Alerts This Week
Warning Icon 1 535
Alerts This Week
Warning Icon 1 535

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -3 articles for you...
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of servicebuffer overflow

Ubuntu 22.04 LTS: 7437-1 critical: cimg buffer overflow and DoS

Several security issues were fixed in CImg.. ========================================================================== Ubuntu Security Notice USN-7437-1 April 15, 2025 cimg vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS - Ubuntu 18.04 LTS Summary: Several security issues were fixed in CImg. Software Description: - cimg: powerful image processing library Details: It was discovered that the CImg library did not properly check the size of images before loading them. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 22.04 LTS. (CVE-2022-1325) It was discovered that the CImg library did not correctly handle certain memory operations, which could lead to a buffer overflow. An attacker could possibly use this issue to execute arbitrary code or cause a denial of service. (CVE-2024-26540) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.10 cimg-dev 3.2.1+dfsg-1ubuntu0.24.10.1 Ubuntu 24.04 LTS cimg-dev 3.2.1+dfsg-1ubuntu0.24.04.1~esm1 Available with Ubuntu Pro Ubuntu 22.04 LTS cimg-dev 2.9.4+dfsg-3ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 18.04 LTS cimg-dev 1.7.9+dfsg-2ubuntu0.18.04.2+esm1 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7437-1 CVE-2022-1325, CVE-2024-26540 Package Information: https://launchpad.net/ubuntu/+source/cimg/3.2.1+dfsg-1ubuntu0.24.10.1 . Multiple vulnerabilities addressed in CImg library for Ubuntu, resolving buffer overflow and denial-of-service concerns.. Ubuntu CImg security update, buffer overflow fix, denial of service patch, CImg vulnerabilities. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 15, 2025 Critical Ubuntu
198
Ls Advisories Archlinux Esm H240
Price Tag 1security advisorycode executionpackage update

Arch Linux: ASA-202012-2 Medium: CImg Arbitrary Code Execution

The package cimg before version 2.9.4-1 is vulnerable to arbitrary code execution. . Arch Linux Security Advisory ASA-202012-2 ======================================== Severity: Medium Date : 2020-12-05 CVE-ID : CVE-2020-25693 Package : cimg Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1318 Summary ====== The package cimg before version 2.9.4-1 is vulnerable to arbitrary code execution. Resolution ========= Upgrade to 2.9.4-1. # pacman -Syu "cimg> =2.9.4-1" The problem has been fixed upstream in version 2.9.4. Workaround ========= None. Description ========== A flaw was found in CImg in versions prior to 2.9.3. Integer overflows leading to heap buffer overflows in load_pnm() can be triggered by a specially crafted input file processed by CImg, which can lead to an impact to application availability or data integrity. Impact ===== An attacker might be able to execute arbitrary code via a crafted PNM file. References ========= https://github.com/GreycLab/CImg/pull/295 https://github.com/GreycLab/CImg/commit/7db6d08355d09414d407e26aac10bb5825343e3a https://security.archlinux.org/CVE-2020-25693 . Arch Linux Security Advisory ASA-202012-2 outlines an arbitrary code execution issue in cimg versions before 2.9.4-1.. Arch Linux, CImg, Code Execution, Security Advisory, Arbitrary Execution. . Severity: Medium. LinuxSecurity.com Team

Calendar 2 Dec 09, 2020 Medium ArchLinux
Banner 1 1028x280 1708121660 1771599717
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorysecurity updatebuffer overflow

Debian Security Update: DLA-2462-1 Fix for CImg Buffer Overflow Issue

Multiple heap buffer overflows have been fixed in CImg, a C++ toolkit to load, save, process and display images. For Debian 9 stretch, this problem has been fixed in version . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2462-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Adrian Bunk November 23, 2020 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : cimg Version : 1.7.9+dfsg-1+deb9u2 CVE ID : CVE-2020-25693 Debian Bug : 973770 Multiple heap buffer overflows have been fixed in CImg, a C++ toolkit to load, save, process and display images. For Debian 9 stretch, this problem has been fixed in version 1.7.9+dfsg-1+deb9u2. We recommend that you upgrade your cimg packages. For the detailed security status of cimg please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/cimg Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Enhance CImg on Debian 9 stretch to resolve heap buffer overflow vulnerabilities. Details are available in the advisory.. Debian LTS, CImg Toolkit, Buffer Overflow, Security Update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Nov 22, 2020 Important Debian LTS
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydebiancommand injection

Debian 9: DLA-2421-1 Moderate: cimg Command Injection & Memory Issues

Several issues have been found in cimg, a powerful image processing library. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2421-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Thorsten Alteholz October 30, 2020 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : cimg Version : 1.7.9+dfsg-1+deb9u1 CVE ID : CVE-2018-7588 CVE-2018-7589 CVE-2018-7637 CVE-2018-7638 CVE-2018-7639 CVE-2018-7640 CVE-2018-7641 CVE-2019-1010174 Several issues have been found in cimg, a powerful image processing library. CVE-2019-1010174 is related to a missing string sanitization on URLs, which might result in a command injection when loading a special crafted image. The other CVEs are about heap-based buffer over-reads or double frees when loading a crafted image. For Debian 9 stretch, these problems have been fixed in version 1.7.9+dfsg-1+deb9u1. We recommend that you upgrade your cimg packages. For the detailed security status of cimg please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/cimg Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Debian LTS Advisory DLA-2422-1 tackles several vulnerabilities in the cimg library released on October 31, 2023.. Debian Security Advisory, cimg Update, Image Processing Security. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 30, 2020 Important Debian LTS
Banner 1 1028x280 1708121660 1771599717
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisoryupdatebuffer overflow

