Alerts This Week
Warning Icon 1 562
Alerts This Week
Warning Icon 1 562

Stay Secure with the Latest Linux Advisories

Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H800
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 1 articles for you...
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisoryremote accessUbuntu

Ubuntu 18.04: Git Critical Credential Issues USN-7964-1 CVE-2024-50349

Several security issues were fixed in Git.. ========================================================================== Ubuntu Security Notice USN-7964-1 January 15, 2026 git vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: Several security issues were fixed in Git. Software Description: - git: fast, scalable, distributed revision control system Details: It was discovered that Git did not properly sanitize URLs when asking for credentials via a terminal prompt. An attacker could possibly use this issue to trick a user into disclosing their password. (CVE-2024-50349) It was discovered that Git did not properly handle carriage return characters in its credential protocol. An attacker could use this issue to send unexpected data to credential helpers, possibly leading to a user being tricked into disclosing sensitive information. (CVE-2024-52006) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS git 1:2.17.1-1ubuntu0.18+esm6 Available with Ubuntu Pro Ubuntu 16.04 LTS git 1:2.7.4-0ubuntu1.10+esm13 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7964-1 CVE-2024-50349, CVE-2024-52006 . Multiple Git issues resolved in Ubuntu's 18.04 and 16.04 for safer credential handling. Update recommended to prevent risks.. Git Update, Ubuntu Security, Credential Management, User Safety. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 15, 2026 Critical Ubuntu
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorysoftware fixupdate instructions

Ubuntu 24.10, 24.04 LTS, 22.04 LTS: Git Security Updates January 2025

Several security issues were fixed in Git.. ========================================================================== Ubuntu Security Notice USN-7207-1 January 14, 2025 git vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS Summary: Several security issues were fixed in Git. Software Description: - git: fast, scalable, distributed revision control system Details: It was discovered that Git incorrectly handled certain URLs when asking for credentials. An attacker could possibly use this issue to mislead the user into typing passwords for trusted sites that would then be sent to untrusted sites instead. (CVE-2024-50349) It was discovered that git incorrectly handled line endings when using credential helpers. (CVE-2024-52006) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.10 git 1:2.45.2-1ubuntu1.1 Ubuntu 24.04 LTS git 1:2.43.0-1ubuntu7.2 Ubuntu 22.04 LTS git 1:2.34.1-1ubuntu1.12 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7207-1 CVE-2024-50349, CVE-2024-52006 Package Information: https://launchpad.net/ubuntu/+source/git/1:2.45.2-1ubuntu1.1 https://launchpad.net/ubuntu/+source/git/1:2.43.0-1ubuntu7.2 https://launchpad.net/ubuntu/+source/git/1:2.34.1-1ubuntu1.12 . Several security flaws resolved in Git across different Ubuntu versions. Upgrade your system to maintain security standards.. Git Security Updates, Ubuntu Vulnerabilities, Software Patch Instructions. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 14, 2025 Critical Ubuntu
Banner 4 1028x280 1708121825 1771600306
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateupdate

SUSE: 2021:2462-1 Moderate: Curl Credentials Issue Security Fixes

An update that fixes four vulnerabilities is now available. . SUSE Security Update: Security update for curl ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:2462-1 Rating: moderate References: #1188217 #1188218 #1188219 #1188220 Cross-References: CVE-2021-22922 CVE-2021-22923 CVE-2021-22924 CVE-2021-22925 CVSS scores: CVE-2021-22922 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVE-2021-22923 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2021-22924 (SUSE): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N CVE-2021-22925 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP5 SUSE Linux Enterprise Server 12-SP5 ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: This update for curl fixes the following issues: - CVE-2021-22925: TELNET stack contents disclosure again. (bsc#1188220) - CVE-2021-22924: Bad connection reuse due to flawed path name checks. (bsc#1188219) - CVE-2021-22923: Insufficiently Protected Credentials. (bsc#1188218) - CVE-2021-22922: Wrong content via metalink not discarded. (bsc#1188217) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP5: zypper in -t patch SUSE-SLE-SDK-12-SP5-2021-2462=1 - SUSE Linux Enterprise Server 12-SP5: zypper in -t patch SUSE-SLE-SERVER-12-SP5-2021-2462=1 Package List: - SUSE Linux Enterprise Software Development Kit 12-SP5 (aarch64 ppc64le s390x x86_64): curl-debuginfo-7.60.0-11.23.1 curl-debugsource-7.60.0-11.23.1 libcurl-devel-7.60.0-11.23.1 - SUSE Linux Enterprise Server 12-SP5 (aarch64 ppc64le s390x x86_64): curl-7.60.0-11.23.1 curl-debuginfo-7.60.0-11.23.1 curl-debugsource-7.60.0-11.23.1 libcurl4-7.60.0-11.23.1 libcurl4-debuginfo-7.60.0-11.23.1 - SUSE Linux Enterprise Server 12-SP5 (s390x x86_64): libcurl4-32bit-7.60.0-11.23.1 libcurl4-debuginfo-32bit-7.60.0-11.23.1 References: https://www.suse.com/security/cve/CVE-2021-22922.html https://www.suse.com/security/cve/CVE-2021-22923.html https://www.suse.com/security/cve/CVE-2021-22924.html https://www.suse.com/security/cve/CVE-2021-22925.html https://bugzilla.suse.com/1188217 https://bugzilla.suse.com/1188218 https://bugzilla.suse.com/1188219 https://bugzilla.suse.com/1188220 . SUSE has announced a security patch for curl, addressing four issues of moderate severity. Review the advisory and update details.. curl security update,SUSE patch details,patch instructions,moderate severity fixes,software vulnerabilities. . LinuxSecurity.com Team

