Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 12 articles for you...
89
security advisoryfedoraupdateFedora 44 rust-rustls-webpki Update RUSTSEC 2026-8f36b2341e
Update to version 0.103.13. Addresses RUSTSEC-2026-0098, RUSTSEC-2026-0099, RUSTSEC-2026-0104. Update to version 0.103.10. Addresses RUSTSEC-2026-0049. Update to version 0.103.9.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-8f36b2341e 2026-05-01 03:11:02.715735+00:00 -------------------------------------------------------------------------------- Name : rust-rustls-webpki Product : Fedora 44 Version : 0.103.13 Release : 1.fc44 URL : https://crates.io/crates/rustls-webpki Summary : Web PKI X.509 Certificate Verification Description : Web PKI X.509 Certificate Verification. -------------------------------------------------------------------------------- Update Information: Update to version 0.103.13. Addresses RUSTSEC-2026-0098, RUSTSEC-2026-0099, RUSTSEC-2026-0104. Update to version 0.103.10. Addresses RUSTSEC-2026-0049. Update to version 0.103.9. -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 22 2026 Fabio Valentini - 0.103.13-1 - Update to version 0.103.13; Fixes RHBZ#2457282 * Tue Mar 24 2026 Fabio Valentini - 0.103.10-1 - Update to version 0.103.10; Fixes RHBZ#2449815 * Wed Mar 18 2026 Fabio Valentini - 0.103.9-1 - Update to version 0.103.9; Fixes RHBZ#2430422 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-8f36b2341e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
May 01, 2026
•Critical
Fedora
89
security advisoryfedoraimportantFedora 43 rust-rustls-webpki Important Update RUSTSEC-2026-0098
Update to version 0.103.13. Addresses RUSTSEC-2026-0098, RUSTSEC-2026-0099, RUSTSEC-2026-0104.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-bea616fc84 2026-05-01 03:01:50.286537+00:00 -------------------------------------------------------------------------------- Name : rust-rustls-webpki Product : Fedora 43 Version : 0.103.13 Release : 1.fc43 URL : https://crates.io/crates/rustls-webpki Summary : Web PKI X.509 Certificate Verification Description : Web PKI X.509 Certificate Verification. -------------------------------------------------------------------------------- Update Information: Update to version 0.103.13. Addresses RUSTSEC-2026-0098, RUSTSEC-2026-0099, RUSTSEC-2026-0104. -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 22 2026 Fabio Valentini - 0.103.13-1 - Update to version 0.103.13; Fixes RHBZ#2457282 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-bea616fc84' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
May 01, 2026
•Important
Fedora
203
security advisoryimportanttomcatMageia 9 Tomcat Important Security Fix MGASA-2026-0056 CVE-2025-66614
MGASA-2026-0056 - Updated tomcat packages fix security vulnerabilities. MGASA-2026-0056 - Updated tomcat packages fix security vulnerabilities Publication date: 14 Mar 2026 URL: https://advisories.mageia.org/MGASA-2026-0056.html Type: security Affected Mageia releases: 9 CVE: CVE-2025-66614, CVE-2026-24733, CVE-2026-24734 Description: Client certificate verification bypass due to virtual host mapping. (CVE-2025-66614) Security constraint bypass with HTTP/0.9. (CVE-2026-24733) OCSP revocation bypass. (CVE-2026-24734) References: - https://bugs.mageia.org/show_bug.cgi?id=35192 - https://lists.opensuse.org/archives/list/
Mar 14, 2026
•Important
Mageia
87
security advisorycriticaldebianDebian OpenJDK DSA-6110-1 Critical Cert Validation Man-in-the-Middle Attack
Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in incorrect certificate validation, CRLF injection or man-in-the-middle attacks. For the oldstable distribution (bookworm), these problems have been fixed in version 17.0.18+8-1~deb12u1.. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6110-1
