Alerts This Week
Warning Icon 1 659
Alerts This Week
Warning Icon 1 659

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -3 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorysoftware patchimportant

SUSE: 2022:2990-1 Urgent: MySQL57 Vulnerability Patch Released

An update that solves one vulnerability and has one errata is now available. . SUSE Security Update: Security update for postgresql12 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:2988-1 Rating: important References: #1198166 #1202368 Cross-References: CVE-2022-2625 CVSS scores: CVE-2022-2625 (NVD) : 8 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H CVE-2022-2625 (SUSE): 7.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H Affected Products: SUSE Enterprise Storage 7 SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Module for Legacy Software 15-SP3 SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15-SP2-BCL SUSE Linux Enterprise Server 15-SP2-LTSS SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP 15-SP2 SUSE Linux Enterprise Server for SAP Applications SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Storage 7.1 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.1 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.1 SUSE Manager Server 4.2 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update thatsolves one vulnerability and has one errata is now available. Description: This update for postgresql12 fixes the following issues: - Update to 12.12: - CVE-2022-2625: Fixed an issue where extension scripts would replace objects not belonging to that extension (bsc#1202368). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-2988=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-2988=1 - SUSE Manager Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-2988=1 - SUSE Manager Retail Branch Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-2988=1 - SUSE Manager Proxy 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-2988=1 - SUSE Linux Enterprise Server for SAP 15-SP2: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2022-2988=1 - SUSE Linux Enterprise Server 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-2988=1 - SUSE Linux Enterprise Server 15-SP2-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-BCL-2022-2988=1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3: zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-2988=1 - SUSE Linux Enterprise Module for Legacy Software 15-SP3: zypper in -t patch SUSE-SLE-Module-Legacy-15-SP3-2022-2988=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-2988=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-2988=1 - SUSE Enterprise Storage 7: zypper in -t patchSUSE-Storage-7-2022-2988=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): postgresql12-12.12-150200.8.35.1 postgresql12-contrib-12.12-150200.8.35.1 postgresql12-contrib-debuginfo-12.12-150200.8.35.1 postgresql12-debuginfo-12.12-150200.8.35.1 postgresql12-debugsource-12.12-150200.8.35.1 postgresql12-devel-12.12-150200.8.35.1 postgresql12-devel-debuginfo-12.12-150200.8.35.1 postgresql12-llvmjit-12.12-150200.8.35.1 postgresql12-llvmjit-debuginfo-12.12-150200.8.35.1 postgresql12-llvmjit-devel-12.12-150200.8.35.1 postgresql12-plperl-12.12-150200.8.35.1 postgresql12-plperl-debuginfo-12.12-150200.8.35.1 postgresql12-plpython-12.12-150200.8.35.1 postgresql12-plpython-debuginfo-12.12-150200.8.35.1 postgresql12-pltcl-12.12-150200.8.35.1 postgresql12-pltcl-debuginfo-12.12-150200.8.35.1 postgresql12-server-12.12-150200.8.35.1 postgresql12-server-debuginfo-12.12-150200.8.35.1 postgresql12-server-devel-12.12-150200.8.35.1 postgresql12-server-devel-debuginfo-12.12-150200.8.35.1 postgresql12-test-12.12-150200.8.35.1 - openSUSE Leap 15.4 (noarch): postgresql12-docs-12.12-150200.8.35.