Stay Vigilant with Timely Linux Security Advisories

Refine advisories

X Clear Filters

Critical (1)

Important (1)

NULL pointer dereference (101)

OpenSSL (406)

debian (8048)

important (27834)

security advisory (115125)

use-after-free (1386)

Ubuntu (4966)

alsa-lib (6)

arbitrary code (885)

denial of service (18331)

Debian (1)

Gentoo (2)

Published Date Range

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.54%)

78.54% votes

Formal training or courses (4.29%)

4.29% votes

A job that required it (4.86%)

4.86% votes

Other (12.3%)

12.3% votes

[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350

bottom 200

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Ubuntu 22.04 OpenSSH Important Remote Access Issues USN-8222-1

Explore Latest Linux Security advisories

We found -5 articles for you...

security advisoryGentoogentoo

Gentoo: 202012-07 Normal: PostgreSQL Code Execution Threat

Multiple vulnerabilities have been found in PostgreSQL, the worst of which could result in arbitrary code execution.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 202012-07 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: PostgreSQL: Multiple vulnerabilities Date: December 07, 2020 Bugs: #754363 ID: 202012-07 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Multiple vulnerabilities have been found in PostgreSQL, the worst of which could result in arbitrary code execution. Background ========= PostgreSQL is an open source object-relational database management system. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-db/postgresql < 13.1 > = 9.5.24:9.5 > = 9.6.20:9.6 > = 10.15:10 > = 11.10:11 > = 12.5:12 > = 13.1:13 Description ========== Multiple vulnerabilities have been discovered in PostgreSQL. Please review the CVE identifiers referenced below for details. Impact ===== A remote attacker could possibly obtain sensitive information, alter SQL commands, escape PostgreSQL sandbox or execute arbitrary code with the privileges of the process. Workaround ========= There is no known workaround at this time. Resolution ========= AllPostgreSQL 9.5.x users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =dev-db/postgresql-9.5.24:9.5" All PostgreSQL 9.6.x users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =dev-db/postgresql-9.6.20:9.6" All PostgreSQL 10.x users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =dev-db/postgresql-10.15:10" All PostgreSQL 11.x users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =dev-db/postgresql-11.10:11" All PostgreSQL 12.x users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =dev-db/postgresql-12.5:12" All PostgreSQL 13.x users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =dev-db/postgresql-13.1:13" References ========= [ 1 ] CVE-2020-25694 https://nvd.nist.gov/vuln/detail/CVE-2020-25694 [ 2 ] CVE-2020-25695 https://nvd.nist.gov/vuln/detail/CVE-2020-25695 [ 3 ] CVE-2020-25696 https://nvd.nist.gov/vuln/detail/CVE-2020-25696 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/202012-07 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org. License ====== Copyright 2020 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . PostgreSQL weaknesses threaten remote command execution and jeopardize confidentiality of important information for Gentoo users.. PostgreSQLSecurity,Gentoo Advisory,Code Execution Risk,Database Vulnerability. . LinuxSecurity.com Team

