Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 0 articles for you...
89
security advisoryfedoraGSS-APIFedora 43 BIND 9.18.49 Important Security Fixes for DNS Issues
Update to 9.18.49 (rhbz#2480121) Security Fixes: Limit resolver server list size. (CVE-2026-3592) Fix GSS-API resource leak. (CVE-2026-3039) Disable recursion, UPDATE, and NOTIFY for non-IN views. (CVE-2026-5946). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-b626e83a45 2026-05-26 01:20:50.020972+00:00 -------------------------------------------------------------------------------- Name : bind Product : Fedora 43 Version : 9.18.49 Release : 1.fc43 URL : https://www.isc.org/downloads/bind/ Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server Description : BIND (Berkeley Internet Name Domain) is an implementation of the DNS (Domain Name System) protocols. BIND includes a DNS server (named), which resolves host names to IP addresses; a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating properly. -------------------------------------------------------------------------------- Update Information: Update to 9.18.49 (rhbz#2480121) Security Fixes: Limit resolver server list size. (CVE-2026-3592) Fix GSS-API resource leak. (CVE-2026-3039) Disable recursion, UPDATE, and NOTIFY for non-IN views. (CVE-2026-5946) Avoid unbounded recursion loop. (CVE-2026-5950) Fix outgoing zone transfers' quota issue. Feature Changes: Fix CPU spikes and slow queries when cache approaches memory limit. Bug Fixes: Fix named crash when processing SIG records in dynamic updates. Fix rndc modzone behavior for a zone in named.conf. Fix zone verification of NSEC3 signed zones. Prevent a crash when using both dns64 and filter-aaaa. Fixed an assertion failure when processing catalog zones. Prevent malicious DNSSEC zones from exhausting validator CPU. Fix rndc-confgen aborting on HMAC-SHA-384/512 keys above 512 bits. Prevent crafted queries from degrading RRL performance. Fix a bug in allow-query/allow-transfer catalog zone customproperties. Fix a memory leak issue in catalog zones. Fix suppressed missing-glue check in named-checkzone. Reject record sets too large to serve in DNS. Source: https://downloads.isc.org/isc/bind9/9.18.49/doc/arm/html/notes.html#notes-for- bind-9-18-49 -------------------------------------------------------------------------------- ChangeLog: * Wed May 20 2026 Petr Men\u0161k - 32:9.18.49-1 - Update to 9.18.49 (rhbz#2480121) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2480121 - bind-9.18.49 is available https://bugzilla.redhat.com/show_bug.cgi?id=2480121 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-b626e83a45' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Discover important security fixes in Fedora 43 BIND 9.18.49, addressing critical resource leaks and recursion issues.. Fedora BIND Update, DNS Security Fixes, CVE-2026-3039, Server Resource Management. . Severity: Important. LinuxSecurity.com Team
May 26, 2026
•Important
Fedora
100
security advisorySuSEimportantSUSE RMT-Server Important Denial of Service Issues 2026-1745-1
An update that solves 10 vulnerabilities can now be installed.. # Security update for rmt-server Announcement ID: SUSE-SU-2026:1745-1 Release Date: 2026-05-07T07:22:43Z Rating: important References: * bsc#1261388 * bsc#1261398 * bsc#1261406 * bsc#1261417 * bsc#1261426 * bsc#1261436 * bsc#1261447 * bsc#1261458 * bsc#1261466 * bsc#1261471 Cross-References: * CVE-2026-26961 * CVE-2026-26962 * CVE-2026-34230 * CVE-2026-34763 * CVE-2026-34785 * CVE-2026-34786 * CVE-2026-34826 * CVE-2026-34829 * CVE-2026-34830 * CVE-2026-34831 CVSS scores: * CVE-2026-26961 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-26961 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-26961 ( NVD ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-26961 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-26962 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-26962 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-26962 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-26962 ( NVD ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-34230 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-34230 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34230 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34230 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34763 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-34763 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-34763 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-34785 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-34785 ( SUSE ): 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-34785 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-34786 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-34786 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-34786 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-34826 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-34826 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34826 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34826 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34829 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-34829 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34829 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34830 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-34830 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-34830 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-34830 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-34831 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-34831 