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): postgresql12-12.12-150200.8.35.1 postgresql12-contrib-12.12-150200.8.35.1 postgresql12-contrib-debuginfo-12.12-150200.8.35.1 postgresql12-debuginfo-12.12-150200.8.35.1 postgresql12-debugsource-12.12-150200.8.35.1 postgresql12-devel-12.12-150200.8.35.1 postgresql12-devel-debuginfo-12.12-150200.8.35.1 postgresql12-llvmjit-12.12-150200.8.35.1 postgresql12-llvmjit-debuginfo-12.12-150200.8.35.1 postgresql12-plperl-12.12-150200.8.35.1 postgresql12-plperl-debuginfo-12.12-150200.8.35.1 postgresql12-plpython-12.12-150200.8.35.1 postgresql12-plpython-debuginfo-12.12-150200.8.35.1 postgresql12-pltcl-12.12-150200.8.35.1 postgresql12-pltcl-debuginfo-12.12-150200.8.35.1 postgresql12-server-12.12-150200.8.35.1 postgresql12-server-debuginfo-12.12-150200.8.35.1 postgresql12-server-devel-12.12-150200.8.35.1 postgresql12-server-devel-debuginfo-12.12-150200.8.35.1 postgresql12-test-12.12-150200.8.35.1 - openSUSE Leap 15.3 (noarch): postgresql12-docs-12.12-150200.8.35.1 - SUSE Manager Server 4.1 (ppc64le s390x x86_64): postgresql12-12.12-150200.8.35.1 postgresql12-contrib-12.12-150200.8.35.1 postgresql12-contrib-debuginfo-12.12-150200.8.35.1 postgresql12-debuginfo-12.12-150200.8.35.1 postgresql12-debugsource-12.12-150200.8.35.1 postgresql12-devel-12.12-150200.8.35.1 postgresql12-devel-debuginfo-12.12-150200.8.35.1 postgresql12-plperl-12.12-150200.8.35.1 postgresql12-plperl-debuginfo-12.12-150200.8.35.1 postgresql12-plpython-12.12-150200.8.35.1 postgresql12-plpython-debuginfo-12.12-150200.8.35.1 postgresql12-pltcl-12.12-150200.8.35.1 postgresql12-pltcl-debuginfo-12.12-150200.8.35.1 postgresql12-server-12.12-150200.8.35.1 postgresql12-server-debuginfo-12.12-150200.8.35.1 postgresql12-server-devel-12.12-150200.8.35.1 postgresql12-server-devel-debuginfo-12.12-150200.8.35.1 - SUSE Manager Server 4.1 (noarch): postgresql12-docs-12.12-150200.8.35.1 - SUSE Manager Retail Branch Server 4.1 (x86_64): postgresql12-12.12-150200.8.35.1 postgresql12-contrib-12.12-150200.8.35.1 postgresql12-contrib-debuginfo-12.12-150200.8.35.1 postgresql12-debuginfo-12.12-150200.8.35.1 postgresql12-debugsource-12.12-150200.8.35.1 postgresql12-devel-12.12-150200.8.35.1 postgresql12-devel-debuginfo-12.12-150200.8.35.1 postgresql12-plperl-12.12-150200.8.35.1 postgresql12-plperl-debuginfo-12.12-150200.8.35.1 postgresql12-plpython-12.12-150200.8.35.1 postgresql12-plpython-debuginfo-12.12-150200.8.35.1 postgresql12-pltcl-12.12-150200.8.35.1 postgresql12-pltcl-debuginfo-12.12-150200.8.35.1 postgresql12-server-12.12-150200.8.35.1 postgresql12-server-debuginfo-12.12-150200.8.35.1 postgresql12-server-devel-12.12-150200.8.35.1 postgresql12-server-devel-debuginfo-12.12-150200.8.35.1 - SUSE Manager Retail Branch Server 4.1 (noarch): postgresql12-docs-12.12-150200.8.35.1 - SUSE Manager Proxy 4.1 (x86_64): postgresql12-12.12-150200.8.35.1 postgresql12-contrib-12.12-150200.8.35.1 postgresql12-contrib-debuginfo-12.12-150200.8.35.1 postgresql12-debuginfo-12.12-150200.8.35.1 postgresql12-debugsource-12.12-150200.8.35.1 postgresql12-devel-12.12-150200.8.35.1 postgresql12-devel-debuginfo-12.12-150200.8.35.1 postgresql12-plperl-12.12-150200.8.35.1 postgresql12-plperl-debuginfo-12.12-150200.8.35.1 postgresql12-plpython-12.12-150200.8.35.1 postgresql12-plpython-debuginfo-12.12-150200.8.35.1 postgresql12-pltcl-12.12-150200.8.35.1 postgresql12-pltcl-debuginfo-12.12-150200.8.35.1 postgresql12-server-12.12-150200.8.35.1 postgresql12-server-debuginfo-12.12-150200.8.35.1 postgresql12-server-devel-12.12-150200.8.35.1 postgresql12-server-devel-debuginfo-12.12-150200.8.35.1 - SUSE Manager Proxy 4.1 (noarch): postgresql12-docs-12.12-150200.8.35.1 - SUSE Linux Enterprise Server for SAP 15-SP2 (ppc64le x86_64): postgresql12-12.12-150200.8.35.1 postgresql12-contrib-12.12-150200.8.35.1 postgresql12-contrib-debuginfo-12.12-150200.8.35.1 postgresql12-debuginfo-12.12-150200.8.35.1 postgresql12-debugsource-12.12-150200.8.35.1 postgresql12-devel-12.12-150200.8.35.1 