Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 6 articles for you...
172
security advisorycriticalUbuntuUbuntu 24.04 LTS Linux-nvidia-tegra Critical Access Issue CVE-2026-31431
Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-8350-1 June 01, 2026 linux-nvidia-tegra vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-nvidia-tegra: Linux kernel for NVIDIA Tegra systems Details: It was discovered that the Linux kernel algif_aead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. (CVE-2026-31431) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - Ethernet bonding driver; - Packet sockets; - TLS protocol; (CVE-2026-31419, CVE-2026-31504, CVE-2026-31533, CVE-2026-43033, CVE-2026-43077, CVE-2026-43078, CVE-2026-46028) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.04 LTS linux-image-6.8.0-1025-nvidia-tegra 6.8.0-1025.25 linux-image-6.8.0-1025-nvidia-tegra-rt 6.8.0-1025.25 linux-image-nvidia-tegra 6.8.0-1025.25 linux-image-nvidia-tegra-6.8 6.8.0-1025.25 linux-image-nvidia-tegra-rt 6.8.0-1025.25 linux-image-nvidia-tegra-rt-6.8 6.8.0-1025.25 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE,linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-8350-1 CVE-2026-31419, CVE-2026-31431, CVE-2026-31504, CVE-2026-31533, CVE-2026-43033, CVE-2026-43077, CVE-2026-43078, CVE-2026-46028 Package Information: https://launchpad.net/ubuntu/+source/linux-nvidia-tegra/6.8.0-1025.25 . Numerous security fixes in Ubuntu 24.04 LTS for NVIDIA Tegra kernel vulnerabilities will require reboot for updates.. ubuntu kernel update nvidia tegra security. . Severity: Critical. LinuxSecurity.com Team
Jun 01, 2026
•Critical
Ubuntu
100
security advisorymoderateSuSESUSE Linux Micro 6.2 libsodium Moderate Security Issues Vuln 2026-21393-1
An update that solves two vulnerabilities can now be installed.. # Security update for libsodium Announcement ID: SUSE-SU-2026:21393-1 Release Date: 2026-04-28T15:27:44Z Rating: moderate References: * bsc#1255764 * bsc#1256070 Cross-References: * CVE-2025-15444 * CVE-2025-69277 CVSS scores: * CVE-2025-15444 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2025-15444 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-69277 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-69277 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2025-69277 ( NVD ): 4.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N Affected Products: * SUSE Linux Micro 6.2 An update that solves two vulnerabilities can now be installed. ## Description: This update for libsodium fixes the following issues: Security fixes: * CVE-2025-15444: Cryptographic bypass via improper elliptic curve point validation (bsc#1256070). * CVE-2025-69277: incorrect validation of elliptic curve points certain custom cryptography or untrusted data to crypto_core_ed25519_is_valid_point function (bsc#1255764). Other fixes: * Update to 1.0.21 * The new crypto_ipcrypt_* functions implement mechanisms for securely encrypting and anonymizing IP addresses. * The sodium_bin2ip and sodium_ip2bin helper functions have been added to complement the crypto_ipcrypt_* functions and easily convert addresses between bytes and strings. * XOF: the crypto_xof_shake _and crypto_xof_turboshake_ functions are * standard extendable output functions. From input of any length, they can derive output of any length with the same properties as hash functions. These primitives are required by many post-quantum mechanisms, but can also be used for a wide range of applications, including key derivation, session encryption and more. * Performance of AES256-GCM and AEGIS on ARM has been improvedwith some compilers * Security: optblockers have been introduced in critical code paths to prevent compilers from introducing unwanted side channels via conditional jumps. This was observed on RISC-V targets with specific compilers and options. * Security: crypto_core_ed25519_is_valid_point() now properly rejects small- order points that are not in the main subgroup * ((nonnull)) attributes have been relaxed on some crypto_stream* functions to allow NULL output buffers when the output length is zero * A cross-compilation issue with old clang versions has been fixed * crypto_aead_aes256gcm_is_available is exported to JavaScript * Security: memory fences have been added after MAC verification in AEAD to prevent speculative access to plaintext before authentication is complete * Assembly files now include .gnu.property notes for proper IBT and Shadow Stack support when building with CET instrumentation. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.2 zypper in -t patch SUSE-SL-Micro-6.2-649=1 ## Package List: * SUSE Linux Micro 6.2 (aarch64 ppc64le s390x x86_64) * libsodium26-debuginfo-1.0.21-160000.1.1 * libsodium26-1.0.21-160000.1.1 * libsodium-debugsource-1.0.21-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-15444.html * https://www.suse.com/security/cve/CVE-2025-69277.html * https://bugzilla.suse.com/show_bug.cgi?id=1255764 * https://bugzilla.suse.com/show_bug.cgi?id=1256070 . SUSE Security Advisory updates libsodium to address two moderate security issues related to cryptography. Immediate action is recommended.. libsodium update,SUSE security,cryptographic validation. . LinuxSecurity.com Team
Apr 30, 2026
SuSE
100
security advisorymoderateSuSEFedora OS Slim 40.4 secAlert Message FDO-OS-2023-29456-8
An update that solves two vulnerabilities can now be installed.. # Security update for libsodium Announcement ID: SUSE-SU-2026:20484-1 Release Date: 2026-02-17T09:35:33Z Rating: moderate References: * bsc#1255764 * bsc#1256070 Cross-References: * CVE-2025-15444 * CVE-2025-69277 CVSS scores: * CVE-2025-15444 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2025-15444 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-69277 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-69277 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2025-69277 ( NVD ): 4.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves two vulnerabilities can now be installed. ## Description: This update for libsodium fixes the following issues: * CVE-2025-15444: Fixed cryptographic bypass via improper elliptic curve point validation (bsc#1256070). * CVE-2025-69277: Fixed incorrect validation of elliptic curve points in crypto_core_ed25519_is_valid_point function (bsc#1255764). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-403=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * libsodium23-debuginfo-1.0.18-slfo.1.1_3.1 * libsodium23-1.0.18-slfo.1.1_3.1 * libsodium-debugsource-1.0.18-slfo.1.1_3.1 ## References: * https://www.suse.com/security/cve/CVE-2025-15444.html * https://www.suse.com/security/cve/CVE-2025-69277.html * https://bugzilla.suse.com/show_bug.cgi?id=1255764 * https://bugzilla.suse.com/show_bug.cgi?id=1256070 . Update for libsodium on SUSE resolves cryptographic issues with moderate severity. Install to maintain system security..libsodium security update, SUSE cryptographic patch, libsodium vulnerabilities. . LinuxSecurity.com Team
Feb 27, 2026
SuSE
100
security advisorymoderateSuSESUSE libsodium Moderate Security Bypass Issues 2026-0368-1 CVE-2025-15444
An update that solves two vulnerabilities can now be installed.. # Security update for libsodium Announcement ID: SUSE-SU-2026:0368-1 Release Date: 2026-02-03T13:41:03Z Rating: moderate References: * bsc#1255764 * bsc#1256070 Cross-References: * CVE-2025-15444 * CVE-2025-69277 CVSS scores: * CVE-2025-15444 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2025-15444 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-69277 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-69277 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2025-69277 ( NVD ): 4.