Alerts This Week
Warning Icon 1 914
Alerts This Week
Warning Icon 1 914

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE libyang Important Buffer Overflow Advisory 2026-2381-1

Calendar White Jun 12, 2026
Important
Opensuse Large Esm H900
openSUSE

openSUSE HPLIP Severe Code Execution Denial of Service 2026-2380-1

Calendar White Jun 12, 2026
Critical
Suse Large Esm H900
SuSE

openSUSE HPLIP Critical Escalation DoS Advisory SUSE-2026-2380-1

Calendar White Jun 12, 2026
Critical
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.2 python-Pygments Low Denial of Service CVE-2026-4539

Calendar White Jun 12, 2026
Low
Ubuntu Large Esm H900
Ubuntu

Ubuntu 16.04 LTS GStreamer Base Plugins Critical DoS CVE-2026-2921

Calendar White Jun 12, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 12 Linux Base Update Brings Important Security Fix DLA-4628-1

Calendar White Jun 12, 2026
Informational
Debianlts Large Esm H800
Debian LTS

Debian 12 Kernel-Wedge Update for Linux 6.12 DLA-4627-1

Calendar White Jun 12, 2026
Informational
Opensuse Large Esm H900
openSUSE

openSUSE NetworkManager-libreswan Important Security Update CVE-2024-9050

Calendar White Jun 12, 2026
Important
Opensuse Large Esm H900
openSUSE

openSUSE Rclone Critical Security Update CVE-2026-25680 CVE-2026-25681

Calendar White Jun 12, 2026
Critical
Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":555,"type":"x","order":1,"pct":78.72,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.26,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.82,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.2,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
203
Ls Advisories Mageia Esm H240
Price Tag%201security advisorysecurity updateMageia

Mageia 9 Erlang-Hex Core Critical Object Injection Flaw CVE-2026-0196

Security update. Publication date: 11 Jun 2026 URL: https://advisories.mageia.org/MGASA-2026-0196.html Type: security Affected Mageia releases: 9 CVE: CVE-2026-21619 Description: Uncontrolled Resource Consumption, Deserialization of Untrusted Data vulnerability in hexpm hex_core (hex_api modules), hexpm hex (mix_hex_api modules), erlang rebar3 (r3_hex_api modules) allows Object Injection, Excessive Allocation. This vulnerability is associated with program files src/hex_api.erl, src/mix_hex_api.erl, apps/rebar/src/vendored/r3_hex_api.erl and program routines hex_core:request/4, mix_hex_api:request/4, r3_hex_api:request/4. This issue affects hex_core: from 0.1.0 before 0.12.1; hex: from 2.3.0 before 2.3.2; rebar3: from 3.9.1 before 3.27.0. References: - https://bugs.mageia.org/show_bug.cgi?id=35187 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./message/ULA2SKGZS6NTHYMAHGYMOGTSP4KM4IOP/ - https://www.cve.org/CVERecord?id=CVE-2026-21619 SRPMS: - 9/core/erlang-hex_core-0.7.1-2.1.mga9 - 9/core/erlang-rebar3-3.18.0-1.1.mga9 . Mageia security advisory for erlang-hex_core addressing resource consumption and object injection. Immediate updates recommended!. Mageia security,coding vulnerabilities,erlang hex_core,resource management,security updates. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 11, 2026 Important Mageia
100
Ls Advisories Suse Esm H240
Price Tag%201security advisorymoderatememory leak

