Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 11 articles for you...
100
security advisorySuSEimportantSUSE Enterprise Micro 5.2 Cockpit-Podman Important Patch CVE-2025-13465
An update that solves one vulnerability can now be installed.. # Security update for cockpit-podman Announcement ID: SUSE-SU-2026:0379-1 Release Date: 2026-02-04T07:38:29Z Rating: important References: * bsc#1257324 Cross-References: * CVE-2025-13465 CVSS scores: * CVE-2025-13465 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-13465 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2025-13465 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:H/SI:H/SA:H/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 An update that solves one vulnerability can now be installed. ## Description: This update for cockpit-podman fixes the following issues: * CVE-2025-13465: Update the lodash dependencie to avoid prototype pollution. (bsc#1257324) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2026-379=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2026-379=1 ## Package List: * SUSE Linux Enterprise Micro 5.2 (noarch) * cockpit-podman-33-150300.6.6.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (noarch) * cockpit-podman-33-150300.6.6.1 ## References: * https://www.suse.com/security/cve/CVE-2025-13465.html * https://bugzilla.suse.com/show_bug.cgi?id=1257324 . Update for cockpit-podman resolves important issue with lodash dependency, improving security for SUSE Micro systems.. cockpit podman security patch SUSE important. . Severity: Important. LinuxSecurity.com Team
Feb 04, 2026
•Important
SuSE
89
security advisoryfedoracriticalFedora 41: FEDORA-2025-c53905e83d critical: rust-kbs-types update
This release includes improvements and fixes, and updates crossbeam-channel dependency to address CVE-2025-4574. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-c53905e83d 2025-06-14 01:51:14.531329+00:00 -------------------------------------------------------------------------------- Name : rust-kbs-types Product : Fedora 41 Version : 0.11.0 Release : 1.fc41 URL : https://crates.io/crates/kbs-types Summary : Rust (de)serializable types for KBS Description : Rust (de)serializable types for KBS. -------------------------------------------------------------------------------- Update Information: This release includes improvements and fixes, and updates crossbeam-channel dependency to address CVE-2025-4574 -------------------------------------------------------------------------------- ChangeLog: * Mon Jun 2 2025 Sergio Lopez - 0.11.0-1 - Update to version 0.11.0 * Wed May 28 2025 Sergio Lopez - 0.10.0-1 - Update to version 0.10.0 * Sun Jan 19 2025 Fedora Release Engineering - 0.8.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-c53905e83d' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jun 14, 2025
•Critical
Fedora
100
security advisorymoderatesecurity updateSUSE Linux Micro 6.0: 2025:20013-1 moderate: podman dependency issue
* bsc#1227052 Cross-References: * CVE-2024-1753 * CVE-2024-24786 . # Security update for podman Announcement ID: SUSE-SU-2025:20013-1 Release Date: 2025-02-03T08:48:39Z Rating: moderate References: * bsc#1227052 Cross-References: * CVE-2024-1753 * CVE-2024-24786 * CVE-2024-3727 * CVE-2024-6104 CVSS scores: * CVE-2024-1753 ( SUSE ): 8.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H * CVE-2024-1753 ( NVD ): 8.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H * CVE-2024-24786 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-24786 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-3727 ( SUSE ): 8.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H * CVE-2024-3727 ( NVD ): 8.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H * CVE-2024-6104 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N * CVE-2024-6104 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves four vulnerabilities can now be installed. ## Description: This update for podman fixes the following issues: * CVE-2024-6104: Fixed dependency issue with go-retryablehttp: url might write sensitive information to log file (bsc#1227052). * Update to version 4.9.5: * Bump to v4.9.5 * Update release notes for v4.9.5 * fix "concurrent map writes" in network ls compat endpoint * [v4.9] Fix for CVE-2024-3727 * Disable failing bud test * CI Maintenance: Disable machine tests * [CI:DOCS] Allow downgrade of WiX * [CI:DOCS] Force WiX 3.11 * [CI:DOCS] Fix windows installer action * Bump to v4.9.5-dev * Bump to v4.9.4 * Update release notes for v4.9.4 * [v4.9] Bump Buildah to v1.33.7, CVE-2024-1753, CVE-2024-24786 * Add farm command to commands list * Bump to FreeBSD 13.3 (13.2 vanished) * Update health-start-periods docs * Don't update health check status during initialDelaySeconds * image scp: don't require port for ssh URL * Ignore docker's end pointconfig when the final network mode isn't bridge. * Fix running container from docker client with rootful in rootless podman. * [skip-ci] Packit: remove koji and bodhi tasks for v4.9 * Bump to v4.9.4-dev * Remove gitleaks scanning ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-46=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * podman-debuginfo-4.9.5-1.1 * podman-remote-4.9.5-1.1 * podman-remote-debuginfo-4.9.5-1.1 * podman-4.9.5-1.1 * SUSE Linux Micro 6.0 (noarch) * podman-docker-4.9.5-1.1 ## References: * https://www.suse.com/security/cve/CVE-2024-1753.html * https://www.suse.com/security/cve/CVE-2024-24786.html * https://www.suse.com/security/cve/CVE-2024-3727.html * https://www.suse.com/security/cve/CVE-2024-6104.html * https://bugzilla.suse.com/show_bug.cgi?id=1227052 . Podman receives a notable security enhancement addressing four vulnerabilities, one of which pertains to the exposure of confidential log data.. Podman Security Update, SUSE Linux Update, Dependency Issue. . LinuxSecurity.com Team
Jun 04, 2025
SuSE
89
security advisorycriticalFedoraFedora 39: FEDORA-2023-a04cc349e1 Critical: python-aiohttp Update
Security fix for CVE-2023-49081, CVE-2023-49082. Update `python-aiohttp` to 3.9.1. Patch `python-pysqeezebox` and `python-wled` so they do not have an implicit dependency on `python-async-timeout` via `python-aiohttp`. libs/aiohttp/releases/tag/v3.9.0 libs/aiohttp/releases/tag/v3.9.1. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-a04cc349e1 2024-01-08 01:23:05.713075 -------------------------------------------------------------------------------- Name : python-pysqueezebox Product : Fedora 39 Version : 0.5.5 Release : 11.fc39 URL : https://github.com/rajlaud/pysqueezebox Summary : Python library to control Logitech Media Server Description : Python library to control a Logitech Media Server asynchronously. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2023-49081, CVE-2023-49082. Update `python-aiohttp` to 3.9.1. Patch `python-pysqeezebox` and `python-wled` so they do not have an implicit dependency on `python-async-timeout` via `python-aiohttp`. libs/aiohttp/releases/tag/v3.9.0 libs/aiohttp/releases/tag/v3.9.1 -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 2 2023 Benjamin A. Beasley - 0.5.5-11 - Add explicit async-timeout dependency -------------------------------------------------------------------------------- References: [ 1 ] Bug #2252236 - TRIAGE CVE-2023-49081 python-aiohttp: aiohttp: HTTP request modification [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2252236 [ 2 ] Bug #2252249 - TRIAGE CVE-2023-49082 python-aiohttp: aiohttp: CRLF injection if user controls the HTTP method using aiohttp client [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2252249 [ 3 ] Bug #2253439 - python-pysqueezebox: Please merge rawhide back to f39 and f38 https://bugzilla.redhat.com/show_bug.cgi?id=2253439 [ 4 ] Bug #2253440 - python-wled: Please merge rawhide back to f39 and f38 https://bugzilla.redhat.com/show_bug.cgi?id=2253440 [ 5 ] Bug #2254945 - deprecation warning: DeprecationWarning: datetime.datetime.utcnow() is deprecated and scheduled for removal https://bugzilla.redhat.com/show_bug.cgi?id=2254945 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-a04cc349e1' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jan 08, 2024
•Critical
Fedora
100
security advisoryimportantmemory leakSUSE: 2023:1145-1 Critical: Bci/NodeJS Vulnerability Patch
The container bci/python was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/python ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:3357-1 Container Tags : bci/python:3 , bci/python:3-14.2 , bci/python:3.6 , bci/python:3.6-14.2 Container Release : 14.2 Severity : important Type : security References : 1215533 1215713 CVE-2023-35945 ----------------------------------------------------------------- The container bci/python was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:3994-1 Released: Fri Oct 6 13:44:15 2023 Summary: Recommended update for git Type: recommended Severity: moderate References: 1215533 This update for git fixes the following issues: - Downgrade