Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 123 articles for you...
89

Fedora 42: Firefox 144.0 Update Advisory ID FEDORA-2025-64d57de006

Added fix for mzbz#1990430 (crashes) Updated to latest upstream (144.0). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-64d57de006 2025-10-18 01:16:41.291847+00:00 -------------------------------------------------------------------------------- Name : firefox Product : Fedora 42 Version : 144.0 Release : 3.fc42 URL : https://www.firefox.com/ Summary : Mozilla Firefox Web browser Description : Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. -------------------------------------------------------------------------------- Update Information: Added fix for mzbz#1990430 (crashes) Updated to latest upstream (144.0) -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 15 2025 Martin Stransky - 144.0-3 - Add fix for mzbz#1990430 * Mon Oct 13 2025 Martin Stransky - 144.0-2 - Updated to 144.0 (b2) * Thu Oct 9 2025 Martin Stransky - 144.0-1 - Updated to 144.0 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-64d57de006' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines:https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Mozilla Firefox 144.0 update for Fedora 42 addresses crash issues with important fixes included.. Fedora Update, Firefox Fix, Software Update, Mozilla Firefox, Open Source Browser. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Oct 18, 2025 Important Fedora
89

Fedora 41 FEDORA-2025-526eca6b78 important: qt6-qtimageformats crash fix

Fix crash in fontconfig database. Fix some CVEs.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-526eca6b78 2025-06-25 01:42:08.365156+00:00 -------------------------------------------------------------------------------- Name : qt6-qtimageformats Product : Fedora 41 Version : 6.8.3 Release : 2.fc41 URL : http://www.qt.io Summary : Qt6 - QtImageFormats component Description : The core Qt Gui library by default supports reading and writing image files of the most common file formats: PNG, JPEG, BMP, GIF and a few more, ref. Reading and Writing Image Files. The Qt Image Formats add-on module provides optional support for other image file formats, including: MNG, TGA, TIFF, WBMP. -------------------------------------------------------------------------------- Update Information: Fix crash in fontconfig database. Fix some CVEs. -------------------------------------------------------------------------------- ChangeLog: * Mon Jun 23 2025 Jan Grulich - 6.8.3-2 - Fix CVE-2025-5683 in ICNS image format handling -------------------------------------------------------------------------------- References: [ 1 ] Bug #2374169 - mediawriter crashes immediately https://bugzilla.redhat.com/show_bug.cgi?id=2374169 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-526eca6b78' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Resolves issues causing crashes in fontconfig and mitigates several security vulnerabilities in QtImageFormats for Fedora.. QtImageFormats security update, Fedora 41 update, important security fixes. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 25, 2025 Important Fedora
89

Fedora 41 FEDORA-2025-526eca6b78 important: qt6-qtbase crash fix

Fix crash in fontconfig database. Fix some CVEs.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-526eca6b78 2025-06-25 01:42:08.365156+00:00 -------------------------------------------------------------------------------- Name : qt6-qtbase Product : Fedora 41 Version : 6.8.3 Release : 2.fc41 URL : https://contribute.qt-project.org/ Summary : Qt6 - QtBase components Description : Qt is a software toolkit for developing applications. This package contains base tools, like string, xml, and network handling. -------------------------------------------------------------------------------- Update Information: Fix crash in fontconfig database. Fix some CVEs. -------------------------------------------------------------------------------- ChangeLog: * Mon Jun 23 2025 Jan Grulich - 6.8.3-3 - Backport CVE fixes and fix for a crash in fontconfig database -------------------------------------------------------------------------------- References: [ 1 ] Bug #2374169 - mediawriter crashes immediately https://bugzilla.redhat.com/show_bug.cgi?id=2374169 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-526eca6b78' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code ofConduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . This advisory covers important qt6-qtbase updates for Fedora 41, fixing critical vulnerabilities and improving system stability for users and admins.. Fedora 41 security update,CVE fixes,qt6-qtbase advisory. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 25, 2025 Important Fedora
89

