Alerts This Week
Warning Icon 1 666
Alerts This Week
Warning Icon 1 666

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateunauthorized access

SUSE: 2019:0988-1 Moderate: PHP72 Security Advisory for Multiple Risks

An update that fixes 5 vulnerabilities is now available. . SUSE Security Update: Security update for php72 ______________________________________________________________________________ Announcement ID: SUSE-SU-2019:0988-1 Rating: moderate References: #1128883 #1128886 #1128887 #1128889 #1128892 Cross-References: CVE-2019-9637 CVE-2019-9638 CVE-2019-9639 CVE-2019-9640 CVE-2019-9675 Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP4 SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Module for Web Scripting 12 ______________________________________________________________________________ An update that fixes 5 vulnerabilities is now available. Description: This update for php72 fixes the following issues: - CVE-2019-9637: Due to the way rename() across filesystems is implemented, it was possible that file being renamed is briefly available with wrong permissions while the rename is ongoing, thus enabling unauthorized users to access the data. (bsc#1128892) - CVE-2019-9675: phar_tar_writeheaders_int in ext/phar/tar.c has a buffer overflow via a long link value. NOTE: The vendor indicates that the link value is used only when an archive contains a symlink, which currently cannot happen: "This issue allows theoretical compromise of security, but a practical attack is usually impossible." (bsc#1128886) - CVE-2019-9638: An issue was discovered in the EXIF component in PHP. There was an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the maker_note-> offset relationship to value_len. (bsc#1128889) - CVE-2019-9639: An issue was discovered in the EXIF component in PHP. There was an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the data_len variable. (bsc#1128887) - CVE-2019-9640: An issue was discoveredin the EXIF component in PHP. There was an Invalid Read in exif_process_SOFn. (bsc#1128883) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP4: zypper in -t patch SUSE-SLE-SDK-12-SP4-2019-988=1 - SUSE Linux Enterprise Software Development Kit 12-SP3: zypper in -t patch SUSE-SLE-SDK-12-SP3-2019-988=1 - SUSE Linux Enterprise Module for Web Scripting 12: zypper in -t patch SUSE-SLE-Module-Web-Scripting-12-2019-988=1 Package List: - SUSE Linux Enterprise Software Development Kit 12-SP4 (aarch64 ppc64le s390x x86_64): php72-debuginfo-7.2.5-1.10.1 php72-debugsource-7.2.5-1.10.1 php72-devel-7.2.5-1.10.1 - SUSE Linux Enterprise Software Development Kit 12-SP3 (aarch64 ppc64le s390x x86_64): php72-debuginfo-7.2.5-1.10.1 php72-debugsource-7.2.5-1.10.1 php72-devel-7.2.5-1.10.1 - SUSE Linux Enterprise Module for Web Scripting 12 (aarch64 ppc64le s390x x86_64): apache2-mod_php72-7.2.5-1.10.1 apache2-mod_php72-debuginfo-7.2.5-1.10.1 php72-7.2.5-1.10.1 php72-bcmath-7.2.5-1.10.1 php72-bcmath-debuginfo-7.2.5-1.10.1 php72-bz2-7.2.5-1.10.1 php72-bz2-debuginfo-7.2.5-1.10.1 php72-calendar-7.2.5-1.10.1 php72-calendar-debuginfo-7.2.5-1.10.1 php72-ctype-7.2.5-1.10.1 php72-ctype-debuginfo-7.2.5-1.10.1 php72-curl-7.2.5-1.10.1 php72-curl-debuginfo-7.2.5-1.10.1 php72-dba-7.2.5-1.10.1 php72-dba-debuginfo-7.2.5-1.10.1 php72-debuginfo-7.2.5-1.10.1 php72-debugsource-7.2.5-1.10.1 php72-dom-7.2.5-1.10.1 php72-dom-debuginfo-7.2.5-1.10.1 php72-enchant-7.2.5-1.10.1 php72-enchant-debuginfo-7.2.5-1.10.1 php72-exif-7.2.5-1.10.1 php72-exif-debuginfo-7.2.5-1.10.1 