Alerts This Week
Warning Icon 1 659
Alerts This Week
Warning Icon 1 659

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorycriticaldebian

Debian Buster: DLA-3741-1 Critical Engrama Directory Bypass Vulnerability

It was discovered that engrampa, an archive manager for the MATE desktop environment was susceptible to path traversal when handling CPIO archives. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3741-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Thorsten Alteholz February 26, 2024 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : engrampa Version : 1.20.2-1+deb10u1 CVE ID : CVE-2023-52138 It was discovered that engrampa, an archive manager for the MATE desktop environment was susceptible to path traversal when handling CPIO archives. For Debian 10 buster, this problem has been fixed in version 1.20.2-1+deb10u1. We recommend that you upgrade your engrampa packages. For the detailed security status of engrampa please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/engrampa Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Engrama susceptible to directory traversal in CPIO files. Upgrade to 1.20.2-1+deb10u1 for patching.. Engrama Update, Security Patch, Debian Buster, CPIO Archive Exploit, Archive Manager Vulnerability. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 26, 2024 Critical Debian LTS
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorymoderatedebian

Debian Bullseye DSA-5625-1 Moderate: Engrampa Path Traversal Issue

It was discovered that Engrampa, an archive manager for the MATE desktop environment was susceptible to path traversal when handling CPIO archives. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5625-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff February 16, 2024 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : engrampa CVE ID : CVE-2023-52138 It was discovered that Engrampa, an archive manager for the MATE desktop environment was susceptible to path traversal when handling CPIO archives. For the oldstable distribution (bullseye), this problem has been fixed in version 1.24.1-1+deb11u1. For the stable distribution (bookworm), this problem has been fixed in version 1.26.0-1+deb12u2. We recommend that you upgrade your engrampa packages. For the detailed security status of engrampa please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/engrampa Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Engrampa version boost addresses critical directory traversal vulnerability on Debian, improving defense measures against possible risks.. Engrampa Security, Path Traversal Patch, Debian Archive Manager. . LinuxSecurity.com Team

Calendar 2 Feb 16, 2024 Debian
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalsoftware update

Fedora 38: FEDORA-2024-8dc64f8f59 Critical: Engrampa Remote Command Risk

update to 1.26.2. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-8dc64f8f59 2024-02-15 01:41:57.775593 -------------------------------------------------------------------------------- Name : engrampa Product : Fedora 38 Version : 1.26.2 Release : 1.fc38 URL : https://mate-desktop.org/ Summary : MATE Desktop file archiver Description : Mate File Archiver is an application for creating and viewing archives files, such as zip, xv, bzip2, cab, rar and other compress formats. -------------------------------------------------------------------------------- Update Information: update to 1.26.2 -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 6 2024 Wolfgang Ulbrich - 1.26.2-1 - update to 1.26.2 * Wed Jan 24 2024 Fedora Release Engineering - 1.26.1-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jan 19 2024 Fedora Release Engineering - 1.26.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Wed Jul 19 2023 Fedora Release Engineering - 1.26.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild > > > > > > > c3bab3b (update to 1.26.1) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2262840 - TRIAGE CVE-2023-52138 engrampa: remote command execution via path traversal vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2262840 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-8dc64f8f59' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used bythe Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . The recent Fedora upgrade for engrampa version 1.26.2 mitigates vulnerabilities related to remote command execution and improves overall system security.. Fedora Updates, Engrampa Command Risks, Remote Command Execution. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 15, 2024 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorymoderatefedora

Fedora 39: FEDORA-2024-23085d548c Moderate: Engrampa RCE Vulnerability

update to 1.26.2. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-23085d548c 2024-02-15 00:59:01.165491 -------------------------------------------------------------------------------- Name : engrampa Product : Fedora 39 Version : 1.26.2 Release : 1.fc39 URL : https://mate-desktop.org/ Summary : MATE Desktop file archiver Description : Mate File Archiver is an application for creating and viewing archives files, such as zip, xv, bzip2, cab, rar and other compress formats. -------------------------------------------------------------------------------- Update Information: update to 1.26.2 -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 6 2024 Wolfgang Ulbrich - 1.26.2-1 - update to 1.26.2 * Wed Jan 24 2024 Fedora Release Engineering - 1.26.1-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jan 19 2024 Fedora Release Engineering - 1.26.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2262840 - TRIAGE CVE-2023-52138 engrampa: remote command execution via path traversal vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2262840 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-23085d548c' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . The latest upgrade to engrampa version 1.26.2 has resolved concerns related to remote command execution vulnerabilities within Fedora 39 notifications.. Engrampa Update, Remote Command Execution, Fedora Release. . LinuxSecurity.com Team

Calendar 2 Feb 15, 2024 Fedora
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here