Alerts This Week
Warning Icon 1 609
Alerts This Week
Warning Icon 1 609

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Calendar White Jun 05, 2026
Important
Fedora Large Esm H800
Fedora

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Calendar White Jun 05, 2026
Critical
Fedora Large Esm H900
Fedora

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Calendar White Jun 05, 2026
high
Fedora Large Esm H800
Fedora

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 38: FEDORA-2023-ac4651c9b2 Critical: Croc Memory Issue

croc 9.6.4. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-ac4651c9b2 2023-07-04 01:32:56.926315 --------------------------------------------------------------------------------Name : golang-github-schollz-mnemonicode Product : Fedora 38 Version : 1.0.1 Release : 6.20230519git63fa713.fc38 URL : https://github.com/schollz/mnemonicode Summary : Method for encoding binary data into a sequence of words Description : Mnemonicode is a method for encoding binary data into a sequence of words which can be spoken over the phone, for example, and converted back to data on the other side. --------------------------------------------------------------------------------Update Information: croc 9.6.4 --------------------------------------------------------------------------------ChangeLog: * Fri May 19 2023 Mikel Olasagasti Uranga - 1.0.1-6 - Update to latest git --------------------------------------------------------------------------------References: [ 1 ] Bug #2163218 - CVE-2022-41717 golang-github-schollz-croc: golang: net/http: An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2163218 [ 2 ] Bug #2171537 - golang-github-schollz-croc: FTBFS in Fedora rawhide/f38 https://bugzilla.redhat.com/show_bug.cgi?id=2171537 [ 3 ] Bug #2208585 - golang-github-schollz-croc-9.6.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2208585 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-ac4651c9b2' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used bythe Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Croc 9.6.4 update in Fedora 38 addresses memory growth issues with package golang-github-schollz-mnemonicode.. Fedora 38, Golang Golang Update, Croc Memory Issue, Software Package. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 04, 2023 Critical Fedora
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderate severitySUSE

