Explore top 10 tips to secure your open-source projects now. Read More
×An update that solves one vulnerability can now be installed.. # Security update for python-paramiko Announcement ID: SUSE-SU-2026:3093-1 Release Date: 2026-07-17T09:48:50Z Rating: moderate References: * bsc#1264225 Cross-References: * CVE-2026-44405 CVSS scores: * CVE-2026-44405 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-44405 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-44405 ( NVD ): 3.4 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N Affected Products: * openSUSE Leap 15.4 * Public Cloud Module 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for python-paramiko fixes the following issue * CVE-2026-44405: data integrity compromise due to allowed SHA-1 algorithm use (bsc#1264225). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-3093=1 * Public Cloud Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2026-3093=1 ## Package List: * openSUSE Leap 15.4 (noarch) * python-paramiko-doc-3.4.0-150400.13.13.1 * python311-paramiko-3.4.0-150400.13.13.1 * Public Cloud Module 15-SP4 (noarch) * python-paramiko-doc-3.4.0-150400.13.13.1 * python311-paramiko-3.4.0-150400.13.13.1 ## References: * https://www.suse.com/security/cve/CVE-2026-44405.html * https://bugzilla.suse.com/show_bug.cgi?id=1264225 . Critical software update for openSUSE fixes data integrity risk in python-paramiko; steps to install included.. openSUSE,python-paramiko, data integrity, software update, security advisory. . Severity: moderate. LinuxSecurity.com Team
An update that solves one vulnerability and has one bug fix can now be installed.. openSUSE security update: security update for python-paramiko ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:21127-1 Rating: moderate References: * bsc#1264225 Cross-References: * CVE-2026-44405 CVSS scores: * CVE-2026-44405 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-44405 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has one bug fix can now be installed. Description: This update for python-paramiko fixes the following issue - CVE-2026-44405: data integrity compromise due to allowed SHA-1 algorithm use (bsc#1264225). Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-992=1 Package List: - openSUSE Leap 16.0: python-paramiko-doc-3.5.1-160000.3.1 python313-paramiko-3.5.1-160000.3.1 References: * https://www.suse.com/security/cve/CVE-2026-44405.html . An update for openSUSE addressing a moderate issue in python-paramiko, enhancing data integrity security measures.. openSUSE update, python-paramiko security, moderate security issue, data integrity fix, security patch. . Severity: moderate. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for python-paramiko Announcement ID: SUSE-SU-2026:22192-1 Release Date: 2026-06-20T06:51:29Z Rating: moderate References: * bsc#1264225 Cross-References: * CVE-2026-44405 CVSS scores: * CVE-2026-44405 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-44405 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-44405 ( NVD ): 3.4 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves one vulnerability can now be installed. ## Description: This update for python-paramiko fixes the following issue * CVE-2026-44405: data integrity compromise due to allowed SHA-1 algorithm use (bsc#1264225). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-992=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-992=1 ## Package List: * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * python-paramiko-doc-3.5.1-160000.3.1 * python313-paramiko-3.5.1-160000.3.1 * SUSE Linux Enterprise Server 16.0 (noarch) * python-paramiko-doc-3.5.1-160000.3.1 * python313-paramiko-3.5.1-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-44405.html * https://bugzilla.suse.com/show_bug.cgi?id=1264225 . Update for python-paramiko addresses a data integrity issue with moderate severity for SUSE users, providing clear installation paths.. SUSE update, python-paramiko, moderate severity, data integrity, CVE-2026-44405. . Severity: moderate. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # graphite2-1.3.15-1.1 on GA media Announcement ID: openSUSE-SU-2026:10982-1 Rating: moderate Cross-References: * CVE-2026-50593 CVSS scores: * CVE-2026-50593 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2026-50593 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the graphite2-1.3.15-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * graphite2 1.3.15-1.1 * graphite2-devel 1.3.15-1.1 * libgraphite2-3 1.3.15-1.1 * libgraphite2-3-32bit 1.3.15-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-50593.html . Update for openSUSE Tumbleweed resolves a moderate severity issue in graphite2, ensuring system integrity and safety.. openSUSE, graphite2, security update, software integrity, moderate severity. . Severity: moderate. LinuxSecurity.com Team
An update that solves 11 vulnerabilities can now be installed.. # libunbound8-1.25.1-1.1 on GA media Announcement ID: openSUSE-SU-2026:10903-1 Rating: moderate Cross-References: * CVE-2026-32792 * CVE-2026-33278 * CVE-2026-40622 * CVE-2026-41292 * CVE-2026-42534 * CVE-2026-42923 * CVE-2026-42944 * CVE-2026-42959 * CVE-2026-42960 * CVE-2026-44390 * CVE-2026-44608 CVSS scores: * CVE-2026-32792 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33278 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-40622 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-41292 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42534 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42923 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42944 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-42959 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42960 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-44390 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-44608 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Tumbleweed An update that solves 11 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the libunbound8-1.25.1-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * libunbound8 1.25.1-1.1 * python3-unbound 1.25.1-1.1 * unbound 1.25.1-1.1 * unbound-anchor 1.25.1-1.1 * unbound-devel 1.25.1-1.1 * unbound-munin 1.25.1-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-32792.html * https://www.suse.com/security/cve/CVE-2026-33278.html * https://www.suse.com/security/cve/CVE-2026-40622.html * https://www.suse.com/security/cve/CVE-2026-41292.html * https://www.suse.com/security/cve/CVE-2026-42534.html *https://www.suse.com/security/cve/CVE-2026-42923.html * https://www.suse.com/security/cve/CVE-2026-42944.html * https://www.suse.com/security/cve/CVE-2026-42959.html * https://www.suse.com/security/cve/CVE-2026-42960.html * https://www.suse.com/security/cve/CVE-2026-44390.html * https://www.suse.com/security/cve/CVE-2026-44608.html . Update for openSUSE Tumbleweed addresses 11 vulnerabilities in libunbound8 with a moderate severity rating.. openSUSE Tumbleweed, libunbound8, security update, patch management. . Severity: moderate. LinuxSecurity.com Team
An update that solves two vulnerabilities can now be installed. . # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:21622-1 Release Date: 2026-05-11T09:32:02Z Rating: important References: * bsc#1264449 * bsc#1264450 Cross-References: * CVE-2026-43284 * CVE-2026-43500 CVSS scores: * CVE-2026-43284 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43284 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43284 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43500 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves two vulnerabilities can now be installed. ## Description: The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 RT kernel was updated to fix the following issues: * CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags (bsc#1264449). * CVE-2026-43500: rxrpc: unshare DATA/RESPONSE packets when paged frags are present (bsc#1264450). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-397=1 ## Package List: * SUSE Linux Micro 6.0 (noarch) * kernel-devel-rt-6.4.0-43.1 * kernel-source-rt-6.4.0-43.1 * SUSE Linux Micro 6.0 (nosrc x86_64) * kernel-rt-6.4.0-43.1 * SUSE Linux Micro 6.0 (x86_64) * kernel-rt-debuginfo-6.4.0-43.1 * kernel-rt-debugsource-6.4.0-43.1 * kernel-rt-livepatch-6.4.0-43.1 ##References: * https://www.suse.com/security/cve/CVE-2026-43284.html * https://www.suse.com/security/cve/CVE-2026-43500.html * https://bugzilla.suse.com/show_bug.cgi?id=1264449 * https://bugzilla.suse.com/show_bug.cgi?id=1264450 . SUSE Linux Micro 6.0 kernel patch addresses important issues with data handling and security updates.. SUSE Linux Micro, kernel update, important security advisory. . Severity: Important. LinuxSecurity.com Team
An update that solves two vulnerabilities can now be installed.. # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:1840-2 Release Date: 2026-05-13T15:10:11Z Rating: important References: * bsc#1264449 * bsc#1264450 Cross-References: * CVE-2026-43284 * CVE-2026-43500 CVSS scores: * CVE-2026-43284 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43284 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43284 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43500 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 An update that solves two vulnerabilities can now be installed. ## Description: The SUSE Linux Enterprise 15 SP6 kernel was updated to fix the following issue: * CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags (bsc#1264449). * CVE-2026-43500: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present (bsc#1264450). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2026-1840=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * kernel-default-livepatch-6.4.0-150600.23.103.1 * kernel-default-debugsource-6.4.0-150600.23.103.1 * gfs2-kmp-default-debuginfo-6.4.0-150600.23.103.1 * gfs2-kmp-default-6.4.0-150600.23.103.1 * cluster-md-kmp-default-6.4.0-150600.23.103.1 * kernel-obs-qa-6.4.0-150600.23.103.1 * reiserfs-kmp-default-6.4.0-150600.23.103.1 *dlm-kmp-default-debuginfo-6.4.0-150600.23.103.1 * ocfs2-kmp-default-debuginfo-6.4.0-150600.23.103.1 * ocfs2-kmp-default-6.4.0-150600.23.103.1 * kernel-obs-build-6.4.0-150600.23.103.1 * kernel-default-optional-6.4.0-150600.23.103.1 * kselftests-kmp-default-6.4.0-150600.23.103.1 * cluster-md-kmp-default-debuginfo-6.4.0-150600.23.103.1 * kernel-default-debuginfo-6.4.0-150600.23.103.1 * kernel-default-extra-debuginfo-6.4.0-150600.23.103.1 * kernel-default-devel-6.4.0-150600.23.103.1 * reiserfs-kmp-default-debuginfo-6.4.0-150600.23.103.1 * dlm-kmp-default-6.4.0-150600.23.103.1 * kselftests-kmp-default-debuginfo-6.4.0-150600.23.103.1 * kernel-default-optional-debuginfo-6.4.0-150600.23.103.1 * kernel-default-extra-6.4.0-150600.23.103.1 * kernel-default-devel-debuginfo-6.4.0-150600.23.103.1 * kernel-syms-6.4.0-150600.23.103.1 * kernel-obs-build-debugsource-6.4.0-150600.23.103.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-6.4.0-150600.23.103.1 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-default-livepatch-devel-6.4.0-150600.23.103.1 * openSUSE Leap 15.6 (nosrc s390x) * kernel-zfcpdump-6.4.0-150600.23.103.1 * openSUSE Leap 15.6 (aarch64) * dtb-exynos-6.4.0-150600.23.103.1 * dtb-renesas-6.4.0-150600.23.103.1 * cluster-md-kmp-64kb-6.4.0-150600.23.103.1 * kselftests-kmp-64kb-debuginfo-6.4.0-150600.23.103.1 * reiserfs-kmp-64kb-debuginfo-6.4.0-150600.23.103.1 * dtb-allwinner-6.4.0-150600.23.103.1 * dtb-arm-6.4.0-150600.23.103.1 * dtb-broadcom-6.4.0-150600.23.103.1 * dtb-amd-6.4.0-150600.23.103.1 * reiserfs-kmp-64kb-6.4.0-150600.23.103.1 * kernel-64kb-debuginfo-6.4.0-150600.23.103.1 * kernel-64kb-devel-debuginfo-6.4.0-150600.23.103.1 * ocfs2-kmp-64kb-debuginfo-6.4.0-150600.23.103.1 * dtb-mediatek-6.4.0-150600.23.103.1 * dtb-amlogic-6.4.0-150600.23.103.1 * cluster-md-kmp-64kb-debuginfo-6.4.0-150600.23.103.1 *kernel-64kb-optional-6.4.0-150600.23.103.1 * kselftests-kmp-64kb-6.4.0-150600.23.103.1 * kernel-64kb-extra-6.4.0-150600.23.103.1 * dtb-lg-6.4.0-150600.23.103.1 * dtb-qcom-6.4.0-150600.23.103.1 * dtb-rockchip-6.4.0-150600.23.103.1 * kernel-64kb-extra-debuginfo-6.4.0-150600.23.103.1 * gfs2-kmp-64kb-debuginfo-6.4.0-150600.23.103.1 * ocfs2-kmp-64kb-6.4.0-150600.23.103.1 * dtb-apm-6.4.0-150600.23.103.1 * dtb-freescale-6.4.0-150600.23.103.1 * dtb-cavium-6.4.0-150600.23.103.1 * kernel-64kb-debugsource-6.4.0-150600.23.103.1 * kernel-64kb-devel-6.4.0-150600.23.103.1 * dtb-altera-6.4.0-150600.23.103.1 * dtb-hisilicon-6.4.0-150600.23.103.1 * dtb-xilinx-6.4.0-150600.23.103.1 * kernel-64kb-optional-debuginfo-6.4.0-150600.23.103.1 * dtb-sprd-6.4.0-150600.23.103.1 * dlm-kmp-64kb-6.4.0-150600.23.103.1 * dtb-marvell-6.4.0-150600.23.103.1 * dtb-amazon-6.4.0-150600.23.103.1 * gfs2-kmp-64kb-6.4.0-150600.23.103.1 * dlm-kmp-64kb-debuginfo-6.4.0-150600.23.103.1 * dtb-apple-6.4.0-150600.23.103.1 * dtb-nvidia-6.4.0-150600.23.103.1 * dtb-socionext-6.4.0-150600.23.103.1 * openSUSE Leap 15.6 (aarch64 nosrc) * kernel-64kb-6.4.0-150600.23.103.1 * openSUSE Leap 15.6 (s390x) * kernel-zfcpdump-debuginfo-6.4.0-150600.23.103.1 * kernel-zfcpdump-debugsource-6.4.0-150600.23.103.1 * openSUSE Leap 15.6 (nosrc ppc64le x86_64) * kernel-debug-6.4.0-150600.23.103.1 * openSUSE Leap 15.6 (ppc64le x86_64) * kernel-debug-devel-6.4.0-150600.23.103.1 * kernel-debug-debugsource-6.4.0-150600.23.103.1 * kernel-debug-debuginfo-6.4.0-150600.23.103.1 * kernel-debug-devel-debuginfo-6.4.0-150600.23.103.1 * openSUSE Leap 15.6 (aarch64 ppc64le x86_64) * kernel-kvmsmall-debugsource-6.4.0-150600.23.103.1 * kernel-kvmsmall-devel-6.4.0-150600.23.103.1 * kernel-kvmsmall-debuginfo-6.4.0-150600.23.103.1 * kernel-kvmsmall-devel-debuginfo-6.4.0-150600.23.103.1 *kernel-default-base-6.4.0-150600.23.103.1.150600.12.48.1 * kernel-default-base-rebuild-6.4.0-150600.23.103.1.150600.12.48.1 * openSUSE Leap 15.6 (x86_64) * kernel-default-vdso-debuginfo-6.4.0-150600.23.103.1 * kernel-debug-vdso-6.4.0-150600.23.103.1 * kernel-kvmsmall-vdso-6.4.0-150600.23.103.1 * kernel-debug-vdso-debuginfo-6.4.0-150600.23.103.1 * kernel-kvmsmall-vdso-debuginfo-6.4.0-150600.23.103.1 * kernel-default-vdso-6.4.0-150600.23.103.1 * openSUSE Leap 15.6 (aarch64 nosrc ppc64le x86_64) * kernel-kvmsmall-6.4.0-150600.23.103.1 * openSUSE Leap 15.6 (noarch) * kernel-devel-6.4.0-150600.23.103.1 * kernel-source-vanilla-6.4.0-150600.23.103.1 * kernel-docs-html-6.4.0-150600.23.103.1 * kernel-source-6.4.0-150600.23.103.1 * kernel-macros-6.4.0-150600.23.103.1 * openSUSE Leap 15.6 (noarch nosrc) * kernel-docs-6.4.0-150600.23.103.1 * openSUSE Leap 15.6 (nosrc) * dtb-aarch64-6.4.0-150600.23.103.1 ## References: * https://www.suse.com/security/cve/CVE-2026-43284.html * https://www.suse.com/security/cve/CVE-2026-43500.html * https://bugzilla.suse.com/show_bug.cgi?id=1264449 * https://bugzilla.suse.com/show_bug.cgi?id=1264450 . Major kernel update for openSUSE 15.6 addresses important issues and vulnerabilities requiring immediate attention.. openSUSE kernel update important vulnerabilities Linux. . Severity: Important. LinuxSecurity.com Team
The following updated rpms for have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-50249 http://linux.oracle.com/errata/ELSA-2026-50249.html The following updated rpms for have been uploaded to the Unbreakable Linux Network: x86_64: dtrace-devel-2.0.7-4.el10.x86_64.rpm dtrace-testsuite-2.0.7-4.el10.x86_64.rpm dtrace-2.0.7-4.el10.x86_64.rpm aarch64: dtrace-devel-2.0.7-4.el10.aarch64.rpm dtrace-testsuite-2.0.7-4.el10.aarch64.rpm dtrace-2.0.7-4.el10.aarch64.rpm SRPMS: http://oss.oracle.com/ol10/SRPMS-updates/dtrace-2.0.7-4.el10.src.rpm Related CVEs: CVE-2026-21996 CVE-2026-35233 Description of changes: [2.0.7-4] - Prevent out-of-buonds memory access during object symbol table construction (CVE-2026-35233). [Orabug: 39121881] - Prevent divide-by-zero (FPE trap) if section header data is corrupted. (CVE-2026-21996). [Orabug: 39121874] - Ensure safety checks are performed on program header data from ELF objects. - Ensure that the data of string table sections is proper terminated. - Ensure that the symbol table references a valid string table. _______________________________________________ El-errata mailing list
Get the latest Linux and open source security news straight to your inbox.