Jan 25, 2026
•Critical
Debian
202
security advisorycriticalremote accessopenSUSE Leap 15.6: SUSE-SU-2025:03117-1 Azure critical update details
An update that has two security fixes can now be installed.. # Security update for regionServiceClientConfigAzure Announcement ID: SUSE-SU-2025:03117-1 Release Date: 2025-09-09T12:58:06Z Rating: critical References: * bsc#1243419 * bsc#1246995 Affected Products: * openSUSE Leap 15.6 * Public Cloud Module 15-SP3 * Public Cloud Module 15-SP4 * Public Cloud Module 15-SP5 * Public Cloud Module 15-SP6 * Public Cloud Module 15-SP7 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.2 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.2 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.2 * SUSE Manager Server 4.3 An update that has two security fixes can now be installed. ## Description: This update for regionServiceClientConfigAzure contains the following fixes: * Update to version 3.0.0.(bsc#1246995) * SLE 16 python-requests requires SSL v3 certificates. Update 2 region server certs to support SLE 16 when it gets released. * Update dependency name for metadata package, name change in SLE 16. (bsc#1243419) * Replacing certificate for rgnsrv-azure-southeastasia to get rid ofweird chain cert ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Public Cloud Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP5-2025-3117=1 * Public Cloud Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP6-2025-3117=1 * Public Cloud Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP7-2025-3117=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-3117=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3117=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3117=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-3117=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-3117=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-3117=1 * Public Cloud Module 15-SP3 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP3-2025-3117=1 * Public Cloud Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2025-3117=1 ## Package List: * Public Cloud Module 15-SP5 (noarch) * regionServiceClientConfigAzure-3.0.0-150000.3.28.1 * Public Cloud Module 15-SP6 (noarch) * regionServiceClientConfigAzure-3.0.0-150000.3.28.1 * Public Cloud Module 15-SP7 (noarch) * regionServiceClientConfigAzure-3.0.0-150000.3.28.1 * openSUSE Leap 15.6 (noarch) * regionServiceClientConfigAzure-3.0.0-150000.3.28.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (noarch) * regionServiceClientConfigAzure-3.0.0-150000.3.28.1 * SUSE Linux Enterprise Micro 5.3 (noarch) * regionServiceClientConfigAzure-3.0.0-150000.3.28.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (noarch) *regionServiceClientConfigAzure-3.0.0-150000.3.28.1 * SUSE Linux Enterprise Micro 5.4 (noarch) * regionServiceClientConfigAzure-3.0.0-150000.3.28.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * regionServiceClientConfigAzure-3.0.0-150000.3.28.1 * Public Cloud Module 15-SP3 (noarch) * regionServiceClientConfigAzure-3.0.0-150000.3.28.1 * Public Cloud Module 15-SP4 (noarch) * regionServiceClientConfigAzure-3.0.0-150000.3.28.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1243419 * https://bugzilla.suse.com/show_bug.cgi?id=1246995 . An important security enhancement has just been released for regionServiceClientConfigAWS in openSUSE, featuring substantial updates.. openSUSE updates, regionServiceClientConfigAzure critical, security patches for openSUSE. . Severity: Critical. LinuxSecurity.com Team
