Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 9 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderatesecurity fix

SUSE: 2024:3203-1 Moderate Advisory on Curl OCSP Bypass

* bsc#1230093 Cross-References: * CVE-2024-8096 . # Security update for curl Announcement ID: SUSE-SU-2024:3203-1 Rating: moderate References: * bsc#1230093 Cross-References: * CVE-2024-8096 CVSS scores: * CVE-2024-8096 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-8096 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for curl fixes the following issues: * CVE-2024-8096: OCSP stapling bypass with GnuTLS. (bsc#1230093) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-3203=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3203=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3203=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-3203=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * curl-debuginfo-8.0.1-11.92.1 * libcurl-devel-8.0.1-11.92.1 * curl-debugsource-8.0.1-11.92.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * curl-debugsource-8.0.1-11.92.1 * libcurl4-8.0.1-11.92.1 * curl-debuginfo-8.0.1-11.92.1 * libcurl4-debuginfo-8.0.1-11.92.1 * curl-8.0.1-11.92.1 * SUSE Linux Enterprise High Performance Computing 12 SP5(x86_64) * libcurl4-32bit-8.0.1-11.92.1 * libcurl4-debuginfo-32bit-8.0.1-11.92.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * curl-debugsource-8.0.1-11.92.1 * libcurl4-8.0.1-11.92.1 * curl-debuginfo-8.0.1-11.92.1 * libcurl4-debuginfo-8.0.1-11.92.1 * curl-8.0.1-11.92.1 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * libcurl4-32bit-8.0.1-11.92.1 * libcurl4-debuginfo-32bit-8.0.1-11.92.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * curl-debugsource-8.0.1-11.92.1 * libcurl4-8.0.1-11.92.1 * curl-debuginfo-8.0.1-11.92.1 * libcurl4-debuginfo-8.0.1-11.92.1 * curl-8.0.1-11.92.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * libcurl4-32bit-8.0.1-11.92.1 * libcurl4-debuginfo-32bit-8.0.1-11.92.1 ## References: * https://www.suse.com/security/cve/CVE-2024-8096.html * https://bugzilla.suse.com/show_bug.cgi?id=1230093 . Update for wget addresses potential DNS leak in Ubuntu. Apply suggested patches for enhanced protection.. SUSE Curl Update, Security Patch, OCSP Bypass Issue. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Sep 11, 2024 Important SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderate severitycurl issue

SUSE: 2024:2938-1 Moderate: Curl Out-Of-Bounds Read Issue

* bsc#1228535 Cross-References: * CVE-2024-7264 . # Security update for curl Announcement ID: SUSE-SU-2024:2938-1 Rating: moderate References: * bsc#1228535 Cross-References: * CVE-2024-7264 CVSS scores: * CVE-2024-7264 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2024-7264 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for curl fixes the following issues: * CVE-2024-7264: Fixed out-of-bounds read in ASN.1 date parser GTime2str() (bsc#1228535) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-2938=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2938=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2938=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-2938=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * curl-debuginfo-8.0.1-11.89.1 * curl-debugsource-8.0.1-11.89.1 * libcurl-devel-8.0.1-11.89.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * libcurl4-8.0.1-11.89.1 * curl-debugsource-8.0.1-11.89.1 * libcurl4-debuginfo-8.0.1-11.89.1 * curl-debuginfo-8.0.1-11.89.1 * curl-8.0.1-11.89.1 * SUSE Linux Enterprise High Performance Computing 12 SP5(x86_64) * libcurl4-32bit-8.0.1-11.89.1 * libcurl4-debuginfo-32bit-8.0.1-11.89.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * libcurl4-8.0.1-11.89.1 * curl-debugsource-8.0.1-11.89.1 * libcurl4-debuginfo-8.0.1-11.89.1 * curl-debuginfo-8.0.1-11.89.1 * curl-8.0.1-11.89.1 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * libcurl4-32bit-8.0.1-11.89.1 * libcurl4-debuginfo-32bit-8.0.1-11.89.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * libcurl4-8.0.1-11.89.1 * curl-debugsource-8.0.1-11.89.1 * libcurl4-debuginfo-8.0.1-11.89.1 * curl-debuginfo-8.0.1-11.89.1 * curl-8.0.1-11.89.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * libcurl4-32bit-8.0.1-11.89.1 * libcurl4-debuginfo-32bit-8.0.1-11.89.1 ## References: * https://www.suse.com/security/cve/CVE-2024-7264.html * https://bugzilla.suse.com/show_bug.cgi?id=1228535 . Stay protected against CVE-2024-7264 in cURL by upgrading your installation per SUSE distribution guidelines to prevent data leakage risks. curl security update,SUSE patch instructions,enterprise Linux updates,security fixes for curl. . LinuxSecurity.com Team

