Alerts This Week
Warning Icon 1 664
Alerts This Week
Warning Icon 1 664

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -2 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysoftware updateFedora

Fedora 41 perl-Data-Entropy 2025-8a7bd987fe warning: rand function insecure

Prior to version 0.008, the Perl module Data::Entropy relied on Perl's builtin rand function to choose an entropy source. Version 0.008 does away with this need.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-8a7bd987fe 2025-04-08 01:26:30.498540+00:00 -------------------------------------------------------------------------------- Name : perl-Data-Entropy Product : Fedora 41 Version : 0.008 Release : 1.fc41 URL : https://metacpan.org/dist/Data-Entropy Summary : Entropy (randomness) management Description : This module maintains a concept of a current selection of entropy source. Algorithms that require entropy, such as those in Data::Entropy::Algorithms, can use the source nominated by this module, avoiding the need for entropy source objects to be explicitly passed around. This is convenient because usually one entropy source will be used for an entire program run and so an explicit entropy source parameter would rarely vary. There is also a default entropy source, avoiding the need to explicitly configure a source at all. -------------------------------------------------------------------------------- Update Information: Prior to version 0.008, the Perl module Data::Entropy relied on Perl's builtin rand function to choose an entropy source. Version 0.008 does away with this need. -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 30 2025 Emmanuel Seyman - 0.008-1 - Update to 0.008, with new maintainer (#2355612) * Sat Jan 18 2025 Fedora Release Engineering - 0.007-27 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Mon Aug 5 2024 Miroslav Suchý - 0.007-26 - convert license to SPDX -------------------------------------------------------------------------------- References: [ 1 ] Bug #2355612 - perl-Data-Entropy-0.008 is available https://bugzilla.redhat.com/show_bug.cgi?id=2355612 [ 2 ] Bug #2355706 -CVE-2025-1860 perl-Data-Entropy: Data::Entropy for Perl uses insecure rand() function for cryptographic functions [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2355706 [ 3 ] Bug #2355707 - CVE-2025-1860 perl-Data-Entropy: Data::Entropy for Perl uses insecure rand() function for cryptographic functions [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2355707 [ 4 ] Bug #2355708 - CVE-2025-1860 perl-Data-Entropy: Data::Entropy for Perl uses insecure rand() function for cryptographic functions [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2355708 [ 5 ] Bug #2355709 - CVE-2025-1860 perl-Data-Entropy: Data::Entropy for Perl uses insecure rand() function for cryptographic functions [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2355709 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-8a7bd987fe' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- . The Perl module Data::Entropy has been upgraded in Fedora 41, leading to improved management of entropy sources to strengthen security measures.. Perl Module Update, Fedora 41 Entropy, Data::Entropy Security, Software Patch. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 08, 2025 Critical Fedora
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisoryDebiancryptography

Debian: DLA-2138-1 Urgent: wpa Hostapd Security Entropy Vulnerability

Similar to CVE-2016-10743 the host access point daemon, hostapd, in EAP mode used a low quality pseudorandom number generator that leads to insufficient entropy. The problem was resolved by using the os_get_random function which provides cryptographically strong pseudo . Package : wpa Version : 2.3-1+deb8u10 CVE ID : CVE-2019-10064 Similar to CVE-2016-10743 the host access point daemon, hostapd, in EAP mode used a low quality pseudorandom number generator that leads to insufficient entropy. The problem was resolved by using the os_get_random function which provides cryptographically strong pseudo random data. For Debian 8 "Jessie", this problem has been fixed in version 2.3-1+deb8u10. We recommend that you upgrade your wpa packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Enhance the wpa package from version 2.3-1+deb8u10 to address inefficiencies in the pseudorandom number generator, thereby bolstering overall security measures.. Debian Security, WPA Update, Hostapd Security, Debian LTS, Cryptography Fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 11, 2020 Important Debian LTS
Banner 3 1028x280 1708121785 1771599793
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderatesecurity issue