Dec 06, 2020 Gentoo

security advisorydenial of servicedebian

Debian: DSA-1941-1 Critical: Poppler DoS and Code Risks

Several integer overflows, buffer overflows and memory allocation errors were discovered in the Poppler PDF rendering library, which may lead to denial of service or the execution of arbitrary code if a user is tricked into opening a malformed PDF document. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1941-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Moritz Muehlenhoff November 25, 2009 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Package : poppler Vulnerability : several Problem type : local(remote) Debian-specific: no CVE Id(s) : CVE-2009-0755 CVE-2009-3903 CVE-2009-3904 CVE-2009-3905 CVE-2009-3906 CVE-2009-3907 CVE-2009-3908 CVE-2009-3909 CVE-2009-3938 Several integer overflows, buffer overflows and memory allocation errors were discovered in the Poppler PDF rendering library, which may lead to denial of service or the execution of arbitrary code if a user is tricked into opening a malformed PDF document. For the stable distribution (lenny), these problems have been fixed in version 0.8.7-3. An update for the old stable distribution (etch) will be issued soon as version 0.4.5-5.1etch4. For the unstable distribution (sid), these problems will be fixed soon. We recommend that you upgrade your poppler packages. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 5.0 alias lenny - -------------------------------- Stable updates areavailable for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: Size/MD5 checksum: 1469587 9af81429d6f8639c357a5eed25583365 Size/MD5 checksum: 23304 55a0a858e65401534120b10b08c62256 Size/MD5 checksum: 1481 4e0f8c954b0f7072d868b03da79799c7 alpha architecture (DEC Alpha) Size/MD5 checksum: 1334790 adc6ceeb368e0d4feebdf8163e2281e4 Size/MD5 checksum: 196974 20d4df914f08ed2ccef0859dadcff863 Size/MD5 checksum: 234664 f330cdb0bf1ee9001edb92677ff2d94d Size/MD5 checksum: 180372 701c9f92558359ec676ac7ed8c402abc Size/MD5 checksum: 220194 74703001f5c2588a415a53e0e61db107 Size/MD5 checksum: 452496 45ec03d58a9b33c941625d29ea726514 Size/MD5 checksum: 329740 9b5b796f66136fccdd68ee2fb4410239 Size/MD5 checksum: 891178 06d13d1837a263952327b5e1910bb049 Size/MD5 checksum: 302962 343524216b65fad03cf7292183ad4760 Size/MD5 checksum: 3204196 077162dc4649e5e4e8e049e72ab2421c amd64 architecture (AMD x86_64 (AMD64)) Size/MD5 checksum: 232070 24aa1dea8c17e539aacc23f5ca2ff683 Size/MD5 checksum: 358464 8b52ef334b17065d7355c1f944407e3f Size/MD5 checksum: 3148528 fdaa186b15cd2ff806d3e69f9924b792 Size/MD5 checksum: 178226 4b9ae48661be12327e3dc8f79f6cbd5f Size/MD5 checksum: 840192 690949b3a40aa59f1b2952cd48dea805 Size/MD5 checksum: 1118416 34453c3ec346cc34b4ef94774d9bd975 Size/MD5 checksum: 184820 3fc994f62c6e4f5c5615e48b5591574c Size/MD5 checksum: 313712 2f16ec788446b18a6ce0313ff233552b Size/MD5 checksum: 217370 51b12c5a9b716bef3cd8a5d29b4ac652 Size/MD5 checksum: 274990 0f168bd7e2f0f201c4f1b5436c252987 arm architecture (ARM) Size/MD5 checksum: 1096672 01910f32db12361cf60f109f986f1324 Size/MD5 checksum: 341724 4795d7bae33531c80bb14fc51e8c9952 Size/MD5 checksum: 226514 2d2f7ab236403d3a7040aa09e7832b1c Size/MD5 checksum: 389880 8a6b100417108055bf4dc1d40d77fa8b Size/MD5checksum: 208128 7fad0af4bd923fc218c4ed6a9aee0a48 Size/MD5 checksum: 807458 2e631c2cdbf34f7847d9106adca8d6c6 Size/MD5 checksum: 3115760 99c003b02687fe4caeae077cc58cc00d Size/MD5 checksum: 178000 6e68b3d42d47efabb7f1712862103d20 Size/MD5 checksum: 184604 1066c02c90002b2b69350619738963c3 Size/MD5 checksum: 270488 703a85948bb11c02d0e3b86237e7455d armel architecture (ARM EABI) Size/MD5 checksum: 207820 8098dd11c17d88a38f02eb38a7e48df8 Size/MD5 checksum: 376028 ff27722643819e5693823193cc6749ea Size/MD5 checksum: 273904 8077b3f075149e533852a8c24467def9 Size/MD5 checksum: 222166 0864461cfc76015274da63192778e1f2 Size/MD5 checksum: 776950 f34caa24fb31c36ab32162315d706a17 Size/MD5 checksum: 1108574 de0fe0a522dc1eb18db681b9a96ee089 Size/MD5 checksum: 181564 a6d91d3f6ae1f43e450264bdad083e04 Size/MD5 checksum: 174198 d1bd20388d59831b8aa6b0a9dfe9a537 Size/MD5 checksum: 3157178 52340e4305b95a6b6f8e07cef9c94647 Size/MD5 checksum: 310682 ff8775a24d86a006b4bdee549095a543 hppa architecture (HP PA RISC) Size/MD5 checksum: 291400 18dc7b5a55715f920734a0c9080bb8e4 Size/MD5 checksum: 188042 3c054ee2136540e9c378d03f032900e2 Size/MD5 checksum: 929630 70bfae8d06c8b9654a09d1cd8ffb442c Size/MD5 checksum: 335326 32e7009057d2213232e4eab347ad6082 Size/MD5 checksum: 180650 5756cb5df58f9bded9ddd34fe17fb6a0 Size/MD5 checksum: 3140906 8f80e2f2f99c1021d1167ed432480914 Size/MD5 checksum: 234754 42029ce3bfc33844b96140c438358993 Size/MD5 checksum: 390020 984a6eb8add88e15cf1b0b749ffb5686 Size/MD5 checksum: 1260894 092507febedac1f845b542b5da11820c Size/MD5 checksum: 225948 da2eabf0c906824a1ae02b95cdc97a8f