Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian LTS openssl Important Use-After-Free NULL Pointer Issues DLA-4624-1

Calendar White Jun 09, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 alsa-lib Important Denial of Service Fix USN-8044-2

Calendar White Jun 09, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS node-shell-quote Important Denial of Service CVE-2026-9277

Calendar White Jun 09, 2026
Important
Mageia Large Esm H800
Mageia

Mageia 9 Suricata Critical Performance Security Issues MGASA-2026-0181

Calendar White Jun 09, 2026
Critical
Mageia Large Esm H900
Mageia

Mageia 9 PackageKit Important TOCTOU Race Escalation CVE-2026-41651

Calendar White Jun 09, 2026
Important
Mageia Large Esm H900
Mageia

Mageia 9 Unbound Critical Remote Code Execution Advisory 2026-0034

Calendar White Jun 09, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS Netatalk Multiple Security Issues USN-8395-1

Calendar White Jun 09, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 mingw-objfw 1.5.5 Update Security Fix FEDORA-2026-de23fedf3e

Calendar White Jun 08, 2026
Fedora Large Esm H900
Fedora

Fedora 43 objfw Important Update 1.5.5 Bug Fixes June 2026

Calendar White Jun 08, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity updateFedora

Fedora: 33 Moderate Advisory on Redis 6.0.15 Integer Overflow

** Redis 6.0.15** - Released Wed Jul 21 16:32:19 IDT 2021 Upgrade urgency: SECURITY, contains fixes to security issues that affect authenticated client connections on 32-bit versions. MODERATE otherwise. Fix integer overflow in BITFIELD on 32-bit versions (**CVE-2021-32761**). An integer overflow bug in Redis version 2.2 or newer can be exploited using the BITFIELD command to. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-76cf1653b3 2021-08-01 04:04:30.838612 --------------------------------------------------------------------------------Name : redis Product : Fedora 33 Version : 6.0.15 Release : 1.fc33 URL : https://redis.io Summary : A persistent key-value database Description : Redis is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing set intersection, union and difference; or getting the member with highest ranking in a sorted set. In order to achieve its outstanding performance, Redis works with an in-memory dataset. Depending on your use case, you can persist it either by dumping the dataset to disk every once in a while, or by appending each command to a log. Redis also supports trivial-to-setup master-slave replication, with very fast non-blocking first synchronization, auto-reconnection on net split and so forth. Other features include Transactions, Pub/Sub, Lua scripting, Keys with a limited time-to-live, and configuration settings to make Redis behave like a cache. You can use Redis from most programming languages also. --------------------------------------------------------------------------------Update Information: ** Redis 6.0.15** - Released Wed Jul 21 16:32:19 IDT 2021 Upgrade urgency: SECURITY, contains fixes tosecurity issues that affect authenticated client connections on 32-bit versions. MODERATE otherwise. Fix integer overflow in BITFIELD on 32-bit versions (**CVE-2021-32761**). An integer overflow bug in Redis version 2.2 or newer can be exploited using the BITFIELD command to corrupt the heap and potentially result with remote code execution. Bug fixes that involve behavior changes: * Change reply type for ZPOPMAX/MIN with count in RESP3 to nested array (#8981). Was using a flat array like in RESP2 instead of a nested array like ZRANGE does. Bug fixes: * Fail EXEC command in case a watched key is expired (#9194) * Fix SMOVE not to invalidate dest key (WATCH and tracking) when member already exists (#9244) * Fix SINTERSTORE not to delete dest key when getting a wrong type error (#9032) * Fix overflows on 32-bit versions in GETBIT, SETBIT, BITCOUNT, BITPOS, and BITFIELD (#9191) * Set TCP keepalive on inbound cluster bus connections (#9230) * Fix ziplist length updates on big-endian platforms (#2080) * Fix diskless replica loading to recover from RDB short read on module AUX data (#9199) * Fix race in client side tracking (#9116) * If diskless repl child is killed, make sure to reap the child pid (#7742) * Add a timeout mechanism for replicas stuck in fullsync (#8762) CLI tools: * redis-cli cluster import support source and target that require auth (#7994) * redis-cli cluster import command may issue wrong MIGRATE command, sending COPY instead of REPLACE (#8945) * redis-cli support for RESP3 set type in CSV and RAW output (#7338) --------------------------------------------------------------------------------ChangeLog: * Thu Jul 22 2021 Remi Collet - 6.0.15-1 - Upstream 6.0.15 release - Fix CVE-2021-32761: 32-bit systems BITFIELD command integer overflow. --------------------------------------------------------------------------------References: [ 1 ] Bug #1985476 - CVE-2021-32761 redis: integer overflow issues with BITFIELD command on32-bit systems https://bugzilla.redhat.com/show_bug.cgi?id=1985476 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-76cf1653b3' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Critical update for Redis 6.0.15: Addresses integer overflow issue impacting 32-bit architectures, categorized as moderate risk.. Redis Integer Overflow Fix,Fedora Redis Update,Security Notifications. . LinuxSecurity.com Team

Calendar 2 Aug 01, 2021 Fedora
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisoryremote exploitcritical update

Scientific Linux SL5.x: Critical GnuTLS Security Update

Critical: gnutls security update. Date: Tue, 20 May 2008 15:37:42 -0500 Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for gnutls on SL5.x i386/x86_64 Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it." Synopsis: Critical: gnutls security update Issue date: 2008-05-20 CVE Names: CVE-2008-1948 CVE-2008-1949 CVE-2008-1950 Flaws were found in the way GnuTLS handles malicious client connections. A malicious remote client could send a specially crafted request to a service using GnuTLS that could cause the service to crash. (CVE-2008-1948, CVE-2008-1949, CVE-2008-1950) At this time we have not seen any code that is using this exploit. But in Scientific Linux 5 there are some applications, such as CUPS, that would be directly vulnerable if/when there is an exploit. Because of the potential threat we are labeling this critical. SL 5.x SRPMS: gnutls-1.4.1-3.el5_1.src.rpm i386: gnutls-1.4.1-3.el5_1.i386.rpm gnutls-devel-1.4.1-3.el5_1.i386.rpm gnutls-utils-1.4.1-3.el5_1.i386.rpm x86_64: gnutls-1.4.1-3.el5_1.i386.rpm gnutls-1.4.1-3.el5_1.x86_64.rpm gnutls-devel-1.4.1-3.el5_1.i386.rpm gnutls-devel-1.4.1-3.el5_1.x86_64.rpm gnutls-utils-1.4.1-3.el5_1.x86_64.rpm -Connie Sieh -Troy Dawson . OpenSSH vulnerability patch released for severe weaknesses in Ubuntu 18 for amd64 and arm architectures.. GnuTLS Security Update, Scientific Linux Errata, Remote Exploit. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 20, 2008 Critical Scientific Linux
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here