SUSE: 2024:2137-1 Moderate: Podofo Memory Leak and Security Update

* bsc#1127514 * bsc#1127855 * bsc#1131544 Cross-References: . # Security update for podofo Announcement ID: SUSE-SU-2024:2137-1 Rating: moderate References: * bsc#1127514 * bsc#1127855 * bsc#1131544 Cross-References: * CVE-2018-20797 * CVE-2019-10723 * CVE-2019-9199 CVSS scores: * CVE-2018-20797 ( SUSE ): 3.3 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2018-20797 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2019-10723 ( SUSE ): 5.5 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2019-10723 ( NVD ): 5.5 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2019-9199 ( SUSE ): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2019-9199 ( NVD ): 8.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Package Hub 15 15-SP5 * SUSE Package Hub 15 15-SP6 An update that solves three vulnerabilities can now be installed. ## Description: This update for podofo fixes the following issues: * CVE-2019-9199: Fixed a NULL pointer dereference in podofoimpose (bsc#1127855) * CVE-2018-20797: Fixed an excessive memory allocation in PoDoFo:podofo_calloc (bsc#1127514) * CVE-2019-10723: Fixed a memory leak in PdfPagesTreeCache (bsc#1131544) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2137=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2137=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2137=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-2137=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-2137=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * libpodofo0_9_6-debuginfo-0.9.6-150300.3.9.1 * libpodofo0_9_6-0.9.6-150300.3.9.1 * libpodofo-devel-0.9.6-150300.3.9.1 * podofo-0.9.6-150300.3.9.1 * podofo-debuginfo-0.9.6-150300.3.9.1 * podofo-debugsource-0.9.6-150300.3.9.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libpodofo0_9_6-debuginfo-0.9.6-150300.3.9.1 * libpodofo0_9_6-0.9.6-150300.3.9.1 * libpodofo-devel-0.9.6-150300.3.9.1 * podofo-0.9.6-150300.3.9.1 * podofo-debuginfo-0.9.6-150300.3.9.1 * podofo-debugsource-0.9.6-150300.3.9.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * libpodofo0_9_6-debuginfo-0.9.6-150300.3.9.1 * libpodofo0_9_6-0.9.6-150300.3.9.1 * libpodofo-devel-0.9.6-150300.3.9.1 * podofo-0.9.6-150300.3.9.1 * podofo-debuginfo-0.9.6-150300.3.9.1 * podofo-debugsource-0.9.6-150300.3.9.1 * SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64) * libpodofo0_9_6-debuginfo-0.9.6-150300.3.9.1 * libpodofo0_9_6-0.9.6-150300.3.9.1 * libpodofo-devel-0.9.6-150300.3.9.1 * podofo-0.9.6-150300.3.9.1 * podofo-debuginfo-0.9.6-150300.3.9.1 * podofo-debugsource-0.9.6-150300.3.9.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * libpodofo0_9_6-debuginfo-0.9.6-150300.3.9.1 * libpodofo0_9_6-0.9.6-150300.3.9.1 * libpodofo-devel-0.9.6-150300.3.9.1 * podofo-0.9.6-150300.3.9.1 * podofo-debuginfo-0.9.6-150300.3.9.1 * podofo-debugsource-0.9.6-150300.3.9.1 ## References: *https://www.suse.com/security/cve/CVE-2018-20797.html * https://www.suse.com/security/cve/CVE-2019-10723.html * https://www.suse.com/security/cve/CVE-2019-9199.html * https://bugzilla.suse.com/show_bug.cgi?id=1127514 * https://bugzilla.suse.com/show_bug.cgi?id=1127855 * https://bugzilla.suse.com/show_bug.cgi?id=1131544 . A new release for podofo addresses multiple concerns, outlining specifics about fixes and offering guidance for setup. Discover additional information.. SUSE Security Advisory,podofo update,security fix,software vulnerabilities,openSUSE patch. . LinuxSecurity.com Team

Calendar%202 Jun 21, 2024 SuSE
Banner 4 1028x280 1708121825 1771600306
100
Ls Advisories Suse Esm H240
Price Tag%201security advisorymoderatepatch

SUSE: 2022:1417-1 Moderate: Ant Memory Allocation Risks Addressed

An update that fixes two vulnerabilities is now available. . SUSE Security Update: Security update for ant ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:1417-1 Rating: moderate References: #1188468 #1188469 Cross-References: CVE-2021-36373 CVE-2021-36374 CVSS scores: CVE-2021-36373 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-36373 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-36374 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-36374 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: SUSE Linux Enterprise Server 12-SP5 SUSE Linux Enterprise Server for SAP Applications 12-SP5 SUSE Linux Enterprise Software Development Kit 12-SP5 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for ant fixes the following issues: - CVE-2021-36373: Fixed an excessive memory allocation when reading a specially crafted TAR archive (bsc#1188468). - CVE-2021-36374: Fixed an excessive memory allocation when reading a specially crafted ZIP archive (bsc#1188469). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP5: zypper in -t patch SUSE-SLE-SDK-12-SP5-2022-1417=1 - SUSE Linux Enterprise Server 12-SP5: zypper in -t patch SUSE-SLE-SERVER-12-SP5-2022-1417=1 Package List: - SUSE Linux Enterprise Software Development Kit 12-SP5 (noarch): ant-1.9.4-3.9.1 ant-antlr-1.9.4-3.9.1 ant-apache-bcel-1.9.4-3.9.1 ant-apache-bsf-1.9.4-3.9.1 ant-apache-log4j-1.9.4-3.9.1 ant-apache-oro-1.9.4-3.9.1 ant-apache-regexp-1.9.4-3.9.1 ant-apache-resolver-1.9.4-3.9.1 ant-commons-logging-1.9.4-3.9.1 ant-javadoc-1.9.4-3.9.1 ant-javamail-1.9.4-3.9.1 ant-jdepend-1.9.4-3.9.1 ant-jmf-1.9.4-3.9.1 ant-junit-1.9.4-3.9.1 ant-manual-1.9.4-3.9.1 ant-scripts-1.9.4-3.9.1 ant-swing-1.9.4-3.9.1 - SUSE Linux Enterprise Server 12-SP5 (noarch): ant-1.9.4-3.9.1 References: https://www.suse.com/security/cve/CVE-2021-36373.html https://www.suse.com/security/cve/CVE-2021-36374.html https://bugzilla.suse.com/1188468 https://bugzilla.suse.com/1188469 . A recent patch for ant addresses two moderate-level vulnerabilities associated with uncontrolled memory usage in specially crafted archive files.. SUSE Linux Enterprise ant update, memory allocation fix, ant security patch. . LinuxSecurity.com Team

