Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 11 articles for you...
202
security advisorymoderatethreatopenSUSE Tumbleweed 2026 Keylime-Config Moderate CVE-2026-6420 Advisory
An update that solves one vulnerability can now be installed.. # keylime-config-7.14.2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10779-1 Rating: moderate Cross-References: * CVE-2026-6420 CVSS scores: * CVE-2026-6420 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L * CVE-2026-6420 ( SUSE ): 8.3 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the keylime-config-7.14.2-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * keylime-config 7.14.2-1.1 * keylime-firewalld 7.14.2-1.1 * keylime-logrotate 7.14.2-1.1 * keylime-registrar 7.14.2-1.1 * keylime-tenant 7.14.2-1.1 * keylime-tpm_cert_store 7.14.2-1.1 * keylime-verifier 7.14.2-1.1 * python311-keylime 7.14.2-1.1 * python313-keylime 7.14.2-1.1 * python314-keylime 7.14.2-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-6420.html . Resolve a moderate issue in keylime-config on openSUSE Tumbleweed with this latest update aimed at improving security.. openSUSE update, keylime-config security, software threat management, moderate CVSS score, security patch. . LinuxSecurity.com Team
May 16, 2026
OpenSUSE
203
security advisorybuffer overflowimportantMageia 9 tcpflow Important OOB Write Fix MGASA-2026-0113 CVE-2026-25061
MGASA-2026-0113 - Updated tcpflow packages fix security vulnerability. MGASA-2026-0113 - Updated tcpflow packages fix security vulnerability Publication date: 07 May 2026 URL: https://advisories.mageia.org/MGASA-2026-0113.html Type: security Affected Mageia releases: 9 CVE: CVE-2026-25061 Description: tcpflow has TIM Element OOB Write in wifipcap. (CVE-2026-25061) References: - https://bugs.mageia.org/show_bug.cgi?id=35327 - https://lists.fedoraproject.org/archives/list/
May 07, 2026
•Important
Mageia
219
security advisorysecurity issueimportantFedora OS 36 RLSA-2026-21415 Arcadia Operator Key Security Update
Important: yggdrasil-worker-package-manager security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:11412", "synopsis": "Important: yggdrasil-worker-package-manager security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for yggdrasil-worker-package-manager.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "yggdrasil-worker-package-manager is a simple package manager yggd worker. It knows how to install and remove packages, add, remove, enable and disable repositories, and does rudimentary detection of the host it is running on to guess the package manager to use. It only installs packages that match one of the provided allow-pattern regular expressions.\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}], "cves": [{"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}], "references": [], "publishedAt": "2026-05-01T12:06:42.394267Z", "rpms": {"Rocky Linux 10": {"nvras": ["yggdrasil-worker-package-manager-0:0.2.3-5.el10_1.ppc64le.rpm", "yggdrasil-worker-package-manager-0:0.2.3-5.el10_1.src.rpm", "yggdrasil-worker-package-manager-debuginfo-0:0.2.3-5.el10_1.aarch64.rpm", "yggdrasil-worker-package-manager-debugsource-0:0.2.3-5.el10_1.aarch64.rpm","yggdrasil-worker-package-manager-debuginfo-0:0.2.3-5.el10_1.s390x.rpm", "yggdrasil-worker-package-manager-debuginfo-0:0.2.3-5.el10_1.ppc64le.rpm", "yggdrasil-worker-package-manager-debuginfo-0:0.2.3-5.el10_1.x86_64.rpm", "yggdrasil-worker-package-manager-debugsource-0:0.2.3-5.el10_1.x86_64.rpm", "yggdrasil-worker-package-manager-0:0.2.3-5.el10_1.s390x.rpm", "yggdrasil-worker-package-manager-0:0.2.3-5.el10_1.x86_64.rpm", "yggdrasil-worker-package-manager-debugsource-0:0.2.3-5.el10_1.ppc64le.rpm", "yggdrasil-worker-package-manager-0:0.2.3-5.el10_1.aarch64.rpm", "yggdrasil-worker-package-manager-debugsource-0:0.2.3-5.el10_1.s390x.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Yggdrasil-worker-package-manager receives an important security update for Rocky Linux, addressing critical issues.. Rocky Linux, Important Update, Yggdrasil Worker, Package Manager, Security Fixes. . Severity: Important. LinuxSecurity.com Team
May 01, 2026
•Important
Rocky Linux
202
security advisorymoderateDoSopenSUSE Tumbleweed cpp-httplib-devel Moderate Security Issues 2026-10573-1