Debian 8: DLA-1934-1 Critical: Cimg Command Injection Risk

Several issues have been found in cimg, a powerful image processing library. . Package : cimg Version : 1.5.9+dfsg-1+deb8u1 CVE ID : CVE-2018-7588 CVE-2018-7589 CVE-2018-7637 CVE-2018-7638 CVE-2018-7639 CVE-2018-7640 CVE-2018-7641 CVE-2019-1010174 Several issues have been found in cimg, a powerful image processing library. CVE-2019-1010174 is related to a missing string sanitization on URLs, which might result in a command injection when loading a special crafted image. The other CVEs are about heap-based buffer over-reads or double frees when loading an image. For Debian 8 "Jessie", these problems have been fixed in version 1.5.9+dfsg-1+deb8u1. We recommend that you upgrade your cimg packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Uncover essential enhancements for cimg within Debian LTS aimed at mitigating command injection vulnerabilities and rectifying buffer overflow problems.. Debian LTS, cimg security, image processing library, command injection, buffer overflow. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 28, 2019 Critical Debian LTS
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorydenial of servicebuffer overflow

Mageia 6: 2018-0438 Moderate: cimg and gmic Buffer Overflow DoS

Updated cimg and gmic packages fix security vulnerabilities: An issue was discovered in CImg v.220. DoS occurs when loading a crafted bmp image that triggers an allocation failure in load_bmp in CImg.h (CVE-2018-7587). . MGASA-2018-0438 - Updated cimg and gmic packages fix security vulnerabilities Publication date: 03 Nov 2018 URL: https://advisories.mageia.org/MGASA-2018-0438.html Type: security Affected Mageia releases: 6 CVE: CVE-2018-7587, CVE-2018-7588, CVE-2018-7589, CVE-2018-7637, CVE-2018-7638, CVE-2018-7639, CVE-2018-7640, CVE-2018-7641 Updated cimg and gmic packages fix security vulnerabilities: An issue was discovered in CImg v.220. DoS occurs when loading a crafted bmp image that triggers an allocation failure in load_bmp in CImg.h (CVE-2018-7587). An issue was discovered in CImg v.220. A heap-based buffer over-read in load_bmp in CImg.h occurs when loading a crafted bmp image (CVE-2018-7588). An issue was discovered in CImg v.220. A double free in load_bmp in CImg.h occurs when loading a crafted bmp image (CVE-2018-7589). An issue was discovered in CImg v.220. A heap-based buffer over-read in load_bmp in CImg.h occurs when loading a crafted bmp image. This is in a "16 colors" case, aka case 4 (CVE-2018-7637). An issue was discovered in CImg v.220. A heap-based buffer over-read in load_bmp in CImg.h occurs when loading a crafted bmp image. This is in a "256 colors" case, aka case 8 (CVE-2018-7638). An issue was discovered in CImg v.220. A heap-based buffer over-read in load_bmp in CImg.h occurs when loading a crafted bmp image. This is in a "16 bits colors" case, aka case 16 (CVE-2018-7639). An issue was discovered in CImg v.220. A heap-based buffer over-read in load_bmp in CImg.h occurs when loading a crafted bmp image. This is in a Monochrome case, aka case 1 (CVE-2018-7640). An issue was discovered in CImg v.220. A heap-based buffer over-read in load_bmp in CImg.h occurs when loading a crafted bmp image. This is in a "32 bits colors" case, aka case32 (CVE-2018-7641). References: - https://bugs.mageia.org/show_bug.cgi?id=23700 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/6Z4EMB7JFEKIYRFRANRNDD7ZIIZP6T4Z/ - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/OCWBP5ZUZHIZXP7IFUEZIJG7Q3VLJXBV/ - https://www.cve.org/CVERecord?id=CVE-2018-7587 - https://www.cve.org/CVERecord?id=CVE-2018-7588 - https://www.cve.org/CVERecord?id=CVE-2018-7589 - https://www.cve.org/CVERecord?id=CVE-2018-7637 - https://www.cve.org/CVERecord?id=CVE-2018-7638 - https://www.cve.org/CVERecord?id=CVE-2018-7639 - https://www.cve.org/CVERecord?id=CVE-2018-7640 - https://www.cve.org/CVERecord?id=CVE-2018-7641 SRPMS: - 6/core/cimg-2.4.0-1.mga6 - 6/core/gmic-2.4.0-1.2.mga6 . The latest cimg and gmic updates address various security vulnerabilities within Mageia that impact image manipulation functions.. mageia security updates,cimg gmic vulnerabilities,buffer overflow fix,heap error resolution. . LinuxSecurity.com Team

Calendar 2 Nov 03, 2018 Mageia
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here