Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 13 articles for you...
89
security advisoryfedoraarbitrary code executionFedora 42 NGINX Mod Brotli Critical Updates CVE-2026-42926, 2026-42945
nginx-mod-vts: Rebuild for 1.30.1 nginx-mod-fancyindex: Rebuild for 1.30.1 nginx-mod-naxsi:. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-38623b4fed 2026-05-15 22:44:59.632855+00:00 -------------------------------------------------------------------------------- Name : nginx-mod-brotli Product : Fedora 42 Version : 1.0.0~rc Release : 9.fc42 URL : https://github.com/google/ngx_brotli Summary : NGINX module for Brotli compression Description : NGINX module for Brotli compression. -------------------------------------------------------------------------------- Update Information: nginx-mod-vts: Rebuild for 1.30.1 nginx-mod-fancyindex: Rebuild for 1.30.1 nginx-mod-naxsi: Rebuild for 1.30.1 nginx-mod-headers-more: Rebuild for 1.30.1 nginx-mod-brotli: Rebuild for 1.30.1 nginx-mod-modsecurity: Rebuild for 1.30.1 nginx: update to 1.30.1 fixes CVE-2026-42926, CVE-2026-42945, CVE-2026-42946, CVE-2026-42934, CVE-2026-40460 and CVE-2026-40701 -------------------------------------------------------------------------------- ChangeLog: * Wed May 13 2026 Felix Kaechele - 1.0.0~rc-9 - Rebuild for 1.30.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2477413 - CVE-2026-42945 nginx: NGINX: Arbitrary Code Execution Vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2477413 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-38623b4fed' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
May 15, 2026
•Critical
Fedora
197
security advisorydebianimportantDebian 11 lrzip Important Use After Free Fix DLA-4567-1 CVE-2025-15570
It was discovered that there was a potential use-after-free issue in the lrzip compression/decompression program. For Debian 11 bullseye, this problem has been fixed in version 0.641-1+deb11u2. We recommend that you upgrade your lrzip packages.. Debian LTS Advisory DLA-4567-1
May 06, 2026
•Important
Debian LTS
89
security advisoryfedoraimportantFedora 42 Monkey's Audio Critical Update for Out-of-Bounds Read Issue
Latest Monkey's Audio Codec release. Changes: https://monkeysaudio.com/versionhistory.html .. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-43278d411e 2026-04-18 01:08:05.671399+00:00 -------------------------------------------------------------------------------- Name : mac Product : Fedora 42 Version : 12.63 Release : 1.fc42 URL : https://monkeysaudio.com Summary : Monkey's Audio Codec Description : Monkey's Audio is a fast and easy way to compress digital music. Unlike traditional methods such as mp3, ogg, or lqt that permanently discard quality to save space, Monkey's Audio only makes perfect, bit-for-bit copies of your music. That means it always sounds perfect \u2013 exactly the same as the original. Even though the sound is perfect, it still saves a lot of space. -------------------------------------------------------------------------------- Update Information: Latest Monkey's Audio Codec release. Changes: https://monkeysaudio.com/versionhistory.html . -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 8 2026 Dominik 'Rathann' Mierzejewski - 12.63-1 - Updated to 12.63 (resolves rhbz#2446305) - Dropped obsolete patch - Bump ABI to 15 * Tue Mar 10 2026 Dominik 'Rathann' Mierzejewski - 12.50-1 - Updated to 12.50 (resolves rhbz#2363650) * Tue Feb 24 2026 Dominik 'Rathann' Mierzejewski - 12.35-3 - assume platform is Linux in headers if unspecified * Mon Feb 23 2026 Dominik 'Rathann' Mierzejewski - 12.35-2 - bump minimum CMake version (resolves rhbz#2380887) * Mon Feb 23 2026 Dominik 'Rathann' Mierzejewski - 12.35-1 - update to 12.35 (resolves rhbz#2363650) * Fri Jan 16 2026 Fedora Release Engineering - 10.18-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Thu Jul 24 2025 Fedora Release Engineering - 10.18-7 - Rebuilt forhttps://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2406922 - CVE-2025-61043 mac: out-of-bounds read in CAPECharacterHelper::GetUTF16FromUTF8 [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2406922 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-43278d411e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Monkey's Audio for Fedora 42 receives an important update addressing an out-of-bounds read issue. Install now.. Monkeys Audio Codec, Fedora Update, Audio Compression, Fedora 42. . Severity: Important. LinuxSecurity.com Team
Apr 18, 2026
•Important
Fedora
203
