Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -3 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydebianimportant

Debian 11: Important Null Pointer Vulnerability in libetpan DLA-4256-1

It was discovered that there was a potential null pointer dereference vulnerability in libetpan, an low-level library for handling email. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4256-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Thorsten Alteholz July 28, 2025 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : libetpan Version : 1.9.4-3+deb11u1 CVE ID : CVE-2022-4121 It was discovered that there was a potential null pointer dereference vulnerability in libetpan, an low-level library for handling email. For Debian 11 bullseye, this problem has been fixed in version 1.9.4-3+deb11u1. We recommend that you upgrade your libetpan packages. For the detailed security status of libetpan please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/libetpan Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Uncover an essential libetpan enhancement resolving null reference concerns impacting email operations on Debian platforms.. libetpan security, Debian updates, null pointer dereference, email library security. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jul 28, 2025 Important Debian LTS
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorysoftware updatelow severity

openSUSE 15.6: SUSE-SU-2025:0982-1 low: python311 email handling

An update that solves one vulnerability and has one security fix can now be installed.. # Security update for python311 Announcement ID: SUSE-SU-2025:0982-1 Release Date: 2025-03-21T14:17:21Z Rating: low References: * bsc#1238450 * bsc#1239210 Cross-References: * CVE-2025-1795 CVSS scores: * CVE-2025-1795 ( SUSE ): 2.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-1795 ( SUSE ): 3.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2025-1795 ( NVD ): 2.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * Basesystem Module 15-SP6 * openSUSE Leap 15.6 * Python 3 Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for python311 fixes the following issues: * CVE-2025-1795: Fixed mishandling of comma during folding and unicode- encoding of email headers (bsc#1238450). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-982=1 openSUSE-SLE-15.6-2025-982=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-982=1 * Python 3 Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Python3-15-SP6-2025-982=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * python311-debuginfo-3.11.11-150600.3.21.1 *python311-tk-debuginfo-3.11.11-150600.3.21.1 * python311-base-debuginfo-3.11.11-150600.3.21.1 * python311-core-debugsource-3.11.11-150600.3.21.1 * python311-tools-3.11.11-150600.3.21.1 * python311-testsuite-3.11.11-150600.3.21.1 * libpython3_11-1_0-debuginfo-3.11.11-150600.3.21.1 * python311-debugsource-3.11.11-150600.3.21.1 * python311-tk-3.11.11-150600.3.21.1 * python311-curses-debuginfo-3.11.11-150600.3.21.1 * python311-base-3.11.11-150600.3.21.1 * python311-testsuite-debuginfo-3.11.11-150600.3.21.1 * python311-curses-3.11.11-150600.3.21.1 * libpython3_11-1_0-3.11.11-150600.3.21.1 * python311-doc-devhelp-3.11.11-150600.3.21.1 * python311-dbm-debuginfo-3.11.11-150600.3.21.1 * python311-devel-3.11.11-150600.3.21.1 * python311-doc-3.11.11-150600.3.21.1 * python311-dbm-3.11.11-150600.3.21.1 * python311-idle-3.11.11-150600.3.21.1 * python311-3.11.11-150600.3.21.1 * openSUSE Leap 15.6 (x86_64) * python311-base-32bit-debuginfo-3.11.11-150600.3.21.1 * python311-32bit-3.11.11-150600.3.21.1 * libpython3_11-1_0-32bit-debuginfo-3.11.11-150600.3.21.1 * libpython3_11-1_0-32bit-3.11.11-150600.3.21.1 * python311-32bit-debuginfo-3.11.11-150600.3.21.1 * python311-base-32bit-3.11.11-150600.3.21.1 * openSUSE Leap 15.6 (aarch64_ilp32) * python311-64bit-debuginfo-3.11.11-150600.3.21.1 * libpython3_11-1_0-64bit-debuginfo-3.11.11-150600.3.21.1 * python311-base-64bit-debuginfo-3.11.11-150600.3.21.1 * python311-base-64bit-3.11.11-150600.3.21.1 * libpython3_11-1_0-64bit-3.11.11-150600.3.21.1 * python311-64bit-3.11.11-150600.3.21.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * python311-base-3.11.11-150600.3.21.1 * libpython3_11-1_0-debuginfo-3.11.11-150600.3.21.1 * python311-base-debuginfo-3.11.11-150600.3.21.1 * python311-core-debugsource-3.11.11-150600.3.21.1 * libpython3_11-1_0-3.11.11-150600.3.21.1 * Python 3 Module 15-SP6 (aarch64 ppc64le s390x x86_64) *python311-debuginfo-3.11.11-150600.3.21.1 * python311-tk-debuginfo-3.11.11-150600.3.21.1 * python311-curses-debuginfo-3.11.11-150600.3.21.1 * python311-core-debugsource-3.11.11-150600.3.21.1 * python311-curses-3.11.11-150600.3.21.1 * python311-debugsource-3.11.11-150600.3.21.1 * python311-dbm-3.11.11-150600.3.21.1 * python311-idle-3.11.11-150600.3.21.1 * python311-tk-3.11.11-150600.3.21.1 * python311-3.11.11-150600.3.21.1 * python311-tools-3.11.11-150600.3.21.1 * python311-dbm-debuginfo-3.11.11-150600.3.21.1 * python311-devel-3.11.11-150600.3.21.1 ## References: * https://www.suse.com/security/cve/CVE-2025-1795.html * https://bugzilla.suse.com/show_bug.cgi?id=1238450 * https://bugzilla.suse.com/show_bug.cgi?id=1239210 . SUSE issues security patch for python311 tackling minor severity email processing vulnerability. Key update particulars enclosed.. openSUSE Python Advisory, Security Update, Python311 Management. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Mar 21, 2025 Low OpenSUSE
Banner 3 1028x280 1708121785 1771599793
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoraXSS risk