postgresql12-devel-debuginfo-12.12-150200.8.35.1 postgresql12-plperl-12.12-150200.8.35.1 postgresql12-plperl-debuginfo-12.12-150200.8.35.1 postgresql12-plpython-12.12-150200.8.35.1 postgresql12-plpython-debuginfo-12.12-150200.8.35.1 postgresql12-pltcl-12.12-150200.8.35.1 postgresql12-pltcl-debuginfo-12.12-150200.8.35.1 postgresql12-server-12.12-150200.8.35.1 postgresql12-server-debuginfo-12.12-150200.8.35.1 postgresql12-server-devel-12.12-150200.8.35.1 postgresql12-server-devel-debuginfo-12.12-150200.8.35.1 - SUSE Linux Enterprise Server for SAP 15-SP2 (noarch): postgresql12-docs-12.12-150200.8.35.1 - SUSE Linux Enterprise Server 15-SP2-LTSS (aarch64 ppc64le s390x x86_64): postgresql12-12.12-150200.8.35.1 postgresql12-contrib-12.12-150200.8.35.1 postgresql12-contrib-debuginfo-12.12-150200.8.35.1 postgresql12-debuginfo-12.12-150200.8.35.1 postgresql12-debugsource-12.12-150200.8.35.1 postgresql12-devel-12.12-150200.8.35.1 postgresql12-devel-debuginfo-12.12-150200.8.35.1 postgresql12-plperl-12.12-150200.8.35.1 postgresql12-plperl-debuginfo-12.12-150200.8.35.1 postgresql12-plpython-12.12-150200.8.35.1 postgresql12-plpython-debuginfo-12.12-150200.8.35.1 postgresql12-pltcl-12.12-150200.8.35.1 postgresql12-pltcl-debuginfo-12.12-150200.8.35.1 postgresql12-server-12.12-150200.8.35.1 postgresql12-server-debuginfo-12.12-150200.8.35.1 postgresql12-server-devel-12.12-150200.8.35.1 postgresql12-server-devel-debuginfo-12.12-150200.8.35.1 - SUSE Linux Enterprise Server 15-SP2-LTSS (noarch): postgresql12-docs-12.12-150200.8.35.1 - SUSE Linux Enterprise Server 15-SP2-BCL (x86_64): postgresql12-12.12-150200.8.35.1 postgresql12-contrib-12.12-150200.8.35.1 postgresql12-contrib-debuginfo-12.12-150200.8.35.1 postgresql12-debuginfo-12.12-150200.8.35.1 postgresql12-debugsource-12.12-150200.8.35.1 postgresql12-devel-12.12-150200.8.35.1 postgresql12-devel-debuginfo-12.12-150200.8.35.1 postgresql12-plperl-12.12-150200.8.35.1 postgresql12-plperl-debuginfo-12.12-150200.8.35.1 postgresql12-plpython-12.12-150200.8.35.1 postgresql12-plpython-debuginfo-12.12-150200.8.35.1 postgresql12-pltcl-12.12-150200.8.35.1 postgresql12-pltcl-debuginfo-12.12-150200.8.35.1 postgresql12-server-12.12-150200.8.35.1 postgresql12-server-debuginfo-12.12-150200.8.35.1 postgresql12-server-devel-12.12-150200.8.35.1 postgresql12-server-devel-debuginfo-12.12-150200.8.35.1 - SUSE Linux Enterprise Server 15-SP2-BCL (noarch): postgresql12-docs-12.12-150200.8.35.1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 (aarch64 ppc64le s390x x86_64): postgresql12-llvmjit-12.12-150200.8.35.1 postgresql12-llvmjit-debuginfo-12.12-150200.8.35.1 postgresql12-test-12.12-150200.8.35.1 - SUSE Linux Enterprise Module for Legacy Software 15-SP3 (aarch64 ppc64le s390x x86_64): postgresql12-12.12-150200.8.35.1 postgresql12-contrib-12.12-150200.8.35.1 postgresql12-contrib-debuginfo-12.12-150200.8.35.1 postgresql12-debuginfo-12.12-150200.8.35.1 postgresql12-debugsource-12.12-150200.8.35.1 postgresql12-devel-12.12-150200.8.35.1 postgresql12-devel-debuginfo-12.12-150200.8.35.1 postgresql12-plperl-12.12-150200.8.35.1 postgresql12-plperl-debuginfo-12.12-150200.8.35.1 postgresql12-plpython-12.12-150200.8.35.1 postgresql12-plpython-debuginfo-12.12-150200.8.35.1 postgresql12-pltcl-12.12-150200.8.35.1 postgresql12-pltcl-debuginfo-12.12-150200.8.35.1 postgresql12-server-12.12-150200.8.35.1 postgresql12-server-debuginfo-12.12-150200.8.35.1 postgresql12-server-devel-12.12-150200.8.35.1 postgresql12-server-devel-debuginfo-12.12-150200.8.35.1 - SUSE Linux Enterprise Module for Legacy Software 15-SP3 (noarch): postgresql12-docs-12.12-150200.8.35.