Stay Vigilant with Timely Linux Security Advisories

Refine advisories

X Clear Filters

Critical (5)

NULL pointer dereference (101)

OpenSSL (406)

debian (8048)

important (27834)

security advisory (115125)

use-after-free (1386)

Ubuntu (4966)

alsa-lib (6)

arbitrary code (885)

denial of service (18331)

Fedora (5)

Published Date Range

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.57%)

78.57% votes

Formal training or courses (4.29%)

4.29% votes

A job that required it (4.86%)

4.86% votes

Other (12.29%)

12.29% votes

[{"id":483,"title":"Self-taught through trial and error","votes":550,"type":"x","order":1,"pct":78.57,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.29,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350

bottom 200

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Ubuntu 22.04 OpenSSH Important Remote Access Issues USN-8222-1

Explore Latest Linux Security advisories

We found -4 articles for you...

security advisorydenial of servicefedora

Fedora 42: rust-az-cvm-vtpm Critical Fix Multiple CVEs 2025-2408b72979

Rebase trustee-guest-components to v0.13.0 Include rust-az-???-vtpm packages rebase to version 0.7.4 Adjust (patches) to work with 'sev' version 6.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-2408b72979 2025-09-26 01:08:57.941209+00:00 -------------------------------------------------------------------------------- Name : rust-az-cvm-vtpm Product : Fedora 42 Version : 0.7.4 Release : 3.fc42 URL : https://crates.io/crates/az-cvm-vtpm Summary : Package with shared code for Azure Confidential VMs Description : Package with shared code for Azure Confidential VMs. -------------------------------------------------------------------------------- Update Information: Rebase trustee-guest-components to v0.13.0 Include rust-az-???-vtpm packages rebase to version 0.7.4 Adjust (patches) to work with 'sev' version 6. -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 15 2025 Uri Lublin - 0.7.4-3 - Rebuilt * Thu Sep 4 2025 Uri Lublin - 0.7.4-2 - Rebase to az-cvm-vtpm-0.7.4: add bugs to changelog * Thu Sep 4 2025 Uri Lublin - 0.7.4-1 - Rebase to az-cvm-vtpm-0.7.4 * Thu Sep 4 2025 Uri Lublin - 0.7.3-1 - Rebase to az-cvm-vtpm-0.7.3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2366579 - CVE-2025-4574 trustee-guest-components: crossbeam-channel Vulnerable to Double Free on Drop [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2366579 [ 2 ] Bug #2372843 - F42FailsToInstall: rust-az-cvm-vtpm-devel, rust-az-cvm-vtpm+verifier-devel https://bugzilla.redhat.com/show_bug.cgi?id=2372843 [ 3 ] Bug #2376753 - CVE-2025-53605 trustee-guest-components: Protobuf: Uncontrolled Recursion Vulnerability [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2376753 [ 4 ] Bug #2384045 - CVE-2023-53160 trustee-guest-components: SequoiaOpenPGP Array Access Panic [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2384045 [ 5 ] Bug #2384047 - CVE-2023-53161 trustee-guest-components: Buffered-Reader Out-of-Bounds Access Vulnerability [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2384047 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-2408b72979' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Important enhancement for Fedora 42 rust-az-cvm-vtpm tackles several CVEs impacting both safety and performance.. Fedora update, rust-az-cvm-vtpm, security update, CVE-2025-4574, memory management. . Severity: Critical. LinuxSecurity.com Team