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-34831 ( NVD ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-34831 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N Affected Products: * Public Cloud Module 15-SP7 * Server Applications Module 15-SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves 10 vulnerabilities can now be installed. ## Description: This update for rmt-server fixes the following issues: Update toversion 2.27. Security issues fixed: * CVE-2026-26961: rack: greedy multipart boundary parsing can lead to parser differentials and WAF bypass (bsc#1261398). * CVE-2026-26962: rack: improper unfolding of folded multipart headers can lead to downstream header injection and response splitting(bsc#1261471). * CVE-2026-34763: rack: unescaped regex interpolation of configured root path can lead to root directory disclosure (bsc#1261406). * CVE-2026-34785: rack: prefix matching logic can lead to the exposure of unintended files under the static root (bsc#1261417). * CVE-2026-34786: rack: URL-encoded path mismatch can lead to `header_rules` bypass (bsc#1261426). * CVE-2026-34826: rack: missing individual byte range limit checks when parsing HTTP `Range` headers can lead to excessive resource consumption and a denial of service (bsc#1261436). * CVE-2026-34829: rack: multipart parsing without `Content-Length` header can lead to unbounded chunked file uploads and a denial of service (bsc#1261447). * CVE-2026-34230: rack: quadratic complexity when processing of wildcard `Accept-Encoding` headers can lead to a denial of service (bsc#1261388). * CVE-2026-34830: rack: improper sanitization of the `X-Accel-Mapping` request header can lead to the exposure of unintended files via `X-Accel-Redirect` (bsc#1261458). * CVE-2026-34831: rack: `Content-Length` header and body byte size mismatch when creating error responses can lead to incorrect HTTP response framing (bsc#1261466). Other updates and bugfixes: * Fix ReDoS in `Addressable`. * Fix out-of-bounds read in `rdiscount`. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Public Cloud Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP7-2026-1745=1 * Server Applications Module 15-SP7 zypper in -t patchSUSE-SLE-Module-Server-Applications-15-SP7-2026-1745=1 ## Package List: * Public Cloud Module 15-SP7 (aarch64 ppc64le s390x x86_64) * rmt-server-debuginfo-2.27-150700.3.20.1 * rmt-server-pubcloud-2.27-150700.3.20.1 * rmt-server-debugsource-2.27-150700.3.20.1 * Server Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * rmt-server-config-2.27-150700.3.20.1 * rmt-server-debuginfo-2.27-150700.3.20.1 * rmt-server-debugsource-2.27-150700.3.20.1 * rmt-server-2.27-150700.3.20.1 ## References: * https://www.suse.com/security/cve/CVE-2026-26961.html * https://www.suse.com/security/cve/CVE-2026-26962.html * https://www.suse.com/security/cve/CVE-2026-34230.html * https://www.suse.com/security/cve/CVE-2026-34763.html * https://www.suse.com/security/cve/CVE-2026-34785.html * https://www.suse.com/security/cve/CVE-2026-34786.html * https://www.suse.com/security/cve/CVE-2026-34826.html * https://www.suse.com/security/cve/CVE-2026-34829.html * https://www.suse.com/security/cve/CVE-2026-34830.html * https://www.suse.com/security/cve/CVE-2026-34831.html * https://bugzilla.suse.com/show_bug.cgi?id=1261388 * https://bugzilla.suse.com/show_bug.cgi?id=1261398 * https://bugzilla.suse.com/show_bug.cgi?id=1261406 * https://bugzilla.suse.com/show_bug.cgi?id=1261417 * https://bugzilla.suse.com/show_bug.cgi?id=1261426 * https://bugzilla.suse.com/show_bug.cgi?id=1261436 * https://bugzilla.suse.com/show_bug.cgi?id=1261447 * https://bugzilla.suse.com/show_bug.cgi?id=1261458 * https://bugzilla.suse.com/show_bug.cgi?id=1261466 * https://bugzilla.suse.com/show_bug.cgi?id=1261471 . Update for rmt-server on SUSE addresses 10 important vulnerabilities to enhance security stability.. SUSE Update rmt-server vulnerabilities patch. . Severity: Important. LinuxSecurity.com Team
May 07, 2026
•Important
SuSE
219
security advisoryimportantserviceHighland OS 3.21 defense-utilities Serious Threat Warning BETA-2024-27540
Important: fence-agents security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:13917", "synopsis": "Important: fence-agents security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for fence-agents.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. \n\nSecurity Fix(es):\n\n* pyasn1: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion (CVE-2026-30922)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2448553", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2448553", "description": ""}], "cves": [{"name": "CVE-2026-30922", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-30922", "cvss3ScoringVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-835"}], "references": [], "publishedAt": "2026-05-07T12:03:39.445016Z", "rpms": {"Rocky Linux 