Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
219

Rocky Linux 9 RLSA-2026-16802 krb5 Major Security Vulnerability Uncovered

Important: krb5 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:16799", "synopsis": "Important: krb5 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for krb5.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).\n\nSecurity Fix(es):\n\n* krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read (CVE-2026-40356)\n\n* krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism (CVE-2026-40355)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2463368", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2463368", "description": ""}, {"ticket": "2463370", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2463370", "description": ""}], "cves": [{"name": "CVE-2026-40355", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40355", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "5.9", "cwe": "CWE-476"}, {"name": "CVE-2026-40356", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40356", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "5.9", "cwe": "CWE-191"}],"references": [], "publishedAt": "2026-05-14T18:00:46.647307Z", "rpms": {"Rocky Linux 8": {"nvras": ["krb5-devel-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-0:1.18.2-34.el8_10.src.rpm", "krb5-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-debuginfo-0:1.18.2-34.el8_10.i686.rpm", "krb5-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-debugsource-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-debugsource-0:1.18.2-34.el8_10.i686.rpm", "krb5-debugsource-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-devel-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-devel-0:1.18.2-34.el8_10.i686.rpm", "krb5-devel-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-devel-debuginfo-0:1.18.2-34.el8_10.i686.rpm", "krb5-devel-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-libs-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-libs-0:1.18.2-34.el8_10.i686.rpm", "krb5-libs-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-libs-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-libs-debuginfo-0:1.18.2-34.el8_10.i686.rpm", "krb5-libs-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-pkinit-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-pkinit-0:1.18.2-34.el8_10.i686.rpm", "krb5-pkinit-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-pkinit-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-pkinit-debuginfo-0:1.18.2-34.el8_10.i686.rpm", "krb5-pkinit-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-server-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-server-0:1.18.2-34.el8_10.i686.rpm", "krb5-server-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-server-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-server-debuginfo-0:1.18.2-34.el8_10.i686.rpm", "krb5-server-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-server-ldap-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-server-ldap-0:1.18.2-34.el8_10.i686.rpm", "krb5-server-ldap-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-server-ldap-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-server-ldap-debuginfo-0:1.18.2-34.el8_10.i686.rpm", "krb5-server-ldap-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-workstation-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-workstation-0:1.18.2-34.el8_10.x86_64.rpm","krb5-workstation-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-workstation-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm", "libkadm5-0:1.18.2-34.el8_10.aarch64.rpm", "libkadm5-0:1.18.2-34.el8_10.i686.rpm", "libkadm5-0:1.18.2-34.el8_10.x86_64.rpm", "libkadm5-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "libkadm5-debuginfo-0:1.18.2-34.el8_10.i686.rpm", "libkadm5-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Critical krb5 security update for Rocky Linux 8 addressing denial of service issues. Be sure to patch promptly for safety.. Rocky Linux, krb5 security, important update, denial of service, software patch. . Severity: Important. LinuxSecurity.com Team

Calendar%202 May 14, 2026 Important Rocky Linux
172

Ubuntu 20.04 LTS Advisory USN-8119-2 Systemd Critical DoS and Code Exec

Several security issues were fixed in systemd.. ========================================================================== Ubuntu Security Notice USN-8119-2 March 23, 2026 systemd vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS Summary: Several security issues were fixed in systemd. Software Description: - systemd: system and service manager Details: USN-8119-1 fixed vulnerabilities in systemd. This update provides the corresponding updates for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. Original advisory details: It was discovered that systemd incorrectly handled certain cgroup paths. A local attacker could possibly use this issue to cause systemd to crash, resulting in a denial of service. This issue only affected Ubuntu 20.04 LTS. (CVE-2026-29111) It was discovered that the systemd udev component incorrectly handled certain fields received from the kernel. An attacker with a malicious device could possibly use this issue to execute arbitrary code as an administrator (root). Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS libsystemd0 245.4-4ubuntu3.24+esm3 Available with Ubuntu Pro libudev1 245.4-4ubuntu3.24+esm3 Available with Ubuntu Pro systemd 245.4-4ubuntu3.24+esm3 Available with Ubuntu Pro udev 245.4-4ubuntu3.24+esm3 Available with Ubuntu Pro Ubuntu 18.04 LTS libudev1 237-3ubuntu10.57+esm3 Available with Ubuntu Pro udev 237-3ubuntu10.57+esm3 Available with Ubuntu Pro Ubuntu 16.04 LTS libudev1 229-4ubuntu21.31+esm4 Available with Ubuntu Pro udev 229-4ubuntu21.31+esm4 Available with Ubuntu Pro Ubuntu 14.04 LTS libudev1 204-5ubuntu20.31+esm3 Available with Ubuntu Pro udev 204-5ubuntu20.31+esm3 Available with Ubuntu Pro After a standard system update you need to reboot your computer to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8119-2 https://ubuntu.com/security/notices/USN-8119-1 CVE-2026-29111 . Multiple security issues addressed in systemd for Ubuntu affecting several LTS versions with critical risks.. systemd security update, Ubuntu 20.04 LTS advisory, denial of service systemd, arbirtary code execution systemd. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Mar 24, 2026 Critical Ubuntu
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200