Calendar 2 Aug 15, 2024 SuSE
Banner 2 1028x280 1708121730 1 1771599631
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderate severitycurl issue

openSUSE 15.4/15.5: 2023:4659-1 Moderate: Curl Cookie Bypass

This update for curl fixes the following issues: CVE-2023-46218: Fixed cookie mixed case PSL bypass (bsc#1217573). CVE-2023-46219: HSTS long file name clears contents (bsc#1217574).. # Security update for curl Announcement ID: SUSE-SU-2023:4659-1 Rating: moderate References: * bsc#1217573 * bsc#1217574 Cross-References: * CVE-2023-46218 * CVE-2023-46219 CVSS scores: * CVE-2023-46218 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2023-46218 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2023-46219 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Affected Products: * Basesystem Module 15-SP4 * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap Micro 5.3 * openSUSE Leap Micro 5.4 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves two vulnerabilities can now be installed. ## Description: This update for curl fixes the following issues: * CVE-2023-46218: Fixed cookie mixed case PSL bypass (bsc#1217573). * CVE-2023-46219: HSTS long file name clears contents (bsc#1217574). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternativelyyou can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2023-4659=1 openSUSE-SLE-15.4-2023-4659=1 * openSUSE Leap Micro 5.3 zypper in -t patch openSUSE-Leap-Micro-5.3-2023-4659=1 * openSUSE Leap Micro 5.4 zypper in -t patch openSUSE-Leap-Micro-5.4-2023-4659=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2023-4659=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-4659=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-4659=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-4659=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-4659=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2023-4659=1 * Basesystem Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2023-4659=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2023-4659=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libcurl4-debuginfo-8.0.1-150400.5.36.1 * curl-debuginfo-8.0.1-150400.5.36.1 * curl-debugsource-8.0.1-150400.5.36.1 * curl-8.0.1-150400.5.36.1 * libcurl4-8.0.1-150400.5.36.1 * libcurl-devel-8.0.1-150400.5.36.1 * openSUSE Leap 15.4 (x86_64) * libcurl4-32bit-8.0.1-150400.5.36.1 * libcurl4-32bit-debuginfo-8.0.1-150400.5.36.1 * libcurl-devel-32bit-8.0.1-150400.5.36.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libcurl4-64bit-8.0.1-150400.5.36.1 * libcurl4-64bit-debuginfo-8.0.1-150400.5.36.1 * libcurl-devel-64bit-8.0.1-150400.5.36.1 * openSUSE Leap Micro 5.3 (aarch64 x86_64) * libcurl4-debuginfo-8.0.1-150400.5.36.1 * curl-debuginfo-8.0.1-150400.5.36.1 * curl-debugsource-8.0.1-150400.5.36.1 * curl-8.0.1-150400.5.36.1 * libcurl4-8.0.1-150400.5.36.1 * openSUSE Leap Micro 5.4 (aarch64 s390x x86_64) * libcurl4-debuginfo-8.0.1-150400.5.36.1 * curl-debuginfo-8.0.1-150400.5.36.1 * curl-debugsource-8.0.1-150400.5.36.1 * curl-8.0.1-150400.5.36.1 * libcurl4-8.0.1-150400.5.36.