Calendar%202 Apr 27, 2022 SuSE
98
Ls Advisories Redhat Esm H240
Price Tag%201security advisorysecurity issueimportant

RedHat: RHSA-2021-4531-01 Important OpenJDK Update for Windows

The Red Hat Build of OpenJDK 17 (java-17-openjdk) is now available for Windows. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: OpenJDK 17.0.1 security update for Windows Builds Advisory ID: RHSA-2021:4531-01 Product: OpenJDK Advisory URL: https://access.redhat.com/errata/RHSA-2021:4531 Issue date: 2021-11-11 Keywords: openjdk,windows CVE Names: CVE-2021-35556 CVE-2021-35559 CVE-2021-35561 CVE-2021-35564 CVE-2021-35567 CVE-2021-35578 CVE-2021-35586 CVE-2021-35603 ==================================================================== 1. Summary: The Red Hat Build of OpenJDK 17 (java-17-openjdk) is now available for Windows. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: The OpenJDK 17 packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. This release of the Red Hat build of OpenJDK 17 (17.0.1) for Windows serves as the initial Windows release of OpenJDK 17. For further information, refer to the release notes linked to in the References section. Security Fix(es): * OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689) (CVE-2021-35567) * OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167) (CVE-2021-35556) * OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580) (CVE-2021-35559) * OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097)(CVE-2021-35561) * OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137) (CVE-2021-35564) * OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729) (CVE-2021-35578) * OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735) (CVE-2021-35586) * OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618) (CVE-2021-35603) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: d_using_openjdk_17_for_windows/index 4. Bugs fixed (https://bugzilla.redhat.com/): 2014515 - CVE-2021-35556 OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167) 2014518 - CVE-2021-35559 OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580) 2014524 - CVE-2021-35561 OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097) 2015061 - CVE-2021-35564 OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137) 2015308 - CVE-2021-35586 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735) 2015311 - CVE-2021-35603 OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618) 2015653 - CVE-2021-35578 OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729) 2015658 - CVE-2021-35567 OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689) 5.References: https://access.redhat.com/security/cve/CVE-2021-35556 https://access.redhat.com/security/cve/CVE-2021-35559 https://access.redhat.com/security/cve/CVE-2021-35561 https://access.redhat.com/security/cve/CVE-2021-35564 https://access.redhat.com/security/cve/CVE-2021-35567 https://access.redhat.com/security/cve/CVE-2021-35578 https://access.redhat.com/security/cve/CVE-2021-35586 https://access.redhat.com/security/cve/CVE-2021-35603 https://access.redhat.com/security/updates/classification/#important 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYY2HztzjgjWX9erEAQgjow/+KDjiyIqEs8UAriruyjgTBMIODIcSsUdu fI5QXCLK8H5eH1IryAJUaPA6PD6TBDWGjTqq9WiY08M7QCR22CRdslW3kvUecYNJ 0NcbGVuPVkF/fo/em425mRf6njRUwCBuPPueZikzieb8/+ZhbqJRxyB4KwQhmQSv 5HsP6KKnRnIF6cOMyUnKgBDX946tc3X8cYvNtP6hkrEMVVOXZfJXDd4GHOGR+YIR uveQKlYH8NK3gf+sPmb2WHP5pmb2v0uG5z5Yxyzw4E+2kbgSbz7cdQRC/v1cNuAG vyLRphpvlnQzKad+7t3Jx/B3QEjYSXAlCnY7nVUtd4GO/fs0o7fwrkY/PZbAx7bf KVHWEzLkrIFB6/2xB8bvmUNJTEB8ZkdbBlZyCPG8q0vjF/Hlbab42bALZhE22i8K lD7huKOJicAMof5F5r8Rn8jSdPCvi3nIUcDegoBo2s24nekdULHhU4algiRpc+zj 3cEr6CfiKV+f7KTQGCW10K0cpDqzB4D9fWiXWDPWKsqrzK2JD3M0N+k319B5Tkt4 /B+wCQqwYNQcYSQH39qtFM32RNe5JREBAy10BNfhUa5EKIwmCHAmIFt+RBPJpZqY age/BrfPqr3J21lK9NZrNxqPK5fX2zaLV9iNBOj4NMahMzyR0O34A0xgbhzQPqv2 utGSyDKTDSw=CfHQ -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Oracle announces a Significant patch for Java SE 17.0.2 on MacOS to address severe vulnerabilities.. RedHat Security, OpenJDK Update, Windows Advisory, Memory Safety, Java Runtime. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Nov 11, 2021 Important Red Hat
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":555,"type":"x","order":1,"pct":78.72,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.26,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.82,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.2,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here