Calendar 2 Jul 23, 2021 SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderate severitycurl update

SUSE Linux Enterprise: 2021:2440-1 Moderate: curl Security Fix

An update that fixes four vulnerabilities is now available. . SUSE Security Update: Security update for curl ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:2440-1 Rating: moderate References: #1188217 #1188218 #1188219 #1188220 Cross-References: CVE-2021-22922 CVE-2021-22923 CVE-2021-22924 CVE-2021-22925 CVSS scores: CVE-2021-22922 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVE-2021-22923 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2021-22924 (SUSE): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N CVE-2021-22925 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N Affected Products: SUSE Manager Server 4.0 SUSE Manager Retail Branch Server 4.0 SUSE Manager Proxy 4.0 SUSE Linux Enterprise Server for SAP 15-SP1 SUSE Linux Enterprise Server for SAP 15 SUSE Linux Enterprise Server 15-SP1-LTSS SUSE Linux Enterprise Server 15-SP1-BCL SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Enterprise Storage 6 SUSE CaaS Platform 4.0 ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: This update for curl fixes the following issues: - CVE-2021-22925: TELNET stack contents disclosure again. (bsc#1188220) - CVE-2021-22924: Bad connection reuse due to flawed path name checks. (bsc#1188219) - CVE-2021-22923: Insufficiently Protected Credentials. (bsc#1188218) - CVE-2021-22922: Wrong content via metalink not discarded. (bsc#1188217) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Manager Server 4.0: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.0-2021-2440=1 - SUSE Manager Retail Branch Server 4.0: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.0-2021-2440=1 - SUSE Manager Proxy 4.0: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.0-2021-2440=1 - SUSE Linux Enterprise Server for SAP 15-SP1: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP1-2021-2440=1 - SUSE Linux Enterprise Server for SAP 15: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2021-2440=1 - SUSE Linux Enterprise Server 15-SP1-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-2440=1 - SUSE Linux Enterprise Server 15-SP1-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-BCL-2021-2440=1 - SUSE Linux Enterprise Server 15-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-2021-2440=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-2440=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-2440=1 - SUSE Linux Enterprise High Performance Computing 15-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-2021-2440=1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-2021-2440=1 - SUSE Enterprise Storage 6: zypper in -t patch SUSE-Storage-6-2021-2440=1 - SUSE CaaS Platform 4.0: To install this update, use the SUSE CaaS Platform 'skuba' tool. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way. Package List: - SUSE Manager Server 4.0 (ppc64le s390x x86_64): curl-7.60.0-3.47.1 curl-debuginfo-7.60.0-3.47.1 curl-debugsource-7.60.0-3.47.1 libcurl-devel-7.60.0-3.47.1 libcurl4-7.60.0-3.47.1 libcurl4-debuginfo-7.60.0-3.47.1 - SUSE Manager Server 4.0 (x86_64): libcurl4-32bit-7.60.0-3.47.1 libcurl4-32bit-debuginfo-7.60.0-3.47.1 - SUSE Manager Retail Branch Server 4.0 (x86_64): curl-7.60.0-3.47.1 curl-debuginfo-7.60.0-3.47.1 curl-debugsource-7.60.0-3.47.1 libcurl-devel-7.60.0-3.47.1 libcurl4-32bit-7.60.0-3.47.1 libcurl4-32bit-debuginfo-7.60.0-3.47.1 libcurl4-7.60.0-3.47.1 libcurl4-debuginfo-7.60.0-3.47.1 - SUSE Manager Proxy 4.0 (x86_64): curl-7.60.0-3.47.1 curl-debuginfo-7.60.0-3.47.1 curl-debugsource-7.60.0-3.47.1 libcurl-devel-7.60.0-3.47.1 libcurl4-32bit-7.60.0-3.47.1 libcurl4-32bit-debuginfo-7.60.0-3.47.1 libcurl4-7.60.0-3.47.1 libcurl4-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise Server for SAP 15-SP1 (ppc64le x86_64): curl-7.60.0-3.47.1 curl-debuginfo-7.60.0-3.47.1 curl-debugsource-7.60.0-3.47.1 libcurl-devel-7.60.0-3.47.1 libcurl4-7.60.0-3.47.1 libcurl4-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise Server for SAP 15-SP1 (x86_64): libcurl4-32bit-7.60.0-3.47.1 libcurl4-32bit-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise Server for SAP 15 (ppc64le x86_64): curl-7.60.0-3.47.1 curl-debuginfo-7.60.0-3.47.1 curl-debugsource-7.60.0-3.47.1 libcurl-devel-7.60.0-3.47.1 libcurl4-7.60.0-3.47.1 libcurl4-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise Server for SAP 15 (x86_64): libcurl4-32bit-7.60.0-3.47.1 libcurl4-32bit-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise Server 15-SP1-LTSS (aarch64ppc64le s390x x86_64): curl-7.60.0-3.47.1 curl-debuginfo-7.60.0-3.47.1 curl-debugsource-7.60.0-3.47.1 libcurl-devel-7.60.0-3.47.1 libcurl4-7.60.0-3.47.1 libcurl4-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise Server 15-SP1-LTSS (x86_64): libcurl4-32bit-7.60.0-3.47.1 libcurl4-32bit-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise Server 15-SP1-BCL (x86_64): curl-7.60.0-3.47.1 curl-debuginfo-7.60.0-3.47.1 curl-debugsource-7.60.0-3.47.1 libcurl-devel-7.60.0-3.47.1 libcurl4-32bit-7.60.0-3.47.1 libcurl4-32bit-debuginfo-7.60.0-3.47.1 libcurl4-7.60.0-3.47.1 libcurl4-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise Server 15-LTSS (aarch64 s390x): curl-7.60.0-3.47.1 curl-debuginfo-7.60.0-3.47.1 curl-debugsource-7.60.0-3.47.1 libcurl-devel-7.60.0-3.47.1 libcurl4-7.60.0-3.47.1 libcurl4-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (aarch64 x86_64): curl-7.60.0-3.47.1 curl-debuginfo-7.60.0-3.47.1 curl-debugsource-7.60.0-3.47.1 libcurl-devel-7.60.0-3.47.1 libcurl4-7.60.0-3.47.1 libcurl4-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (x86_64): libcurl4-32bit-7.60.0-3.47.1 libcurl4-32bit-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (aarch64 x86_64): curl-7.60.0-3.47.1 curl-debuginfo-7.60.0-3.47.1 curl-debugsource-7.60.0-3.47.1 libcurl-devel-7.60.0-3.47.1 libcurl4-7.60.0-3.47.1 libcurl4-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (x86_64): libcurl4-32bit-7.60.0-3.47.1 libcurl4-32bit-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise High Performance Computing 15-LTSS (aarch64 x86_64): curl-7.60.0-3.47.1 curl-debuginfo-7.60.0-3.47.1 curl-debugsource-7.60.0-3.47.1 libcurl-devel-7.60.0-3.47.1 libcurl4-7.60.0-3.47.1 libcurl4-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise High Performance Computing 15-LTSS (x86_64): libcurl4-32bit-7.60.0-3.47.1 libcurl4-32bit-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS (aarch64 x86_64): curl-7.60.0-3.47.1 curl-debuginfo-7.60.0-3.47.1 curl-debugsource-7.60.0-3.47.1 libcurl-devel-7.60.0-3.47.1 libcurl4-7.60.0-3.47.1 libcurl4-debuginfo-7.60.0-3.47.1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS (x86_64): libcurl4-32bit-7.60.0-3.47.1 libcurl4-32bit-debuginfo-7.60.0-3.47.1 - SUSE Enterprise Storage 6 (aarch64 x86_64): curl-7.60.0-3.47.1 curl-debuginfo-7.60.0-3.47.1 curl-debugsource-7.60.0-3.47.1 libcurl-devel-7.60.0-3.47.1 libcurl4-7.60.0-3.47.1 libcurl4-debuginfo-7.60.0-3.47.1 - SUSE Enterprise Storage 6 (x86_64): libcurl4-32bit-7.60.0-3.47.1 libcurl4-32bit-debuginfo-7.60.0-3.47.1 - SUSE CaaS Platform 4.0 (x86_64): curl-7.60.0-3.47.1 curl-debuginfo-7.60.0-3.47.1 curl-debugsource-7.60.0-3.47.1 libcurl-devel-7.60.0-3.47.1 libcurl4-32bit-7.60.0-3.47.1 libcurl4-32bit-debuginfo-7.60.0-3.47.1 libcurl4-7.60.0-3.47.1 libcurl4-debuginfo-7.60.0-3.47.1 References: https://www.suse.com/security/cve/CVE-2021-22922.html https://www.suse.com/security/cve/CVE-2021-22923.html https://www.suse.com/security/cve/CVE-2021-22924.html https://www.suse.com/security/cve/CVE-2021-22925.html https://bugzilla.suse.com/1188217 https://bugzilla.suse.com/1188218 https://bugzilla.suse.com/1188219 https://bugzilla.suse.com/1188220 . This patch addresses multiple concerns in wget, enhancing security features and optimizing connection handling. Remain protected!. SUSE Linux Enterprise,curl security update,security vulnerabilities,SUSE update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jul 21, 2021 Important SuSE
Banner 4 1028x280 1708121825 1771600306
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorysecurity updateimportant