9": {"nvras": ["fence-agents-0:4.10.0-98.el9_7.13.src.rpm", "fence-agents-aliyun-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-all-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-all-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-all-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-all-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-amt-ws-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-apc-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-apc-snmp-0:4.10.0-98.el9_7.13.noarch.rpm","fence-agents-aws-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-azure-arm-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-bladecenter-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-brocade-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-cisco-mds-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-cisco-ucs-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-common-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-compute-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-compute-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-debuginfo-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-debuginfo-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-debuginfo-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-debugsource-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-debugsource-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-debugsource-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-debugsource-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-drac5-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-eaton-snmp-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-emerson-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-eps-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-gce-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-heuristics-ping-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-hpblade-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ibmblade-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ibm-powervs-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ibm-vpc-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ifmib-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ilo2-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ilo-moonshot-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ilo-mp-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ilo-ssh-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-intelmodular-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ipdu-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ipmilan-0:4.10.0-98.el9_7.13.noarch.rpm","fence-agents-kdump-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-kdump-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-kdump-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-kdump-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-kdump-debuginfo-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-kdump-debuginfo-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-kdump-debuginfo-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-kdump-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-kubevirt-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-kubevirt-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-kubevirt-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-kubevirt-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-kubevirt-debuginfo-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-kubevirt-debuginfo-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-kubevirt-debuginfo-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-kubevirt-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-lpar-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-mpath-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-nutanix-ahv-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-openstack-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-openstack-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-redfish-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-redfish-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-redfish-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-redfish-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-rhevm-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-rsa-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-rsb-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-sbd-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-scsi-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-virsh-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-vmware-rest-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-vmware-soap-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-wti-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-zvm-0:4.10.0-98.el9_7.13.s390x.rpm","fence-virt-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-cpg-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-cpg-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virt-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-libvirt-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-libvirt-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-multicast-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-multicast-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-serial-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-serial-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-tcp-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-tcp-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "ha-cloud-support-0:4.10.0-98.el9_7.13.ppc64le.rpm", "ha-cloud-support-0:4.10.0-98.el9_7.13.x86_64.rpm", "ha-cloud-support-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Rocky Linux security update for fence-agents addresses important issues to protect from potential DoS attacks.. Rocky Linux fence-agents security important update. . Severity: Important. LinuxSecurity.com Team
May 07, 2026
•Important
Rocky Linux
172
security advisorycriticallocal privilege escalationUbuntu 20.04 LTS linux-azure Critical Denial of Service Issue in AppArmor
Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-8098-7 March 25, 2026 linux-azure vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-azure: Linux kernel for Microsoft Azure Cloud systems Details: Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module (LSM). An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information (kernel memory), local privilege escalation, or possibly escape a container. (LP: #2143853) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - x86 architecture; - GPIO subsystem; - GPU drivers; - BTRFS file system; - XFRM subsystem; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - SMC sockets; (CVE-2021-47599, CVE-2022-48875, CVE-2022-49072, CVE-2024-49927, CVE-2024-56640, CVE-2025-21780, CVE-2025-40215) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS linux-image-5.4.0-1160-azure 5.4.0-1160.166 Available with Ubuntu Pro linux-image-azure-5.4 5.4.0.1160.153 Available with Ubuntu Pro linux-image-azure-lts-20.04 5.4.0.1160.153 Available with Ubuntu Pro After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new versionnumber, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-8098-7 https://ubuntu.com/security/notices/USN-8098-6 https://ubuntu.com/security/notices/USN-8098-5 https://ubuntu.com/security/notices/USN-8098-4 https://ubuntu.com/security/notices/USN-8098-3 https://ubuntu.com/security/notices/USN-8098-2 https://ubuntu.com/security/notices/USN-8098-1 https://launchpad.net/bugs/2143853 CVE-2021-47599, CVE-2022-48875, CVE-2022-49072, CVE-2022-49267, CVE-2024-49927, CVE-2024-56640, CVE-2025-21780, CVE-2025-40215, . Security notice for Ubuntu 20.04 LTS addressing issues in linux-azure kernel. Learn about fixes and update instructions.. Linux Kernel Security, Ubuntu Security Notice, Azure Kernel Issues. . Severity: Critical. LinuxSecurity.com Team
Mar 25, 2026
•Critical
Ubuntu
100
security advisorymoderateupdateSUSE Linux Micro 5.2 Security Advisory 2026-0469-1 libsoup Moderate DoS
An update that solves one vulnerability can now be installed.. # Security update for libsoup Announcement ID: SUSE-SU-2026:0469-1 Release Date: 2026-02-12T11:21:36Z Rating: moderate References: * bsc#1243422 Cross-References: * CVE-2025-4476 CVSS scores: * CVE-2025-4476 ( SUSE ): 2.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-4476 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2025-4476 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 An update that solves one vulnerability can now be installed. ## Description: This update for libsoup fixes the following issues: * CVE-2025-4476: null pointer dereference may lead to denial of service (bsc#1243422). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2026-469=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2026-469=1 ## Package List: * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * libsoup-debugsource-2.68.4-150200.4.27.1 * libsoup-2_4-1-debuginfo-2.68.4-150200.4.27.1 * libsoup-2_4-1-2.68.4-150200.4.27.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * libsoup-debugsource-2.68.4-150200.4.27.1 * libsoup-2_4-1-debuginfo-2.68.4-150200.4.27.1 * libsoup-2_4-1-2.68.4-150200.4.27.1 ## References: * https://www.suse.com/security/cve/CVE-2025-4476.html * https://bugzilla.suse.com/show_bug.cgi?id=1243422 . Update for libsoup addresses moderate issue resulting in potential DoS risk. Install to secure SUSE systems.. libsoup security, SUSE update, denial of service, patch libsoup, moderate security. .Severity: Important. LinuxSecurity.com Team
Feb 12, 2026
•Important
SuSE
87
security advisoryinformation leakcriticalDebian 6.1: Security Advisory DSA-6053-1 for Linux Critical Issues
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-6053-1
Nov 11, 2025
•Critical
Debian
172
security advisorycriticalUbuntuRubyGems Critical DoS Vulnerabilities in Ubuntu 22.04 LTS USN-7735-1
Several security issues were fixed in RubyGems.. ========================================================================== Ubuntu Security Notice USN-7735-1 September 03, 2025 rubygems vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 25.04 - Ubuntu 22.04 LTS Summary: Several security issues were fixed in RubyGems. Software Description: - rubygems: package management framework for Ruby libraries/applications Details: It was discovered that RubyGems incorrectly handled certain regular expressions. An attacker could use this issue to cause RubyGems to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS. (CVE-2023-28755) It was discovered that RubyGems incorrectly handled decompressed domain names within a DNS packet. An attacker could use this issue to cause RubyGems to crash, resulting in a denial of service. This issue only affected Ubuntu 25.04. (CVE-2025-24294) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 25.04 ruby-rubygems 3.6.3-1ubuntu0.1 Ubuntu 22.04 LTS ruby-rubygems 3.3.5-2ubuntu1.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7735-1 CVE-2023-28755, CVE-2025-24294 Package Information: https://launchpad.net/ubuntu/+source/rubygems/3.6.3-1ubuntu0.1 https://launchpad.net/ubuntu/+source/rubygems/3.3.5-2ubuntu1.1 . Critical issues have been resolved in RubyGems for Ubuntu 22.04 LTS and 25.04. Prompt updates are recommended.. RubyGems Security, Denial of Service, Ubuntu 22.04, Ubuntu 25.04 Security. . Severity: Critical. LinuxSecurity.com Team
Sep 04, 2025
•Critical
Ubuntu
87
security advisorydenial of servicedebianDebian: Critical Denial of Service Update DSA-5970-1 CVE-2025-53603
Stefan Buehler discovered a flaw in sope, the set of Objective-C frameworks powering SOGo, which may result in denial of service via a specially crafted POST request. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-5970-1
Jul 31, 2025
•Critical
Debian
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!