Stay Vigilant with Timely Linux Security Advisories

Refine advisories

X Clear Filters

Critical (2)

Important (1)

DoS (7094)

OpenSUSE (3731)

chromedriver (37)

moderate (19231)

security advisory (115050)

vulnerability (1828)

CVE-2025-70103 (2)

CVE-2026-8829 (1)

cross-reference (246)

libmozjs (13)

Mageia (1)

OpenSUSE (1)

SuSE (2)

Published Date Range

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.51%)

78.51% votes

Formal training or courses (4.3%)

4.3% votes

A job that required it (4.87%)

4.87% votes

Other (12.32%)

12.32% votes

[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350

bottom 200

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Banner 2 1028x280 1708121730 1 1771599631

Explore Latest Linux Security advisories

We found -5 articles for you...

100

security advisorymoderateSuSE

SUSE: dpkg Moderate Security Update CVE-2025-6297 SUSE-SU-2025:20670-1

* bsc#1245573 Cross-References: * CVE-2025-6297 . # Security update for dpkg Announcement ID: SUSE-SU-2025:20670-1 Release Date: 2025-09-05T12:14:12Z Rating: moderate References: * bsc#1245573 Cross-References: * CVE-2025-6297 CVSS scores: * CVE-2025-6297 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-6297 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-6297 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves one vulnerability can now be installed. ## Description: This update for dpkg fixes the following issues: * CVE-2025-6297: Fixed cleanup for control member with restricted directories (bsc#1245573). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-249=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * update-alternatives-debugsource-1.22.0-slfo.1.1_2.1 * update-alternatives-1.22.0-slfo.1.1_2.1 * update-alternatives-debuginfo-1.22.0-slfo.1.1_2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-6297.html * https://bugzilla.suse.com/show_bug.cgi?id=1245573 . SUSE issues vital patch for dpkg resolving serious concerns linked to CVE-2025-6298. Urgent measures recommended.. SUSE dpkg security update CVE-2025-6297 moderate. . LinuxSecurity.com Team

Sep 10, 2025 SuSE

203

security advisoryinformation leaksoftware update

Mageia: 2023-0319 Critical Advisory for Tomcat Input Issues

The updated packages fix security vulnerabilities: Incomplete Cleanup vulnerability in Apache Tomcat.When recycling various internal objects in Apache Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.80 and from . MGASA-2023-0319 - Updated tomcat packages fix security vulnerabilities Publication date: 15 Nov 2023 URL: https://advisories.mageia.org/MGASA-2023-0319.html Type: security Affected Mageia releases: 8, 9 CVE: CVE-2023-42795, CVE-2023-45648 The updated packages fix security vulnerabilities: Incomplete Cleanup vulnerability in Apache Tomcat.When recycling various internal objects in Apache Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.80 and from 8.5.0 through 8.5.93, an error could cause Tomcat to skip some parts of the recycling process leading to information leaking from the current request/response to the next. (CVE-2023-42795) Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.81 and from 8.5.0 through 8.5.93 did not correctly parse HTTP trailer headers. A specially crafted, invalid trailer header could cause Tomcat to treat a single request as multiple requests leading to the possibility of request smuggling when behind a reverse proxy. (CVE-2023-45648) References: - https://bugs.mageia.org/show_bug.cgi?id=32377 - https://www.openwall.com/lists/oss-security/2023/10/10/9 - https://www.openwall.com/lists/oss-security/2023/10/10/10 - https://www.cve.org/CVERecord?id=CVE-2023-42795 - https://www.cve.org/CVERecord?id=CVE-2023-45648 SRPMS: - 8/core/tomcat-9.0.82-1.mga8 - 9/core/tomcat-9.0.82-1.mga9 . Revised Nginx components in Fedora tackle significant vulnerabilities such as inadequate data sanitation and exposure of sensitive information.. Tomcat Security Update, Mageia Advisory, Apache Tomcat Risk, Information Leak Fixes. . Severity: Critical. LinuxSecurity.com Team