Fedora 37: 2023-7002afbbb8 Moderate: rubygem-actionmailbox XSS Risk

Update to Ruby on Rails 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-released. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-7002afbbb8 2023-04-05 01:34:43.146270 --------------------------------------------------------------------------------Name : rubygem-actionmailbox Product : Fedora 37 Version : 7.0.4.3 Release : 1.fc37 URL : https://rubyonrails.org Summary : Inbound email handling framework Description : Receive and process incoming emails in Rails applications. --------------------------------------------------------------------------------Update Information: Update to Ruby on Rails 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-released --------------------------------------------------------------------------------ChangeLog: * Tue Mar 14 2023 Pavel Valena - 7.0.4.3-1 - Update to actionmailbox 7.0.4.3. --------------------------------------------------------------------------------References: [ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice https://bugzilla.redhat.com/show_bug.cgi?id=2179637 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-7002afbbb8' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . This patch resolves vulnerabilities in rubygem-actionmailbox on Fedora 37; essential enhancement for Rails-based software.. Ruby on Rails Update, ActionMailbox Security, Fedora 37, Email Handling Framework. . LinuxSecurity.com Team

Calendar 2 Apr 05, 2023 Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysoftware updateFedora

Fedora 38: Update for rubygem-actionmailbox Addresses XSS Vulnerability

Update to 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-released. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-d6157bb1e2 2023-04-01 00:15:35.161368 --------------------------------------------------------------------------------Name : rubygem-actionmailbox Product : Fedora 38 Version : 7.0.4.3 Release : 1.fc38 URL : https://rubyonrails.org Summary : Inbound email handling framework Description : Receive and process incoming emails in Rails applications. --------------------------------------------------------------------------------Update Information: Update to 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-released --------------------------------------------------------------------------------ChangeLog: * Tue Mar 14 2023 Pavel Valena - 7.0.4.3-1 - Update to actionmailbox 7.0.4.3. --------------------------------------------------------------------------------References: [ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice https://bugzilla.redhat.com/show_bug.cgi?id=2179637 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. FedoraCode of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . The Rubygem-smtpclient has been revised to version 7.0.4.3, rectifying crucial vulnerabilities in processing incoming emails, especially a significant XSS flaw.. Rubygem ActionMailbox, Fedora Security Update, Email Processing Securely. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 01, 2023 Important Fedora
Banner 3 1028x280 1708121785 1771599793
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoraupdate

Fedora 32: 2021-2cb0643316 Moderate: RoundcubeWebmail XSS Issue Fix

**RELEASE 1.4.10** - Fix extra angle brackets in In-Reply-To header derived from mailto: params (#7655) - Fix folder list issue whan special folder is a subfolder (#7647) - Fix Elastic's folder subscription toggle in search result (#7653) - Fix state of subscription toggle on folders list after changing folder state from the search result (#7653) - **Security**: Fix cross-site scripting. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-2cb0643316 2021-01-13 01:35:03.822445 --------------------------------------------------------------------------------Name : roundcubemail Product : Fedora 32 Version : 1.4.10 Release : 1.fc32 URL : https://roundcube.net/ Summary : Round Cube Webmail is a browser-based multilingual IMAP client Description : RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in PHP and requires a database: MySQL, PostgreSQL and SQLite are known to work. The user interface is fully skinnable using XHTML and CSS 2. --------------------------------------------------------------------------------Update Information: **RELEASE 1.4.10** - Fix extra angle brackets in In-Reply-To header derived from mailto: params (#7655) - Fix folder list issue whan special folder is a subfolder (#7647) - Fix Elastic's folder subscription toggle in search result (#7653) - Fix state of subscription toggle on folders list after changing folder state from the search result (#7653) - **Security**: Fix cross-site scripting (XSS) via HTML or Plain text messages with malicious content [**CVE-2020-35730**] --------------------------------------------------------------------------------ChangeLog: * Mon Jan 4 2021 Remi Collet - 1.4.10-1 - update to1.4.10 --------------------------------------------------------------------------------References: [ 1 ] Bug #1911321 - CVE-2020-35730 roundcubemail: XSS via HTML or plain text messages with malicious content https://bugzilla.redhat.com/show_bug.cgi?id=1911321 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-2cb0643316' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . A security update for Roundcube in Fedora 32 resolves vulnerabilities linked to cross-site scripting that impact email management.. RoundcubeWebmail,Fedora 32,Security Update,CrossSiteScripting. . LinuxSecurity.com Team

Calendar 2 Jan 12, 2021 Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoraemail handling

Fedora 24 kf5-mailcommon Security Update: Moderate Email Threats

KDE PIM Applications 16.08.2, https://kde.org/announcements/announce-applications-16.08.2/. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-1b042a79bd 2016-10-30 14:09:06.179463 -------------------------------------------------------------------------------- Name : kf5-mailcommon Product : Fedora 24 Version : 16.08.2 Release : 1.fc24 URL : Summary : Mail applications support library Description : Mail applications support library. -------------------------------------------------------------------------------- Update Information: KDE PIM Applications 16.08.2, https://kde.org/announcements/announce-applications-16.08.2/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1382288 - CVE-2016-7967 kdepim: JavaScript access to local and remote URLs in Kmail https://bugzilla.redhat.com/show_bug.cgi?id=1382288 [ 2 ] Bug #1382286 - CVE-2016-7966 kdepim: HTML injection in plain text viewer of KMail https://bugzilla.redhat.com/show_bug.cgi?id=1382286 [ 3 ] Bug #1382293 - CVE-2016-7968 kdepim: JavaScript execution in HTML Mails https://bugzilla.redhat.com/show_bug.cgi?id=1382293 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade kf5-mailcommon' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . KDE PIM Tools deliver crucial security patches for Fedora 24 kf5-kcbinding impacting calendar management functionalities.. Fedora Security Updates,KDE PIM Applications,KMail Security Issues,Email Handling Update. . LinuxSecurity.com Team

Calendar 2 Oct 30, 2016 Fedora
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here