openSUSE Leap 15.1: 2020:2128-1 Important Mutt Credentials Issue

An update that solves one vulnerability and has one errata is now available. . openSUSE Security Update: Security update for mutt ______________________________________________________________________________ Announcement ID: openSUSE-SU-2020:2128-1 Rating: important References: #1179035 #1179113 Cross-References: CVE-2020-28896 Affected Products: openSUSE Leap 15.1 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for mutt fixes the following issues: - CVE-2020-28896: incomplete connection termination could lead to sending credentials over unencrypted connections (bsc#1179035) - Avoid that message with a million tiny parts can freeze MUA for several minutes (bsc#1179113) This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.1: zypper in -t patch openSUSE-2020-2128=1 Package List: - openSUSE Leap 15.1 (x86_64): mutt-1.10.1-lp151.2.6.1 mutt-debuginfo-1.10.1-lp151.2.6.1 mutt-debugsource-1.10.1-lp151.2.6.1 - openSUSE Leap 15.1 (noarch): mutt-doc-1.10.1-lp151.2.6.1 mutt-lang-1.10.1-lp151.2.6.1 References: https://www.suse.com/security/cve/CVE-2020-28896.html https://bugzilla.suse.com/1179035 https://bugzilla.suse.com/1179113 _______________________________________________ openSUSE Security Announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe, email This email address is being protected from spambots. You need JavaScript enabled to view it. List Netiquette: List Archives: . Crucial Fedora upgrade for nano resolves a synchronization problem andsignificantly improves encryption measures.. openSUSE Security Update,mutt credentials issue,important security fixes. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 01, 2020 Important OpenSUSE
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisoryJava updatecertificate bypass