i386 architecture (Intel ia32) Size/MD5 checksum: 270290 c8e64a55fbeae9dec7382d7ffc4860d7 Size/MD5 checksum: 181818 7790ec0d1b045bac5ad8acf5b273d322 Size/MD5 checksum: 226530 012aaf45768ca8ca22a6d13073b0011c Size/MD5checksum: 312708 0858c85c7bb2627f97e312caa7ac080b Size/MD5 checksum: 344388 d5146377e2679555858662b0ee9a904b Size/MD5 checksum: 3061938 2ec5991343c3b279641beee69d0253e3 Size/MD5 checksum: 177704 d31a5e3e4df9c41e52619e134a75d4af Size/MD5 checksum: 1053900 da7cc53970b606d599e5f02e0d068cc9 Size/MD5 checksum: 214612 bd5a6265f16cd51d4901692cfcaa655b Size/MD5 checksum: 813824 a4744ae2b084c5a15485f4f3ec82342f ia64 architecture (Intel ia64) Size/MD5 checksum: 232988 3eb095121469ddad24dfbb347d65bda7 Size/MD5 checksum: 257208 eb1bfcf546e7a7ddc9071a8f7749ec7d Size/MD5 checksum: 195248 6c0d4510170d24342bee6732e416e497 Size/MD5 checksum: 184620 ffa1bf57a03e82db9d76a177c539f1b4 Size/MD5 checksum: 302272 bc12525cd130ccce7f6858b459352a7e Size/MD5 checksum: 353056 e9797db4c7161a44ee19b0b9904a93b6 Size/MD5 checksum: 1421660 9de0b7b911c9e45a64755a00b8efe56f Size/MD5 checksum: 1073678 a7105ee7b1a5e1320fa0bd337a9c071b Size/MD5 checksum: 3105780 4c18b21c30873abc144cfbdbda3afa2a Size/MD5 checksum: 424280 754097ccdf1e2018c27cc23e77611025 mips architecture (MIPS (Big Endian)) Size/MD5 checksum: 187976 77a7d378772b5b06e0246bed481f9d5f Size/MD5 checksum: 177002 4c199ed2c3122490bdb3187690cb8e74 Size/MD5 checksum: 231638 4f1630307637dd91b4b81eb770801689 Size/MD5 checksum: 215024 774f9149da9f2b1c8f19f645add40b8b Size/MD5 checksum: 390492 7f387232dc7aef639211309e8e0182d0 Size/MD5 checksum: 826354 04377b34bb9389e94942d4a7fc7e021c Size/MD5 checksum: 3230814 cccbe96a091ce019d54653bf0e41c69a Size/MD5 checksum: 302368 e7152a0a6618bd05d124c0ce6ee42c53 Size/MD5 checksum: 287688 c8711627da0a79d362d90ee8f681f091 Size/MD5 checksum: 1219124 755a505cef94d51b148568310e5871fc mipsel architecture (MIPS (Little Endian)) Size/MD5 checksum: 187086 3dd27225aff82082503d8cacd72a0ec2 Size/MD5 checksum: 804582 f97409504883b64db0f4b0238800fd5a Size/MD5 checksum: 1200616 122b5b413a0579e6fa4bd868a0c38ba9 Size/MD5 checksum: 386556 695b7729cfe1fb62cd6d4f37d60f8df0 Size/MD5 checksum: 214066 505a894995efb5624e7226d578c6984c Size/MD5 checksum: 287962 e2330f7095902dbcb6eea90f7fec5c0e Size/MD5 checksum: 231700 931ad6728924a8511ec0bb193be0f4a9 Size/MD5 checksum: 3123054 a8a5ff5547608a095ce709227fe70bee Size/MD5 checksum: 300122 a52f2f9d10e0cef69551e2e533109467 Size/MD5 checksum: 176902 29ecd0b702c9bb11404efde67cdd5b7b powerpc architecture (PowerPC) Size/MD5 checksum: 185164 550684aab0a186e611e4360b6624cdd8 Size/MD5 checksum: 285208 7988738bbc015bb16fcab13bbbbcc20b Size/MD5 checksum: 360804 42cab8e240b4a7de9e62202b83039360 Size/MD5 checksum: 1183416 789101eaaafe977e949827750872da66 Size/MD5 checksum: 882860 8bc2784a8663b1d077dfc5d9866d40e9 Size/MD5 checksum: 181116 f9f78a295a924ead21ad588a7949e9d2 Size/MD5 checksum: 222218 4f8ac7559664c3e9a31f6b31e88a65ce Size/MD5 checksum: 317990 66b3b30f8baf1ab964f0437f551621e5 Size/MD5 checksum: 3226062 6c3cc30f6a0c2bdac5ec06e1b928338a Size/MD5 checksum: 247222 c0c68194014f269724c999e5b16f9eba s390 architecture (IBM S/390) Size/MD5 checksum: 218252 e41d127f260ba15a56dc7b42611146bd Size/MD5 checksum: 182512 de685e8065837a6ea411d8a84abaffd0 Size/MD5 checksum: 312702 8d45e17d8ac29291704765d523b7179e Size/MD5 checksum: 177556 f5ce014d7fe7defeb8dc76af8ca1b885 Size/MD5 checksum: 349670 a2b956fc22a75710329117ddcf824ea4 Size/MD5 checksum: 279260 89bf9399206e169eee1bc521c4d38386 Size/MD5 checksum: 229604 e5c36cd62c71b7238e37802f05688df7 Size/MD5 checksum: 3246660 622484103366a278451786b563c017fc Size/MD5 checksum: 841254 e03aa30315c8a933f165acb45d4fe846 Size/MD5 checksum: 1122140 54d336a0cb8dc7f022e2960e4c393a3f sparc architecture (Sun SPARC/UltraSPARC) Size/MD5 checksum: 3109562ad62b41966206abf6a5e51abdc76310 Size/MD5 checksum: 226786 68b42902f07c3a4542d7b7c71aee481d Size/MD5 checksum: 3009938 0390643723092537919e6d2c62f5f4cb Size/MD5 checksum: 214264 10a5fa450895a7d4f2340472b034dfb2 Size/MD5 checksum: 823062 6565194cdd9987d092b427e164ff68cc Size/MD5 checksum: 348108 950535a89f3e90c8c1f49176835dfe6a Size/MD5 checksum: 272798 eabf47fa697c8beadaf5ea07f7b8a892 Size/MD5 checksum: 176666 8d35ce9b58c1bc0aafa14c90bc5b4726 Size/MD5 checksum: 181458 50b63df965e98f463af9bab524685d88 Size/MD5 checksum: 1077822 fd0a234b61e3b1e55d6c2dd7751453da These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb https://www.debian.org/security/ stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . C++ buffer overflows and memory vulnerabilities in the Ghostscript toolkit present potential threats of Denial of Service and arbitrary code execution. Patches have been released.. Poppler Security, Debian Advisory, Denial of Service, Memory Safety, Software Updates. . Severity: Critical. LinuxSecurity.com Team