openSUSE: 2019:2364-1 Moderate: gcc7 Integer Overflow Fix

An update that solves two vulnerabilities and has three fixes is now available.. openSUSE Security Update: Security update for gcc7 ______________________________________________________________________________ Announcement ID: openSUSE-SU-2019:2364-1 Rating: moderate References: #1071995 #1141897 #1142649 #1148517 #1149145 Cross-References: CVE-2019-14250 CVE-2019-15847 Affected Products: openSUSE Leap 15.1 ______________________________________________________________________________ An update that solves two vulnerabilities and has three fixes is now available. Description: This update for gcc7 to r275405 fixes the following issues: Security issues fixed: - CVE-2019-14250: Fixed an integer overflow in binutils (bsc#1142649). - CVE-2019-15847: Fixed an optimization in the POWER9 backend of gcc that could reduce the entropy of the random number generator (bsc#1149145). Non-security issue fixed: - Move Live Patching technology stack from kGraft to upstream klp (bsc#1071995, fate#323487). This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.1: zypper in -t patch openSUSE-2019-2364=1 Package List: - openSUSE Leap 15.1 (i586 x86_64): cpp7-7.4.1+r275405-lp151.2.6.1 cpp7-debuginfo-7.4.1+r275405-lp151.2.6.1 gcc7-7.4.1+r275405-lp151.2.6.1 gcc7-ada-7.4.1+r275405-lp151.2.6.1 gcc7-ada-debuginfo-7.4.1+r275405-lp151.2.6.1 gcc7-c++-7.4.1+r275405-lp151.2.6.1 gcc7-c++-debuginfo-7.4.1+r275405-lp151.2.6.1 gcc7-debuginfo-7.4.1+r275405-lp151.2.6.1 gcc7-debugsource-7.4.1+r275405-lp151.2.6.1 gcc7-fortran-7.4.1+r275405-lp151.2.6.1 gcc7-fortran-debuginfo-7.4.1+r275405-lp151.2.6.1 gcc7-go-7.4.1+r275405-lp151.2.6.1 gcc7-go-debuginfo-7.4.1+r275405-lp151.2.6.1 gcc7-locale-7.4.1+r275405-lp151.2.6.1 gcc7-obj-c++-7.4.1+r275405-lp151.2.6.1 gcc7-obj-c++-debuginfo-7.4.1+r275405-lp151.2.6.1 gcc7-objc-7.4.1+r275405-lp151.2.6.1 gcc7-objc-debuginfo-7.4.1+r275405-lp151.2.6.1 libada7-7.4.1+r275405-lp151.2.6.1 libada7-debuginfo-7.4.1+r275405-lp151.2.6.1 libasan4-7.4.1+r275405-lp151.2.6.1 libasan4-debuginfo-7.4.1+r275405-lp151.2.6.1 libcilkrts5-7.4.1+r275405-lp151.2.6.1 libcilkrts5-debuginfo-7.4.1+r275405-lp151.2.6.1 libgfortran4-7.4.1+r275405-lp151.2.6.1 libgfortran4-debuginfo-7.4.1+r275405-lp151.2.6.1 libgo11-7.4.1+r275405-lp151.2.6.1 libgo11-debuginfo-7.4.1+r275405-lp151.2.6.1 libobjc4-7.4.1+r275405-lp151.2.6.1 libobjc4-debuginfo-7.4.1+r275405-lp151.2.6.1 libstdc++6-devel-gcc7-7.4.1+r275405-lp151.2.6.1 libubsan0-7.4.1+r275405-lp151.2.6.1 libubsan0-debuginfo-7.4.1+r275405-lp151.2.6.1 - openSUSE Leap 15.1 (noarch): gcc7-info-7.4.1+r275405-lp151.2.6.1 - openSUSE Leap 15.1 (x86_64): gcc7-32bit-7.4.1+r275405-lp151.2.6.1 gcc7-ada-32bit-7.4.1+r275405-lp151.2.6.1 gcc7-c++-32bit-7.4.1+r275405-lp151.2.6.1 gcc7-fortran-32bit-7.4.1+r275405-lp151.2.6.1 gcc7-go-32bit-7.4.1+r275405-lp151.2.6.1 gcc7-obj-c++-32bit-7.4.1+r275405-lp151.2.6.1 gcc7-objc-32bit-7.4.1+r275405-lp151.2.6.1 libada7-32bit-7.4.1+r275405-lp151.2.6.1 libada7-32bit-debuginfo-7.4.1+r275405-lp151.2.6.1 libasan4-32bit-7.4.1+r275405-lp151.2.6.1 libasan4-32bit-debuginfo-7.4.1+r275405-lp151.2.6.1 libcilkrts5-32bit-7.4.1+r275405-lp151.2.6.1 libcilkrts5-32bit-debuginfo-7.4.1+r275405-lp151.2.6.1 libgfortran4-32bit-7.4.1+r275405-lp151.2.6.1 libgfortran4-32bit-debuginfo-7.4.1+r275405-lp151.2.6.1 libgo11-32bit-7.4.1+r275405-lp151.2.6.1 libgo11-32bit-debuginfo-7.4.1+r275405-lp151.2.6.1 libobjc4-32bit-7.4.1+r275405-lp151.2.6.1 libobjc4-32bit-debuginfo-7.4.1+r275405-lp151.2.6.1 libstdc++6-devel-gcc7-32bit-7.4.1+r275405-lp151.2.6.1 libubsan0-32bit-7.4.1+r275405-lp151.2.6.1 libubsan0-32bit-debuginfo-7.4.1+r275405-lp151.2.6.1 References: https://www.suse.com/security/cve/CVE-2019-14250.html https://www.suse.com/security/cve/CVE-2019-15847.html https://bugzilla.suse.com/1071995 https://bugzilla.suse.com/1141897 https://bugzilla.suse.com/1142649 https://bugzilla.suse.com/1148517 https://bugzilla.suse.com/1149145 -- . Important notice for openSUSE users regarding gcc7 fix for integer overflow vulnerabilities and random number generator concerns. Apply updates immediately to protect your environment.. openSUSE Security Update, gcc7 Fixes, OpenSUSE Vulnerabilities Today. . LinuxSecurity.com Team