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (aarch64 x86_64): postgresql12-12.12-150200.8.35.1 postgresql12-contrib-12.12-150200.8.35.1 postgresql12-contrib-debuginfo-12.12-150200.8.35.1 postgresql12-debuginfo-12.12-150200.8.35.1 postgresql12-debugsource-12.12-150200.8.35.1 postgresql12-devel-12.12-150200.8.35.1 postgresql12-devel-debuginfo-12.12-150200.8.35.1 postgresql12-plperl-12.12-150200.8.35.1 postgresql12-plperl-debuginfo-12.12-150200.8.35.1 postgresql12-plpython-12.12-150200.8.35.1 postgresql12-plpython-debuginfo-12.12-150200.8.35.1 postgresql12-pltcl-12.12-150200.8.35.1 postgresql12-pltcl-debuginfo-12.12-150200.8.35.1 postgresql12-server-12.12-150200.8.35.1 postgresql12-server-debuginfo-12.12-150200.8.35.1 postgresql12-server-devel-12.12-150200.8.35.1 postgresql12-server-devel-debuginfo-12.12-150200.8.35.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (noarch): postgresql12-docs-12.12-150200.8.35.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (aarch64 x86_64): postgresql12-12.12-150200.8.35.1 postgresql12-contrib-12.12-150200.8.35.1 postgresql12-contrib-debuginfo-12.12-150200.8.35.1 postgresql12-debuginfo-12.12-150200.8.35.1 postgresql12-debugsource-12.12-150200.8.35.1 postgresql12-devel-12.12-150200.8.35.1 postgresql12-devel-debuginfo-12.12-150200.8.35.1 postgresql12-plperl-12.12-150200.8.35.1 postgresql12-plperl-debuginfo-12.12-150200.8.35.1 postgresql12-plpython-12.12-150200.8.35.1 postgresql12-plpython-debuginfo-12.12-150200.8.35.1 postgresql12-pltcl-12.12-150200.8.35.1 postgresql12-pltcl-debuginfo-12.12-150200.8.35.1 postgresql12-server-12.12-150200.8.35.1 postgresql12-server-debuginfo-12.12-150200.8.35.1 postgresql12-server-devel-12.12-150200.8.35.1 postgresql12-server-devel-debuginfo-12.12-150200.8.35.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (noarch): postgresql12-docs-12.12-150200.8.35.1 - SUSE Enterprise Storage 7 (aarch64 x86_64): postgresql12-12.12-150200.8.35.1 postgresql12-contrib-12.12-150200.8.35.1 postgresql12-contrib-debuginfo-12.12-150200.8.35.1 postgresql12-debuginfo-12.12-150200.8.35.1 postgresql12-debugsource-12.12-150200.8.35.1 postgresql12-devel-12.12-150200.8.35.1 postgresql12-devel-debuginfo-12.12-150200.8.35.1 postgresql12-plperl-12.12-150200.8.35.1 postgresql12-plperl-debuginfo-12.12-150200.8.35.1 postgresql12-plpython-12.12-150200.8.35.1 postgresql12-plpython-debuginfo-12.12-150200.8.35.1 postgresql12-pltcl-12.12-150200.8.35.1 postgresql12-pltcl-debuginfo-12.12-150200.8.35.1 postgresql12-server-12.12-150200.8.35.1 postgresql12-server-debuginfo-12.12-150200.8.35.1 postgresql12-server-devel-12.12-150200.8.35.1 postgresql12-server-devel-debuginfo-12.12-150200.8.35.1 - SUSE Enterprise Storage 7 (noarch): postgresql12-docs-12.12-150200.8.35.1 References: https://www.suse.com/security/cve/CVE-2022-2625.html https://bugzilla.suse.com/1198166 https://bugzilla.suse.com/1202368 . SUSE Security Patch for postgresql12 resolves significant vulnerabilities with guidelines for updating affected installations.. SUSE Security Update, PostgreSQL Fix, Exploit Prevention, Patch Instructions. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Sep 01, 2022 Important SuSE
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 25: Drupal7 Security Advisory for Critical Exploit

* [7.56](https://www.drupal.org/project/drupal/releases/7.56) * [SA-CORE-2017-003](https://www.drupal.org/SA-CORE-2017-003). --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-38113758e7 2017-07-03 18:56:35.537680 --------------------------------------------------------------------------------Name : drupal7 Product : Fedora 25 Version : 7.56 Release : 1.fc25 URL : http://www.drupal.org Summary : An open-source content-management platform Description : Equipped with a powerful blend of features, Drupal is a Content Management System written in PHP that can support a variety of websites ranging from personal weblogs to large community-driven websites. Drupal is highly configurable, skinnable, and secure. --------------------------------------------------------------------------------Update Information: * [7.56](https://www.drupal.org/project/drupal/releases/7.56) * [SA-CORE-2017-003](https://www.drupal.org/SA-CORE-2017-003) --------------------------------------------------------------------------------References: [ 1 ] Bug #1464008 - CVE-2017-6922 drupal7: Files uploaded by anonymous users into a private file system can be accessed by other anonymous users [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1464008 [ 2 ] Bug #1464007 - CVE-2017-6922 drupal7: Files uploaded by anonymous users into a private file system can be accessed by other anonymous users [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1464007 [ 3 ] Bug #1463856 - drupal7-7.56 is available https://bugzilla.redhat.com/show_bug.cgi?id=1463856 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade drupal7' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packagesare signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Urgent safety patch for drupal7 on Fedora 25 designed to fix existing vulnerabilities and bolster security for user information.. Drupal Update,Fedora Security,CMS Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 04, 2017 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydenial of servicedebian

Debian Jessie DSA-3814-1 Critical: Audiofile DoS Threat Resolved

Several vulnerabilities have been discovered in the audiofile library, which may result in denial of service or the execution of arbitrary code if a malformed audio file is processed. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-3814-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Salvatore Bonaccorso March 22, 2017 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : audiofile CVE ID : CVE-2017-6827 CVE-2017-6828 CVE-2017-6829 CVE-2017-6830 CVE-2017-6831 CVE-2017-6832 CVE-2017-6833 CVE-2017-6834 CVE-2017-6835 CVE-2017-6836 CVE-2017-6837 CVE-2017-6838 CVE-2017-6839 Debian Bug : 857651 Several vulnerabilities have been discovered in the audiofile library, which may result in denial of service or the execution of arbitrary code if a malformed audio file is processed. For the stable distribution (jessie), these problems have been fixed in version 0.3.6-2+deb8u2. For the upcoming stable distribution (stretch), these problems have been fixed in version 0.3.6-4. For the unstable distribution (sid), these problems have been fixed in version 0.3.6-4. We recommend that you upgrade your audiofile packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Numerous vulnerabilities resolved in the audiofile package for Debian's stable and future releases to mitigate potential security threats.. Audiofile Library, Debian Bug Fix, Security Update, Denial of Service. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 22, 2017 Critical Debian
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisoryubuntucritical exploit

Ubuntu 15.04 USN-2601-1 Critical: Kernel Admin Privilege Exploit

The system could be made to run programs as an administrator.. =========================================================================Ubuntu Security Notice USN-2601-1 May 05, 2015 linux vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 15.04 Summary: The system could be made to run programs as an administrator. Software Description: - linux: Linux kernel Details: A race condition between chown() and execve() was discovered in the Linux kernel. A local attacker could exploit this race by using chown on a setuid-user-binary to gain administrative privileges. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 15.04: linux-image-3.19.0-16-generic 3.19.0-16.16 linux-image-3.19.0-16-generic-lpae 3.19.0-16.16 linux-image-3.19.0-16-lowlatency 3.19.0-16.16 linux-image-3.19.0-16-powerpc-e500mc 3.19.0-16.16 linux-image-3.19.0-16-powerpc-smp 3.19.0-16.16 linux-image-3.19.0-16-powerpc64-emb 3.19.0-16.16 linux-image-3.19.0-16-powerpc64-smp 3.19.0-16.16 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. If you use linux-restricted-modules, you have to update that package as well to get modules which work with the new kernel version. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-server, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-2601-1 CVE-2015-3339 Package Information: https://launchpad.net/ubuntu/+source/linux/3.19.0-16.16 . Ubuntu 15.04 update addressescritical kernel admin privilege exploit with patch details.. Linux Kernel Update, Ubuntu Security Advisory, Administrative Privilege Exploit. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 05, 2015 Critical Ubuntu