SUSE: 2022:1418-1 Moderate: Excessive Memory Issues in Ant

An update that fixes two vulnerabilities is now available. . SUSE Security Update: Security update for ant ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:1418-1 Rating: moderate References: #1188468 #1188469 Cross-References: CVE-2021-36373 CVE-2021-36374 CVSS scores: CVE-2021-36373 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-36373 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-36374 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-36374 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Development Tools 15-SP3 SUSE Linux Enterprise Module for Development Tools 15-SP4 SUSE Linux Enterprise Realtime Extension 15-SP2 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for ant fixes the following issues: - CVE-2021-36373: Fixed an excessive memory allocation when reading a specially crafted TAR archive (bsc#1188468). - CVE-2021-36374: Fixed an excessivememory allocation when reading a specially crafted ZIP archive (bsc#1188469). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-1418=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-1418=1 - SUSE Linux Enterprise Realtime Extension 15-SP2: zypper in -t patch SUSE-SLE-Product-RT-15-SP2-2022-1418=1 - SUSE Linux Enterprise Module for Development Tools 15-SP4: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP4-2022-1418=1 - SUSE Linux Enterprise Module for Development Tools 15-SP3: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP3-2022-1418=1 Package List: - openSUSE Leap 15.4 (noarch): ant-1.10.7-150200.4.6.1 ant-antlr-1.10.7-150200.4.6.1 ant-apache-bcel-1.10.7-150200.4.6.1 ant-apache-bsf-1.10.7-150200.4.6.1 ant-apache-log4j-1.10.7-150200.4.6.1 ant-apache-oro-1.10.7-150200.4.6.1 ant-apache-regexp-1.10.7-150200.4.6.1 ant-apache-resolver-1.10.7-150200.4.6.1 ant-apache-xalan2-1.10.7-150200.4.6.1 ant-commons-logging-1.10.7-150200.4.6.1 ant-commons-net-1.10.7-150200.4.6.1 ant-imageio-1.10.7-150200.4.6.1 ant-javamail-1.10.7-150200.4.6.1 ant-jdepend-1.10.7-150200.4.6.1 ant-jmf-1.10.7-150200.4.6.1 ant-jsch-1.10.7-150200.4.6.1 ant-junit-1.10.7-150200.4.6.1 ant-junit5-1.10.7-150200.4.6.1 ant-manual-1.10.7-150200.4.6.1 ant-scripts-1.10.7-150200.4.6.1 ant-swing-1.10.7-150200.4.6.1 ant-testutil-1.10.7-150200.4.6.1 ant-xz-1.10.7-150200.4.6.1 - openSUSE Leap 15.3 (noarch): ant-1.10.7-150200.4.6.1 ant-antlr-1.10.7-150200.4.6.1 ant-apache-bcel-1.10.7-150200.4.6.1 ant-apache-bsf-1.10.7-150200.4.6.1 ant-apache-log4j-1.10.7-150200.4.6.1 ant-apache-oro-1.10.7-150200.4.6.1 ant-apache-regexp-1.10.7-150200.4.6.1 ant-apache-resolver-1.10.7-150200.4.6.1 ant-apache-xalan2-1.10.7-150200.4.6.1 ant-commons-logging-1.10.7-150200.4.6.1 ant-commons-net-1.10.7-150200.4.6.1 ant-imageio-1.10.7-150200.4.6.1 ant-javamail-1.10.7-150200.4.6.1 ant-jdepend-1.10.7-150200.4.6.1 ant-jmf-1.10.7-150200.4.6.1 ant-jsch-1.10.7-150200.4.6.1 ant-junit-1.10.7-150200.4.6.1 ant-junit5-1.10.7-150200.4.6.1 ant-manual-1.10.7-150200.4.6.1 ant-scripts-1.10.7-150200.4.6.1 ant-swing-1.10.7-150200.4.6.1 ant-testutil-1.10.7-150200.4.6.1 ant-xz-1.10.7-150200.4.6.1 - SUSE Linux Enterprise Realtime Extension 15-SP2 (noarch): ant-1.10.7-150200.4.6.1 ant-antlr-1.10.7-150200.4.6.1 ant-apache-bcel-1.10.7-150200.4.6.1 ant-apache-bsf-1.10.7-150200.4.6.1 ant-apache-log4j-1.10.7-150200.4.6.1 ant-apache-oro-1.10.7-150200.4.6.1 ant-apache-regexp-1.10.7-150200.4.6.1 ant-apache-resolver-1.10.7-150200.4.6.1 ant-commons-logging-1.10.7-150200.4.6.1 ant-javamail-1.10.7-150200.4.6.1 ant-jdepend-1.10.7-150200.4.6.1 ant-jmf-1.10.7-150200.4.6.1 ant-junit-1.10.7-150200.4.6.1 ant-manual-1.10.7-150200.4.6.1 ant-scripts-1.10.7-150200.4.6.1 ant-swing-1.10.7-150200.4.6.1 - SUSE Linux Enterprise Module for Development Tools 15-SP4 (noarch): ant-1.10.7-150200.4.6.1 ant-antlr-1.10.7-150200.4.6.1 ant-apache-bcel-1.10.7-150200.4.6.1 ant-apache-bsf-1.10.7-150200.4.6.1 ant-apache-log4j-1.10.7-150200.4.6.1 ant-apache-oro-1.10.7-150200.4.6.1 ant-apache-regexp-1.10.7-150200.4.6.1 ant-apache-resolver-1.10.7-150200.4.6.1 ant-commons-logging-1.10.7-150200.4.6.1 ant-javamail-1.10.7-150200.4.6.1 ant-jdepend-1.10.7-150200.4.6.1 ant-jmf-1.10.7-150200.4.6.1 ant-junit-1.10.7-150200.4.6.1 ant-manual-1.10.7-150200.4.6.1 ant-scripts-1.10.7-150200.4.6.1 ant-swing-1.10.7-150200.4.6.1 - SUSE Linux Enterprise Module for Development Tools 15-SP3 (noarch): ant-1.10.7-150200.4.6.1 ant-antlr-1.10.7-150200.4.6.1 ant-apache-bcel-1.10.7-150200.4.6.1 ant-apache-bsf-1.10.7-150200.4.6.1 ant-apache-log4j-1.10.7-150200.4.6.1 ant-apache-oro-1.10.7-150200.4.6.1 ant-apache-regexp-1.10.7-150200.4.6.1 ant-apache-resolver-1.10.7-150200.4.6.1 ant-commons-logging-1.10.7-150200.4.6.1 ant-javamail-1.10.7-150200.4.6.1 ant-jdepend-1.10.7-150200.4.6.1 ant-jmf-1.10.7-150200.4.6.1 ant-junit-1.10.7-150200.4.6.1 ant-manual-1.10.7-150200.4.6.1 ant-scripts-1.10.7-150200.4.6.1 ant-swing-1.10.7-150200.4.6.1 References: https://www.suse.com/security/cve/CVE-2021-36373.html https://www.suse.com/security/cve/CVE-2021-36374.html https://bugzilla.suse.com/1188468 https://bugzilla.suse.com/1188469 . Addresses two security flaws in ant with moderate impact affecting SUSE platforms. Guidance for updates available for users.. SUSE Ant Security Fix, Memory Allocation Issue, SUSE Security Patch. . LinuxSecurity.com Team

Calendar 2 Apr 27, 2022 SuSE
Banner 3 1028x280 1708121785 1771599793
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydebiandos

Ubuntu: 2021-04-23 High: OpenJDK 11 Memory Leak Vulnerability

It was discovered that the PatternSyntaxException class in the Concurrency component of OpenJDK, an implementation of the Oracle Java platform could result in denial of service via excessive memory consumption. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4268-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff August 10, 2018 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : openjdk-8 CVE ID : CVE-2018-2952 It was discovered that the PatternSyntaxException class in the Concurrency component of OpenJDK, an implementation of the Oracle Java platform could result in denial of service via excessive memory consumption. For the stable distribution (stretch), this problem has been fixed in version 8u181-b13-1~deb9u1. We recommend that you upgrade your openjdk-8 packages. For the detailed security status of openjdk-8 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/openjdk-8 Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . To fix a denial-of-service issue due to excessive memory usage, upgrade openjdk-8 on your Debian system. See advisory DSA-4268-1 for details. OpenJDK Security Update, Debian Advisory, DoS Memory Issue, Java Application. . LinuxSecurity.com Team

Calendar 2 Aug 10, 2018 Debian
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here