Sep 26, 2025 •Critical Fedora

security advisoryFedoracrossbeam

Fedora 41: 2025-575023fff7 critical: ruff crossbeam double free

Security update for CVE-2025-4574, GHSA-pg9f-39pc-qf8g: by rebuilding ruff, we ensure that it uses version 0.5.15 of the crossbeam-channel crate library. rust-hashlink 0.10.0 API incompatible change: upgrade hashbrown to 0.15 API incompatible change: we now wrap DefaultHashBuilder and DefaultHasher. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-575023fff7 2025-05-30 01:44:07.670098+00:00 -------------------------------------------------------------------------------- Name : ruff Product : Fedora 41 Version : 0.11.5 Release : 2.fc41 URL : https://github.com/astral-sh/ruff Summary : Extremely fast Python linter and code formatter Description : An extremely fast Python linter and code formatter, written in Rust. Ruff aims to be orders of magnitude faster than alternative tools while integrating more functionality behind a single, common interface. Ruff can be used to replace Flake8 (plus dozens of plugins), Black, isort, pydocstyle, pyupgrade, autoflake, and more, all while executing tens or hundreds of times faster than any individual tool. -------------------------------------------------------------------------------- Update Information: Security update for CVE-2025-4574, GHSA-pg9f-39pc-qf8g: by rebuilding ruff, we ensure that it uses version 0.5.15 of the crossbeam-channel crate library. rust-hashlink 0.10.0 API incompatible change: upgrade hashbrown to 0.15 API incompatible change: we now wrap DefaultHashBuilder and DefaultHasher from hashbrown so that in the future upgrading hashbrown is not an API incompatible change -------------------------------------------------------------------------------- ChangeLog: * Fri May 2 2025 Benjamin A. Beasley - 0.11.5-2 - Stop patching for hashbrown/hashlink 0.14/0.9; use 0.15/0.10 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2331134 - rust-hashlink-0.10.0is available https://bugzilla.redhat.com/show_bug.cgi?id=2331134 [ 2 ] Bug #2366541 - CVE-2025-4574 ruff: crossbeam-channel Vulnerable to Double Free on Drop [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2366541 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-575023fff7' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Ruff in Fedora 41 has been updated significantly to address the CVE-2025-4574 security vulnerability, enhancing code integrity with the latest improvements and updates. Fedora Updates, Python Linter, Crossbeam-Channel, Rust Libraries. . Severity: Critical. LinuxSecurity.com Team

May 30, 2025 •Critical Fedora

security advisorysecurity issueFedora

Fedora 41: 2025-575023fff7 critical: rust-hashlink double free

Security update for CVE-2025-4574, GHSA-pg9f-39pc-qf8g: by rebuilding ruff, we ensure that it uses version 0.5.15 of the crossbeam-channel crate library. rust-hashlink 0.10.0 API incompatible change: upgrade hashbrown to 0.15 API incompatible change: we now wrap DefaultHashBuilder and DefaultHasher. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-575023fff7 2025-05-30 01:44:07.670098+00:00 -------------------------------------------------------------------------------- Name : rust-hashlink Product : Fedora 41 Version : 0.10.0 Release : 1.fc41 URL : https://crates.io/crates/hashlink Summary : HashMap-like containers that hold their key-value pairs in a user controllable order Description : HashMap-like containers that hold their key-value pairs in a user controllable order. -------------------------------------------------------------------------------- Update Information: Security update for CVE-2025-4574, GHSA-pg9f-39pc-qf8g: by rebuilding ruff, we ensure that it uses version 0.5.15 of the crossbeam-channel crate library. rust-hashlink 0.10.0 API incompatible change: upgrade hashbrown to 0.15 API incompatible change: we now wrap DefaultHashBuilder and DefaultHasher from hashbrown so that in the future upgrading hashbrown is not an API incompatible change -------------------------------------------------------------------------------- ChangeLog: * Thu May 1 2025 Cristian Le - 0.10.0-1 - Update to version 0.10.0; Fixes RHBZ#2331134 * Sun Jan 19 2025 Fedora Release Engineering - 0.9.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2331134 - rust-hashlink-0.10.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2331134 [ 2 ] Bug #2366541 - CVE-2025-4574 ruff: crossbeam-channel Vulnerable to Double Free on Drop[fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2366541 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-575023fff7' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Fedora 41's latest security update tackles CVE-2025-4574, improving rust-hashlink package with refined hashing algorithms and crucial API changes to enhance security. Fedora 41 Security Update, Rust Hashlink API Changes, CVE-2025-4574 Update. . Severity: Critical. LinuxSecurity.com Team

May 30, 2025 •Critical Fedora

security advisoryupdateFedora

Fedora 42: rust-hashlink Security Update - CVE-2025-4574 Double Free Issue

Security update for CVE-2025-4574, GHSA-pg9f-39pc-qf8g: by rebuilding ruff, we ensure that it uses version 0.5.15 of the crossbeam-channel crate library. rust-hashlink 0.10.0 API incompatible change: upgrade hashbrown to 0.15 API incompatible change: we now wrap DefaultHashBuilder and DefaultHasher. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-04894ce9bd 2025-05-30 01:14:13.237137+00:00 -------------------------------------------------------------------------------- Name : rust-hashlink Product : Fedora 42 Version : 0.10.0 Release : 1.fc42 URL : https://crates.io/crates/hashlink Summary : HashMap-like containers that hold their key-value pairs in a user controllable order Description : HashMap-like containers that hold their key-value pairs in a user controllable order. -------------------------------------------------------------------------------- Update Information: Security update for CVE-2025-4574, GHSA-pg9f-39pc-qf8g: by rebuilding ruff, we ensure that it uses version 0.5.15 of the crossbeam-channel crate library. rust-hashlink 0.10.0 API incompatible change: upgrade hashbrown to 0.15 API incompatible change: we now wrap DefaultHashBuilder and DefaultHasher from hashbrown so that in the future upgrading hashbrown is not an API incompatible change -------------------------------------------------------------------------------- ChangeLog: * Thu May 1 2025 Cristian Le - 0.10.0-1 - Update to version 0.10.0; Fixes RHBZ#2331134 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2331134 - rust-hashlink-0.10.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2331134 [ 2 ] Bug #2366571 - CVE-2025-4574 ruff: crossbeam-channel Vulnerable to Double Free on Drop [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2366571 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-04894ce9bd' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Ubuntu 22.04 security patch for python-bcrypt resolving CVE-2025-1234 tackling memory corruption vulnerabilities.. Fedora Update, rust-hashlink Security, CVE-2025-4574 Fix. . Severity: Critical. LinuxSecurity.com Team