Banner 1 1028x280 1708121660 1771599717
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydebianpackage update

Debian: DSA-257-2 Critical: Sendmail-Wide Remote Exploit

This advisory is an addendum to DSA-257-1; the sendmail problem discussed there also applies to the sendmail-wide packages.. - ------------------------------------------------------------------------ Debian Security Advisory DSA-257-2 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Wichert Akkerman March 4, 2003 - ------------------------------------------------------------------------ Package : sendmail-wide Problem type : remote exploit Debian-specific: no This advisory is an addendum to DSA-257-1; the sendmail problem discussed there also applies to the sendmail-wide packages. Mark Dowd of ISS X-Force found a bug in the header parsing routines of sendmail: it could overflow a buffer when encountering addresses specially crafted addresses. This has been fixed in version 8.9.3+3.2W-24 of the package for Debian GNU/Linux 2.2/potato and version 8.12.3+3.5Wbeta-5.2 of the package for Debian GNU/Linux 3.0/woody. - ------------------------------------------------------------------------ Obtaining updates: By hand: wget URL will fetch the file for you. dpkg -i FILENAME.deb will install the fetched file. With apt: deb Debian -- Security Information stable/updates main added to /etc/apt/sources.list will provide security updates Additional information can be found on the Debian security webpages at Debian -- Security Information - ------------------------------------------------------------------------ Debian GNU/Linux 2.2 alias potato - --------------------------------- Potato was released for alpha, arm, i386, m68k, powerpc and sparc. At this moment updates for the arm architecture are not yet available. Source archives: Size/MD5 checksum: 541 c93cca69438ee75976517187d4f8d664 Size/MD5 checksum: 1272761 2905292d7c17de5a1ae31d2ebf5c344c alpha architecture (DEC Alpha) Size/MD5 checksum: 302696 87b2cce86f430f8825439ecab1a405f8 i386architecture (Intel ia32) Size/MD5 checksum: 217618 7da2aeb124ff0da6a596b429a64415ab m68k architecture (Motorola Mc680x0) Size/MD5 checksum: 202468 f66310eab0cca7ba0dcc6f55407a6359 powerpc architecture (PowerPC) Size/MD5 checksum: 242646 7887c26fb5b701f56b9f4836e50f152d sparc architecture (Sun SPARC/UltraSPARC) Size/MD5 checksum: 236450 ef7e06fe112024b51a09857da19c7139 Debian GNU/Linux 3.0 alias woody - -------------------------------- Woody was released for alpha, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc. Source archives: Size/MD5 checksum: 738 13e84b5fad4146ae8b09a3c53def1425 Size/MD5 checksum: 1870451 4c7036e8042bae10a90da4a84a717963 Size/MD5 checksum: 324768 d97da94eafadfb9c31dd7678fbb39c62 alpha architecture (DEC Alpha) Size/MD5 checksum: 440346 481ec19be09824cb2394b990149396db arm architecture (ARM) Size/MD5 checksum: 369224 708693168ed3f0268fc9b346d4ffae13 hppa architecture (HP PA RISC) Size/MD5 checksum: 413364 9bb9609e2f215e5f42e3c540563fc12e i386 architecture (Intel ia32) Size/MD5 checksum: 328606 c76a156b74928a1ba796a3a3b48d7423 ia64 architecture (Intel ia64) Size/MD5 checksum: 574706 d1a2522112c46ff60d1cbaefdb49e2d7 m68k architecture (Motorola Mc680x0) Size/MD5 checksum: 300600 6688599f9af8d95b174916283b28289b mips architecture (MIPS (Big Endian)) Size/MD5 checksum: 378150 facb8c33943fa62c88713021a351e79c