Scientific Linux SL7: SLSA-2020-4350-1 Moderate: Java Fixes for OpenJDK

OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990) (CVE-2020-14781) * OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995) (CVE-2020-14782) * OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114) (CVE-2020-14792) * OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 82 [More...]. Synopsis: Moderate: java-1.8.0-openjdk security and bug fix update Advisory ID: SLSA-2020:4350-1 Issue Date: 2020-10-27 CVE Numbers: None -- Security Fix(es): * OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990) (CVE-2020-14781) * OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995) (CVE-2020-14782) * OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114) (CVE-2020-14792) * OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685) (CVE-2020-14797) * OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136) (CVE-2020-14803) * OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862) (CVE-2020-14779) * OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680) (CVE-2020-14796) -- SL7 x86_64 java-1.8.0-openjdk-1.8.0.272.b10-1.el7_9.i686.rpm java-1.8.0-openjdk-1.8.0.272.b10-1.el7_9.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.272.b10-1.el7_9.i686.rpm java-1.8.0-openjdk-debuginfo-1.8.0.272.b10-1.el7_9.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.272.b10-1.el7_9.i686.rpm java-1.8.0-openjdk-headless-1.8.0.272.b10-1.el7_9.x86_64.rpm java-1.8.0-openjdk-accessibility-1.8.0.272.b10-1.el7_9.i686.rpm java-1.8.0-openjdk-accessibility-1.8.0.272.b10-1.el7_9.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.272.b10-1.el7_9.i686.rpm java-1.8.0-openjdk-demo-1.8.0.272.b10-1.el7_9.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.272.b10-1.el7_9.i686.rpm java-1.8.0-openjdk-devel-1.8.0.272.b10-1.el7_9.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.272.b10-1.el7_9.i686.rpm java-1.8.0-openjdk-src-1.8.0.272.b10-1.el7_9.x86_64.rpm noarch java-1.8.0-openjdk-javadoc-1.8.0.272.b10-1.el7_9.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.272.b10-1.el7_9.noarch.rpm - Scientific Linux Development Team . An important security update is available for java-1.8.0-openjdk, aimed at resolving several vulnerabilities on Scientific Linux SL7.x.. Java Security Update, OpenJDK Credentials Fix, Scientific Linux Security, JNDI Vulnerability, Integer Overflow Fix. . LinuxSecurity.com Team

Calendar 2 Oct 27, 2020 Scientific Linux
Banner 4 1028x280 1708121825 1771600306
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hat Enterprise LinuxModerate

