Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -4 articles for you...
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorysecurity issuedebian

Debian: DSA-5435-2 Critical: Trafficserver Info Disclosure and DoS Threat

Several vulnerabilities were discovered in Apache Traffic Server, a reverse and forward proxy server, which could result in information disclosure or denial of service. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5435-2 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff June 22, 2023 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : trafficserver CVE ID : CVE-2022-47184 CVE-2023-30631 CVE-2023-33933 Debian Bug : 1038248 Several vulnerabilities were discovered in Apache Traffic Server, a reverse and forward proxy server, which could result in information disclosure or denial of service. For the stable distribution (bookworm), these problems have been fixed in version 9.2.0+ds-2+deb12u1. This is a no change rebuild of the update from DSA-5435-1 with a corrected version number. We recommend that you upgrade your trafficserver packages. For the detailed security status of trafficserver please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/trafficserver Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Enhance Apache Traffic Server to mitigate critical security vulnerabilities and dangers as outlined in advisory DSA-5435-2.. Trafficserver Updates, Debian Security, Apache Proxy Issues. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 22, 2023 Critical Debian
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of servicesecurity update

Ubuntu 20.10 USN-4691-2 critical: Open vSwitch vulnerability exposure

Several security issues were fixed in Open vSwitch.. =========================================================================Ubuntu Security Notice USN-4691-1 January 13, 2021 openvswitch vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.10 - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: Several security issues were fixed in Open vSwitch. Software Description: - openvswitch: Ethernet virtual switch Details: Jonas Rudloff discovered that Open vSwitch incorrectly handled certain malformed LLDP packets. A remote attacker could use this issue to cause Open vSwitch to crash, resulting in a denial of service, or possibly execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.10: openvswitch-common 2.13.1-0ubuntu1.2 Ubuntu 20.04 LTS: openvswitch-common 2.13.1-0ubuntu0.20.04.3 Ubuntu 18.04 LTS: openvswitch-common 2.9.7-0ubuntu0.18.04.2 Ubuntu 16.04 LTS: openvswitch-common 2.5.9-0ubuntu0.16.04.2 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-4691-1 CVE-2015-8011, CVE-2020-27827 Package Information: https://launchpad.net/ubuntu/+source/openvswitch/2.13.1-0ubuntu1.2 https://launchpad.net/ubuntu/+source/openvswitch/2.13.1-0ubuntu0.20.04.3 https://launchpad.net/ubuntu/+source/openvswitch/2.9.7-0ubuntu0.18.04.2 https://launchpad.net/ubuntu/+source/openvswitch/2.5.9-0ubuntu0.16.04.2 . Address Open vSwitch vulnerabilities through careful Ubuntu patch management, minimizing risks of service interruptions and unauthorized code execution.. Open vSwitch Security, Ubuntu Networking, Security Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 13, 2021 Critical Ubuntu
Banner 2 1028x280 1708121730 1 1771599631
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisoryunauthorized accesshigh severity

Mageia 6 High Severity: MGASA-2019-0055 Oracle VM VirtualBox DOS Risk

Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data . MGASA-2019-0055 - Updated virtualbox packages fix security vulnerabilities Publication date: 30 Jan 2019 URL: https://advisories.mageia.org/MGASA-2019-0055.html Type: security Affected Mageia releases: 6 CVE: CVE-2019-2446, CVE-2019-2448, CVE-2019-2450, CVE-2019-2451, CVE-2019-2500, CVE-2019-2501, CVE-2019-2504, CVE-2019-2505, CVE-2019-2506, CVE-2019-2508, CVE-2019-2509, CVE-2019-2511, CVE-2019-2520, CVE-2019-2521, CVE-2019-2522, CVE-2019-2523, CVE-2019-2524, CVE-2019-2525, CVE-2019-2526, CVE-2019-2527, CVE-2019-2548, CVE-2019-2552, CVE-2019-2553, CVE-2019-2554, CVE-2019-2555, CVE-2019-2556 Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data (CVE-2019-2446, CVE-2019-2448, CVE-2019-2450, CVE-2019-2451, CVE-2019-2554, CVE-2019-2555, CVE-2019-2556). Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox (CVE-2019-2500, CVE-2019-2524, CVE-2019-2548, CVE-2019-2552). Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executesto compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle VM VirtualBox accessible data (CVE-2019-2501, CVE-2019-2504, CVE-2019-2505, CVE-2019-2506, CVE-2019-2553). Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox (CVE-2019-2508, CVE-2019-2509, CVE-2019-2527). Easily exploitable vulnerability allows unauthenticated attacker with network access via SOAP to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox (CVE-2019-2511). Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox (CVE-2019-2520, CVE-2019-2521, CVE-2019-2522, CVE-2019-2523, CVE-2019-2526). Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data (CVE-2019-2525). Forother fixes in this update, see the referenced changelog. References: - https://bugs.mageia.org/show_bug.cgi?id=24213 - https://bugs.mageia.org/show_bug.cgi?id=24213 - - https://www.oracle.com/security-alerts/cpujan2019.html - - https://www.cve.org/CVERecord?id=CVE-2019-2446 - https://www.cve.org/CVERecord?id=CVE-2019-2448 - https://www.cve.org/CVERecord?id=CVE-2019-2450 - https://www.cve.org/CVERecord?id=CVE-2019-2451 - https://www.cve.org/CVERecord?id=CVE-2019-2500 - https://www.cve.org/CVERecord?id=CVE-2019-2501 - https://www.cve.org/CVERecord?id=CVE-2019-2504 - https://www.cve.org/CVERecord?id=CVE-2019-2505 - https://www.cve.org/CVERecord?id=CVE-2019-2506 - https://www.cve.org/CVERecord?id=CVE-2019-2508 - https://www.cve.org/CVERecord?id=CVE-2019-2509 - https://www.cve.org/CVERecord?id=CVE-2019-2511 - https://www.cve.org/CVERecord?id=CVE-2019-2520 - https://www.cve.org/CVERecord?id=CVE-2019-2521 - https://www.cve.org/CVERecord?id=CVE-2019-2522 - https://www.cve.org/CVERecord?id=CVE-2019-2523 - https://www.cve.org/CVERecord?id=CVE-2019-2524 - https://www.cve.org/CVERecord?id=CVE-2019-2525 - https://www.cve.org/CVERecord?id=CVE-2019-2526 - https://www.cve.org/CVERecord?id=CVE-2019-2527 - https://www.cve.org/CVERecord?id=CVE-2019-2548 - https://www.cve.org/CVERecord?id=CVE-2019-2552 - https://www.cve.org/CVERecord?id=CVE-2019-2553 - https://www.cve.org/CVERecord?id=CVE-2019-2554 - https://www.cve.org/CVERecord?id=CVE-2019-2555 - https://www.cve.org/CVERecord?id=CVE-2019-2556 SRPMS: - 6/core/virtualbox-5.2.24-1.mga6 - 6/core/kmod-virtualbox-5.2.24-1.mga6 - 6/core/kmod-vboxadditions-5.2.24-1.mga6 . Implementing the latest patch addresses a multitude of vulnerabilities in Oracle VM VirtualBox that impact Mageia operating systems.. Oracle VM VirtualBox Security,Mageia Security Update,VirtualBox Flaws. . LinuxSecurity.com Team