Nov 15, 2023 •Critical Mageia

202

security advisorydenial of servicesoftware update

openSUSE Leap 15.5: SUSE-SU-2023:3082-1 Important: Qemu Denial Of Service

This update for qemu fixes the following issues: CVE-2023-3301: Fixed incorrect cleanup of the vdpa/vhost-net structures if peer nic is present (bsc#1213414).. # Security update for qemu Announcement ID: SUSE-SU-2023:3082-1 Rating: important References: * #1179993 * #1181740 * #1207205 * #1212968 * #1213001 * #1213414 Cross-References: * CVE-2023-0330 * CVE-2023-2861 * CVE-2023-3255 * CVE-2023-3301 CVSS scores: * CVE-2023-0330 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H * CVE-2023-0330 ( NVD ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H * CVE-2023-2861 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2023-3255 ( SUSE ): 4.9 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.5 * Server Applications Module 15-SP5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves four vulnerabilities and has two fixes can now be installed. ## Description: This update for qemu fixes the following issues: * CVE-2023-3301: Fixed incorrect cleanup of the vdpa/vhost-net structures if peer nic is present (bsc#1213414). * CVE-2023-0330: Fixed reentrancy issues in the LSI controller (bsc#1207205). * CVE-2023-2861: Fixed opening special files in 9pfs (bsc#1212968). * CVE-2023-3255: Fixed infinite loop in inflate_buffer() leads to denial of service (bsc#1213001). Bugfixes: * hw/ide/piix: properly initialize the BMIBA register (bsc#bsc#1179993) * Fixed issue where Guest did not run on XEN SLES15SP2 (bsc#1181740). ## Patch Instructions: To install this SUSE Important update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * ServerApplications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP5-2023-3082=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2023-3082=1 openSUSE-SLE-15.5-2023-3082=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2023-3082=1 ## Package List: * Server Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * qemu-guest-agent-debuginfo-7.1.0-150500.49.6.1 * qemu-chardev-baum-7.1.0-150500.49.6.1 * qemu-ui-dbus-7.1.0-150500.49.6.1 * qemu-debuginfo-7.1.0-150500.49.6.1 * qemu-block-rbd-7.1.0-150500.49.6.1 * qemu-block-curl-debuginfo-7.1.0-150500.49.6.1 * qemu-audio-dbus-7.1.0-150500.49.6.1 * qemu-lang-7.1.0-150500.49.6.1 * qemu-ui-dbus-debuginfo-7.1.0-150500.49.6.1 * qemu-block-iscsi-7.1.0-150500.49.6.1 * qemu-block-rbd-debuginfo-7.1.0-150500.49.6.1 * qemu-block-ssh-debuginfo-7.1.0-150500.49.6.1 * qemu-audio-dbus-debuginfo-7.1.0-150500.49.6.1 * qemu-debugsource-7.1.0-150500.49.6.1 * qemu-ui-curses-7.1.0-150500.49.6.1 * qemu-chardev-baum-debuginfo-7.1.0-150500.49.6.1 * qemu-7.1.0-150500.49.6.1 * qemu-block-ssh-7.1.0-150500.49.6.1 * qemu-hw-usb-host-7.1.0-150500.49.6.1 * qemu-block-iscsi-debuginfo-7.1.0-150500.49.6.1 * qemu-hw-usb-host-debuginfo-7.1.0-150500.49.6.1 * qemu-block-curl-7.1.0-150500.49.6.1 * qemu-guest-agent-7.1.0-150500.49.6.1 * qemu-ksm-7.1.0-150500.49.6.1 * qemu-ui-curses-debuginfo-7.1.0-150500.49.6.1 * Server Applications Module 15-SP5 (aarch64) * qemu-arm-7.1.0-150500.49.6.1 * qemu-arm-debuginfo-7.1.0-150500.49.6.1 * Server Applications Module 15-SP5 (aarch64 ppc64le x86_64) * qemu-ui-gtk-debuginfo-7.1.0-150500.49.6.1 * qemu-ui-opengl-debuginfo-7.1.0-150500.49.6.1 * qemu-chardev-spice-debuginfo-7.1.0-150500.49.6.1 * qemu-audio-spice-7.1.0-150500.49.6.1 * qemu-hw-usb-redirect-7.1.0-150500.49.6.1 * qemu-chardev-spice-7.1.0-150500.49.6.1 * qemu-ui-gtk-7.1.0-150500.49.6.1 *qemu-ui-spice-app-debuginfo-7.1.0-150500.49.6.1 * qemu-hw-display-qxl-7.1.0-150500.49.6.1 * qemu-ui-opengl-7.1.0-150500.49.6.1 * qemu-audio-spice-debuginfo-7.1.0-150500.49.6.1 * qemu-hw-usb-redirect-debuginfo-7.1.0-150500.49.6.1 * qemu-ui-spice-app-7.1.0-150500.49.6.1 * qemu-hw-display-virtio-vga-7.1.0-150500.49.6.1 * qemu-hw-display-virtio-vga-debuginfo-7.1.0-150500.49.6.1 * qemu-ui-spice-core-7.1.0-150500.49.6.1 * qemu-hw-display-qxl-debuginfo-7.1.0-150500.49.6.1 * qemu-ui-spice-core-debuginfo-7.1.0-150500.49.6.1 * Server Applications Module 15-SP5 (noarch) * qemu-ipxe-1.0.0+-150500.49.6.1 * qemu-vgabios-1.16.0_0_gd239552-150500.49.6.1 * qemu-skiboot-7.1.0-150500.49.6.1 * qemu-SLOF-7.1.0-150500.49.6.1 * qemu-seabios-1.16.0_0_gd239552-150500.49.6.1 * qemu-sgabios-8-150500.49.6.1 * Server Applications Module 15-SP5 (ppc64le) * qemu-ppc-debuginfo-7.1.0-150500.49.6.1 * qemu-ppc-7.1.0-150500.49.6.1 * Server Applications Module 15-SP5 (s390x x86_64) * qemu-hw-display-virtio-gpu-debuginfo-7.1.0-150500.49.6.1 * qemu-hw-display-virtio-gpu-pci-7.1.0-150500.49.6.1 * qemu-hw-display-virtio-gpu-7.1.0-150500.49.6.1 * qemu-kvm-7.1.0-150500.49.6.1 * qemu-hw-display-virtio-gpu-pci-debuginfo-7.1.0-150500.49.6.1 * Server Applications Module 15-SP5 (s390x) * qemu-s390x-debuginfo-7.1.0-150500.49.6.1 * qemu-s390x-7.1.0-150500.49.6.1 * qemu-hw-s390x-virtio-gpu-ccw-debuginfo-7.1.0-150500.49.6.1 * qemu-hw-s390x-virtio-gpu-ccw-7.1.0-150500.49.6.1 * Server Applications Module 15-SP5 (x86_64) * qemu-x86-7.1.0-150500.49.6.1 * qemu-audio-alsa-debuginfo-7.1.0-150500.49.6.1 * qemu-accel-tcg-x86-debuginfo-7.1.0-150500.49.6.1 * qemu-audio-alsa-7.1.0-150500.49.6.1 * qemu-audio-pa-debuginfo-7.1.0-150500.49.6.1 * qemu-audio-pa-7.1.0-150500.49.6.1 * qemu-accel-tcg-x86-7.1.0-150500.49.6.1 * qemu-x86-debuginfo-7.1.0-150500.49.6.