openssh dependency to recommends (bsc#1215533) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:3997-1 Released: Fri Oct 6 14:13:56 2023 Summary: Security update for nghttp2 Type: security Severity: important References: 1215713,CVE-2023-35945 This update for nghttp2 fixes the following issues: - CVE-2023-35945: Fixed memory leak when PUSH_PROMISE or HEADERS frame cannot be sent (bsc#1215713). The following package changes have been done: - libnghttp2-14-1.40.0-150200.9.1 updated - git-core-2.35.3-150300.10.30.1 updated - libcbor0-0.5.0-150100.4.6.1 removed - libedit0-3.1.snap20150325-2.12 removed - libfido2-1-1.13.0-150400.5.6.1 removed - libhidapi-hidraw0-0.10.1-150300.3.2.1 removed - libudev1-249.16-150400.8.33.1 removed - openssh-clients-8.4p1-150300.3.22.1 removed - openssh-common-8.4p1-150300.3.22.1 removed - openssh-fips-8.4p1-150300.3.22.1 removed . Crucial SUSE enhancement for bci/python and nghttp2, resolving a memory leak and openssh dependency concerns.. SUSE Container Update,Bci/Python Security, Nghttp2 Fixes, Openssh Dependency. . Severity: Important. LinuxSecurity.com Team
Oct 10, 2023
•Important
SuSE
89
security advisoryFedoracritical fixFedora 36: Blender Critical Fix For CVE-2022-28041 Severity: Critical
Security fix for CVE-2022-28041 affecting `usd` via its dependency on the header-only `stb_image` library. ----- Do not package `pxrConfig.cmake` with `usd`, since it is not usable with a monolithic library build. - Move bundled library virtual `Provides` from `usd` to `usd-libs` - Do not use `jemalloc` in `usd`. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-c87bba6546 2022-05-07 04:08:14.310830 --------------------------------------------------------------------------------Name : blender Product : Fedora 36 Version : 3.1.2 Release : 3.fc36 URL : Summary : 3D modeling, animation, rendering and post-production Description : Blender is the essential software solution you need for 3D, from modeling, animation, rendering and post-production to interactive creation and playback. Professionals and novices can easily and inexpensively publish stand-alone, secure, multi-platform content to the web, CD-ROMs, and other media. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2022-28041 affecting `usd` via its dependency on the header-only `stb_image` library. ----- Do not package `pxrConfig.cmake` with `usd`, since it is not usable with a monolithic library build. - Move bundled library virtual `Provides` from `usd` to `usd-libs` - Do not use `jemalloc` in `usd` --------------------------------------------------------------------------------ChangeLog: * Sun Apr 10 2022 Benjamin A. Beasley 1:3.1.2-3 - BR usd-devel instead of cmake(pxr) * Fri Apr 1 2022 Fedora Release Monitoring 1:3.1.2-1 - Update to 3.1.2 (#2070344) * Fri Apr 1 2022 Fedora Release Monitoring 1:3.1.1-1 - Update to 3.1.1 (#2070344) --------------------------------------------------------------------------------References: [ 1 ] Bug #2055414 - usd-devel is missing pxrTargets.cmake https://bugzilla.redhat.com/show_bug.cgi?id=2055414 [ 2 ] Bug #2077054 - Rebuild usd with updated stb_image-{devel,static} for CVE-2022-28041 https://bugzilla.redhat.com/show_bug.cgi?id=2077054 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-c87bba6546' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
May 07, 2022
•Critical
Fedora
98
security advisorysecurity updateRed Hat Enterprise LinuxRedHat: RHSA-2022-0548-01 Important: Ruby Dependency Issue
An update for the ruby:2.5 module is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: ruby:2.5 security update Advisory ID: RHSA-2022:0548-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:0548 Issue date: 2022-02-16 CVE Names: CVE-2020-36327 ==================================================================== 1. Summary: An update for the ruby:2.5 module is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream E4S (v. 8.1) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fix(es): * rubygem-bundler: Dependencies of gems with explicit source may be installed from a different source (CVE-2020-36327) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1958999 - CVE-2020-36327rubygem-bundler: Dependencies of gems with explicit source may be installed from a different source 6. Package List: Red Hat Enterprise Linux AppStream E4S (v.8.1): Source: ruby-2.5.5-105.module+el8.1.0+3656+f80bfa1d.src.rpm rubygem-abrt-0.3.0-4.module+el8.1.0+3656+f80bfa1d.src.rpm