An update that solves 2 vulnerabilities can now be installed.. # cpp-httplib-devel-0.42.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10573-1 Rating: moderate Cross-References: * CVE-2026-33745 * CVE-2026-34441 CVSS scores: * CVE-2026-33745 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-33745 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-34441 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-34441 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves 2 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the cpp-httplib-devel-0.42.0-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * cpp-httplib-devel 0.42.0-1.1 * libcpp-httplib0_42 0.42.0-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-33745.html * https://www.suse.com/security/cve/CVE-2026-34441.html . An update for openSUSE fixes two moderate issues in cpp-httplib-devel. Follow best practices for updates now.. openSUSE updates, cpp-httplib-devel security, moderate security issues, Linux application patches. . LinuxSecurity.com Team
Apr 19, 2026
OpenSUSE
100
security advisorySuSEthreatSUSE Python-PyJWT Important Security Update CVE-2026-32597 2026-1400-1
An update that solves one vulnerability can now be installed.. # Security update for python-PyJWT Announcement ID: SUSE-SU-2026:1400-1 Release Date: 2026-04-16T10:47:59Z Rating: important References: * bsc#1259616 Cross-References: * CVE-2026-32597 CVSS scores: * CVE-2026-32597 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-32597 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-32597 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: * Basesystem Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for python-PyJWT fixes the following issues: * CVE-2026-32597: Fixed unknown `crit` header extensions accepts (bsc#1259616). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run thecommand listed for your product: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1400=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1400=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1400=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1400=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1400=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1400=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-1400=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1400=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1400=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-1400=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-1400=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1400=1 ## Package List: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * python3-PyJWT-2.4.0-150200.3.11.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * python3-PyJWT-2.4.0-150200.3.11.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * python3-PyJWT-2.4.0-150200.3.11.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * python3-PyJWT-2.4.0-150200.3.11.1 * SUSE Linux Enterprise Server 15 SP4 LTSS(noarch) * python3-PyJWT-2.4.0-150200.3.11.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * python3-PyJWT-2.4.0-150200.3.11.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch) * python3-PyJWT-2.4.0-150200.3.11.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * python3-PyJWT-2.4.0-150200.3.11.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * python3-PyJWT-2.4.0-150200.3.11.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch) * python3-PyJWT-2.4.0-150200.3.11.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * python3-PyJWT-2.4.0-150200.3.11.1 * Basesystem Module 15-SP7 (noarch) * python3-PyJWT-2.4.0-150200.3.11.1 ## References: * https://www.suse.com/security/cve/CVE-2026-32597.html * https://bugzilla.suse.com/show_bug.cgi?id=1259616 . SUSE update for python-PyJWT resolves an important flaw impacting various versions. Install patch now for improved security.. SUSE python-PyJWT security patch important flaw. . Severity: Important. LinuxSecurity.com Team
Apr 16, 2026
•Important
SuSE
219
security advisoryDoSimportantUbuntu 22 git-lfs Security Patch RLSA-2026-7264 CVE-2026-25684
Important: git-lfs security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:7259", "synopsis": "Important: git-lfs security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for git-lfs.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Git Large File Storage (LFS) replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server.\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}], "cves": [{"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}], "references": [], "publishedAt": "2026-04-10T12:03:58.867499Z", "rpms": {"Rocky Linux 9": {"nvras": ["git-lfs-0:3.6.1-8.el9_7.aarch64.rpm", "git-lfs-0:3.6.1-8.el9_7.ppc64le.rpm", "git-lfs-0:3.6.1-8.el9_7.s390x.rpm", "git-lfs-0:3.6.1-8.el9_7.src.rpm", "git-lfs-0:3.6.1-8.el9_7.x86_64.rpm", "git-lfs-debuginfo-0:3.6.1-8.el9_7.aarch64.rpm", "git-lfs-debuginfo-0:3.6.1-8.el9_7.ppc64le.rpm", "git-lfs-debuginfo-0:3.6.1-8.el9_7.s390x.rpm", "git-lfs-debuginfo-0:3.6.1-8.el9_7.x86_64.rpm", "git-lfs-debugsource-0:3.6.1-8.el9_7.aarch64.rpm", "git-lfs-debugsource-0:3.6.1-8.el9_7.ppc64le.rpm", "git-lfs-debugsource-0:3.6.1-8.el9_7.s390x.rpm","git-lfs-debugsource-0:3.6.1-8.el9_7.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Important update for git-lfs on Rocky Linux 9 addresses critical security issues and vulnerabilities. Learn more and patch now.. git-lfs update, Rocky Linux security, CVSS scoring, security advisory, important update. . Severity: Important. LinuxSecurity.com Team