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libcurl4-debuginfo-8.0.1-150400.5.36.1 * curl-debuginfo-8.0.1-150400.5.36.1 * curl-debugsource-8.0.1-150400.5.36.1 * curl-8.0.1-150400.5.36.1 * libcurl4-8.0.1-150400.5.36.1 * libcurl-devel-8.0.1-150400.5.36.1 * openSUSE Leap 15.5 (x86_64) * libcurl4-32bit-8.0.1-150400.5.36.1 * libcurl4-32bit-debuginfo-8.0.1-150400.5.36.1 * libcurl-devel-32bit-8.0.1-150400.5.36.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * libcurl4-debuginfo-8.0.1-150400.5.36.1 * curl-debuginfo-8.0.1-150400.5.36.1 * curl-debugsource-8.0.1-150400.5.36.1 * curl-8.0.1-150400.5.36.1 * libcurl4-8.0.1-150400.5.36.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * libcurl4-debuginfo-8.0.1-150400.5.36.1 * curl-debuginfo-8.0.1-150400.5.36.1 * curl-debugsource-8.0.1-150400.5.36.1 * curl-8.0.1-150400.5.36.1 * libcurl4-8.0.1-150400.5.36.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * libcurl4-debuginfo-8.0.1-150400.5.36.1 * curl-debuginfo-8.0.1-150400.5.36.1 * curl-debugsource-8.0.1-150400.5.36.1 * curl-8.0.1-150400.5.36.1 * libcurl4-8.0.1-150400.5.36.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * libcurl4-debuginfo-8.0.1-150400.5.36.1 * curl-debuginfo-8.0.1-150400.5.36.1 * curl-debugsource-8.0.1-150400.5.36.1 * curl-8.0.1-150400.5.36.1 * libcurl4-8.0.1-150400.5.36.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 s390x x86_64) * libcurl4-debuginfo-8.0.1-150400.5.36.1 * curl-debuginfo-8.0.1-150400.5.36.1 * curl-debugsource-8.0.1-150400.5.36.1 * curl-8.0.1-150400.5.36.1 * libcurl4-8.0.1-150400.5.36.1 * Basesystem Module 15-SP4 (aarch64 ppc64le s390x x86_64) *libcurl4-debuginfo-8.0.1-150400.5.36.1 * curl-debuginfo-8.0.1-150400.5.36.1 * curl-debugsource-8.0.1-150400.5.36.1 * curl-8.0.1-150400.5.36.1 * libcurl4-8.0.1-150400.5.36.1 * libcurl-devel-8.0.1-150400.5.36.1 * Basesystem Module 15-SP4 (x86_64) * libcurl4-32bit-8.0.1-150400.5.36.1 * libcurl4-32bit-debuginfo-8.0.1-150400.5.36.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libcurl4-debuginfo-8.0.1-150400.5.36.1 * curl-debuginfo-8.0.1-150400.5.36.1 * curl-debugsource-8.0.1-150400.5.36.1 * curl-8.0.1-150400.5.36.1 * libcurl4-8.0.1-150400.5.36.1 * libcurl-devel-8.0.1-150400.5.36.1 * Basesystem Module 15-SP5 (x86_64) * libcurl4-32bit-8.0.1-150400.5.36.1 * libcurl4-32bit-debuginfo-8.0.1-150400.5.36.1 ## References: * https://www.suse.com/security/cve/CVE-2023-46218.html * https://www.suse.com/security/cve/CVE-2023-46219.html * https://bugzilla.suse.com/show_bug.cgi?id=1217573 * https://bugzilla.suse.com/show_bug.cgi?id=1217574 . Enhance your curl version today by applying openSUSE’s recent notice to address concerns related to cookie security lapses and the unintended clearing of HSTS data.. Curl Security Update, OpenSUSE Patch, Software Security Fixes, Moderate CVE Issues. . LinuxSecurity.com Team

Calendar 2 Dec 14, 2023 OpenSUSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorysecurity patchcurl issue

