Alerts This Week
Warning Icon 1 541
Alerts This Week
Warning Icon 1 541

Stay Secure with the Latest Linux Advisories

Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H800
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 9 articles for you...
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydenial of servicedebian

Debian: DSA-5529-1 Moderate: SLURM Denial Of Service Risk

Francois Diakhate discovered that several race conditions in file processing of the Simple Linux Utility for Resource Management (SLURM), a cluster resource management and job scheduling system, could result in denial of service by overwriting arbitrary files. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5529-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff October 17, 2023 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : slurm-wlm CVE ID : CVE-2023-41914 Francois Diakhate discovered that several race conditions in file processing of the Simple Linux Utility for Resource Management (SLURM), a cluster resource management and job scheduling system, could result in denial of service by overwriting arbitrary files. For the stable distribution (bookworm), this problem has been fixed in version 22.05.8-4+deb12u1. In addition slurm-wlm-contrib also needed to be patched in version 22.05.8-4+deb12u1. We recommend that you upgrade your slurm-wlm packages. For the detailed security status of slurm-wlm please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/slurm-wlm Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Multiple concurrency issues in SLURM might lead to service disruptions due to file overwriting. Recommended to update!. SLURM, File Management, Denial of Service, Debian Security. . LinuxSecurity.com Team

Calendar 2 Oct 17, 2023 Debian
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoraupdate notification

Fedora 34 zchunk Advisory FEDORA-2022-fef374d46f Moderate: Fix Issues

Fix various small issues highlighted by Coverity. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-fef374d46f 2022-05-05 07:03:42.654345 --------------------------------------------------------------------------------Name : zchunk Product : Fedora 34 Version : 1.2.2 Release : 1.fc34 URL : https://github.com/zchunk/zchunk Summary : Compressed file format that allows easy deltas Description : zchunk is a compressed file format that splits the file into independent chunks. This allows you to only download the differences when downloading a new version of the file, and also makes zchunk files efficient over rsync. zchunk files are protected with strong checksums to verify that the file you downloaded is in fact the file you wanted. --------------------------------------------------------------------------------Update Information: Fix various small issues highlighted by Coverity --------------------------------------------------------------------------------ChangeLog: * Mon Apr 18 2022 Jonathan Dieter - 1.2.2-1 - Fixed a number of small issues highlighted by Coverity --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-fef374d46f' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct:https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Tackle minor concerns in zchunk for Fedora 34, ensuring robust checksum mechanisms and optimized delta download processes for improved file management efficiency.. Fedora Updates,zchunk Security,Update Notification,File Management,Checksum Verification. . LinuxSecurity.com Team

Calendar 2 May 05, 2022 Fedora
Banner 1 1028x280 1708121660 1771599717
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorycriticaldebian

Debian 9: DLA-2823-2 Critical: Salt Regression in File Management

The security update of Salt, a remote execution manager, to fix CVE-2021-21996 introduced a regression in salt/fileclient.py which raised an unexpected exception and made file.managed states fail. . -------------------------------------------------------------------------Debian LTS Advisory DLA-2823-2 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Markus Koschany November 21, 2021 https://wiki.debian.org/LTS -------------------------------------------------------------------------Package : salt Version : 2016.11.2+ds-1+deb9u9 CVE ID : CVE-2021-21996 Debian Bug : 1000265 The security update of Salt, a remote execution manager, to fix CVE-2021-21996 introduced a regression in salt/fileclient.py which raised an unexpected exception and made file.managed states fail. For Debian 9 stretch, this problem has been fixed in version 2016.11.2+ds-1+deb9u9. We recommend that you upgrade your salt packages. For the detailed security status of salt please refer to its security tracker page at: Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Debian LTS has released a patch for Salt that addresses CVE-2021-21996, resolving issues with file handling regressions and enhancing system security. Debian LTS,Salt,Security Update,Remote Execution Manager,Regressions. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 20, 2021 Critical Debian LTS
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorysecurity issuesymbolic link

Mageia 8: MGASA-2021-0430 Moderate: Libarchive Symlink Handling Issue

Fix handling of symbolic link ACLs on Linux. Never follow symlinks when setting file flags on Linux. Do not follow symlinks when processing the fixup list. . MGASA-2021-0430 - Updated libarchive packages fix security vulnerability Publication date: 23 Sep 2021 URL: https://advisories.mageia.org/MGASA-2021-0430.html Type: security Affected Mageia releases: 8 Fix handling of symbolic link ACLs on Linux. Never follow symlinks when setting file flags on Linux. Do not follow symlinks when processing the fixup list. References: - https://bugs.mageia.org/show_bug.cgi?id=29431 - https://github.com/libarchive/libarchive/releases/tag/v3.5.2 SRPMS: - 8/core/libarchive-3.5.2-1.mga8 . Enhanced libarchive builds in Mageia 8 fix problems related to symlink handling, ensuring that file attributes are handled with proper security measures.. libarchive security update,Mageia 8,security fixes,symbolic link handling. . LinuxSecurity.com Team