Calendar 2 Oct 22, 2019 OpenSUSE
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity issueFedora

Fedora 26: Security Advisory for libXdmcp Update on Session Key Entropy

Security fix for CVE-2017-2625. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-09f65e5e00 2017-04-01 16:46:19.651051 -------------------------------------------------------------------------------- Name : libXdmcp Product : Fedora 26 Version : 1.1.2 Release : 5.fc26 URL : https://www.x.org/wiki/ Summary : X Display Manager Control Protocol library Description : X Display Manager Control Protocol library. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2017-2625 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1427716 - CVE-2017-2625 libXdmcp: weak entropy usage for session keys [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1427716 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade libXdmcp' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Fedora 26 addresses a vulnerability in libXdmcp by strengthening the entropy in session keys, thereby improving overall security measures.. Fedora Security, libXdmcp Update, Session Key Protection. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 01, 2017 Important Fedora
Banner 3 1028x280 1708121785 1771599793
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalFedora

Fedora 24 libICE Critical Fix CVE-2017-2626 Weak Entropy Issue

Security fix for CVE-2017-2626. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-d068b54614 2017-03-05 17:28:15.511095 -------------------------------------------------------------------------------- Name : libICE Product : Fedora 24 Version : 1.0.9 Release : 8.fc24 URL : https://www.x.org/wiki/ Summary : X.Org X11 ICE runtime library Description : The X.Org X11 ICE (Inter-Client Exchange) runtime library. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2017-2626 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1427715 - CVE-2017-2626 libICE: weak entropy usage in session keys [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1427715 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade libICE' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Important patch for Fedora 24 targeting insufficient entropy in libICE session key issues. Discover ways to fortify your system.. Fedora Update, libICE Security, Critical Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 05, 2017 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedorasession key

Fedora 25: Essential Security Patch for libICE CVE-2017-2626 - Entropy Flaw

Security fix for CVE-2017-2626. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-c02eb668a7 2017-03-03 17:05:44.333653 -------------------------------------------------------------------------------- Name : libICE Product : Fedora 25 Version : 1.0.9 Release : 8.fc25 URL : https://www.x.org/wiki/ Summary : X.Org X11 ICE runtime library Description : The X.Org X11 ICE (Inter-Client Exchange) runtime library. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2017-2626 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1427715 - CVE-2017-2626 libICE: weak entropy usage in session keys [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1427715 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade libICE' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Urgent patch released for libICE on Fedora 25 resolves low entropy issues in session key generation. Users are recommended to upgrade.. Fedora 25, libICE Update, Security Fix, Entropy Vulnerability. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 03, 2017 Critical Fedora
Banner 3 1028x280 1708121785 1771599793
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorysecurity issuesystem update

Ubuntu 15.04 And 14.04 LTS USN-2709-2 Moderate: Pollinate Entropy Issue

The system would not have expected entropy available.. =========================================================================Ubuntu Security Notice USN-2709-2 October 14, 2015 pollinate update ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 15.04 - Ubuntu 14.04 LTS Summary: The system would not have expected entropy available. Software Description: - pollinate: seed the pseudo random number generator in virtual machines Details: USN-2709-1 updated pollinate's certificate for entropy.ubuntu.com but did not include a new certificate authority certificate. This update fixes the problem. We apologize for the inconvenience. Original advisory details: The pollinate package bundles the certificate for entropy.ubuntu.com. This update refreshes the certificate to match the new certificate for the server. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 15.04: pollinate 4.11-0ubuntu2.2 Ubuntu 14.04 LTS: pollinate 4.7-0ubuntu1.4 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-2709-1 https://bugs.launchpad.net/ubuntu/+source/pollinate/+bug/1506238 Package Information: https://launchpad.net/ubuntu/+source/pollinate/4.11-0ubuntu2.2 https://launchpad.net/ubuntu/+source/pollinate/4.7-0ubuntu1.4 . =========================================================================Ubuntu Security Notice USN-. system, would, expected, entropy, ==============================================. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 14, 2015 Important Ubuntu
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here