SUSE: 2023:3167-1 Important: Bci/Nodejs Security Update - DoS Fix

The container bci/nodejs was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/nodejs ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:3167-1 Container Tags : bci/node:18 , bci/node:18-10.5 , bci/node:latest , bci/nodejs:18 , bci/nodejs:18-10.5 , bci/nodejs:latest Container Release : 10.5 Severity : important Type : security References : 1211829 1212819 1212910 1215026 CVE-2023-38039 ----------------------------------------------------------------- The container bci/nodejs was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:3814-1 Released: Wed Sep 27 18:08:17 2023 Summary: Recommended update for glibc Type: recommended Severity: moderate References: 1211829,1212819,1212910 This update for glibc fixes the following issues: - nscd: Fix netlink cache invalidation if epoll is used (bsc#1212910, BZ #29415) - Restore lookup of IPv4 mapped addresses in files database (bsc#1212819, BZ #25457) - elf: Remove excessive p_align check on PT_LOAD segments (bsc#1211829, BZ #28688) - elf: Properly align PT_LOAD segments (bsc#1211829, BZ #28676) - ld.so: Always use MAP_COPY to map the first segment (BZ #30452) - add GB18030-2022 charmap (jsc#PED-4908, BZ #30243) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:3823-1 Released: Wed Sep 27 18:42:38 2023 Summary: Security update for curl Type: security Severity: important References: 1215026,CVE-2023-38039 This update for curl fixes the following issues: - CVE-2023-38039: Fixed possible DoS when receiving too large HTTP header. (bsc#1215026) The following package changes have been done: - glibc-2.31-150300.58.1 updated - libcurl4-8.0.1-150400.5.29.1 updated - container:sles15-image-15.0.0-36.5.37 updated . SUSE ContainerNotice: bci/python upgraded to address critical vulnerabilities and resolve issues pertaining to wget and openssl.. Nodejs Container Update, SUSE Security Advisory, Important Security Update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Sep 28, 2023 Important SuSE
Banner 2 1028x280 1708121730 1 1771599631
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryimportantcurl issue

SUSE: 2023:380-1 Important: bci/openjdk-devel Security Update

The container bci/openjdk-devel was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/openjdk-devel ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:380-1 Container Tags : bci/openjdk-devel:11 , bci/openjdk-devel:11-38.69 Container Release : 38.69 Severity : important Type : security References : 1207676 1207990 1207991 1207992 1208027 1208028 CVE-2023-22490 CVE-2023-23914 CVE-2023-23915 CVE-2023-23916 CVE-2023-23946 ----------------------------------------------------------------- The container bci/openjdk-devel was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:429-1 Released: Wed Feb 15 17:41:22 2023 Summary: Security update for curl Type: security Severity: important References: 1207990,1207991,1207992,CVE-2023-23914,CVE-2023-23915,CVE-2023-23916 This update for curl fixes the following issues: - CVE-2023-23914: Fixed HSTS ignored on multiple requests (bsc#1207990). - CVE-2023-23915: Fixed HSTS amnesia with --parallel (bsc#1207991). - CVE-2023-23916: Fixed HTTP multi-header compression denial of service (bsc#1207992). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:430-1 Released: Wed Feb 15 17:42:25 2023 Summary: Security update for git Type: security Severity: important References: 1208027,1208028,CVE-2023-22490,CVE-2023-23946 This update for git fixes the following issues: - CVE-2023-22490: Fixed incorrectly usable local clone optimization even when using a non-local transport (bsc#1208027). - CVE-2023-23946: Fixed issue where a path outside the working tree can be overwritten as the user who is running 'git apply' (bsc#1208028). ----------------------------------------------------------------- Advisory ID:SUSE-RU-2023:432-1 Released: Wed Feb 15 18:48:25 2023 Summary: Recommended update for graphite2 Type: recommended Severity: moderate References: 1207676 This update for graphite2 fixes the following issue: - Correct license string to LGPL-2.1-or-later OR MPL-2.0 OR GPL-2.0-or-later (bsc#1207676) The following package changes have been done: - libcurl4-7.79.1-150400.5.15.1 updated - libgraphite2-3-1.3.11-150000.4.3.1 updated - git-core-2.35.3-150300.10.24.1 updated - container:bci-openjdk-11-15.4.11-34.32 updated . The latest update for the bci/openjdk-devel container now incorporates crucial security patches addressing vulnerabilities in curl and git.. Container Update, OpenJDK, Security Fixes, SUSE Advisory, Patch Management. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 17, 2023 Important SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryimportantsecurity patch