Nov 25, 2009 •Critical Debian

security advisorygentooarbitrary code execution

Gentoo: GLSA 200907-01 Normal: libwmf User Code Execution Risk

libwmf bundles an old GD version which contains a "use-after-free" vulnerability.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200907-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: libwmf: User-assisted execution of arbitrary code Date: July 02, 2009 Bugs: #268161 ID: 200907-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= libwmf bundles an old GD version which contains a "use-after-free" vulnerability. Background ========= libwmf is a library for converting WMF files. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-libs/libwmf < 0.2.8.4-r3 > = 0.2.8.4-r3 Description ========== The embedded fork of the GD library introduced a "use-after-free" vulnerability in a modification which is specific to libwmf. Impact ===== A remote attacker could entice a user to open a specially crafted WMF file, possibly resulting in the execution of arbitrary code with the privileges of the user running the application, or a Denial of Service. Workaround ========= There is no known workaround at this time. Resolution ========= All libwmf users should upgrade to the latest version which no longer builds the GD library: # emerge --sync # emerge --ask --oneshot --verbose "> =media-libs/libwmf-0.2.8.4-r3" References ========= [ 1 ] CVE-2009-1364 https://www.cve.org/CVERecord?id=CVE-2009-1364 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200907-01 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2009 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . The recent Gentoo security advisory GLSA 202108-02 highlights a vulnerability in the libpng library that could lead to potential remote code execution under specific user conditions.. libwmf,Code Execution Risk,Gentoo Advisory,Use After Free,GD Library Security. . LinuxSecurity.com Team