security advisoryupdatebugfixMageia 9: RocksDB Bugfix Update for Compression Support MGAA-2025-0079
MGAA-2025-0079 - Updated rocksdb packages fix bug. MGAA-2025-0079 - Updated rocksdb packages fix bug Publication date: 01 Sep 2025 URL: https://advisories.mageia.org/MGAA-2025-0079.html Type: bugfix Affected Mageia releases: 9 Description: Thia update adds support to LZ4 and other compression formats. References: - https://bugs.mageia.org/show_bug.cgi?id=34583 SRPMS: - 9/core/rocksdb-7.7.8-1.2.mga9 . Revised RocksDB versions for Mageia 9 enhance functionality and rectify issues, while also optimizing compression formats. Consult the announcement for details.. RocksDB Mageia Bugfix Compression Update. . Severity: Important. LinuxSecurity.com Team
Sep 01, 2025
•Important
Mageia
89
security advisorysecurity issuefedoraFedora 41: FEDORA-2025-a2a56326b3 critical: sfnt2woff-zopfli bug fix
Security fix for CVE-2010-1028 and other security-relevant bugs; see https://github.com/bramstein/sfnt2woff-zopfli/pull/20/commits.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-a2a56326b3 2025-05-20 01:45:49.098290+00:00 -------------------------------------------------------------------------------- Name : sfnt2woff-zopfli Product : Fedora 41 Version : 1.3.1 Release : 15.fc41 URL : https://github.com/bramstein/sfnt2woff-zopfli Summary : Create WOFF files with Zopfli compression Description : This is a modified version of the sfnt2woff utility that uses Zopfli as a compression algorithm instead of zlib. This results in compression gains of â on average â 5-8% compared to regular WOFF files. Zopfli generates compressed output that is compatible with regular zlib compression so the resulting WOFF files can be used everywhere. A corresponding version of the woff2sfnt utility is also provided. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2010-1028 and other security-relevant bugs; see https://github.com/bramstein/sfnt2woff-zopfli/pull/20/commits. -------------------------------------------------------------------------------- ChangeLog: * Sun May 11 2025 Benjamin A. Beasley - 1.3.1-15 - Security fix for CVE-2010-1028 - Various other fixes collected by Debian and contributed back upstream: https://github.com/bramstein/sfnt2woff-zopfli/pull/20 * Sun May 11 2025 Benjamin A. Beasley - 1.3.1-14 - Update .rpmlintrc file for current rpmlint * Sun Jan 19 2025 Fedora Release Engineering - 1.3.1-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-a2a56326b3' at the command line. For more information, refer to the dnfdocumentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- . Ubuntu 22.04 upgrade for font2woff-zopfli resolves CVE-2010-1029 and additional high-severity vulnerabilities; check release notes for setup instructions.. Fedora 41, sfnt2woff-zopfli, CVE-2010-1028, bug fixes, security alert. . Severity: Critical. LinuxSecurity.com Team
May 20, 2025
•Critical
Fedora
89
security advisoryFedorasecurity patchFedora 42: 2025-3140334065 moderate: sfnt2woff-zopfli security patch
Security fix for CVE-2010-1028 and other security-relevant bugs; see https://github.com/bramstein/sfnt2woff-zopfli/pull/20/commits.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-3140334065 2025-05-20 01:12:55.947646+00:00 -------------------------------------------------------------------------------- Name : sfnt2woff-zopfli Product : Fedora 42 Version : 1.3.1 Release : 15.fc42 URL : https://github.com/bramstein/sfnt2woff-zopfli Summary : Create WOFF files with Zopfli compression Description : This is a modified version of the sfnt2woff utility that uses Zopfli as a compression algorithm instead of zlib. This results in compression gains of â on average â 5-8% compared to regular WOFF files. Zopfli generates compressed output that is compatible with regular zlib compression so the resulting WOFF files can be used everywhere. A corresponding version of the woff2sfnt utility is also provided. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2010-1028 and other security-relevant bugs; see https://github.com/bramstein/sfnt2woff-zopfli/pull/20/commits. -------------------------------------------------------------------------------- ChangeLog: * Sun May 11 2025 Benjamin A. Beasley - 1.3.1-15 - Security fix for CVE-2010-1028 - Various other fixes collected by Debian and contributed back upstream: https://github.com/bramstein/sfnt2woff-zopfli/pull/20 * Sun May 11 2025 Benjamin A. Beasley - 1.3.1-14 - Update .rpmlintrc file for current rpmlint -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-3140334065' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signedwith the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- . Key announcement for Fedora 42 tackling vulnerabilities found in sfnt2woff-zopfli. Vital corrections incorporated in the advisory.. Fedora, sfnt2woff security, security update, security patch, compression algorithm. . LinuxSecurity.com Team