Fedora 40: 2025-57805565ad critical: WebKitGTK crash fixes

Update to WebKitGTK 2.46.6: Fix a crash when enabling Skia CPU rendering. Fix several crashes and rendering issues. Fix CVE-2024-54543, CVE-2025-24143, CVE-2025-24150, CVE-2025-24158, CVE-2025-24162. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-57805565ad 2025-03-01 01:38:57.010325+00:00 -------------------------------------------------------------------------------- Name : webkitgtk Product : Fedora 40 Version : 2.46.6 Release : 1.fc40 URL : https://www.webkitgtk.org/ Summary : GTK web content engine library Description : WebKitGTK is the port of the WebKit web rendering engine to the GTK platform. -------------------------------------------------------------------------------- Update Information: Update to WebKitGTK 2.46.6: Fix a crash when enabling Skia CPU rendering. Fix several crashes and rendering issues. Fix CVE-2024-54543, CVE-2025-24143, CVE-2025-24150, CVE-2025-24158, CVE-2025-24162 -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 11 2025 Michael Catanzaro - 2.46.6-1 - Update to WebKitGTK 2.46.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2344951 - CVE-2024-54543 webkitgtk: Processing maliciously crafted web content may lead to memory corruption [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2344951 [ 2 ] Bug #2344953 - CVE-2025-24162 webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2344953 [ 3 ] Bug #2344964 - CVE-2025-24143 webkitgtk: A maliciously crafted webpage may be able to fingerprint the user [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2344964 [ 4 ] Bug #2344967 - CVE-2025-24150 webkitgtk: Copying a URL from Web Inspector may lead to command injection [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2344967 [ 5 ] Bug #2344969 - CVE-2025-24158 webkitgtk: Processing web content may lead to a denial-of-service [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2344969 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-57805565ad' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . An upgrade to WebKitGTK 2.46.6 resolves several graphics bugs and stability problems for users on Fedora 40.. WebKitGTK, Fedora updates, software fixing, rendering management. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Mar 01, 2025 Critical Fedora
89

Fedora 41: 2025-3e8ed13bf0 Critical: WebKitGTK DoS Issues

Update to WebKitGTK 2.46.6: Fix a crash when enabling Skia CPU rendering. Fix several crashes and rendering issues. Fix CVE-2024-54543, CVE-2025-24143, CVE-2025-24150, CVE-2025-24158, CVE-2025-24162. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-3e8ed13bf0 2025-02-15 02:35:33.711279+00:00 -------------------------------------------------------------------------------- Name : webkitgtk Product : Fedora 41 Version : 2.46.6 Release : 1.fc41 URL : https://www.webkitgtk.org/ Summary : GTK web content engine library Description : WebKitGTK is the port of the WebKit web rendering engine to the GTK platform. -------------------------------------------------------------------------------- Update Information: Update to WebKitGTK 2.46.6: Fix a crash when enabling Skia CPU rendering. Fix several crashes and rendering issues. Fix CVE-2024-54543, CVE-2025-24143, CVE-2025-24150, CVE-2025-24158, CVE-2025-24162 -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 11 2025 Michael Catanzaro - 2.46.6-1 - Update to WebKitGTK 2.46.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2344951 - CVE-2024-54543 webkitgtk: Processing maliciously crafted web content may lead to memory corruption [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2344951 [ 2 ] Bug #2344953 - CVE-2025-24162 webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2344953 [ 3 ] Bug #2344964 - CVE-2025-24143 webkitgtk: A maliciously crafted webpage may be able to fingerprint the user [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2344964 [ 4 ] Bug #2344967 - CVE-2025-24150 webkitgtk: Copying a URL from Web Inspector may lead to command injection [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2344967 [ 5 ] Bug #2344969 - CVE-2025-24158 webkitgtk: Processing web content may lead to a denial-of-service [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2344969 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-3e8ed13bf0' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . WebKitGTK 2.46.6 improvements tackle display bugs and stability problems on Fedora, implementing vital upgrades and security fixes.. WebKitGTK Updates, Fedora Security Advisory, Crash Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Feb 15, 2025 Critical Fedora
203