rubygem-bson-4.3.0-2.module+el8.1.0+3656+f80bfa1d.src.rpm rubygem-bundler-1.16.1-4.module+el8.1.0+14085+cd0ba992.src.rpm rubygem-mongo-2.5.1-2.module+el8.1.0+3656+f80bfa1d.src.rpm rubygem-mysql2-0.4.10-4.module+el8.1.0+3656+f80bfa1d.src.rpm rubygem-pg-1.0.0-2.module+el8.1.0+3656+f80bfa1d.src.rpm aarch64: ruby-2.5.5-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm ruby-debuginfo-2.5.5-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm ruby-debugsource-2.5.5-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm ruby-devel-2.5.5-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm ruby-libs-2.5.5-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm ruby-libs-debuginfo-2.5.5-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-bigdecimal-1.3.4-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-bigdecimal-debuginfo-1.3.4-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-bson-4.3.0-2.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-bson-debuginfo-4.3.0-2.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-bson-debugsource-4.3.0-2.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-io-console-0.4.6-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-io-console-debuginfo-0.4.6-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-json-2.1.0-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-json-debuginfo-2.1.0-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-mysql2-0.4.10-4.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-mysql2-debuginfo-0.4.10-4.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-mysql2-debugsource-0.4.10-4.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-openssl-2.1.2-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-openssl-debuginfo-2.1.2-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-pg-1.0.0-2.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-pg-debuginfo-1.0.0-2.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-pg-debugsource-1.0.0-2.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-psych-3.0.2-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm rubygem-psych-debuginfo-3.0.2-105.module+el8.1.0+3656+f80bfa1d.aarch64.rpm noarch: ruby-doc-2.5.5-105.module+el8.1.0+3656+f80bfa1d.noarch.rpm ruby-irb-2.5.5-105.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-abrt-0.3.0-4.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-abrt-doc-0.3.0-4.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-bson-doc-4.3.0-2.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-bundler-1.16.1-4.module+el8.1.0+14085+cd0ba992.noarch.rpm rubygem-bundler-doc-1.16.1-4.module+el8.1.0+14085+cd0ba992.noarch.rpm rubygem-did_you_mean-1.2.0-105.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-minitest-5.10.3-105.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-mongo-2.5.1-2.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-mongo-doc-2.5.1-2.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-mysql2-doc-0.4.10-4.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-net-telnet-0.1.1-105.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-pg-doc-1.0.0-2.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-power_assert-1.1.1-105.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-rake-12.3.0-105.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-rdoc-6.0.1-105.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-test-unit-3.2.7-105.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygem-xmlrpc-0.3.0-105.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygems-2.7.6.2-105.module+el8.1.0+3656+f80bfa1d.noarch.rpm rubygems-devel-2.7.6.2-105.module+el8.1.0+3656+f80bfa1d.noarch.rpm ppc64le: ruby-2.5.5-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm ruby-debuginfo-2.5.5-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm ruby-debugsource-2.5.5-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm ruby-devel-2.5.5-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm ruby-libs-2.5.5-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm ruby-libs-debuginfo-2.5.5-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-bigdecimal-1.3.4-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-bigdecimal-debuginfo-1.3.4-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-bson-4.3.0-2.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-bson-debuginfo-4.3.0-2.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-bson-debugsource-4.3.0-2.