php72-fastcgi-7.2.5-1.10.1 php72-fastcgi-debuginfo-7.2.5-1.10.1 php72-fileinfo-7.2.5-1.10.1 php72-fileinfo-debuginfo-7.2.5-1.10.1 php72-fpm-7.2.5-1.10.1 php72-fpm-debuginfo-7.2.5-1.10.1 php72-ftp-7.2.5-1.10.1 php72-ftp-debuginfo-7.2.5-1.10.1 php72-gd-7.2.5-1.10.1 php72-gd-debuginfo-7.2.5-1.10.1 php72-gettext-7.2.5-1.10.1 php72-gettext-debuginfo-7.2.5-1.10.1 php72-gmp-7.2.5-1.10.1 php72-gmp-debuginfo-7.2.5-1.10.1 php72-iconv-7.2.5-1.10.1 php72-iconv-debuginfo-7.2.5-1.10.1 php72-imap-7.2.5-1.10.1 php72-imap-debuginfo-7.2.5-1.10.1 php72-intl-7.2.5-1.10.1 php72-intl-debuginfo-7.2.5-1.10.1 php72-json-7.2.5-1.10.1 php72-json-debuginfo-7.2.5-1.10.1 php72-ldap-7.2.5-1.10.1 php72-ldap-debuginfo-7.2.5-1.10.1 php72-mbstring-7.2.5-1.10.1 php72-mbstring-debuginfo-7.2.5-1.10.1 php72-mysql-7.2.5-1.10.1 php72-mysql-debuginfo-7.2.5-1.10.1 php72-odbc-7.2.5-1.10.1 php72-odbc-debuginfo-7.2.5-1.10.1 php72-opcache-7.2.5-1.10.1 php72-opcache-debuginfo-7.2.5-1.10.1 php72-openssl-7.2.5-1.10.1 php72-openssl-debuginfo-7.2.5-1.10.1 php72-pcntl-7.2.5-1.10.1 php72-pcntl-debuginfo-7.2.5-1.10.1 php72-pdo-7.2.5-1.10.1 php72-pdo-debuginfo-7.2.5-1.10.1 php72-pgsql-7.2.5-1.10.1 php72-pgsql-debuginfo-7.2.5-1.10.1 php72-phar-7.2.5-1.10.1 php72-phar-debuginfo-7.2.5-1.10.1 php72-posix-7.2.5-1.10.1 php72-posix-debuginfo-7.2.5-1.10.1 php72-pspell-7.2.5-1.10.1 php72-pspell-debuginfo-7.2.5-1.10.1 php72-readline-7.2.5-1.10.1 php72-readline-debuginfo-7.2.5-1.10.1 php72-shmop-7.2.5-1.10.1 php72-shmop-debuginfo-7.2.5-1.10.1 php72-snmp-7.2.5-1.10.1 php72-snmp-debuginfo-7.2.5-1.10.1 php72-soap-7.2.5-1.10.1 php72-soap-debuginfo-7.2.5-1.10.1 php72-sockets-7.2.5-1.10.1 php72-sockets-debuginfo-7.2.5-1.10.1 php72-sqlite-7.2.5-1.10.1 php72-sqlite-debuginfo-7.2.5-1.10.1 php72-sysvmsg-7.2.5-1.10.1 php72-sysvmsg-debuginfo-7.2.5-1.10.1 php72-sysvsem-7.2.5-1.10.1 php72-sysvsem-debuginfo-7.2.5-1.10.1 php72-sysvshm-7.2.5-1.10.1 php72-sysvshm-debuginfo-7.2.5-1.10.1 php72-tidy-7.2.5-1.10.1 php72-tidy-debuginfo-7.2.5-1.10.1 php72-tokenizer-7.2.5-1.10.1 php72-tokenizer-debuginfo-7.2.5-1.10.1 php72-wddx-7.2.5-1.10.1 php72-wddx-debuginfo-7.2.5-1.10.1 php72-xmlreader-7.2.5-1.10.1 php72-xmlreader-debuginfo-7.2.5-1.10.1 php72-xmlrpc-7.2.5-1.10.1 php72-xmlrpc-debuginfo-7.2.5-1.10.1 php72-xmlwriter-7.2.5-1.10.1 php72-xmlwriter-debuginfo-7.2.5-1.10.1 php72-xsl-7.2.5-1.10.1 php72-xsl-debuginfo-7.2.5-1.10.1 php72-zip-7.2.5-1.10.1 php72-zip-debuginfo-7.2.5-1.10.1 php72-zlib-7.2.5-1.10.1 php72-zlib-debuginfo-7.2.5-1.10.1 - SUSE Linux Enterprise Module for Web Scripting 12 (noarch): php72-pear-7.2.5-1.10.1 php72-pear-Archive_Tar-7.2.5-1.10.1 References: https://www.suse.com/security/cve/CVE-2019-9637.html https://www.suse.com/security/cve/CVE-2019-9638.html https://www.suse.com/security/cve/CVE-2019-9639.html https://www.suse.com/security/cve/CVE-2019-9640.html https://www.suse.com/security/cve/CVE-2019-9675.html https://bugzilla.suse.com/1128883 https://bugzilla.suse.com/1128886 https://bugzilla.suse.com/1128887 https://bugzilla.suse.com/1128889 https://bugzilla.suse.com/1128892 _______________________________________________ sle-security-updates mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. http://lists.suse.com/mailman/listinfo/sle-security-updates . Critical notice regarding the SUSE Security Patch for php72 to address vulnerabilities such as potential data breaches and memory overrun issues.. SUSE Security Update, php72 vulnerabilities, Software Development Kit, Patch Installation. . LinuxSecurity.com Team