Calendar 2 Jan 30, 2019 Mageia
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorykernel issueubuntu

Ubuntu 12.04 LTS: USN-3248-1 Critical DoS Risk In Kernel

The system could be made to crash or run programs as an administrator.. =========================================================================Ubuntu Security Notice USN-3248-1 March 29, 2017 linux, linux-ti-omap4 vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 12.04 LTS Summary: The system could be made to crash or run programs as an administrator. Software Description: - linux: Linux kernel - linux-ti-omap4: Linux kernel for OMAP4 Details: It was discovered that the xfrm framework for transforming packets in the Linux kernel did not properly validate data received from user space. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code with administrative privileges. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 LTS: linux-image-3.2.0-125-generic 3.2.0-125.168 linux-image-3.2.0-125-generic-pae 3.2.0-125.168 linux-image-3.2.0-125-highbank 3.2.0-125.168 linux-image-3.2.0-125-omap 3.2.0-125.168 linux-image-3.2.0-125-powerpc-smp 3.2.0-125.168 linux-image-3.2.0-125-powerpc64-smp 3.2.0-125.168 linux-image-3.2.0-125-virtual 3.2.0-125.168 linux-image-3.2.0-1503-omap4 3.2.0-1503.130 linux-image-generic 3.2.0.125.140 linux-image-generic-pae 3.2.0.125.140 linux-image-highbank 3.2.0.125.140 linux-image-omap 3.2.0.125.140 linux-image-omap4 3.2.0.1503.98 linux-image-powerpc-smp 3.2.0.125.140 linux-image-powerpc64-smp 3.2.0.125.140 linux-image-virtual 3.2.0.125.140 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules youmight have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-3248-1 CVE-2017-7184 Package Information: https://launchpad.net/ubuntu/+source/linux/3.2.0-125.168 https://launchpad.net/ubuntu/+source/linux-ti-omap4/3.2.0-1503.130 . Dealing with a kernel problem in Ubuntu 12.04 that can lead to system instability or the execution of unauthorized applications.. linux kernel attacks, ubuntu updates, system compromise. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 30, 2017 Critical Ubuntu
Banner 2 1028x280 1708121730 1 1771599631
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoraremote exploit

Fedora 23: 2015-46b18ccdc3 Critical: DoS Risk in QEMU Virtio-net

Qemu: net: virtio-net possible remote DoS [CVE-2015-7295]. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-46b18ccdc3 2015-10-13 00:04:05.734181 -------------------------------------------------------------------------------- Name : xen Product : Fedora 23 Version : 4.5.1 Release : 13.fc23 URL : https://xenproject.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor -------------------------------------------------------------------------------- Update Information: Qemu: net: virtio-net possible remote DoS [CVE-2015-7295] -------------------------------------------------------------------------------- References: [ 1 ] Bug #1264381 - CVE-2015-7295 Qemu: net: virtio-net possible remote DoS https://bugzilla.redhat.com/show_bug.cgi?id=1264381 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update xen' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . Fedora 23 update addresses a remote DoS vulnerability in QEMU's virtio-net, enhancing security for users of affected virtual machines, urging prompt patch application. DoS Attack, Xen Hypervisor, Fedora Security Update, Virtio-net Issue, Remote Exploit. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 13, 2015 Critical Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here