Jul 02, 2009 Gentoo

security advisoryRed Hat Enterprise Linuxsecurity impact

Red Hat Enterprise Linux 5 giflib Important Security Update RHSA-2009:0444-01

Updated giflib packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team.. ==================================================================== Red Hat Security Advisory Synopsis: Important: giflib security update Advisory ID: RHSA-2009:0444-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2009:0444.html Issue date: 2009-04-22 CVE Names: CVE-2005-2974 CVE-2005-3350 ==================================================================== 1. Summary: Updated giflib packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 RHEL Desktop Workstation (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 3. Description: The giflib packages contain a shared library of functions for loading and saving GIF image files. This library is API and ABI compatible with libungif, the library that supported uncompressed GIF image files while the Unisys LZW patent was in effect. Several flaws were discovered in the way giflib decodes GIF images. An attacker could create a carefully crafted GIF image that could cause an application using giflib to crash or, possibly, execute arbitrary code when opened by a victim. (CVE-2005-2974, CVE-2005-3350) All users of giflib are advised to upgrade to these updated packages, which contain backported patches to resolve these issues. All running applications using giflib must be restarted for the update to take effect. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. This update is available viaRed Hat Network. Details on how to use the Red Hat Network to apply this update are available at 5. Bugs fixed (http://bugzilla.redhat.com/): 494823 - CVE-2005-3350 giflib/libunfig: memory corruption via a crafted GIF 494826 - CVE-2005-2974 giflib/libunfig: NULL pointer dereference crash 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: i386: giflib-4.1.3-7.1.el5_3.1.i386.rpm giflib-debuginfo-4.1.3-7.1.el5_3.1.i386.rpm giflib-utils-4.1.3-7.1.el5_3.1.i386.rpm x86_64: giflib-4.1.3-7.1.el5_3.1.i386.rpm giflib-4.1.3-7.1.el5_3.1.x86_64.rpm giflib-debuginfo-4.1.3-7.1.el5_3.1.i386.rpm giflib-debuginfo-4.1.3-7.1.el5_3.1.x86_64.rpm giflib-utils-4.1.3-7.1.el5_3.1.x86_64.rpm RHEL Desktop Workstation (v. 5 client): Source: i386: giflib-debuginfo-4.1.3-7.1.el5_3.1.i386.rpm giflib-devel-4.1.3-7.1.el5_3.1.i386.rpm x86_64: giflib-debuginfo-4.1.3-7.1.el5_3.1.i386.rpm giflib-debuginfo-4.1.3-7.1.el5_3.1.x86_64.rpm giflib-devel-4.1.3-7.1.el5_3.1.i386.rpm giflib-devel-4.1.3-7.1.el5_3.1.x86_64.rpm Red Hat Enterprise Linux (v. 5server): Source: i386: giflib-4.1.3-7.1.el5_3.1.i386.rpm giflib-debuginfo-4.1.3-7.1.el5_3.1.i386.rpm giflib-devel-4.1.3-7.1.el5_3.1.i386.rpm giflib-utils-4.1.3-7.1.el5_3.1.i386.rpm ia64: giflib-4.1.3-7.1.el5_3.1.ia64.rpm giflib-debuginfo-4.1.3-7.1.el5_3.1.ia64.rpm giflib-devel-4.1.3-7.1.el5_3.1.ia64.rpm giflib-utils-4.1.3-7.1.el5_3.1.ia64.rpm ppc: giflib-4.1.3-7.1.el5_3.1.ppc.rpm giflib-4.1.3-7.1.el5_3.1.ppc64.rpm giflib-debuginfo-4.1.3-7.1.el5_3.1.ppc.rpm giflib-debuginfo-4.1.3-7.1.el5_3.1.ppc64.rpm giflib-devel-4.1.3-7.1.el5_3.1.ppc.rpm giflib-devel-4.1.3-7.1.el5_3.1.ppc64.rpm giflib-utils-4.1.3-7.1.el5_3.1.ppc.rpm s390x: giflib-4.1.3-7.1.el5_3.1.s390.rpm giflib-4.1.3-7.1.el5_3.1.s390x.rpm giflib-debuginfo-4.1.3-7.1.el5_3.1.s390.rpm giflib-debuginfo-4.1.3-7.1.el5_3.1.s390x.rpm giflib-devel-4.1.3-7.1.el5_3.1.s390.rpm giflib-devel-4.1.3-7.1.el5_3.1.s390x.rpm giflib-utils-4.1.3-7.1.el5_3.1.s390x.rpm x86_64: giflib-4.1.3-7.1.el5_3.1.i386.rpm giflib-4.1.3-7.1.el5_3.1.x86_64.rpm giflib-debuginfo-4.1.3-7.1.el5_3.1.i386.rpm giflib-debuginfo-4.1.3-7.1.el5_3.1.x86_64.rpm giflib-devel-4.1.3-7.1.el5_3.1.i386.rpm giflib-devel-4.1.3-7.1.el5_3.1.x86_64.rpm giflib-utils-4.1.3-7.1.el5_3.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://www.cve.org/CVERecord?id=CVE-2005-2974 https://www.cve.org/CVERecord?id=CVE-2005-3350 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2009 Red Hat, Inc. . To address potential security flaws in giflib on Red Hat Enterprise Linux 5, you should acquire the latest critical security patch.. giflib Update, Red Hat Enterprise, Important Security Fix, Code Risk Update. . Severity: Important. LinuxSecurity.com Team