Calendar 2 Apr 23, 2019 SuSE
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydenial of servicedebian

Debian: DSA-2438-1 Critical: Security Flaws in ImageMagick EXIF Parsing

Two security vulnerabilities related to EXIF processing were discovered in ImageMagick, a suite of programs to manipulate images: CVE-2012-0247 . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2427-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Florian Weimer March 06, 2012 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : imagemagick Vulnerability : several Problem type : local CVE ID : CVE-2012-0247 CVE-2012-0248 Two security vulnerabilities related to EXIF processing were discovered in ImageMagick, a suite of programs to manipulate images: CVE-2012-0247 When parsing a maliciously crafted image with incorrect offset and count in the ResolutionUnit tag in EXIF IFD0, ImageMagick writes two bytes to an invalid address. CVE-2012-0248 Parsing a maliciously crafted image with an IFD whose all IOP tags value offsets point to the beginning of the IFD itself results in an endless loop and a denial of service. For the stable distribution (squeeze), these problems have been fixed in version 8:6.6.0.4-3+squeeze1. For the testing distribution (wheezy) and the unstable distribution (sid), these problems have been fixed in version 8:6.6.9.7-6. We recommend that you upgrade your imagemagick packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: http://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . ImageMagick has implemented essential security patches addressing vulnerabilities related to EXIF data handling. Users running Debian are advised to perform an upgrade.. Debian ImageMagick Security Update, EXIF Processing Risks, Image Manipulation Vulnerability. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 06, 2012 Critical Debian
Banner 2 1028x280 1708121730 1 1771599631
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity updateFedora