Sep 09, 2025
•Critical
OpenSUSE
202
security advisoryimportantTLSopenSUSE: Podman Important TLS Cert Fix CVE-2025-6032 SUSE-SU-2025:02806-1
An update that solves one vulnerability can now be installed.. # Security update for podman Announcement ID: SUSE-SU-2025:02806-1 Release Date: 2025-08-15T12:50:31Z Rating: important References: * bsc#1245320 Cross-References: * CVE-2025-6032 CVSS scores: * CVE-2025-6032 ( SUSE ): 9.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2025-6032 ( SUSE ): 8.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H * CVE-2025-6032 ( NVD ): 8.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for podman fixes the following issues: * CVE-2025-6032: Fixed machine init command failing to verify TLS certificate (bsc#1245320) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-2806=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-2806=1 * SUSE Linux Enterprise Server 15 SP3 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-2806=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2025-2806=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2025-2806=1 * SUSE Linux Enterprise Micro 5.1 zypper in -tpatch SUSE-SUSE-MicroOS-5.1-2025-2806=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-2806=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-2806=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * podman-4.9.5-150300.9.52.1 * podman-remote-debuginfo-4.9.5-150300.9.52.1 * podmansh-4.9.5-150300.9.52.1 * podman-debuginfo-4.9.5-150300.9.52.1 * podman-remote-4.9.5-150300.9.52.1 * openSUSE Leap 15.3 (noarch) * podman-docker-4.9.5-150300.9.52.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * podman-remote-debuginfo-4.9.5-150300.9.52.1 * podman-remote-4.9.5-150300.9.52.1 * podman-4.9.5-150300.9.52.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (aarch64 ppc64le s390x x86_64) * podman-remote-debuginfo-4.9.5-150300.9.52.1 * podman-remote-4.9.5-150300.9.52.1 * podman-4.9.5-150300.9.52.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * podman-remote-debuginfo-4.9.5-150300.9.52.1 * podman-remote-4.9.5-150300.9.52.1 * podman-4.9.5-150300.9.52.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * podman-remote-debuginfo-4.9.5-150300.9.52.1 * podman-remote-4.9.5-150300.9.52.1 * podman-4.9.5-150300.9.52.1 * podman-debuginfo-4.9.5-150300.9.52.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * podman-remote-debuginfo-4.9.5-150300.9.52.1 * podman-remote-4.9.5-150300.9.52.1 * podman-4.9.5-150300.9.52.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * podman-remote-debuginfo-4.9.5-150300.9.52.1 * podman-remote-4.9.5-150300.9.52.1 * podman-4.9.5-150300.9.52.1 * podman-debuginfo-4.9.5-150300.9.52.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * podman-remote-debuginfo-4.9.5-150300.9.52.1 * podman-remote-4.9.5-150300.9.52.1 * podman-4.9.5-150300.9.52.1 *podman-debuginfo-4.9.5-150300.9.52.1 ## References: * https://www.suse.com/security/cve/CVE-2025-6032.html * https://bugzilla.suse.com/show_bug.cgi?id=1245320 . Protect your infrastructure by applying the crucial patch for podman related to CVE-2025-6032 on openSUSE.. openSUSE Podman update CVE-2025-6032 TLS certificate. . Severity: Important. LinuxSecurity.com Team
Aug 15, 2025
•Important
OpenSUSE
202
security advisorybuffer overflowDoSopenSUSE Leap 15.5: 2023:3225-1 Important: qt6-base Certificate Issue