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N Affected Products: * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves two vulnerabilities can now be installed. ## Description: This update for libsodium fixes the following issues: * CVE-2025-15444: Fixed cryptographic bypass via improper elliptic curve point validation (bsc#1256070). * CVE-2025-69277: Fixed incorrect validation of elliptic curve points in crypto_core_ed25519_is_valid_point function (bsc#1255764). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2026-368=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patchSUSE-SLE-Micro-5.3-2026-368=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-368=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-368=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-368=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-368=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-368=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2026-368=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2026-368=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * libsodium23-debuginfo-1.0.18-150000.4.14.1 * libsodium23-1.0.18-150000.4.14.1 * libsodium-devel-1.0.18-150000.4.14.1 * libsodium-debugsource-1.0.18-150000.4.14.1 * openSUSE Leap 15.6 (x86_64) * libsodium23-32bit-1.0.18-150000.4.14.1 * libsodium23-32bit-debuginfo-1.0.18-150000.4.14.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * libsodium23-debuginfo-1.0.18-150000.4.14.1 * libsodium23-1.0.18-150000.4.14.1 * libsodium-debugsource-1.0.18-150000.4.14.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * libsodium23-debuginfo-1.0.18-150000.4.14.1 * libsodium23-1.0.18-150000.4.14.1 * libsodium-debugsource-1.0.18-150000.4.14.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * libsodium23-debuginfo-1.0.18-150000.4.14.1 * libsodium23-1.0.18-150000.4.14.1 * libsodium-debugsource-1.0.18-150000.4.14.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * libsodium23-debuginfo-1.0.18-150000.4.14.1 * libsodium23-1.0.18-150000.4.14.1 * libsodium-debugsource-1.0.18-150000.4.14.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * libsodium23-debuginfo-1.0.18-150000.4.14.1 *libsodium23-1.0.18-150000.4.14.1 * libsodium-debugsource-1.0.18-150000.4.14.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * libsodium23-debuginfo-1.0.18-150000.4.14.1 * libsodium23-1.0.18-150000.4.14.1 * libsodium-devel-1.0.18-150000.4.14.1 * libsodium-debugsource-1.0.18-150000.4.14.1 * Basesystem Module 15-SP7 (x86_64) * libsodium23-32bit-1.0.18-150000.4.14.1 * libsodium23-32bit-debuginfo-1.0.18-150000.4.14.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * libsodium23-debuginfo-1.0.18-150000.4.14.1 * libsodium23-1.0.18-150000.4.14.1 * libsodium-debugsource-1.0.18-150000.4.14.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * libsodium23-debuginfo-1.0.18-150000.4.14.1 * libsodium23-1.0.18-150000.4.14.1 * libsodium-debugsource-1.0.18-150000.4.14.1 ## References: * https://www.suse.com/security/cve/CVE-2025-15444.html * https://www.suse.com/security/cve/CVE-2025-69277.html * https://bugzilla.suse.com/show_bug.cgi?id=1255764 * https://bugzilla.suse.com/show_bug.cgi?id=1256070 . SUSE updates libsodium to fix moderate security issues related to elliptic curve validations. Essential for system security.. libsodium update,SUSE security patch,crypto vulnerability fix,enterprise Linux security. . LinuxSecurity.com Team
Feb 03, 2026
SuSE
172
security advisorycode executionDoSUbuntu 22.10 & 22.04 LTS USN-5933-1 Critical: Libtpms DoS Risk