Fedora Core 3: FEDORA-2023-1234 Important: PHP Deserialization Issue

This update includes the latest release of PHP 4.3, including fixes for security issues in the unserializer (CVE CAN-2004-1019) and exif image parsing (CVE CAN-2004-1065).. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2004-568 2004-12-21 ---------------------------------------------------------------------Product : Fedora Core 3 Name : php Version : 4.3.10 Release : 3.2 Summary : The PHP HTML-embedded scripting language. (PHP: Hypertext Preprocessor) Description : PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated webpages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. The mod_php module enables the Apache Web server to understand and process the embedded PHP language in Web pages. ---------------------------------------------------------------------This update includes the latest release of PHP 4.3, including fixes for security issues in the unserializer (CVE CAN-2004-1019) and exif image parsing (CVE CAN-2004-1065). ---------------------------------------------------------------------* Tue Dec 21 2004 Joe Orton 4.3.10-3.2 - fix umask patch (#143286) * Wed Dec 15 2004 Joe Orton 4.3.10-3.1 - update to 4.3.10, including security fixes (#141135): * unserializer integer overflows, CAN-2004-1019 * exif image parsing overflow, CAN-2004-1065 ---------------------------------------------------------------------This update can be downloaded from: 445609a1342e91f32320fa5864bda37b SRPMS/php-4.3.10-3.2.src.rpm 657606317c0a9ed5bcf37f06dba42538 x86_64/php-4.3.10-3.2.x86_64.rpm 5ddda1be3f052f3cb409cf73363be2ae x86_64/php-devel-4.3.10-3.2.x86_64.rpm 9163bfe74081828227f757b133b076fc x86_64/php-pear-4.3.10-3.2.x86_64.rpm 80b7bf655541e14064c2bd6eaa311077 x86_64/php-imap-4.3.10-3.2.x86_64.rpm e7e92d9b5bd9ea4a245eba6a39ee2536 x86_64/php-ldap-4.3.10-3.2.x86_64.rpm eae6fbeb1108970cd8fd9a7a38d32a9a x86_64/php-mysql-4.3.10-3.2.x86_64.rpm 88dcfa1990eb7bdbdd92715dace2c03e x86_64/php-pgsql-4.3.10-3.2.x86_64.rpm 05966b8d09a58702ba43c9be149ecbaa x86_64/php-odbc-4.3.10-3.2.x86_64.rpm 34cdb5151b5da048f7470170bfb31978 x86_64/php-snmp-4.3.10-3.2.x86_64.rpm df3d6d00a6949d17495c8b99eac5f7c9 x86_64/php-domxml-4.3.10-3.2.x86_64.rpm 7422b0dc974e702a4c96eeecf11ec761 x86_64/php-xmlrpc-4.3.10-3.2.x86_64.rpm c1d70465ed28e238c4a09cbcb356b209 x86_64/php-mbstring-4.3.10-3.2.x86_64.rpm 16a82e15b0e5b3b16fc5eda47133b2f6 x86_64/php-ncurses-4.3.10-3.2.x86_64.rpm eea5e17b82709e33619fa4959db5c766 x86_64/php-gd-4.3.10-3.2.x86_64.rpm b969eb4dc267a438bb7eb742e6c20f2b x86_64/debug/php-debuginfo-4.3.10-3.2.x86_64.rpm f510eb1784120ca41c69d7adc189852b i386/php-4.3.10-3.2.i386.rpm d5f291074444c1dc04f36cedf7395a06 i386/php-devel-4.3.10-3.2.i386.rpm 652ca5be92e965c23150c9c58f875a5c i386/php-pear-4.3.10-3.2.i386.rpm 11399157471806b342090305ef29c474 i386/php-imap-4.3.10-3.2.i386.rpm 190d53059632b6b80b9f757742ae9a60 i386/php-ldap-4.3.10-3.2.i386.rpm 6fc5c6d4a9326e2bb7208573fead0510 i386/php-mysql-4.3.10-3.2.i386.rpm 5c88f752e470135c5c665ef8fb1284d9 i386/php-pgsql-4.3.10-3.2.i386.rpm 4b0eb8f79673794cf6a677cbc3ae255d i386/php-odbc-4.3.10-3.2.i386.rpm a4f62eb0dd02593f9529b141bde10676 i386/php-snmp-4.3.10-3.2.i386.rpm 3591ab4da5e4efe7cd1e1876d589b173 i386/php-domxml-4.3.10-3.2.i386.rpm 0ddcc0fe3c79a2545d8bb2235837044c i386/php-xmlrpc-4.3.10-3.2.i386.rpm 1eae4104b33ee7021403025865de92e0 i386/php-mbstring-4.3.10-3.2.i386.rpm c7fb403a6374fdb70adbadc62eb022cf i386/php-ncurses-4.3.10-3.2.i386.rpm 606c76b1b4e9b0fdd6de1a093ce3190b i386/php-gd-4.3.10-3.2.i386.rpm 864a01494e29026096135b3229363025 i386/debug/php-debuginfo-4.3.10-3.2.i386.rpm This update can also be installed with the UpdateAgent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- . The latest patch for Fedora Core 3 incorporates security enhancements for PHP 4.3.10, addressing vulnerabilities related to exif data processing and the unserialization of objects.. Fedora PHP fixes, Exif Parsing Update, Unserialized Data Security. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 22, 2004 Important Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here