May 30, 2025 •Critical Fedora

security advisorycriticalFedora

Fedora 34 FEDORA-2021-5e99655cca Critical: Crossbeam-Dequeue Patch

Rebuild with crossbeam-deque 0.8.1 / 0.7.4 for CVE-2021-32810. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-5e99655cca 2021-08-16 01:16:30.079266 --------------------------------------------------------------------------------Name : rust-skim Product : Fedora 34 Version : 0.9.4 Release : 4.fc34 URL : Summary : Fuzzy Finder in Rust Description : Fuzzy Finder in rust!. --------------------------------------------------------------------------------Update Information: Rebuild with crossbeam-deque 0.8.1 / 0.7.4 for CVE-2021-32810 --------------------------------------------------------------------------------ChangeLog: * Sat Aug 7 2021 Fabio Valentini - 0.9.4-4 - Rebuild with crossbeam-deque 0.8.1 / 0.7.4 for CVE-2021-32810 * Fri Jul 23 2021 Fedora Release Engineering - 0.9.4-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-5e99655cca' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Donot reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Fedora 34's rust-skim package has been updated to fix CVE-2021-32810, enhancing system safety. Keep your installations updated to protect your environment. Fedora Update,Rust-Skim,Security Fix,Package Management. . Severity: Critical. LinuxSecurity.com Team

Aug 15, 2021 •Critical Fedora

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.57%)

78.57% votes

Formal training or courses (4.29%)

4.29% votes

A job that required it (4.86%)

4.86% votes

Other (12.29%)

12.29% votes

bottom 200

Stay Secure with the Latest Linux Advisories

Debian LTS openssl Important Use-After-Free NULL Pointer Issues DLA-4624-1

Ubuntu 20.04 alsa-lib Important Denial of Service Fix USN-8044-2

Ubuntu 26.04 LTS node-shell-quote Important Denial of Service CVE-2026-9277

Mageia 9 Suricata Critical Performance Security Issues MGASA-2026-0181

Mageia 9 PackageKit Important TOCTOU Race Escalation CVE-2026-41651

Mageia 9 Unbound Critical Remote Code Execution Advisory 2026-0034

Ubuntu 26.04 LTS Netatalk Multiple Security Issues USN-8395-1

Fedora 43 mingw-objfw 1.5.5 Update Security Fix FEDORA-2026-de23fedf3e

Fedora 43 objfw Important Update 1.5.5 Bug Fixes June 2026

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Ubuntu 22.04 OpenSSH Important Remote Access Issues USN-8222-1

Explore Latest Linux Security advisories

Fedora 42: rust-az-cvm-vtpm Critical Fix Multiple CVEs 2025-2408b72979

Fedora 41: 2025-575023fff7 critical: ruff crossbeam double free

Fedora 41: 2025-575023fff7 critical: rust-hashlink double free

Fedora 42: rust-hashlink Security Update - CVE-2025-4574 Double Free Issue

Fedora 34 FEDORA-2021-5e99655cca Critical: Crossbeam-Dequeue Patch

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Ubuntu 22.04 OpenSSH Important Remote Access Issues USN-8222-1

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Debian LTS openssl Important Use-After-Free NULL Pointer Issues DLA-4624-1

Ubuntu 20.04 alsa-lib Important Denial of Service Fix USN-8044-2

Ubuntu 26.04 LTS node-shell-quote Important Denial of Service CVE-2026-9277

Mageia 9 Suricata Critical Performance Security Issues MGASA-2026-0181

Mageia 9 PackageKit Important TOCTOU Race Escalation CVE-2026-41651

Mageia 9 Unbound Critical Remote Code Execution Advisory 2026-0034

Ubuntu 26.04 LTS Netatalk Multiple Security Issues USN-8395-1

Fedora 43 mingw-objfw 1.5.5 Update Security Fix FEDORA-2026-de23fedf3e

Fedora 43 objfw Important Update 1.5.5 Bug Fixes June 2026

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!