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) *qemu-x86-7.1.0-150500.49.6.1 * qemu-ivshmem-tools-7.1.0-150500.49.6.1 * qemu-ui-opengl-debuginfo-7.1.0-150500.49.6.1 * qemu-debuginfo-7.1.0-150500.49.6.1 * qemu-audio-alsa-debuginfo-7.1.0-150500.49.6.1 * qemu-ui-opengl-7.1.0-150500.49.6.1 * qemu-audio-dbus-7.1.0-150500.49.6.1 * qemu-hw-usb-redirect-debuginfo-7.1.0-150500.49.6.1 * qemu-audio-alsa-7.1.0-150500.49.6.1 * qemu-block-iscsi-7.1.0-150500.49.6.1 * qemu-audio-jack-7.1.0-150500.49.6.1 * qemu-accel-tcg-x86-debuginfo-7.1.0-150500.49.6.1 * qemu-block-ssh-debuginfo-7.1.0-150500.49.6.1 * qemu-ui-spice-app-debuginfo-7.1.0-150500.49.6.1 * qemu-block-nfs-debuginfo-7.1.0-150500.49.6.1 * qemu-ui-spice-app-7.1.0-150500.49.6.1 * qemu-extra-debuginfo-7.1.0-150500.49.6.1 * qemu-linux-user-debuginfo-7.1.0-150500.49.6.1 * qemu-extra-7.1.0-150500.49.6.1 * qemu-block-dmg-debuginfo-7.1.0-150500.49.6.1 * qemu-chardev-spice-7.1.0-150500.49.6.1 * qemu-hw-display-qxl-7.1.0-150500.49.6.1 * qemu-audio-jack-debuginfo-7.1.0-150500.49.6.1 * qemu-ui-gtk-debuginfo-7.1.0-150500.49.6.1 * qemu-hw-s390x-virtio-gpu-ccw-debuginfo-7.1.0-150500.49.6.1 * qemu-guest-agent-7.1.0-150500.49.6.1 * qemu-block-gluster-7.1.0-150500.49.6.1 * qemu-linux-user-7.1.0-150500.49.6.1 * qemu-x86-debuginfo-7.1.0-150500.49.6.1 * qemu-chardev-baum-7.1.0-150500.49.6.1 * qemu-vhost-user-gpu-debuginfo-7.1.0-150500.49.6.1 * qemu-chardev-spice-debuginfo-7.1.0-150500.49.6.1 * qemu-block-curl-debuginfo-7.1.0-150500.49.6.1 * qemu-lang-7.1.0-150500.49.6.1 * qemu-hw-usb-smartcard-debuginfo-7.1.0-150500.49.6.1 * qemu-accel-tcg-x86-7.1.0-150500.49.6.1 * qemu-vhost-user-gpu-7.1.0-150500.49.6.1 * qemu-audio-spice-debuginfo-7.1.0-150500.49.6.1 * qemu-ui-curses-7.1.0-150500.49.6.1 * qemu-chardev-baum-debuginfo-7.1.0-150500.49.6.1 * qemu-hw-s390x-virtio-gpu-ccw-7.1.0-150500.49.6.1 * qemu-block-gluster-debuginfo-7.1.0-150500.49.6.1 *qemu-hw-usb-host-7.1.0-150500.49.6.1 * qemu-arm-7.1.0-150500.49.6.1 * qemu-audio-pa-7.1.0-150500.49.6.1 * qemu-ui-spice-core-7.1.0-150500.49.6.1 * qemu-audio-spice-7.1.0-150500.49.6.1 * qemu-ksm-7.1.0-150500.49.6.1 * qemu-ui-spice-core-debuginfo-7.1.0-150500.49.6.1 * qemu-guest-agent-debuginfo-7.1.0-150500.49.6.1 * qemu-ui-dbus-7.1.0-150500.49.6.1 * qemu-ppc-7.1.0-150500.49.6.1 * qemu-s390x-7.1.0-150500.49.6.1 * qemu-tools-7.1.0-150500.49.6.1 * qemu-hw-display-virtio-gpu-pci-7.1.0-150500.49.6.1 * qemu-ui-dbus-debuginfo-7.1.0-150500.49.6.1 * qemu-block-ssh-7.1.0-150500.49.6.1 * qemu-accel-qtest-7.1.0-150500.49.6.1 * qemu-hw-display-virtio-gpu-7.1.0-150500.49.6.1 * qemu-hw-display-virtio-vga-debuginfo-7.1.0-150500.49.6.1 * qemu-s390x-debuginfo-7.1.0-150500.49.6.1 * qemu-hw-usb-smartcard-7.1.0-150500.49.6.1 * qemu-audio-oss-7.1.0-150500.49.6.1 * qemu-audio-pa-debuginfo-7.1.0-150500.49.6.1 * qemu-arm-debuginfo-7.1.0-150500.49.6.1 * qemu-hw-display-qxl-debuginfo-7.1.0-150500.49.6.1 * qemu-linux-user-debugsource-7.1.0-150500.49.6.1 * qemu-block-nfs-7.1.0-150500.49.6.1 * qemu-hw-display-virtio-gpu-pci-debuginfo-7.1.0-150500.49.6.1 * qemu-hw-display-virtio-gpu-debuginfo-7.1.0-150500.49.6.1 * qemu-hw-usb-redirect-7.1.0-150500.49.6.1 * qemu-audio-dbus-debuginfo-7.1.0-150500.49.6.1 * qemu-accel-qtest-debuginfo-7.1.0-150500.49.6.1 * qemu-debugsource-7.1.0-150500.49.6.1 * qemu-7.1.0-150500.49.6.1 * qemu-headless-7.1.0-150500.49.6.1 * qemu-ui-gtk-7.1.0-150500.49.6.1 * qemu-block-dmg-7.1.0-150500.49.6.1 * qemu-ppc-debuginfo-7.1.0-150500.49.6.1 * qemu-hw-display-virtio-vga-7.1.0-150500.49.6.1 * qemu-block-iscsi-debuginfo-7.1.0-150500.49.6.1 * qemu-audio-oss-debuginfo-7.1.0-150500.49.6.1 * qemu-hw-usb-host-debuginfo-7.1.0-150500.49.6.1 * qemu-block-curl-7.1.0-150500.49.6.1 * qemu-ivshmem-tools-debuginfo-7.1.0-150500.49.6.1 *qemu-ui-curses-debuginfo-7.1.0-150500.49.6.1 * qemu-tools-debuginfo-7.1.0-150500.49.6.1 * openSUSE Leap 15.5 (s390x x86_64 i586) * qemu-kvm-7.1.0-150500.49.6.1 * openSUSE Leap 15.5 (noarch) * qemu-ipxe-1.0.0+-150500.49.6.1 * qemu-microvm-7.1.0-150500.49.6.1 * qemu-vgabios-1.16.0_0_gd239552-150500.49.6.1 * qemu-skiboot-7.1.0-150500.49.6.1 * qemu-SLOF-7.1.0-150500.49.6.1 * qemu-sgabios-8-150500.49.6.1 * qemu-seabios-1.16.0_0_gd239552-150500.49.6.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * qemu-block-rbd-7.1.0-150500.49.6.1 * qemu-block-rbd-debuginfo-7.1.0-150500.49.6.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * qemu-tools-7.1.0-150500.49.6.1 * qemu-debugsource-7.1.0-150500.49.6.1 * qemu-tools-debuginfo-7.1.0-150500.49.6.1 * qemu-debuginfo-7.1.0-150500.49.6.1 ## References: * https://www.suse.com/security/cve/CVE-2023-0330.html * https://www.suse.com/security/cve/CVE-2023-2861.html * https://www.suse.com/security/cve/CVE-2023-3255.html * https://www.suse.com/security/cve/CVE-2023-3301.html * https://bugzilla.suse.com/show_bug.cgi?id=1179993 * https://bugzilla.suse.com/show_bug.cgi?id=1181740 * https://bugzilla.suse.com/show_bug.cgi?id=1207205 * https://bugzilla.suse.com/show_bug.cgi?id=1212968 * https://bugzilla.suse.com/show_bug.cgi?id=1213001 * https://bugzilla.suse.com/show_bug.cgi?id=1213414 . A vital patch for qemu addresses numerous problems, such as improper disposal that may result in service interruption and additional concerns.. qemu Update, openSUSE Security, Denial of Service Fix. . Severity: Important. LinuxSecurity.com Team