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-io-console-0.4.6-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-io-console-debuginfo-0.4.6-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-json-2.1.0-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-json-debuginfo-2.1.0-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-mysql2-0.4.10-4.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-mysql2-debuginfo-0.4.10-4.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-mysql2-debugsource-0.4.10-4.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-openssl-2.1.2-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-openssl-debuginfo-2.1.2-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-pg-1.0.0-2.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-pg-debuginfo-1.0.0-2.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-pg-debugsource-1.0.0-2.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-psych-3.0.2-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm rubygem-psych-debuginfo-3.0.2-105.module+el8.1.0+3656+f80bfa1d.ppc64le.rpm s390x: ruby-2.5.5-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm ruby-debuginfo-2.5.5-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm ruby-debugsource-2.5.5-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm ruby-devel-2.5.5-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm ruby-libs-2.5.5-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm ruby-libs-debuginfo-2.5.5-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-bigdecimal-1.3.4-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-bigdecimal-debuginfo-1.3.4-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-bson-4.3.0-2.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-bson-debuginfo-4.3.0-2.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-bson-debugsource-4.3.0-2.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-io-console-0.4.6-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-io-console-debuginfo-0.4.6-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-json-2.1.0-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-json-debuginfo-2.1.0-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-mysql2-0.4.10-4.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-mysql2-debuginfo-0.4.10-4.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-mysql2-debugsource-0.4.10-4.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-openssl-2.1.2-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-openssl-debuginfo-2.1.2-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-pg-1.0.0-2.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-pg-debuginfo-1.0.0-2.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-pg-debugsource-1.0.0-2.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-psych-3.0.2-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm rubygem-psych-debuginfo-3.0.2-105.module+el8.1.0+3656+f80bfa1d.s390x.rpm x86_64: ruby-2.5.5-105.module+el8.1.0+3656+f80bfa1d.i686.rpm ruby-2.5.5-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm ruby-debuginfo-2.5.5-105.module+el8.1.0+3656+f80bfa1d.i686.rpm ruby-debuginfo-2.5.5-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm ruby-debugsource-2.5.5-105.module+el8.1.0+3656+f80bfa1d.i686.rpm ruby-debugsource-2.5.5-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm ruby-devel-2.5.5-105.module+el8.1.0+3656+f80bfa1d.i686.rpm ruby-devel-2.5.5-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm ruby-libs-2.5.5-105.module+el8.1.0+3656+f80bfa1d.i686.rpm ruby-libs-2.5.5-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm ruby-libs-debuginfo-2.5.5-105.module+el8.1.0+3656+f80bfa1d.i686.rpm ruby-libs-debuginfo-2.5.5-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-bigdecimal-1.3.4-105.module+el8.1.0+3656+f80bfa1d.i686.rpm rubygem-bigdecimal-1.3.4-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-bigdecimal-debuginfo-1.3.4-105.module+el8.1.0+3656+f80bfa1d.i686.rpm rubygem-bigdecimal-debuginfo-1.3.4-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-bson-4.3.0-2.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-bson-debuginfo-4.3.0-2.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-bson-debugsource-4.3.0-2.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-io-console-0.4.6-105.module+el8.1.0+3656+f80bfa1d.i686.rpm rubygem-io-console-0.4.6-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-io-console-debuginfo-0.4.6-105.module+el8.1.0+3656+f80bfa1d.i686.rpm rubygem-io-console-debuginfo-0.4.6-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-json-2.1.0-105.module+el8.1.0+3656+f80bfa1d.i686.rpm rubygem-json-2.1.0-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-json-debuginfo-2.1.0-105.module+el8.1.0+3656+f80bfa1d.i686.rpm rubygem-json-debuginfo-2.1.0-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-mysql2-0.4.10-4.