Red Hat Enterprise Linux 8: RHSA-2020-4347 Moderate: OpenJDK Security

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: java-1.8.0-openjdk security update Advisory ID: RHSA-2020:4347-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:4347 Issue date: 2020-10-26 CVE Names: CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14803 ==================================================================== 1. Summary: An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix(es): * OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990) (CVE-2020-14781) * OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995) (CVE-2020-14782) * OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114) (CVE-2020-14792) * OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685) (CVE-2020-14797) * OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136) (CVE-2020-14803) *OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862) (CVE-2020-14779) * OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680) (CVE-2020-14796) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 All running instances of OpenJDK Java must be restarted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1889271 - CVE-2020-14779 OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862) 1889274 - CVE-2020-14781 OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990) 1889280 - CVE-2020-14792 OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114) 1889290 - CVE-2020-14782 OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995) 1889697 - CVE-2020-14796 OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680) 1889717 - CVE-2020-14797 OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685) 1889895 - CVE-2020-14803 OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136) 6. Package List: Red Hat Enterprise Linux AppStream (v.8): Source: java-1.8.0-openjdk-1.8.0.272.b10-1.el8_2.src.rpm aarch64: java-1.8.0-openjdk-1.8.0.272.b10-1.el8_2.aarch64.rpm java-1.8.0-openjdk-accessibility-1.8.0.272.b10-1.el8_2.aarch64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.272.b10-1.el8_2.aarch64.rpm java-1.8.0-openjdk-debugsource-1.8.0.272.b10-1.el8_2.aarch64.rpm java-1.8.0-openjdk-demo-1.8.0.272.b10-1.el8_2.aarch64.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.272.b10-1.el8_2.aarch64.rpm java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.272.b10-1.el8_2.aarch64.rpm java-1.8.0-openjdk-devel-1.8.0.272.b10-1.el8_2.aarch64.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.272.b10-1.el8_2.aarch64.rpm java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.272.b10-1.el8_2.aarch64.rpm java-1.8.0-openjdk-headless-1.8.0.272.b10-1.el8_2.aarch64.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.272.b10-1.el8_2.aarch64.rpm java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.272.b10-1.el8_2.aarch64.rpm java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.272.b10-1.el8_2.aarch64.rpm java-1.8.0-openjdk-src-1.8.0.272.b10-1.el8_2.aarch64.rpm noarch: java-1.8.0-openjdk-javadoc-1.8.0.272.b10-1.el8_2.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.272.b10-1.el8_2.noarch.rpm ppc64le: java-1.8.0-openjdk-1.8.0.272.b10-1.el8_2.ppc64le.rpm java-1.8.0-openjdk-accessibility-1.8.0.272.b10-1.el8_2.ppc64le.rpm java-1.8.0-openjdk-debuginfo-1.8.0.272.b10-1.el8_2.ppc64le.rpm java-1.8.0-openjdk-debugsource-1.8.0.272.b10-1.el8_2.ppc64le.rpm java-1.8.0-openjdk-demo-1.8.0.272.b10-1.el8_2.ppc64le.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.272.b10-1.el8_2.ppc64le.rpm java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.272.b10-1.el8_2.ppc64le.rpm java-1.8.0-openjdk-devel-1.8.0.272.b10-1.el8_2.ppc64le.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.272.b10-1.el8_2.ppc64le.rpm java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.272.b10-1.el8_2.ppc64le.rpm java-1.8.0-openjdk-headless-1.8.0.272.b10-1.el8_2.ppc64le.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.272.b10-1.el8_2.ppc64le.rpm java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.272.b10-1.el8_2.ppc64le.rpm java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.272.b10-1.el8_2.ppc64le.rpm java-1.8.0-openjdk-src-1.8.0.272.b10-1.el8_2.ppc64le.rpm s390x: java-1.8.0-openjdk-1.8.0.272.b10-1.el8_2.s390x.rpm java-1.8.0-openjdk-accessibility-1.8.0.272.b10-1.el8_2.s390x.rpm java-1.8.0-openjdk-debuginfo-1.8.0.272.b10-1.el8_2.s390x.rpm java-1.8.0-openjdk-debugsource-1.8.0.272.b10-1.el8_2.s390x.rpm java-1.8.0-openjdk-demo-1.8.0.272.b10-1.el8_2.s390x.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.272.b10-1.el8_2.s390x.rpm java-1.8.0-openjdk-devel-1.8.0.272.b10-1.el8_2.s390x.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.272.b10-1.el8_2.s390x.rpm java-1.8.0-openjdk-headless-1.8.0.272.b10-1.el8_2.s390x.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.272.b10-1.el8_2.s390x.rpm java-1.8.0-openjdk-src-1.8.0.272.b10-1.el8_2.s390x.rpm x86_64: java-1.8.0-openjdk-1.8.0.272.b10-1.el8_2.x86_64.rpm java-1.8.0-openjdk-accessibility-1.8.0.272.b10-1.el8_2.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.272.b10-1.el8_2.x86_64.rpm java-1.8.0-openjdk-debugsource-1.8.0.272.b10-1.el8_2.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.272.b10-1.el8_2.x86_64.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.272.b10-1.el8_2.x86_64.rpm java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.272.b10-1.el8_2.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.272.b10-1.el8_2.x86_64.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.272.b10-1.el8_2.x86_64.rpm java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.272.b10-1.el8_2.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.272.b10-1.el8_2.x86_64.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.272.b10-1.el8_2.x86_64.rpm java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.272.b10-1.el8_2.x86_64.rpm java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.272.b10-1.el8_2.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.272.b10-1.el8_2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7.References: https://access.redhat.com/security/cve/CVE-2020-14779 https://access.redhat.com/security/cve/CVE-2020-14781 https://access.redhat.com/security/cve/CVE-2020-14782 https://access.redhat.com/security/cve/CVE-2020-14792 https://access.redhat.com/security/cve/CVE-2020-14796 https://access.redhat.com/security/cve/CVE-2020-14797 https://access.redhat.com/security/cve/CVE-2020-14803 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBX5cx29zjgjWX9erEAQglSRAAnNnldHNtYfne/BBtCUImSjPRm4Q47Ngr VFUOtk22MoabPYuqZon3fwdlHaCgZeAa8dxRa8PBN2KwPxf9+AYZfFShCtjpiu33 fS7KDgpGMKpzIYaR/PiaENl+/YwhxrQQSiUg5teAI+2DcCm0J2DSqPBgpkd2FJyf 4Nm1HSXa3MZnCZkdmTjJvG1BH5hCYwdac9Cq9tuNivFmCEsP5OK7GfLhQeuj0KXx RdHvssXaxyxmdDMzDV4KoelYn7BUCCq2nL9cJcWIEKuBRYitzB/qNOmnLHZLSJ/Q dXvDWKm/NIrVZWszr7QJ9RyHd63hW2Ui0B3VL4S9G/OuBxOzDYWvBGgysNdQcSCV FDPcjgEYI22fAsoikBjV67VlkYEqA98Xmq31X1pt29tnEnWqTTNm2iD/OspvEtqC jRkS06Phictuu3eZqj60BVAYLPFm/N/04AvIV7RuAZY7wgkqgnKzlfjHSR3Pgaom i5YOjVVZUkx01Y8GLRO02RsZ6lGP61ksznY50WzTIT+zBScXkeUMzfNlJed0tmxN tjEV16CjC+k24v6rxzKAHJnpmC+feCrDLIhPADodQ+U9eJgNDzwDKDsMWWLO8qdj P6pnCvlfepjOAz36uAuj4qZBkdOUb/oY9DKguClvN91mzPFcrbVjjix2lCc2Vukf 8iRPO4oDQoQ=taSv -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . An update for java-1.8.0-openjdk has been released for Red Hat Enterprise Linux 8, classified with Moderate severity and includes multiple patches.. Java Security Update, Red Hat Advisory, OpenJDK Security. . LinuxSecurity.com Team