Several security issues were fixed in Libtpms.. =========================================================================Ubuntu Security Notice USN-5933-1 March 07, 2023 libtpms vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.10 - Ubuntu 22.04 LTS Summary: Several security issues were fixed in Libtpms. Software Description: - libtpms: TPM emulation library Details: Francisco Falcon discovered that Libtpms did not properly manage memory when performing certain cryptographic operations. An attacker could possibly use this issue to cause a denial of service, or possibly execute arbitrary code. (CVE-2023-1017, CVE-2023-1018) It was discovered that Libtpms did not properly manage memory when handling certain commands. An attacker could possibly use this issue to cause a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.10: libtpms0 0.9.3-0ubuntu1.22.10.1 Ubuntu 22.04 LTS: libtpms0 0.9.3-0ubuntu1.22.04.1 After a standard system update you need to restart any application using Libtpms libraries to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-5933-1 CVE-2023-1017, CVE-2023-1018, https://bugs.launchpad.net/ubuntu/+source/libtpms/+bug/2009608 Package Information: https://launchpad.net/ubuntu/+source/libtpms/0.9.3-0ubuntu1.22.10.1 https://launchpad.net/ubuntu/+source/libtpms/0.9.3-0ubuntu1.22.04.1 . Security enhancements for Libtpms on Ubuntu 22.10 and 22.04 LTS have been released. Review the updates promptly and apply the required patches.. Libtpms Security Update, Ubuntu Vulnerability Fix, TPM Library Security. . Severity: Critical. LinuxSecurity.com Team
Mar 07, 2023
•Critical
Ubuntu
200
security advisorymoderatebug fixScientific Linux 7 x86_64 SLSA-2016:2582-2 Moderate Nettle Security Update
Moderate: nettle security and bug fix update. Date: Wed, 14 Dec 2016 18:08:46 -0000 Reply-To: scientific-linux-users@ Sender: Security Errata for Scientific Linux From: Scott Reid Subject: Security ERRATA Moderate: nettle on SL7.x x86_64 MIME-Version: 1.0 Message-ID: Synopsis: Moderate: nettle security and bug fix update Advisory ID: SLSA-2016:2582-2 Issue Date: 2016-11-03 CVE Numbers: CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 CVE-2016-6489 -- Security Fix(es): * Multiple flaws were found in the way nettle implemented elliptic curve scalar multiplication. These flaws could potentially introduce cryptographic weaknesses into nettle's functionality. (CVE-2015-8803, CVE-2015-8804, CVE-2015-8805) * It was found that nettle's RSA and DSA decryption code was vulnerable to cache-related side channel attacks. An attacker could use this flaw to recover the private key from a co-located virtual-machine instance. (CVE-2016-6489) Additional Changes: -- SL7 x86_64 nettle-2.7.1-8.el7.i686.rpm nettle-2.7.1-8.el7.x86_64.rpm nettle-debuginfo-2.7.1-8.el7.i686.rpm nettle-debuginfo-2.7.1-8.el7.x86_64.rpm nettle-devel-2.7.1-8.el7.i686.rpm nettle-devel-2.7.1-8.el7.x86_64.rpm - Scientific Linux Development Team . This security bulletin outlines a thorn patch targeting various vulnerabilities and encryption shortcomings.. Nettle Update, Scientific Linux, Security Advisory, Cryptographic Flaws. . Severity: Important. LinuxSecurity.com Team
Dec 14, 2016
•Important
Scientific Linux
89
security advisorynetwork securitysoftware updateFedora 22 nss-softokn Security Update Moderate Cryptographic Issue
firefox-42.0-2.fc22 - Update to 42.0 firefox-42.0-2.fc21 - Update to 42.0 firefox-42.0-2.fc23 - Update to 42.0 nspr-4.10.10-1.fc23 - Update to NSPR_4_10_10_RTM nspr-4.10.10-1.fc21 - Update to NSPR_4_10_10_RTM nspr-4.10.10-1.fc22 - Update to NSPR_4_10_10_RTM. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-5b5109510c 2015-11-04 18:18:57.362994 -------------------------------------------------------------------------------- Name : nss-softokn Product : Fedora 22 Version : 3.20.1 Release : 1.0.fc22 URL : https://firefox-source-docs.mozilla.org/security/nss/index.html Summary : Network Security Services Softoken Module Description : Network Security Services Softoken Cryptographic Module -------------------------------------------------------------------------------- Update Information: firefox-42.0-2.fc22 - Update to 42.0 firefox-42.0-2.fc21 - Update to 42.0 firefox-42.0-2.fc23 - Update to 42.0 nspr-4.10.10-1.fc23 - Update to NSPR_4_10_10_RTM nspr-4.10.10-1.fc21 - Update to NSPR_4_10_10_RTM nspr-4.10.10-1.fc22 - Update to NSPR_4_10_10_RTM -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update nss-softokn' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list