This update for qt6-base fixes the following issues: CVE-2023-34410: Fixed certificate validation does not always consider whether the root of a chain is a configured CA certificate (bsc#1211994).. # Security update for qt6-base Announcement ID: SUSE-SU-2023:3225-1 Rating: important References: * #1209616 * #1211642 * #1211797 * #1211994 * #1213326 Cross-References: * CVE-2023-24607 * CVE-2023-32762 * CVE-2023-33285 * CVE-2023-34410 * CVE-2023-38197 CVSS scores: * CVE-2023-24607 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-32762 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N * CVE-2023-32762 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2023-33285 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2023-33285 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-34410 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2023-34410 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2023-38197 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-38197 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Desktop Applications Module 15-SP5 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Package Hub 15 15-SP5 An update that solves five vulnerabilities can now be installed. ## Description: This update for qt6-base fixes the following issues: * CVE-2023-34410: Fixed certificate validation does not always consider whether the root of a chain is a configured CA certificate (bsc#1211994). * CVE-2023-33285: Fixed buffer overflow in QDnsLookup (bsc#1211642). * CVE-2023-32762: Fixed Qt Network incorrectly parses thestrict-transport- security (HSTS) header (bsc#1211797). * CVE-2023-38197: Fixed infinite loops in QXmlStreamReader(bsc#1213326). * CVE-2023-24607: Fixed Qt SQL ODBC driver plugin DOS (bsc#1209616). ## Patch Instructions: To install this SUSE Important update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2023-3225=1 openSUSE-SLE-15.5-2023-3225=1 * Desktop Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2023-3225=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2023-3225=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * libQt6Concurrent6-debuginfo-6.4.2-150500.3.7.4 * qt6-base-common-devel-debuginfo-6.4.2-150500.3.7.4 * qt6-widgets-private-devel-6.4.2-150500.3.7.4 * qt6-gui-devel-6.4.2-150500.3.7.4 * libQt6Network6-debuginfo-6.4.2-150500.3.7.4 * qt6-gui-private-devel-6.4.2-150500.3.7.4 * libQt6Widgets6-6.4.2-150500.3.7.4 * qt6-dbus-devel-6.4.2-150500.3.7.4 * qt6-platformtheme-xdgdesktopportal-6.4.2-150500.3.7.4 * qt6-network-private-devel-6.4.2-150500.3.7.4 * libQt6Test6-debuginfo-6.4.2-150500.3.7.4 * libQt6Sql6-debuginfo-6.4.2-150500.3.7.4 * qt6-base-common-devel-6.4.2-150500.3.7.4 * qt6-base-examples-debuginfo-6.4.2-150500.3.7.4 * qt6-base-docs-html-6.4.2-150500.3.7.1 * qt6-kmssupport-private-devel-6.4.2-150500.3.7.4 * qt6-base-examples-6.4.2-150500.3.7.4 * qt6-platformtheme-gtk3-debuginfo-6.4.2-150500.3.7.4 * qt6-base-docs-qch-6.4.2-150500.3.7.1 * libQt6OpenGL6-debuginfo-6.4.2-150500.3.7.4 * qt6-core-devel-6.4.2-150500.3.7.4 * qt6-networkinformation-glib-6.4.2-150500.3.7.4 * qt6-openglwidgets-devel-6.4.2-150500.3.7.4 * qt6-platformtheme-xdgdesktopportal-debuginfo-6.4.2-150500.3.7.4 *libQt6Widgets6-debuginfo-6.4.2-150500.3.7.4 * libQt6Core6-6.4.2-150500.3.7.4 * libQt6PrintSupport6-debuginfo-6.4.2-150500.3.7.4 * qt6-sql-sqlite-6.4.2-150500.3.7.4 * qt6-network-devel-6.4.2-150500.3.7.4 * qt6-base-debugsource-6.4.2-150500.3.7.4 * qt6-networkinformation-nm-6.4.2-150500.3.7.4 * qt6-core-private-devel-6.4.2-150500.3.7.4 * qt6-printsupport-private-devel-6.4.2-150500.3.7.4 * libQt6DBus6-debuginfo-6.4.2-150500.3.7.4 * qt6-test-private-devel-6.4.2-150500.3.7.4 * qt6-xml-private-devel-6.4.2-150500.3.7.4 * qt6-network-tls-6.4.2-150500.3.7.4 * qt6-network-tls-debuginfo-6.4.2-150500.3.7.4 * qt6-kmssupport-devel-static-6.4.2-150500.3.7.4 * qt6-networkinformation-glib-debuginfo-6.4.2-150500.3.7.4 * qt6-platformtheme-gtk3-6.4.2-150500.3.7.4 * qt6-printsupport-cups-debuginfo-6.4.2-150500.3.7.4 * libQt6PrintSupport6-6.4.2-150500.3.7.4 * qt6-dbus-private-devel-6.4.2-150500.3.7.4 * qt6-networkinformation-nm-debuginfo-6.4.2-150500.3.7.4 * qt6-sql-unixODBC-6.4.2-150500.3.7.4 * qt6-sql-postgresql-debuginfo-6.4.2-150500.3.7.4 * libQt6Xml6-6.4.2-150500.3.7.4 * qt6-sql-unixODBC-debuginfo-6.4.2-150500.3.7.4 * qt6-widgets-devel-6.4.2-150500.3.7.4 * libQt6Sql6-6.4.2-150500.3.7.4 * qt6-opengl-devel-6.4.2-150500.3.7.4 * libQt6Network6-6.4.2-150500.3.7.4 * libQt6Xml6-debuginfo-6.4.2-150500.3.7.4 * qt6-opengl-private-devel-6.4.2-150500.3.7.4 * qt6-printsupport-cups-6.4.2-150500.3.7.4 * qt6-platformsupport-private-devel-6.4.2-150500.3.7.4 * qt6-concurrent-devel-6.4.2-150500.3.7.4 * qt6-sql-mysql-6.4.2-150500.3.7.4 * qt6-platformsupport-devel-static-6.4.2-150500.3.7.4 * qt6-sql-private-devel-6.4.2-150500.3.7.4 * libQt6Core6-debuginfo-6.4.2-150500.3.7.4 * libQt6OpenGLWidgets6-debuginfo-6.4.2-150500.3.7.4 * qt6-sql-devel-6.4.2-150500.3.7.4 * qt6-base-debuginfo-6.4.2-150500.3.7.4 * qt6-printsupport-devel-6.4.2-150500.3.7.4 * libQt6Concurrent6-6.4.2-150500.3.7.4 * qt6-sql-mysql-debuginfo-6.4.2-150500.3.7.4 * libQt6Test6-6.4.2-150500.3.7.4 * qt6-sql-sqlite-debuginfo-6.4.2-150500.3.7.4 * qt6-test-devel-6.4.2-150500.3.7.4 * qt6-xml-devel-6.4.2-150500.3.7.4 * libQt6Gui6-debuginfo-6.4.2-150500.3.7.4 * libQt6OpenGLWidgets6-6.4.2-150500.3.7.4 * qt6-sql-postgresql-6.4.2-150500.3.7.4 * libQt6OpenGL6-6.4.2-150500.3.7.4 * libQt6Gui6-6.4.2-150500.3.7.4 * libQt6DBus6-6.4.2-150500.3.7.4 * openSUSE Leap 15.5 (noarch) * qt6-base-devel-6.4.2-150500.3.7.4 * qt6-base-private-devel-6.4.2-150500.3.7.4 * qt6-docs-common-6.4.2-150500.3.7.4 * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * qt6-base-debuginfo-6.4.2-150500.3.7.4 * libQt6Widgets6-debuginfo-6.4.2-150500.3.7.4 * libQt6Network6-debuginfo-6.4.2-150500.3.7.4 * libQt6Core6-6.4.2-150500.3.7.4 * libQt6Widgets6-6.4.2-150500.3.7.4 * libQt6Network6-6.4.2-150500.3.7.4 * qt6-base-debugsource-6.4.2-150500.3.7.4 * libQt6Gui6-debuginfo-6.4.2-150500.3.7.4 * libQt6DBus6-debuginfo-6.4.2-150500.3.7.4 * qt6-network-tls-6.4.2-150500.3.7.4 * libQt6Core6-debuginfo-6.4.2-150500.3.7.4 * libQt6Gui6-6.4.2-150500.3.7.4 * libQt6OpenGL6-6.4.2-150500.3.7.4 * libQt6DBus6-6.4.2-150500.3.7.4 * qt6-network-tls-debuginfo-6.4.2-150500.3.7.4 * libQt6OpenGL6-debuginfo-6.4.2-150500.3.7.4 * SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64) * libQt6Concurrent6-debuginfo-6.4.2-150500.3.7.4 * qt6-base-common-devel-debuginfo-6.4.2-150500.3.7.4 * qt6-widgets-private-devel-6.4.2-150500.3.7.4 * qt6-gui-devel-6.4.2-150500.3.7.4 * libQt6Network6-debuginfo-6.4.2-150500.3.7.4 * qt6-gui-private-devel-6.4.2-150500.3.7.4 * libQt6Widgets6-6.4.2-150500.3.7.4 * qt6-dbus-devel-6.4.2-150500.3.7.4 * libQt6Test6-debuginfo-6.4.2-150500.3.7.4 * libQt6Sql6-debuginfo-6.4.2-150500.3.7.4 * qt6-base-common-devel-6.4.2-150500.3.7.4 * qt6-kmssupport-private-devel-6.4.2-150500.3.7.4 *libQt6OpenGL6-debuginfo-6.4.2-150500.3.7.4 * qt6-core-devel-6.4.2-150500.3.7.4 * qt6-openglwidgets-devel-6.4.2-150500.3.7.4 * libQt6Widgets6-debuginfo-6.4.2-150500.3.7.4 * libQt6Core6-6.4.2-150500.3.7.4 * libQt6PrintSupport6-debuginfo-6.4.2-150500.3.7.4 * qt6-sql-sqlite-6.4.2-150500.3.7.4 * qt6-network-devel-6.4.2-150500.3.7.4 * qt6-base-debugsource-6.4.2-150500.3.7.4 * qt6-core-private-devel-6.4.2-150500.3.7.4 * libQt6DBus6-debuginfo-6.4.2-150500.3.7.4 * qt6-network-tls-6.4.2-150500.3.7.4 * qt6-network-tls-debuginfo-6.4.2-150500.3.7.4 * qt6-kmssupport-devel-static-6.4.2-150500.3.7.4 * libQt6PrintSupport6-6.4.2-150500.3.7.4 * libQt6Xml6-6.4.2-150500.3.7.4 * qt6-widgets-devel-6.4.2-150500.3.7.4 * libQt6Sql6-6.4.2-150500.3.7.4 * qt6-opengl-devel-6.4.2-150500.3.7.4 * libQt6Network6-6.4.2-150500.3.7.4 * libQt6Xml6-debuginfo-6.4.2-150500.3.7.4 * qt6-opengl-private-devel-6.4.2-150500.3.7.4 * qt6-concurrent-devel-6.4.2-150500.3.7.4 * qt6-platformsupport-devel-static-6.4.2-150500.3.7.4 * libQt6Core6-debuginfo-6.4.2-150500.3.7.4 * libQt6OpenGLWidgets6-debuginfo-6.4.2-150500.3.7.4 * qt6-sql-devel-6.4.2-150500.3.7.4 * qt6-base-debuginfo-6.4.2-150500.3.7.4 * qt6-printsupport-devel-6.4.2-150500.3.7.4 * libQt6Concurrent6-6.4.2-150500.3.7.4 * qt6-sql-sqlite-debuginfo-6.4.2-150500.3.7.4 * libQt6Test6-6.4.2-150500.3.7.4 * qt6-test-devel-6.4.2-150500.3.7.4 * qt6-xml-devel-6.4.2-150500.3.7.4 * libQt6Gui6-debuginfo-6.4.2-150500.3.7.4 * libQt6OpenGLWidgets6-6.4.2-150500.3.7.4 * libQt6OpenGL6-6.4.2-150500.3.7.4 * libQt6Gui6-6.4.2-150500.3.7.4 * libQt6DBus6-6.4.2-150500.3.7.4 * SUSE Package Hub 15 15-SP5 (noarch) * qt6-base-devel-6.4.2-150500.3.7.4 ## References: * https://www.suse.com/security/cve/CVE-2023-24607.html * https://www.suse.com/security/cve/CVE-2023-32762.html * https://www.suse.com/security/cve/CVE-2023-33285.html *https://www.suse.com/security/cve/CVE-2023-34410.html * https://www.suse.com/security/cve/CVE-2023-38197.html * https://bugzilla.suse.com/show_bug.cgi?id=1209616 * https://bugzilla.suse.com/show_bug.cgi?id=1211642 * https://bugzilla.suse.com/show_bug.cgi?id=1211797 * https://bugzilla.suse.com/show_bug.cgi?id=1211994 * https://bugzilla.suse.com/show_bug.cgi?id=1213326 . SUSE has rolled out a security update for qt6-base which tackles various vulnerabilities, notably significant problems relating to certificate verification.. qt6-base Update, openSUSE Security, Important Security Fixes. . Severity: Important. LinuxSecurity.com Team
Aug 08, 2023
•Important
OpenSUSE
172
security advisorysecurity issueUbuntuUbuntu 22.10, 22.04 LTS USN-5761-1: TrustCor CA Removal Advisory
A distrusted certificate authority has been removed from ca-certificates.. =========================================================================Ubuntu Security Notice USN-5761-1 December 05, 2022 ca-certificates update ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.10 - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS Summary: A distrusted certificate authority has been removed from ca-certificates. Software Description: - ca-certificates: Common CA certificates Details: Due to security concerns, the TrustCor certificate authority has been marked as distrusted in Mozilla's root store. This update removes the TrustCor CA certificates from the ca-certificates package. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.10: ca-certificates 20211016ubuntu0.22.10.1 Ubuntu 22.04 LTS: ca-certificates 20211016ubuntu0.22.04.1 Ubuntu 20.04 LTS: ca-certificates 20211016ubuntu0.20.04.1 Ubuntu 18.04 LTS: ca-certificates 20211016ubuntu0.18.04.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-5761-1 https://bugs.launchpad.net/ubuntu/+source/ca-certificates/+bug/1998785 Package Information: https://launchpad.net/ubuntu/+source/ca-certificates/20211016ubuntu0.22.10.1 https://launchpad.net/ubuntu/+source/ca-certificates/20211016ubuntu0.22.04.1 https://launchpad.net/ubuntu/+source/ca-certificates/20211016ubuntu0.20.04.1 . Ubuntu has released an update to eliminate a compromised certificate authority from the ca-certificates package across multiple versions, urging users to update promptly for security. ca-certificates Update, Ubuntu Security Advisory, TrustCor Removal. . Severity: Important.LinuxSecurity.com Team
Dec 05, 2022
•Important
Ubuntu
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!