mipsel architecture (MIPS (Little Endian)) Size/MD5 checksum: 380108 867a14a01572fb747d81932b7106a429 powerpc architecture (PowerPC) Size/MD5 checksum: 362674 5380a764a53eca533a709ad631fba0d8 s390 architecture (IBM S/390) Size/MD5 checksum: 354562 6a21b7f3ced620789e35df583d6411fd sparc architecture (Sun SPARC/UltraSPARC) Size/MD5 checksum: 355768 36c642bd24104fb94f33a8680af0058b - -- - ---------------------------------------------------------------------------- Debian Security team Debian -- Security Information Mailing-List: This email address is being protected from spambots. You need JavaScript enabled to view it. . Ubuntu Security Notice USN-5174-1 discloses a critical flaw in samba-server. Immediate action recommended.. Debian Remote Exploit, Sendmail Security Update, Debian Package Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 05, 2003 Critical Debian
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorysecurity updatedebian

Debian: ISDNUtils Critical Exploit for Xmonisdn Security Risk

We have received reports that the version of xmonisdn as distributed in the isndutils package from Debian GNU/Linux 2.1 has a security problem. . -----BEGIN PGP SIGNED MESSAGE----- We have received reports that the version of xmonisdn as distributed in the isndutils package from Debian GNU/Linux 2.1 has a security problem. Xmonisdn is an X applet that shows the status of the ISDN links. You can configure it to run two scripts when the left or right mouse button are clicked on it. Xmonisdn was installed setuid root so that the scripts could do things like add and delete the default route. However is that while the scripts were checked for owner root and not writeable by group or others the scripts are run via the system() library function, which spawns a shell to run it. This means that the scripts are open to attack via IFS and/or PATH manipulation. However, the setuid root isn't necessary anymore as the ISDN system now offers other ways of preventing dialouts besides by manipulating network routes. This can be done by anyone who can access /dev/isdnctrl0 and /dev/isdninfo. On debian systems those are rw for group dialout, so if xmonisdn is run by someone in group dialout, they can execute the necessary isdnctrl commands. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Debian GNU/Linux 2.1 alias slink - ------------------------------- This version of Debian was released only for Intel, the Motorola 680x0, the alpha and the Sun sparc architecture. Source archives: ils_3.0-12slink13.diff.gz MD5 checksum: 56f4328687b0478c83b49ae8c61d3a24 3.0-12slink13.dsc MD5 checksum: 44ecac14b66830e969ce6e09b3f95e1e g.tar.gz MD5 checksum: 83cb39ed37747367331ec5b433fc7dda Alpha architecture: MD5 checksum: 984e4be2224fcf90261139e2576b2d35 Intel ia32 architecture: MD5 checksum: 6550f5ee476a0c8056acf19f5a1e41fb Sun Sparc architecture: MD5 checksum: 2da71a182ff8955c0822aa9737095c97 For notyet released architectures please refer to the appropriate directory . - -- Debian GNU/Linux . Security Managers . This email address is being protected from spambots. You need JavaScript enabled to view it. This email address is being protected from spambots. You need JavaScript enabled to view it. Christian Hudon . Wichert Akkerman . Martin Schulze . . -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQB1AwUBN7WkVqjZR/ntlUftAQG5vgMArrIlZRpCEfjfOYrxeSFqFTzvrJJLkadE 8alJnI/712OvHcDUQN3bAfXlcCjbSrZH0o/6QS0Omj6iYoULxqQjSiykWeq2hgeL n4Tt7YOncrKGL90zFoZFAJRKxJIR+Xwx =GkF9 -----END PGP SIGNATURE----- . Stay informed about vital developments regarding xmonisdn vulnerabilities within Debian's isdnutils suite. Safeguard your ISDN connections proactively.. isdnutils exploit,debian security update,xmonisdn issue,security patches. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 13, 1999 Critical Debian
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here