SUSE: 2023:789-2 Critical: bci/dotnet-runtime Security Update

The container bci/dotnet-runtime was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/dotnet-runtime ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:356-1 Container Tags : bci/dotnet-runtime:3.1 , bci/dotnet-runtime:3.1-52.27 , bci/dotnet-runtime:3.1.32 , bci/dotnet-runtime:3.1.32-52.27 Container Release : 52.27 Severity : important Type : security References : 1207990 1207991 1207992 CVE-2023-23914 CVE-2023-23915 CVE-2023-23916 ----------------------------------------------------------------- The container bci/dotnet-runtime was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:429-1 Released: Wed Feb 15 17:41:22 2023 Summary: Security update for curl Type: security Severity: important References: 1207990,1207991,1207992,CVE-2023-23914,CVE-2023-23915,CVE-2023-23916 This update for curl fixes the following issues: - CVE-2023-23914: Fixed HSTS ignored on multiple requests (bsc#1207990). - CVE-2023-23915: Fixed HSTS amnesia with --parallel (bsc#1207991). - CVE-2023-23916: Fixed HTTP multi-header compression denial of service (bsc#1207992). The following package changes have been done: - libcurl4-7.79.1-150400.5.15.1 updated - container:sles15-image-15.0.0-27.14.35 updated . The latest SUSE Container Update for bci/dotnet-runtime provides crucial security patches and stability enhancements, specifically tackling vulnerabilities in curl for secure file transfers. SUSE Container, Dotnet Runtime, Security Patch, Curl Failures, Important Updates. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 16, 2023 Important SuSE
Banner 2 1028x280 1708121730 1 1771599631
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryimportantcurl issue

SUSE: 2023:352-1 Important: Bci/Dotnet-Sdk Security Update

The container bci/dotnet-sdk was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/dotnet-sdk ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:352-1 Container Tags : bci/dotnet-sdk:5.0 , bci/dotnet-sdk:5.0-35.89 , bci/dotnet-sdk:5.0.17 , bci/dotnet-sdk:5.0.17-35.89 Container Release : 35.89 Severity : important Type : security References : 1207990 1207991 1207992 CVE-2023-23914 CVE-2023-23915 CVE-2023-23916 ----------------------------------------------------------------- The container bci/dotnet-sdk was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:429-1 Released: Wed Feb 15 17:41:22 2023 Summary: Security update for curl Type: security Severity: important References: 1207990,1207991,1207992,CVE-2023-23914,CVE-2023-23915,CVE-2023-23916 This update for curl fixes the following issues: - CVE-2023-23914: Fixed HSTS ignored on multiple requests (bsc#1207990). - CVE-2023-23915: Fixed HSTS amnesia with --parallel (bsc#1207991). - CVE-2023-23916: Fixed HTTP multi-header compression denial of service (bsc#1207992). The following package changes have been done: - libcurl4-7.79.1-150400.5.15.1 updated - container:sles15-image-15.0.0-27.14.35 updated . Significant security enhancement for SUSE's bci/python-environment. Contains essential fixes targeting multiple vulnerabilities.. bci/dotnet-sdk, Container Update, Important Patch. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 16, 2023 Important SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorysecurity updateimportant

SUSE: 2022:3431-1 Important: bci/dotnet-sdk Security Fix Details

The container bci/dotnet-sdk was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/dotnet-sdk ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:3431-1 Container Tags : bci/dotnet-sdk:5.0 , bci/dotnet-sdk:5.0-35.67 , bci/dotnet-sdk:5.0.17 , bci/dotnet-sdk:5.0.17-35.67 Container Release : 35.67 Severity : important Type : security References : 1206308 1206309 CVE-2022-43551 CVE-2022-43552 ----------------------------------------------------------------- The container bci/dotnet-sdk was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:4597-1 Released: Wed Dec 21 10:13:11 2022 Summary: Security update for curl Type: security Severity: important References: 1206308,1206309,CVE-2022-43551,CVE-2022-43552 This update for curl fixes the following issues: - CVE-2022-43552: HTTP Proxy deny use-after-free (bsc#1206309). - CVE-2022-43551: Fixed HSTS bypass via IDN (bsc#1206308). The following package changes have been done: - libcurl4-7.79.1-150400.5.12.1 updated - container:sles15-image-15.0.0-27.14.25 updated . SUSE release issues a security patch for bci/dotnet-sdk that mitigates critical curl security flaws.. bci/dotnet-sdk updates,suse patch notes,security container updates. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 22, 2022 Important SuSE
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here