Alerts This Week
Warning Icon 1 609
Alerts This Week
Warning Icon 1 609

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Calendar White Jun 05, 2026
Important
Fedora Large Esm H800
Fedora

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Calendar White Jun 05, 2026
Critical
Fedora Large Esm H900
Fedora

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Calendar White Jun 05, 2026
high
Fedora Large Esm H800
Fedora

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorymoderateconfiguration flaw

Mageia: 2019-0063 Moderate: Cinnamon Icon Configuration Flaw

A flaw was found in Cinnamon 1.9.2 through 3.8.6. The cinnamon-settings-users.py GUI runs as root and allows configuration of (for example) other users' icon files in _on_face_browse_menuitem_activated and _on_face_menuitem_activated. These icon files are written to the respective user's $HOME/.face location. If an unprivileged user prepares a . MGASA-2019-0063 - Updated cinnamon packages fix security vulnerability Publication date: 13 Feb 2019 URL: https://advisories.mageia.org/MGASA-2019-0063.html Type: security Affected Mageia releases: 6 CVE: CVE-2018-13054 A flaw was found in Cinnamon 1.9.2 through 3.8.6. The cinnamon-settings-users.py GUI runs as root and allows configuration of (for example) other users' icon files in _on_face_browse_menuitem_activated and _on_face_menuitem_activated. These icon files are written to the respective user's $HOME/.face location. If an unprivileged user prepares a symlink pointing to an arbitrary location, then this location will be overwritten with the icon content (CVE-2018-13054). References: - https://bugs.mageia.org/show_bug.cgi?id=23272 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/XSADMZDE26IBCLBJOASR5ZX4E2OKKPVD/ - - https://www.cve.org/CVERecord?id=CVE-2018-13054 SRPMS: - 6/core/cinnamon-3.2.8-4.1.mga6 . MGASA-2019-0063 - Updated cinnamon packages fix security vulnerability Publication date: 13 Feb 2019. found, cinnamon, through, cinnamon-settings-users. . LinuxSecurity.com Team

Calendar 2 Feb 13, 2019 Mageia
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorymoderatecross-site scripting

Ubuntu: 1182-1 Moderate: Samba Cross-Site Scripting Threats

An attacker could use a malicious URL to reconfigure Samba or steal information.. =========================================================================Ubuntu Security Notice USN-1182-1 August 02, 2011 samba vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 11.04 - Ubuntu 10.10 - Ubuntu 10.04 LTS - Ubuntu 8.04 LTS Summary: An attacker could use a malicious URL to reconfigure Samba or steal information. Software Description: - samba: SMB/CIFS file, print, and login server for Unix Details: Yoshihiro Ishikawa discovered that the Samba Web Administration Tool (SWAT) was vulnerable to cross-site request forgeries (CSRF). If a Samba administrator were tricked into clicking a link on a specially crafted web page, an attacker could trigger commands that could modify the Samba configuration. (CVE-2011-2522) Nobuhiro Tsuji discovered that the Samba Web Administration Tool (SWAT) did not properly sanitize its input when processing password change requests, resulting in cross-site scripting (XSS) vulnerabilities. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain. (CVE-2011-2694) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.04: swat 2:3.5.8~dfsg-1ubuntu2.3 Ubuntu 10.10: swat 2:3.5.4~dfsg-1ubuntu8.5 Ubuntu 10.04 LTS: swat 2:3.4.7~dfsg-1ubuntu3.7 Ubuntu 8.04 LTS: swat 3.0.28a-1ubuntu4.15 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-1182-1 CVE-2011-2522, CVE-2011-2694 PackageInformation: https://launchpad.net/ubuntu/+source/samba/2:3.5.8~dfsg-1ubuntu2.3 https://launchpad.net/ubuntu/+source/samba/2:3.5.4~dfsg-1ubuntu8.5 https://launchpad.net/ubuntu/+source/samba/2:3.4.7~dfsg-1ubuntu3.7 https://launchpad.net/ubuntu/+source/samba/3.0.28a-1ubuntu4.15 . The Ubuntu Security Notice USN-1182-1 highlights critical Samba vulnerabilities, allowing remote code execution and potential denial-of-service attacks. Samba Flaws, Security Update, Ubuntu Advisory. . LinuxSecurity.com Team

Calendar 2 Aug 02, 2011 Ubuntu
Banner 2 1028x280 1708121730 1 1771599631
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hatcritical

RedHat 6.1: RHSA-2000:002-01 Critical: lpr Authentication Flaw

Authentication and configuration vulnerabilities that could lead to a root compromise exist.. Package lpr Synopsis New lpr packages available Advisory ID RHSA-2000:002-01 Issue Date 2000-01-07 Updated on 2000-01-07 Keywords lpr lpd DNS sendmail 1. Topic: New lpr packages are available to fix two security problems in lpd. 2. Problem description: Two security vulnerabilities exist in the lpd (line printer daemon) shipped with the lpr package. First, authentication was not thorough enough. If a remote user was able to control their own DNS so that their IP address resolved to the hostname of the print server, access would be granted, when it should not be. Secondly, it was possible in the control file of a print job to specify arguments to sendmail. By careful manipulation of control and data files, this could cause sendmail to be executed with a user-specified configuration file. This could lead very easily to a root compromise. It is recommended that all users of Red Hat Linux using the lpr package (which is required to print) upgrade to the fixed packages. Thanks go to DilDog (dildog@l0pht.com) for noting the vulnerability. If you are experiencing problems with local printing in Red Hat Linux 6.1, make sure that you have: alias parport_lowlevel parport_pc in your /etc/conf.modules file. 3. Bug IDs fixed: (see bugzilla for more information) 4. Relevant releases/architectures: Red Hat Linux 6.1, all architectures 5. Obsoleted by: None 6. Conflicts with: None 7. RPMs required: Intel: lpr-0.48-1.i386.rpm Alpha: lpr-0.48-1.alpha.rpm SPARC: lpr-0.48-1.sparc.rpm Source: lpr-0.48-1.src.rpm 8. Solution: For each RPM for your particular architecture, run: rpm-Uvh filename where filename is the name of the RPM. Then, restart lpd: /etc/rc.d/init.d/lpd restart 9. Verification: MD5 sum Package Name ------------------------------------------------------------------------- 78f2220331189e723eab944b53d0710e i386/lpr-0.48-1.i386.rpm 3fcb89eb1a76741a505d3eeeddfa3674 alpha/lpr-0.48-1.alpha.rpm 441cfee04428ca215d98d9ce3d20bc4d sparc/lpr-0.48-1.sparc.rpm 55c6a740b03569919ec08992257cad96 SRPMS/lpr-0.48-1.src.rpm These packages are GPG signed by Red Hat, Inc. for security. Our key is available at: About You can verify each package with the following command: rpm --checksig filename If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command: rpm --checksig --nogpg filename Note that you need RPM > = 3.0 to check GnuPG keys. 10. References: Thanks to This email address is being protected from spambots. You need JavaScript enabled to view it. for finding this bug. . Update lpr packages on RedHat to enhance security and mitigate vulnerabilities. Follow the secure setup steps for integrity.. RedHat Security,lpr patches,authentication issues,configuration vulnerabilities. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 07, 2000 Critical Red Hat
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here