Calendar 2 Sep 23, 2021 Mageia
Banner 1 1028x280 1708121660 1771599717
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydebianrace condition

Debian: Trn Race Condition Fix for Overwrite Risk Due to Hardcoded Filename

All former versions of trn used a hardcoded filename in /tmp as temporary storage. If the file already exists as symbolic link to users files they will be overwritten. . All former versions of trn used a hardcoded filename in /tmp as temporary storage. If the file already exists as symbolic link to users files they will be overwritten. We recommend you upgrade your man2html package as soon as possible. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Debian GNU/Linux 2.1 alias slink -------------------------------- Source archives: MD5 checksum: a1b2a19ea060c289e079444edf908a18 MD5 checksum: 562b8ad926784d101646dc7148919015 Alpha architecture: MD5 checksum: 919bbf1ae668786ec945d4fb042d0d27 Intel ia32 architecture: MD5 checksum: b14c9ba3eeef6a33e574c55e022c47a4 Motorola 680x0 architecture: MD5 checksum: 3ad7ab653b333cfc4fb4409c7fe1e192 Sun Sparc architecture: MD5 checksum: 97cebe97d78372706c225309898a2e7d Debian GNU/Linux unstable alias potato -------------------------------------- Source archives: -9.4.diff.gz MD5 checksum: 46a3f905fecec6e9079ccb6e6c0d27dd MD5 checksum: e23192e418c3299f0bee0c5ef0f182e8 . tar.gz MD5 checksum: b42f4226072442265fbbda865ca4b796 Alpha architecture: MD5 checksum: bdcad9ead736edd1082bd203a26a3233 ARM architecture: MD5 checksum: f8c918679d759b3ec22a017eb58fc3b4 Intel ia32 architecture: MD5 checksum: d2a73698ac259196876a71fd6f45b714 Motorola 680x0 architecture: MD5 checksum: 0eb1b01ce9d3a92c2072ba8a6e7c81fa PowerPC architecture: MD5 checksum: 60ddaabdecb48ae2062d5d88ee608c42 Sun Sparc architecture: MD5 checksum: a1525fc83d73502be41411e02ba8ec3f --Debian GNU/Linux . Security Managers . This email address is being protected from spambots. You need JavaScript enabled to view it. This email address is being protected from spambots. You need JavaScript enabled to view it. Christian Hudon . Wichert Akkerman . Martin Schulze . . . Previous iterations of trn incorporated fixed filenames in /tmp, increasing the potential for accidental file overwrites. Ensure man2html is upgraded without delay.. trn Update, Debian Security Advisory, File Overwrite Risk. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 22, 2020 Critical Debian
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalFedora

Fedora 33 FEDORA-2020-f04f41bcc9 Critical Ark Security Fix

security fix for CVE-2020-24654. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-f04f41bcc9 2020-09-25 16:31:57.890800 --------------------------------------------------------------------------------Name : ark Product : Fedora 33 Version : 20.04.3 Release : 5.fc33 URL : https://apps.kde.org//utilities/ark/ Summary : Archive manager Description : Ark is a program for managing various archive formats. Archives can be viewed, extracted, created and modified from within Ark. The program can handle various formats such as tar, gzip, bzip2, zip, rar and lha (if appropriate command-line programs are installed). --------------------------------------------------------------------------------Update Information: security fix for CVE-2020-24654 --------------------------------------------------------------------------------ChangeLog: * Mon Aug 31 2020 Than Ngo - 20.04.3-5 - backport security fix for CVE-2020-24654 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-f04f41bcc9' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives:https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . The recent patch for Ark on Fedora 33 tackles an urgent concern, enhancing the protection of file handling against potential threats.. Fedora 33, Ark Security, Archive Management, Security Update, Patch Management. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 25, 2020 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatesecurity update