Aug 01, 2023 •Important OpenSUSE

100

security advisoryupdatebind

SUSE 11-SP4: 2018:0362-1 Critical: Bind Cleanup Issue Fix

An update that solves one vulnerability and has two fixes is now available.. SUSE Security Update: Security update for bind ______________________________________________________________________________ Announcement ID: SUSE-SU-2018:0362-1 Rating: important References: #1040039 #1047184 #1076118 Cross-References: CVE-2017-3145 Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 SUSE Linux Enterprise Server 11-SP3-LTSS SUSE Linux Enterprise Point of Sale 11-SP3 SUSE Linux Enterprise Debuginfo 11-SP4 SUSE Linux Enterprise Debuginfo 11-SP3 ______________________________________________________________________________ An update that solves one vulnerability and has two fixes is now available. Description: This update for bind fixes several issues. This security issue was fixed: - CVE-2017-3145: Improper sequencing during cleanup could have lead to a use-after-free error that triggered an assertion failure and crash in named (bsc#1076118). These non-security issues were fixed: - Updated named.root file (bsc#1040039) - Update bind.keys for DNSSEC root KSK rollover (bsc#1047184) Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 11-SP4: zypper in -t patch sdksp4-bind-13455=1 - SUSE Linux Enterprise Server 11-SP4: zypper in -t patch slessp4-bind-13455=1 - SUSE Linux Enterprise Server 11-SP3-LTSS: zypper in -t patch slessp3-bind-13455=1 - SUSE Linux Enterprise Point of Sale 11-SP3: zypper in -t patch sleposp3-bind-13455=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-bind-13455=1 - SUSE Linux Enterprise Debuginfo 11-SP3: zypper in -t patchdbgsp3-bind-13455=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 11-SP4 (i586 ia64 ppc64 s390x x86_64): bind-devel-9.9.6P1-0.51.7.1 - SUSE Linux Enterprise Software Development Kit 11-SP4 (ppc64): bind-devel-32bit-9.9.6P1-0.51.7.1 - SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64): bind-9.9.6P1-0.51.7.1 bind-chrootenv-9.9.6P1-0.51.7.1 bind-doc-9.9.6P1-0.51.7.1 bind-libs-9.9.6P1-0.51.7.1 bind-utils-9.9.6P1-0.51.7.1 - SUSE Linux Enterprise Server 11-SP4 (ppc64 s390x x86_64): bind-libs-32bit-9.9.6P1-0.51.7.1 - SUSE Linux Enterprise Server 11-SP3-LTSS (i586 s390x x86_64): bind-9.9.6P1-0.51.7.1 bind-chrootenv-9.9.6P1-0.51.7.1 bind-devel-9.9.6P1-0.51.7.1 bind-doc-9.9.6P1-0.51.7.1 bind-libs-9.9.6P1-0.51.7.1 bind-utils-9.9.6P1-0.51.7.1 - SUSE Linux Enterprise Server 11-SP3-LTSS (s390x x86_64): bind-libs-32bit-9.9.6P1-0.51.7.1 - SUSE Linux Enterprise Point of Sale 11-SP3 (i586): bind-9.9.6P1-0.51.7.1 bind-chrootenv-9.9.6P1-0.51.7.1 bind-devel-9.9.6P1-0.51.7.1 bind-doc-9.9.6P1-0.51.7.1 bind-libs-9.9.6P1-0.51.7.1 bind-utils-9.9.6P1-0.51.7.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64): bind-debuginfo-9.9.6P1-0.51.7.1 bind-debugsource-9.9.6P1-0.51.7.1 - SUSE Linux Enterprise Debuginfo 11-SP3 (i586 s390x x86_64): bind-debuginfo-9.9.6P1-0.51.7.1 bind-debugsource-9.9.6P1-0.51.7.1 References: https://www.suse.com/security/cve/CVE-2017-3145.html https://bugzilla.suse.com/1040039 https://bugzilla.suse.com/1047184 https://bugzilla.suse.com/1076118 -- . Urgent patch released for SUSE bind addressing significant vulnerabilities with a solution for an inadequate reset flaw.. SUSE Bind Update, Important Fix, Cleanup Issues, Enterprise Software. . Severity: Critical. LinuxSecurity.com Team

Feb 05, 2018 •Critical SuSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.51%)

78.51% votes

Formal training or courses (4.3%)

4.3% votes

A job that required it (4.87%)

4.87% votes

Other (12.32%)

12.32% votes

bottom 200

Stay Secure with the Latest Linux Advisories

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

SUSE: dpkg Moderate Security Update CVE-2025-6297 SUSE-SU-2025:20670-1

Mageia: 2023-0319 Critical Advisory for Tomcat Input Issues

openSUSE Leap 15.5: SUSE-SU-2023:3082-1 Important: Qemu Denial Of Service

SUSE 11-SP4: 2018:0362-1 Critical: Bind Cleanup Issue Fix

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!