May 20, 2025
Fedora
89
security advisorysoftware updateFedoraFedora 41: FEDORA-2025-c91006eca6 critical: UPX heap overflow
5.0.0. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-c91006eca6 2025-04-06 01:20:10.028704+00:00 -------------------------------------------------------------------------------- Name : upx Product : Fedora 41 Version : 5.0.0 Release : 1.fc41 URL : https://github.com/upx/upx Summary : Ultimate Packer for eXecutables Description : UPX is a free, portable, extendable, high-performance executable packer for several different executable formats. It achieves an excellent compression ratio and offers very fast decompression. Your executables suffer no memory overhead or other drawbacks. -------------------------------------------------------------------------------- Update Information: 5.0.0 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 20 2025 Gwyn Ciesla - 5.0.0-1 - 5.0.0 * Sun Jan 19 2025 Fedora Release Engineering - 4.2.4-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Wed Dec 18 2024 Gwyn Ciesla - 4.2.4-3 - Provide bundled lzma-sdk -------------------------------------------------------------------------------- References: [ 1 ] Bug #2355649 - CVE-2025-2849 upx: UPX p_lx_elf.cpp un_DT_INIT heap-based overflow [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2355649 [ 2 ] Bug #2355650 - CVE-2025-2849 upx: UPX p_lx_elf.cpp un_DT_INIT heap-based overflow [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2355650 [ 3 ] Bug #2355651 - CVE-2025-2849 upx: UPX p_lx_elf.cpp un_DT_INIT heap-based overflow [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2355651 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-c91006eca6' at the command line. For more information, refer to the dnf documentation availableat http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Apr 06, 2025
•Critical
Fedora
89
security advisoryFedorapatchFedora 41: FEDORA-2024-2096f5d14c critical: rust-libcramjam patch
Update rust-brotli-decompressor to 4.0.1, rust-brotli to 7.0.0, and rust-async- compression to 0.4.13. Patch dependent packages as needed to avoid compat packages. Drop i686 support in rust-libcramjam and python-cramjam.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-2096f5d14c 2024-10-12 00:17:42.525118 -------------------------------------------------------------------------------- Name : rust-libcramjam Product : Fedora 41 Version : 0.3.0 Release : 10.fc41 URL : Summary : Compression library combining a plethora of algorithms Description : Compression library combining a plethora of algorithms in a similar as possible API. -------------------------------------------------------------------------------- Update Information: Update rust-brotli-decompressor to 4.0.1, rust-brotli to 7.0.0, and rust-async- compression to 0.4.13. Patch dependent packages as needed to avoid compat packages. Drop i686 support in rust-libcramjam and python-cramjam. -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 2 2024 Benjamin A. Beasley - 0.3.0-10 - Update brotli to 7.x * Wed Oct 2 2024 Benjamin A. Beasley - 0.3.0-9 - Bump release number to preserve upgrade path from F41 * Tue Oct 1 2024 Benjamin A. Beasley - 0.3.0-8 - F41+: Drop i686 support (leaf package on that architecture) * Mon Sep 30 2024 Benjamin A. Beasley - 0.3.0-7 - Update brotli from 3.x to 6.x -------------------------------------------------------------------------------- References: [ 1 ] Bug #2272914 - rust-brotli-6.0.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2272914 [ 2 ] Bug #2272915 - rust-brotli-decompressor-4.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2272915 [ 3 ] Bug #2273733 - rust-async-compression-0.4.12 is available https://bugzilla.redhat.com/show_bug.cgi?id=2273733 [ 4 ] Bug#2316061 - rust-brotli-7.0.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2316061 [ 5 ] Bug #2316120 - rust-async-compression-0.4.13 is available https://bugzilla.redhat.com/show_bug.cgi?id=2316120 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-2096f5d14c' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Oct 12, 2024
•Critical
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!