Apr 23, 2009 •Important Red Hat

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.54%)

78.54% votes

Formal training or courses (4.29%)

4.29% votes

A job that required it (4.86%)

4.86% votes

Other (12.3%)

12.3% votes

bottom 200

Stay Secure with the Latest Linux Advisories

Debian LTS openssl Important Use-After-Free NULL Pointer Issues DLA-4624-1

Ubuntu 20.04 alsa-lib Important Denial of Service Fix USN-8044-2

Ubuntu 26.04 LTS node-shell-quote Important Denial of Service CVE-2026-9277

Mageia 9 Suricata Critical Performance Security Issues MGASA-2026-0181

Mageia 9 PackageKit Important TOCTOU Race Escalation CVE-2026-41651

Mageia 9 Unbound Critical Remote Code Execution Advisory 2026-0034

Ubuntu 26.04 LTS Netatalk Multiple Security Issues USN-8395-1

Fedora 43 mingw-objfw 1.5.5 Update Security Fix FEDORA-2026-de23fedf3e

Fedora 43 objfw Important Update 1.5.5 Bug Fixes June 2026

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Ubuntu 22.04 OpenSSH Important Remote Access Issues USN-8222-1

Explore Latest Linux Security advisories

Gentoo: 202012-07 Normal: PostgreSQL Code Execution Threat

Debian: DSA-1941-1 Critical: Poppler DoS and Code Risks

Gentoo: GLSA 200907-01 Normal: libwmf User Code Execution Risk

Red Hat Enterprise Linux 5 giflib Important Security Update RHSA-2009:0444-01

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Ubuntu 22.04 OpenSSH Important Remote Access Issues USN-8222-1

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Debian LTS openssl Important Use-After-Free NULL Pointer Issues DLA-4624-1

Ubuntu 20.04 alsa-lib Important Denial of Service Fix USN-8044-2

Ubuntu 26.04 LTS node-shell-quote Important Denial of Service CVE-2026-9277

Mageia 9 Suricata Critical Performance Security Issues MGASA-2026-0181

Mageia 9 PackageKit Important TOCTOU Race Escalation CVE-2026-41651

Mageia 9 Unbound Critical Remote Code Execution Advisory 2026-0034

Ubuntu 26.04 LTS Netatalk Multiple Security Issues USN-8395-1

Fedora 43 mingw-objfw 1.5.5 Update Security Fix FEDORA-2026-de23fedf3e

Fedora 43 objfw Important Update 1.5.5 Bug Fixes June 2026

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!