Red Hat OpenStack Platform 16: RHSA-2020-2165-01 Moderate Security Update

An update for openstack-manila is now available for Red Hat OpenStack Platform 16 (Train). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: openstack-manila security update Advisory ID: RHSA-2020:2165-01 Product: Red Hat OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2020:2165 Issue date: 2020-05-14 CVE Names: CVE-2020-9543 ==================================================================== 1. Summary: An update for openstack-manila is now available for Red Hat OpenStack Platform 16 (Train). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenStack Platform 16.0 - noarch 3. Description: OpenStack Shared Filesystem Service (Manila) provides services to manage network filesystems for use by Virtual Machine instances. Security Fix(es): * User with share-network UUID is able to show create and delete shares (CVE-2020-9543) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1809855 - CVE-2020-9543 openstack-manila: User with share-network UUID is able to show, create and delete shares 1824519 - Rebase openstack-manila to f071a43 6. Package List: Red HatOpenStack Platform 16.0: Source: openstack-manila-9.1.2-0.20200405045746.f071a43.el8ost.src.rpm noarch: openstack-manila-9.1.2-0.20200405045746.f071a43.el8ost.noarch.rpm openstack-manila-share-9.1.2-0.20200405045746.f071a43.el8ost.noarch.rpm python3-manila-9.1.2-0.20200405045746.f071a43.el8ost.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-9543 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXr00pdzjgjWX9erEAQiYfw//YzUt5qzgY5l4Vsq51VeftRuHBWeOnRbM njsAMWiLxqffF1DFbJ4cR66e+1dtUjLfkLj6KJDb9QxBjiAK9vlhsyWz6mzPVhv/ EbjZy64qQU5JW9ad+eT5e3kCls17EUneM68vmI5YLuo2BqiTrS0f4YxtQ2lq67kC qTRyJUDHkL1Hh0vOspZt8g9uLA1X+mFk5rdB0W1WxS/VcqId+XoT4wVhI8JTyHfD uYovug7rJ4VMqpTZTaHowQDFpihqgYFypCvLJXvj0XNjJsb+21OxFsx6D/l3Rr6N bdQRNMlhjEY4q0ZbZm02acQ2XyBDyzPfYiCwbm1kSx89T7gHL++R2yYWSs6Scy7p kR/ARmzO5S/wQ2C94bb7oyDdOu1LgHLIZ37fgH1IYXsUU1vzJFoHf2gS6E/UDDuB vE3Z/+/Vo2QeP2NKCX2fRLukUX/WiCnnV8mWilYjSMJZHjcvWFfKwlZvGztQwe88 GTe6jNJmG2aSOxlmy9vm+1jX4tQERAMG5r112w8E6ZPCch0V9BYbeTtUC5/K+uch 3WbiXzt7ET6ONUwqqVQe1h6L3lLsm97XRMweK4RJlw4kh2VqElJP03vRdSEy5H1w BiArjFab++9Il5akdoLopKYsHdFH9+zzgtjKUDZNYhZHG61S0LQF90RrHBbXaWn2 GlHm2eMm9dw=KkVq -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Red Hat Deploys Important Security Patch for openstack-magnum in OpenStack Platform 16 to tackle significant vulnerabilities.. openstack manila security, red hat advisory, platform updates. . LinuxSecurity.com Team

Calendar 2 May 14, 2020 Red Hat
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisoryremote accesslftp

Scientific Linux SL7: SLSA-2020-1045-1 Moderate Level lftp Threat

lftp: particular remote file names may lead to current working directory erased SL7 x86_64 lftp-4.4.8-12.el7.x86_64.rpm lftp-4.4.8-12.el7.i686.rpm lftp-debuginfo-4.4.8-12.el7.i686.rpm lftp-debuginfo-4.4.8-12.el7.x86_64.rpm noarch lftp-scripts-4.4.8-12.el7.noarch.rpm - Scientific Linux Development Team. Synopsis: Moderate: lftp security update Advisory ID: SLSA-2020:1045-1 Issue Date: 2020-04-07 CVE Numbers: CVE-2018-10916 -- * lftp: particular remote file names may lead to current working directory erased -- SL7 x86_64 lftp-4.4.8-12.el7.x86_64.rpm lftp-4.4.8-12.el7.i686.rpm lftp-debuginfo-4.4.8-12.el7.i686.rpm lftp-debuginfo-4.4.8-12.el7.x86_64.rpm noarch lftp-scripts-4.4.8-12.el7.noarch.rpm - Scientific Linux Development Team . Timely security patch for lftp on SL7.x systems that resolves possible directory deletion vulnerabilities through external files.. lftp security update, Scientific Linux, SL7.x advisory, remote file access, lftp data loss. . LinuxSecurity.com Team

Calendar 2 Apr 20, 2020 Scientific Linux
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here