Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -3 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydebianimportant

Debian 11: DLA-4334-1 pgpool2 Important Auth Bypass CVE-2025-46801

An authentication bypass was found in n pgpool-II, the connection pool server and replication proxy for PostgreSQL. For Debian 11 bullseye, this problem has been fixed in version . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4334-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Bastien Roucariès October 16, 2025 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : pgpool2 Version : 4.1.4-3+deb11u2 CVE ID : CVE-2025-46801 Debian Bug : 1106119 An authentication bypass was found in n pgpool-II, the connection pool server and replication proxy for PostgreSQL. For Debian 11 bullseye, this problem has been fixed in version 4.1.4-3+deb11u2. We recommend that you upgrade your pgpool2 packages. For the detailed security status of pgpool2 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/pgpool2 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Authentication bypass fixed in pgpool2 for Debian 11 Bullseye. Upgrade recommended to ensure system security and integrity.. Debian Security Update,Linux Update,pgpool2 Advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 16, 2025 Important Debian LTS
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 42: Critical Security Advisory for pgbouncer Version 1.24.1

Update to 1.24.1, fixes CVE-2025-2291.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-25e04398c7 2025-04-25 02:11:13.705492+00:00 -------------------------------------------------------------------------------- Name : pgbouncer Product : Fedora 42 Version : 1.24.1 Release : 2.fc42 URL : https://www.pgbouncer.org Summary : Lightweight connection pooler for PostgreSQL Description : pgbouncer is a lightweight connection pooler for PostgreSQL and uses libevent for low-level socket handling. -------------------------------------------------------------------------------- Update Information: Update to 1.24.1, fixes CVE-2025-2291. -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 17 2025 Simone Caronni - 1.24.1-2 - Update license * Thu Apr 17 2025 Simone Caronni - 1.24.1-1 - Update to 1.24.1 (CVE-2025-2291) -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-25e04398c7' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives:https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . -------------------------------------------------------------------------------- Fedora Update Notif. update, fixes, cve-2025-2291, -------------------------------------------------------------. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 25, 2025 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 41: 1.24.1 moderate: pgbouncer connection pooling fix

Update to 1.24.1, fixes CVE-2025-2291.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-d919f11f99 2025-04-25 01:47:40.996759+00:00 -------------------------------------------------------------------------------- Name : pgbouncer Product : Fedora 41 Version : 1.24.1 Release : 2.fc41 URL : https://www.pgbouncer.org Summary : Lightweight connection pooler for PostgreSQL Description : pgbouncer is a lightweight connection pooler for PostgreSQL and uses libevent for low-level socket handling. -------------------------------------------------------------------------------- Update Information: Update to 1.24.1, fixes CVE-2025-2291. -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 17 2025 Simone Caronni - 1.24.1-2 - Update license * Thu Apr 17 2025 Simone Caronni - 1.24.1-1 - Update to 1.24.1 (CVE-2025-2291) -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-d919f11f99' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives:https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Fedora 41 pgbouncer 1.24.1 release addresses critical vulnerabilities tied to CVE-2025-2291. Enhance the security of your PostgreSQL connections today.. Fedora 41, pgbouncer, PostgreSQL, CVE-2025-2291, connection pooling. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 25, 2025 Important Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdatecritical

Fedora 35: 2021-761cda0b77 Critical: pgbouncer Connection Pooling Issues

Update to 1.16.1, per changes decribed at: http://www.pgbouncer.org/changelog.html#pgbouncer-116x Fixes multiple security vulnerabilities related to PostgreSQL: * [ 14/) * [ . -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2021-761cda0b77 2021-12-31 01:20:04.144787 -------------------------------------------------------------------------------- Name : pgbouncer Product : Fedora 35 Version : 1.16.1 Release : 1.fc35 URL : https://www.pgbouncer.org Summary : Lightweight connection pooler for PostgreSQL Description : pgbouncer is a lightweight connection pooler for PostgreSQL and uses libevent for low-level socket handling. -------------------------------------------------------------------------------- Update Information: Update to 1.16.1, per changes decribed at: http://www.pgbouncer.org/changelog.html#pgbouncer-116x Fixes multiple security vulnerabilities related to PostgreSQL: * [) * [https://www.postgresql.org/support/security/CVE-2021-23222/ (https://www.postgresql.org/support/security/CVE-2021-23222/) -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 21 2021 Devrim Gunduz - 1.16.1-1 - Update to 1.16.1, per changes described at: http://www.pgbouncer.org/changelog.html#pgbouncer-116x - Add c-ares support. - Remove RHEL 6 support from spec file. -------------------------------------------------------------------------------- References: [ 1 ] Bug #2023784 - CVE-2021-3935 pgbouncer: server processes unencrypted bytes from man-in-the-middle [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2023784 [ 2 ] Bug #2023785 - CVE-2021-3935 pgbouncer: server processes unencrypted bytes from man-in-the-middle [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2023785 -------------------------------------------------------------------------------- This update can be installed with the "dnf" updateprogram. Use su -c 'dnf upgrade --advisory FEDORA-2021-761cda0b77' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Important patch for pgbouncer 1.16.1 resolves various vulnerabilities in PostgreSQL within Fedora.. pgbouncer security,Fedora update,PostgreSQL threat,connection pooling fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 30, 2021 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorycriticaldebian

Debian 8: DLA-1621-1 Critical: c3p0 XML External Entity Threat

A XML External Entity (XXE) vulnerability was discovered in c3p0, a library for JDBC connection pooling, that may be used to resolve information outside of the intended sphere of control. . Package : c3p0 Version : 0.9.1.2-9+deb8u1 CVE ID : CVE-2018-20433 Debian Bug : 917257 A XML External Entity (XXE) vulnerability was discovered in c3p0, a library for JDBC connection pooling, that may be used to resolve information outside of the intended sphere of control. For Debian 8 "Jessie", this problem has been fixed in version 0.9.1.2-9+deb8u1. We recommend that you upgrade your c3p0 packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Package : c3p0 Version : 0.9.1.2-9+deb8u1 CVE ID : CVE-2018-20433 Debian Bug : 917257 A XML External. external, entity, (xxe), vulnerability, library, connection. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 28, 2018 Critical Debian LTS
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 28 Python-urllib3 Security Advisory: FEDORA-2018-b0d6ae1959 Update

- Update to v1.24.1. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-b0d6ae1959 2018-11-22 02:22:08.810111 --------------------------------------------------------------------------------Name : python-urllib3 Product : Fedora 28 Version : 1.24.1 Release : 2.fc28 URL : https://github.com/urllib3/urllib3 Summary : Python HTTP library with thread-safe connection pooling and file post Description : Python HTTP module with connection pooling and file POST abilities. --------------------------------------------------------------------------------Update Information: - Update to v1.24.1 --------------------------------------------------------------------------------ChangeLog: * Tue Nov 13 2018 Jeremy Cline - 1.24.1-2 - Adjust unbundling of ssl_match_hostname * Mon Oct 29 2018 Jeremy Cline - 1.24.1-1 - Update to v1.24.1 * Thu May 3 2018 Lukas Slebodnik - 1.22-9 - Do not lowercase hostnames with custom-protocol (rhbz 1567862) - upstream: https://github.com/urllib3/urllib3/issues/1267 * Wed Apr 18 2018 Jeremy Cline - 1.22-8 - Drop the dependency on idna and cryptography (rhbz 1567862) * Mon Apr 16 2018 Jeremy Cline - 1.22-7 - Drop the dependency on PyOpenSSL, it's not needed (rhbz 1567862) --------------------------------------------------------------------------------References: [ 1 ] Bug #1649155 - python-urllib3: Cross-host redirect does not remove Authorization header allow for credential exposure [fedora-28] https://bugzilla.redhat.com/show_bug.cgi?id=1649155 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2018-b0d6ae1959' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. Moredetails on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . The upgrade to python-urllib3 1.24.1 resolves issues with cross-origin redirections and enhances security measures for users on Fedora systems.. Python Http Library,Fedora Security Update,Connection Pooling. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 22, 2018 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here