Nov 04, 2015
Fedora
100
security advisoryimportantcryptographic issueSUSE Linux Enterprise Server 11 SP2: 2015:1184-2 Important OpenSSL Update
An update that fixes 7 vulnerabilities is now available. An update that fixes 7 vulnerabilities is now available. An update that fixes 7 vulnerabilities is now available.. SUSE Security Update: Security update for OpenSSL ______________________________________________________________________________ Announcement ID: SUSE-SU-2015:1184-2 Rating: important References: #929678 #931698 #933911 #934487 #934489 #934491 #934493 Cross-References: CVE-2015-1788 CVE-2015-1789 CVE-2015-1790 CVE-2015-1791 CVE-2015-1792 CVE-2015-3216 CVE-2015-4000 Affected Products: SUSE Linux Enterprise Server 11 SP2 LTSS ______________________________________________________________________________ An update that fixes 7 vulnerabilities is now available. Description: OpenSSL 0.9.8j was updated to fix several security issues. * CVE-2015-4000: The Logjam Attack ( weakdh.org ) has been addressed by rejecting connections with DH parameters shorter than 1024 bits. We now also generate 2048-bit DH parameters by default. * CVE-2015-1788: Malformed ECParameters could cause an infinite loop. * CVE-2015-1789: An out-of-bounds read in X509_cmp_time was fixed. * CVE-2015-1790: A PKCS7 decoder crash with missing EnvelopedContent was fixed. * CVE-2015-1792: A CMS verification infinite loop when using an unknown hash function was fixed. * CVE-2015-1791: Fixed a race condition in NewSessionTicket creation. * CVE-2015-3216: Fixed a potential crash in ssleay_rand_bytes due to locking regression. * fixed a timing side channel in RSA decryption (bnc#929678) Additional changes: * In the default SSL cipher string EXPORT ciphers are now disabled. This will only get active if applications get rebuilt and actually use this string. (bnc#931698) * Added the ECC ciphersuites to the DEFAULT cipher class(bnc#879179) Security Issues: * CVE-2015-1788 * CVE-2015-1789 * CVE-2015-1790 * CVE-2015-1791 * CVE-2015-1792 * CVE-2015-3216 * CVE-2015-4000 Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11 SP2 LTSS: zypper in -t patch slessp2-libopenssl-devel=10795 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Server 11 SP2 LTSS (i586 s390x x86_64): libopenssl-devel-0.9.8j-0.72.1 libopenssl0_9_8-0.9.8j-0.72.1 libopenssl0_9_8-hmac-0.9.8j-0.72.1 openssl-0.9.8j-0.72.1 openssl-doc-0.9.8j-0.72.1 - SUSE Linux Enterprise Server 11 SP2 LTSS (s390x x86_64): libopenssl0_9_8-32bit-0.9.8j-0.72.1 libopenssl0_9_8-hmac-32bit-0.9.8j-0.72.1 References: https://www.suse.com/security/cve/CVE-2015-1788.html https://www.suse.com/security/cve/CVE-2015-1789.html https://www.suse.com/security/cve/CVE-2015-1790.html https://www.suse.com/security/cve/CVE-2015-1791.html https://www.suse.com/security/cve/CVE-2015-1792.html https://www.suse.com/security/cve/CVE-2015-3216.html https://www.suse.com/security/cve/CVE-2015-4000.html https://bugzilla.suse.com/929678 https://bugzilla.suse.com/931698 https://bugzilla.suse.com/933911 https://bugzilla.suse.com/934487 https://bugzilla.suse.com/934489 https://bugzilla.suse.com/934491 https://bugzilla.suse.com/934493 https://scc.suse.com:443/patches/ . Urgent security fix for OpenSSL resolves various flaws in SUSE Linux. Ensure your systems are secure with the most recent updates.. OpenSSL security update, SUSE vulnerabilities, important patch details, cryptographic fixes. . Severity: Important. LinuxSecurity.com Team
Jul 03, 2015
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!