Mageia 9: MGASA-2025-0047 Critical: mariadb memory leak and crash fix

bug fix release which fixes some memory leaks and crash fixes. References: - https://bugs.mageia.org/show_bug.cgi?id=33989 - https://mariadb.com/docs/release-notes/community-server/10.11/10.11.11 . MGASA-2025-0047 - Updated mariadb packages fix security vulnerability Publication date: 09 Feb 2025 URL: https://advisories.mageia.org/MGASA-2025-0047.html Type: security Affected Mageia releases: 9 CVE: CVE-2025-21490 bug fix release which fixes some memory leaks and crash fixes. References: - https://bugs.mageia.org/show_bug.cgi?id=33989 - https://mariadb.com/docs/release-notes/community-server/10.11/10.11.11 - https://www.cve.org/CVERecord?id=CVE-2025-21490 SRPMS: - 9/core/mariadb-10.11.11-1.mga9 . Recent amendments to mysql server offerings address vulnerabilities in Mageia involving resource exhaustion and stability enhancements rolled out on 09 February 2025.. mariadb security, Mageia update, memory leak fix. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Feb 09, 2025 Critical Mageia
89

Fedora 41: FEDORA-2024-32bc143584 moderate: webkitgtk crash fix

Update to 2.46.5: Fix several crashes and rendering issues. CVE-2024-54479, CVE-2024-54502, CVE-2024-54508, CVE-2024-54505. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-32bc143584 2024-12-21 03:35:46.415774+00:00 -------------------------------------------------------------------------------- Name : webkitgtk Product : Fedora 41 Version : 2.46.5 Release : 1.fc41 URL : https://www.webkitgtk.org/ Summary : GTK web content engine library Description : WebKitGTK is the port of the WebKit web rendering engine to the GTK platform. -------------------------------------------------------------------------------- Update Information: Update to 2.46.5: Fix several crashes and rendering issues. CVE-2024-54479, CVE-2024-54502, CVE-2024-54508, CVE-2024-54505 -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 18 2024 Michael Catanzaro - 2.46.5-1 - Update to 2.46.5 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-32bc143584' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines ListArchives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Fedora 41 release fixes multiple issues in webkitgtk 2.46.5, enhancing general system performance and reliability.. web content engine, Linux updates, Fedora security. . LinuxSecurity.com Team

Calendar%202 Dec 21, 2024 Fedora
89

Fedora 40: FEDORA-2024-3ae3a47901 critical: libsndfile DoS

fix crash in in ogg vorbis (rhbz#2322326) (CVE-2024-50612). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-3ae3a47901 2024-11-27 02:30:46.013828+00:00 -------------------------------------------------------------------------------- Name : libsndfile Product : Fedora 40 Version : 1.2.2 Release : 4.fc40 URL : http://libsndfile.github.io/libsndfile/ Summary : Library for reading and writing sound files Description : libsndfile is a C library for reading and writing sound files such as AIFF, AU, WAV, and others through one standard interface. It can currently read/write 8, 16, 24 and 32-bit PCM files as well as 32 and 64-bit floating point WAV files and a number of compressed formats. It compiles and runs on *nix, MacOS, and Win32. -------------------------------------------------------------------------------- Update Information: fix crash in in ogg vorbis (rhbz#2322326) (CVE-2024-50612) -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 18 2024 Michal Hlavinka - 1.2.2-4 - fix crash in in ogg vorbis (rhbz#2322326) (CVE-2024-50612) * Thu Jan 25 2024 Fedora Release Engineering - 1.2.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2322326 - CVE-2024-50612 libsndfile: Segmentation fault error in ogg_vorbis.c:417 vorbis_analysis_wrote() [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2322326 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-3ae3a47901' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signedwith the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . Correction implemented for libsndfile instability in Fedora 40 resolves CVE-2024-50612 weaknesses concerning ogg vorbis.. libsndfile updates, Fedora security, crash fix notification. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Nov 27, 2024 Critical Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200