Apr 10, 2026
•Important
Rocky Linux
202
security advisorymoderatethreatopenSUSE Tumbleweed corepack Moderate Threat 2026-10504-1
An update that solves 7 vulnerabilities can now be installed.. # corepack24-24.14.1-1.1 on GA media Announcement ID: openSUSE-SU-2026:10504-1 Rating: moderate Cross-References: * CVE-2026-21710 * CVE-2026-21712 * CVE-2026-21713 * CVE-2026-21714 * CVE-2026-21715 * CVE-2026-21716 * CVE-2026-21717 CVSS scores: * CVE-2026-21710 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-21710 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-21712 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-21712 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-21713 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-21713 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-21714 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-21714 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-21715 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-21715 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-21716 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-21716 ( SUSE ): 2 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-21717 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-21717 ( SUSE ): 7.2 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves 7 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the corepack24-24.14.1-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * corepack24 24.14.1-1.1 * nodejs24 24.14.1-1.1 * nodejs24-devel 24.14.1-1.1 * nodejs24-docs 24.14.1-1.1 * npm24 24.14.1-1.1 ## References: *https://www.suse.com/security/cve/CVE-2026-21710.html * https://www.suse.com/security/cve/CVE-2026-21712.html * https://www.suse.com/security/cve/CVE-2026-21713.html * https://www.suse.com/security/cve/CVE-2026-21714.html * https://www.suse.com/security/cve/CVE-2026-21715.html * https://www.suse.com/security/cve/CVE-2026-21716.html * https://www.suse.com/security/cve/CVE-2026-21717.html . An update for openSUSE Tumbleweed resolves 7 security issues in corepack. Apply the latest patches for improved security.. openSUSE Tumbleweed security corepack update vulnerabilities. . LinuxSecurity.com Team
Apr 09, 2026
OpenSUSE
202
security advisorymoderateDoSFedora Rawhide apache-2.4.54 High Vulnerability Notification 2026-12345-2
An update that solves 6 vulnerabilities can now be installed.. # nginx-1.29.7-1.1 on GA media Announcement ID: openSUSE-SU-2026:10423-1 Rating: moderate Cross-References: * CVE-2026-27651 * CVE-2026-27654 * CVE-2026-27784 * CVE-2026-28753 * CVE-2026-28755 * CVE-2026-32647 CVSS scores: * CVE-2026-27651 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-27651 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-27654 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-27654 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-27784 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-27784 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-28753 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-28753 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-28755 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-28755 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-32647 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-32647 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves 6 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the nginx-1.29.7-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * nginx 1.29.7-1.1 * nginx-source 1.29.7-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-27651.html * https://www.suse.com/security/cve/CVE-2026-27654.html * https://www.suse.com/security/cve/CVE-2026-27784.html *https://www.suse.com/security/cve/CVE-2026-28753.html * https://www.suse.com/security/cve/CVE-2026-28755.html * https://www.suse.com/security/cve/CVE-2026-32647.html . Resolve moderate nginx security issues with openSUSE Tumbleweed update addressing multiple risks and vulnerabilities.. openSUSE Tumbleweed, nginx update, security issues, patch management, vulnerability resolution. . LinuxSecurity.com Team
Mar 28, 2026
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!