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-mysql2-debuginfo-0.4.10-4.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-mysql2-debugsource-0.4.10-4.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-openssl-2.1.2-105.module+el8.1.0+3656+f80bfa1d.i686.rpm rubygem-openssl-2.1.2-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-openssl-debuginfo-2.1.2-105.module+el8.1.0+3656+f80bfa1d.i686.rpm rubygem-openssl-debuginfo-2.1.2-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-pg-1.0.0-2.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-pg-debuginfo-1.0.0-2.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-pg-debugsource-1.0.0-2.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-psych-3.0.2-105.module+el8.1.0+3656+f80bfa1d.i686.rpm rubygem-psych-3.0.2-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm rubygem-psych-debuginfo-3.0.2-105.module+el8.1.0+3656+f80bfa1d.i686.rpm rubygem-psych-debuginfo-3.0.2-105.module+el8.1.0+3656+f80bfa1d.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-36327 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/articles/6206172 8. Contact: The Red Hat security contact is . More contact details athttps://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYg0xEtzjgjWX9erEAQj5/Q/9GL6DVLfOPGCkMQqRvA0ehcSF0urjofbH 7E8cX/PFRK/4W2dcXzqm9ieA+r8MLJx8mytAoUFdR8VS+8uLA2QYm+WNCCASb9z/ TH8R2ItCB55AeoQk9z2tvpJ5M7OHDDFCuR3LdxFaNJKBVJcAwmB3KKWBQ6aVcjzV klcAKoSTIZMiUQJiAlOeCnbd5vuQQAn8UsRs99pjVzk7qm7elepMO7ECvdP6ytmF 4ARC2wwTo0FDESj6OeH3dD2wIomCxVZ0sAdXsjh09E871ALkXneYqkBQKsA4cy7s JLxhXcggA1nh9n+FEPnYD8EYSn1YyXx6AgvgFElUAcsAEGCeXu/2xxOS6xWZhlBe Vtw55hkEBSvtz3D/pURHBwgidR/T8Os8m2cMRZ+7oghe7yjOkpTIdNbdh0VWy2RR 4QF01ny0yU6WMv8Y2IpS2HSDL+SGPlAWqpvTvMeQzNhvE/MFjtgXRMVlslr9261I KjjWlSAce8B/7jPKQs1WGRGp60Eoz6VBC3LJfGTGzNUaNxFCYdhWf8iIMnRMJMGc +lU7H/xIlMVWiYrf/kfzHQFcyFtAUzL+JMCJQNEH/AMtlPBt4OScqCKKvypYZyv2 PdD5NFNSLVLwxj+LrBlp84cQnMAkXq7y3pbtacX1NL9dYfrdGPb/lsi0HbLFOFS7 hctCok+REig=5U8u -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Feb 16, 2022
•Important
Red Hat
89
security advisorymoderatefedoraFedora 33: FEDORA-2021-abc123def Moderate: Firefox Dependency Challenge
This update fixes dependency filtering that caused thunderbird to inadvertently lose requires on dbus-glib. ---- Update to latest upstream version. ---- Update to latest upstream version.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-93149af72b 2021-02-12 01:46:57.104672 --------------------------------------------------------------------------------Name : thunderbird Product : Fedora 32 Version : 78.7.0 Release : 2.fc32 URL : https://wiki.mozilla.org/Thunderbird:Home_Page Summary : Mozilla Thunderbird mail/newsgroup client Description : Mozilla Thunderbird is a standalone mail and newsgroup client. --------------------------------------------------------------------------------Update Information: This update fixes dependency filtering that caused thunderbird to inadvertently lose requires on dbus-glib. ---- Update to latest upstream version. ----Update to latest upstream version. --------------------------------------------------------------------------------ChangeLog: * Thu Jan 28 2021 Jan Horak - 78.7.0-2 - Fixing package requires/provides the same way as provided by kalev for Firefox * Wed Jan 27 2021 Jan Horak - 78.7.0-1 - Update to 78.7.0 build2 * Wed Jan 20 2021 Orion Poplawski - 78.6.1-2 - Own /usr/lib*/thunderbird/gtk2 directory - Provide /etc/thunderbird/pref (bug #1525709) - Filter package provides and requires * Thu Jan 14 2021 Jan Horak - 78.6.1-1 - Update to 78.6.1 build1 --------------------------------------------------------------------------------References: [ 1 ] Bug #1914997 - thunderbird-78.6.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1914997 [ 2 ] Bug #1921355 - thunderbird-78.7.0-1.fc32.x86_64 missing dbus-glib dependency https://bugzilla.redhat.com/show_bug.cgi?id=1921355 --------------------------------------------------------------------------------This update can be installed with the "dnf" updateprogram. Use su -c 'dnf upgrade --advisory FEDORA-2021-93149af72b' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Feb 11, 2021
•Medium
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!