.1.s390x.rpm", "python3-keylime-0:7.14.1-5.el10_2.1.aarch64.rpm", "keylime-verifier-0:7.14.1-5.el10_2.1.ppc64le.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Keylime security update for Rocky Linux addresses a moderate security bypass issue. Update recommended for all users.. Rocky Linux Keylime Update Security Bypass CVE-2026-6420. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jun 25, 2026 moderate Rocky Linux
202

openSUSE mbedtls-2 Important Stack Memory Authentication Bypass 2026-0213-1

An update that fixes two vulnerabilities is now available.. openSUSE Security Update: Security update for mbedtls-2 ______________________________________________________________________________ Announcement ID: openSUSE-SU-2026:0213-1 Rating: important References: #1240051 #1240052 Cross-References: CVE-2025-27809 CVE-2025-27810 Affected Products: openSUSE Backports SLE-15-SP7 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for mbedtls-2 fixes the following issues: - Update to version 2.28.10 (2.28 LTS line), fixing: * CVE-2025-27809: the TLS client accepted certificates valid for arbitrary hostnames unless the application called mbedtls_ssl_set_hostname() (boo#1240051) * CVE-2025-27810: use of uninitialized stack memory when composing the TLS Finished message could lead to an authentication bypass such as a replay (boo#1240052) - Sync packaging with Factory: enable MBEDTLS_SSL_DTLS_SRTP and MBEDTLS_SSL_PROTO_DTLS and ship the everest headers and pkg-config files in the -devel subpackage Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP7: zypper in -t patch openSUSE-2026-213=1 Package List: - openSUSE Backports SLE-15-SP7 (aarch64 i586 ppc64le s390x x86_64): libmbedcrypto7-2.28.10-bp157.2.3.1 libmbedtls14-2.28.10-bp157.2.3.1 libmbedx509-1-2.28.10-bp157.2.3.1 mbedtls-2-devel-2.28.10-bp157.2.3.1 - openSUSE Backports SLE-15-SP7 (aarch64_ilp32): libmbedcrypto7-64bit-2.28.10-bp157.2.3.1 libmbedtls14-64bit-2.28.10-bp157.2.3.1 libmbedx509-1-64bit-2.28.10-bp157.2.3.1 - openSUSE Backports SLE-15-SP7 (x86_64): libmbedcrypto7-32bit-2.28.10-bp157.2.3.1 libmbedtls14-32bit-2.28.10-bp157.2.3.1 libmbedx509-1-32bit-2.28.10-bp157.2.3.1 References: https://www.suse.com/security/cve/CVE-2025-27809.html https://www.suse.com/security/cve/CVE-2025-27810.html https://bugzilla.suse.com/1240051 https://bugzilla.suse.com/1240052 . Update for mbedtls-2 fixes important issues regarding authentication bypass and stack memory concerns.. openSUSE update, mbedtls-2 security, security patch, authentication issues. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 25, 2026 Important OpenSUSE
203

Mageia 9 xdg-dbus-proxy Serious Eavesdropping Vulnerability MGASA-2026-0178

Security update. Publication date: 07 Jun 2026 URL: https://advisories.mageia.org/MGASA-2026-0178.html Type: security Affected Mageia releases: 9 CVE: CVE-2026-34080 Description: A policy parser vulnerability allows bypassing eavesdrop restrictions. The proxy checks for eavesdrop=true in policy rules but fails to handle eavesdrop ='true' (with a space before the equals sign) and similar cases. References: - https://bugs.mageia.org/show_bug.cgi?id=35347 - https://www.openwall.com/lists/oss-security/2026/04/10/15 - https://github.com/flatpak/xdg-dbus-proxy/security/advisories/GHSA-vjp5-hjfm-7677 - https://www.cve.org/CVERecord?id=CVE-2026-34080 SRPMS: - 9/core/xdg-dbus-proxy-0.1.7-1.mga9 . Mageia advisory MGASA-2026-0178 addresses an important xdg-dbus-proxy eavesdrop issue with critical fixes available.. Mageia Security Advisory, xdg-dbus-proxy Vulnerability, Mageia 9 Security Update. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 07, 2026 Important Mageia
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200