Calendar 2 Oct 26, 2020 Red Hat
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorybuffer overflowRed Hat Enterprise Linux

Red Hat Enterprise Linux 8 Moderate: RHSA-2020-4349-01 OpenJDK Issues

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: java-1.8.0-openjdk security update Advisory ID: RHSA-2020:4349-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:4349 Issue date: 2020-10-26 CVE Names: CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14803 ==================================================================== 1. Summary: An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream E4S (v. 8.0) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix(es): * OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990) (CVE-2020-14781) * OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995) (CVE-2020-14782) * OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114) (CVE-2020-14792) * OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685) (CVE-2020-14797) * OpenJDK: Racecondition in NIO Buffer boundary checks (Libraries, 8244136) (CVE-2020-14803) * OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862) (CVE-2020-14779) * OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680) (CVE-2020-14796) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 All running instances of OpenJDK Java must be restarted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1889271 - CVE-2020-14779 OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862) 1889274 - CVE-2020-14781 OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990) 1889280 - CVE-2020-14792 OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114) 1889290 - CVE-2020-14782 OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995) 1889697 - CVE-2020-14796 OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680) 1889717 - CVE-2020-14797 OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685) 1889895 - CVE-2020-14803 OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136) 6. Package List: Red Hat Enterprise Linux AppStream E4S (v.8.0): Source: java-1.8.0-openjdk-1.8.0.272.b10-0.el8_0.src.rpm aarch64: java-1.8.0-openjdk-1.8.0.272.b10-0.el8_0.aarch64.rpm java-1.8.0-openjdk-accessibility-1.8.0.272.b10-0.el8_0.aarch64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.272.b10-0.el8_0.aarch64.rpm java-1.8.0-openjdk-debugsource-1.8.0.272.b10-0.el8_0.aarch64.rpm java-1.8.0-openjdk-demo-1.8.0.272.b10-0.el8_0.aarch64.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.272.b10-0.el8_0.aarch64.rpm java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.272.b10-0.el8_0.aarch64.rpm java-1.8.0-openjdk-devel-1.8.0.272.b10-0.el8_0.aarch64.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.272.b10-0.el8_0.aarch64.rpm java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.272.b10-0.el8_0.aarch64.rpm java-1.8.0-openjdk-headless-1.8.0.272.b10-0.el8_0.aarch64.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.272.b10-0.el8_0.aarch64.rpm java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.272.b10-0.el8_0.aarch64.rpm java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.272.b10-0.el8_0.aarch64.rpm java-1.8.0-openjdk-src-1.8.0.272.b10-0.el8_0.aarch64.rpm noarch: java-1.8.0-openjdk-javadoc-1.8.0.272.b10-0.el8_0.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.272.b10-0.el8_0.noarch.rpm ppc64le: java-1.8.0-openjdk-1.8.0.272.b10-0.el8_0.ppc64le.rpm java-1.8.0-openjdk-accessibility-1.8.0.272.b10-0.el8_0.ppc64le.rpm java-1.8.0-openjdk-debuginfo-1.8.0.272.b10-0.el8_0.ppc64le.rpm java-1.8.0-openjdk-debugsource-1.8.0.272.b10-0.el8_0.ppc64le.rpm java-1.8.0-openjdk-demo-1.8.0.272.b10-0.el8_0.ppc64le.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.272.b10-0.el8_0.ppc64le.rpm java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.272.b10-0.el8_0.ppc64le.rpm java-1.8.0-openjdk-devel-1.8.0.272.b10-0.el8_0.ppc64le.