Alerts This Week
Warning Icon 1 687
Alerts This Week
Warning Icon 1 687

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":546,"type":"x","order":1,"pct":78.45,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.31,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.36,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
87
Ls Advisories Debian Esm H240
Price Tag 1security advisoryremote code executiondebian

Debian DSA-5413-1 Critical: Sniproxy Remote Code Execution Risk

An issue has been found in sniproxy, a transparent TLS and HTTP layer 4 proxy with SNI support. Due to bad handling of wildcard backend hosts, a crafted HTTP or TLS packet might lead to remote arbitrary code execution. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-5413-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Thorsten Alteholz May 26, 2023 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : sniproxy CVE ID : CVE-2023-25076 Debian Bug : 1033752 An issue has been found in sniproxy, a transparent TLS and HTTP layer 4 proxy with SNI support. Due to bad handling of wildcard backend hosts, a crafted HTTP or TLS packet might lead to remote arbitrary code execution. For the stable distribution (bullseye), this problem has been fixed in version 0.6.0-2+deb11u1. We recommend that you upgrade your sniproxy packages. For the detailed security status of sniproxy please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/sniproxy Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Debian Security Advisory DSA-5413-1 released, tackling a critical remote code execution vulnerability in sniproxy due to improper wildcard host management. sniproxy security, Debian update, remote execution flaw, TLS proxy vulnerability. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 26, 2023 Critical Debian
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryremote code executionSQL injection

SUSE: 2022:14881-1 Important: Fixes For Log4j Coding Flaws

An update that fixes three vulnerabilities is now available. . SUSE Security Update: Security update for log4j ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:14881-1 Rating: important References: #1194842 #1194843 #1194844 Cross-References: CVE-2022-23302 CVE-2022-23305 CVE-2022-23307 CVSS scores: CVE-2022-23302 (SUSE): 6.6 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2022-23305 (SUSE): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-23307 (SUSE): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE Linux Enterprise Server 11-SP4-LTSS SUSE Linux Enterprise Point of Sale 11-SP3 ______________________________________________________________________________ An update that fixes three vulnerabilities is now available. Description: This update for log4j fixes the following issues: - CVE-2022-23307: Fixed deserialization flaw in the chainsaw component of log4j leading to malicious code execution. (bsc#1194844) - CVE-2022-23305: Fixed SQL injection when application is configured to use JDBCAppender. (bsc#1194843) - CVE-2022-23302: Fixed remote code execution when application is configured to use JMSSink. (bsc#1194842) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11-SP4-LTSS: zypper in -t patch slessp4-log4j-14881=1 - SUSE Linux Enterprise Point of Sale 11-SP3: zypper in -t patch sleposp3-log4j-14881=1 Package List: - SUSE Linux Enterprise Server 11-SP4-LTSS (noarch): log4j-1.2.15-26.32.20.1 - SUSE Linux Enterprise Point of Sale 11-SP3 (noarch): log4j-1.2.15-26.32.20.1 References: https://www.suse.com/security/cve/CVE-2022-23302.html https://www.suse.com/security/cve/CVE-2022-23305.html https://www.suse.com/security/cve/CVE-2022-23307.html https://bugzilla.suse.com/1194842 https://bugzilla.suse.com/1194843 https://bugzilla.suse.com/1194844 . SUSE Security Patch for log4j addresses critical vulnerabilities, notably remote command execution and SQL injection flaws. Take action immediately.. SUSE Security Update, Log4j Patch, Remote Code Fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 26, 2022 Important SuSE
Banner 2 1028x280 1708121730 1 1771599631
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorysecurity fixthunderbird update

Scientific Linux: Thunderbird Security Fix SLSA-2017:0498-1 CVE-2017-5400 Important

Important: thunderbird security update. Date: Tue, 14 Mar 2017 14:07:48 -0000 Reply-To: scientific-linux-users@ Sender: Security Errata for Scientific Linux From: Pat Riehecky Subject: Security ERRATA Important: thunderbird on SL5.x, SL6.x, SL7.x i386/x86_64 MIME-Version: 1.0 Message-ID: Synopsis: Important: thunderbird security update Advisory ID: SLSA-2017:0498-1 Issue Date: 2017-03-14 CVE Numbers: CVE-2017-5400 CVE-2017-5401 CVE-2017-5402 CVE-2017-5404 CVE-2017-5407 CVE-2017-5410 CVE-2017-5408 CVE-2017-5405 CVE-2017-5398 -- This update upgrades Thunderbird to version 45.8.0. Security Fix(es): * Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. (CVE-2017-5398, CVE-2017-5400, CVE-2017-5401, CVE-2017-5402, CVE-2017-5404, CVE-2017-5407, CVE-2017-5408, CVE-2017-5410, CVE-2017-5405) -- SL5 x86_64 thunderbird-45.8.0-1.el5_11.x86_64.rpm thunderbird-debuginfo-45.8.0-1.el5_11.x86_64.rpm i386 thunderbird-45.8.0-1.el5_11.i386.rpm thunderbird-debuginfo-45.8.0-1.el5_11.i386.rpm SL6 x86_64 thunderbird-45.8.0-1.el6_8.x86_64.rpm thunderbird-debuginfo-45.8.0-1.el6_8.x86_64.rpm i386 thunderbird-45.8.0-1.el6_8.i686.rpm thunderbird-debuginfo-45.8.0-1.el6_8.i686.rpm SL7 x86_64 thunderbird-45.8.0-1.el7_3.x86_64.rpm thunderbird-debuginfo-45.8.0-1.el7_3.x86_64.rpm - Scientific Linux Development Team . The new Firefox patch resolves major vulnerabilities affecting platforms on SL5.x, SL6.x, and SL7.x iterations.. thunderbird security, Scientific Linux, security update, code execution issues, important advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 14, 2017 Important Scientific Linux
87
Ls Advisories Debian Esm H240
Price Tag 1security advisoryremote code executiondebian

Ubuntu 16.04: USN-3468-1 Important PHPMailer Security Flaw

Dawid Golunski discovered that PHPMailer, a popular library to send email from PHP applications, allowed a remote attacker to execute code if they were able to provide a crafted Sender address. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-3750-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Thijs Kinkhorst December 31, 2016 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : libphp-phpmailer CVE ID : CVE-2016-10033 Debian Bug : 849365 Dawid Golunski discovered that PHPMailer, a popular library to send email from PHP applications, allowed a remote attacker to execute code if they were able to provide a crafted Sender address. Note that for this issue also CVE-2016-10045 was assigned, which is a regression in the original patch proposed for CVE-2016-10033. Because the origial patch was not applied in Debian, Debian was not vulnerable to CVE-2016-10045. For the stable distribution (jessie), this problem has been fixed in version 5.2.9+dfsg-2+deb8u2. For the unstable distribution (sid), this problem has been fixed in version 5.2.14+dfsg-2.1. We recommend that you upgrade your libphp-phpmailer packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Debian Security Notice DSA-3751-2: vital OpenSSL patch resolves critical buffer overflow issue. Update immediately. libphp-phpmailer, remote code execution, debian security advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 31, 2016 Important Debian
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":546,"type":"x","order":1,"pct":78.45,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.31,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.36,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here