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.272.b10-0.el8_0.ppc64le.rpm java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.272.b10-0.el8_0.ppc64le.rpm java-1.8.0-openjdk-headless-1.8.0.272.b10-0.el8_0.ppc64le.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.272.b10-0.el8_0.ppc64le.rpm java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.272.b10-0.el8_0.ppc64le.rpm java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.272.b10-0.el8_0.ppc64le.rpm java-1.8.0-openjdk-src-1.8.0.272.b10-0.el8_0.ppc64le.rpm s390x: java-1.8.0-openjdk-1.8.0.272.b10-0.el8_0.s390x.rpm java-1.8.0-openjdk-accessibility-1.8.0.272.b10-0.el8_0.s390x.rpm java-1.8.0-openjdk-debuginfo-1.8.0.272.b10-0.el8_0.s390x.rpm java-1.8.0-openjdk-debugsource-1.8.0.272.b10-0.el8_0.s390x.rpm java-1.8.0-openjdk-demo-1.8.0.272.b10-0.el8_0.s390x.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.272.b10-0.el8_0.s390x.rpm java-1.8.0-openjdk-devel-1.8.0.272.b10-0.el8_0.s390x.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.272.b10-0.el8_0.s390x.rpm java-1.8.0-openjdk-headless-1.8.0.272.b10-0.el8_0.s390x.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.272.b10-0.el8_0.s390x.rpm java-1.8.0-openjdk-src-1.8.0.272.b10-0.el8_0.s390x.rpm x86_64: java-1.8.0-openjdk-1.8.0.272.b10-0.el8_0.x86_64.rpm java-1.8.0-openjdk-accessibility-1.8.0.272.b10-0.el8_0.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.272.b10-0.el8_0.x86_64.rpm java-1.8.0-openjdk-debugsource-1.8.0.272.b10-0.el8_0.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.272.b10-0.el8_0.x86_64.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.272.b10-0.el8_0.x86_64.rpm java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.272.b10-0.el8_0.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.272.b10-0.el8_0.x86_64.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.272.b10-0.el8_0.x86_64.rpm java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.272.b10-0.el8_0.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.272.b10-0.el8_0.x86_64.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.272.b10-0.el8_0.x86_64.rpm java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.272.b10-0.el8_0.x86_64.rpm java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.272.b10-0.el8_0.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.272.b10-0.el8_0.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7.References: https://access.redhat.com/security/cve/CVE-2020-14779 https://access.redhat.com/security/cve/CVE-2020-14781 https://access.redhat.com/security/cve/CVE-2020-14782 https://access.redhat.com/security/cve/CVE-2020-14792 https://access.redhat.com/security/cve/CVE-2020-14796 https://access.redhat.com/security/cve/CVE-2020-14797 https://access.redhat.com/security/cve/CVE-2020-14803 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBX5crS9zjgjWX9erEAQh1Qg//TaJY7sSm+qwvv/sFlTvUdLvqrff7c8Sy Vvf3a4SoUWx0vQPUn3N8+d5GxPqyzq3AdccW5NP1dpDYNf+G/DV7VuI3buwN/xLN FQ+kO5FXIE5/dEZ+rLmcIepSSvnBh1jDsSVXrK30gMVHcaJeri+8JnxP5vHksKSs PB8zL5rPFnOQ36sQ2dHvX9uRgp2Q5N1Msk0adyV901k50BdW63giKOHMtMT4rVnd emGl8s/UKRqKTCKO8uEFJF7xS75dGWaRZgEu2iE3VdUv4+iyFk8EGn0BntW1RX0d 21ouTG+gn5a9XcmdYrrPgvKOAMqJ2nFM9sNM9Bw8HNDUZXn1fHY95j8ycik7PP/K W1/0sksr866oQIR9fGItKTNT1HDNJ2DAmHsA//r/jtxA2NYXy2TywRg1rj87nc+p fXIcEZXgZZb/dUGTVTjnBQENAWBHBO5xFcRuQTkArg9ZB7z50bbeGK9WlLk66vlC BWPffeoUbGa+mVZh7RwfpVM+fVFzoFPf+CLgatDz5PkZE8Y7tsTlEeCsRij8Krd9 UqXY72b5KC6T0yUBiYZ9SmirPZ06nunFDwTEgv0u9IkomjXLj9ueYCmE5JnG0Wh0 YZX4R3EMpeUP7zsiapoHd6BgSCbYnktLeWohqkGhYn43TGQB+LQGqFqzp68x8PHQ l2Dd1J2P01U=ZiVd -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . New version of java-1.8.0-openjdk released for Red Hat Linux categorized as Moderate security risk addressing various problems and vulnerabilities.. Java Update, OpenJDK, Red Hat Security, Linux Advisory, Credential Issue. . LinuxSecurity.com Team

Calendar 2 Oct 26, 2020 Red Hat
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here