Stay Vigilant with Timely Linux Security Advisories

Refine advisories

X Clear Filters

Critical (2)

Important (1)

Dovecot (141)

debian (8034)

denial of service (18299)

important (27751)

information leak (1384)

security advisory (114945)

critical (18622)

gsasl (5)

security update (9017)

SuSE (3977)

Debian LTS (1)

OpenSUSE (1)

SuSE (3)

Published Date Range

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.42%)

78.42% votes

Formal training or courses (4.32%)

4.32% votes

A job that required it (4.89%)

4.89% votes

Other (12.37%)

12.37% votes

[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350

bottom 200

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Banner 2 1028x280 1708121730 1 1771599631

Explore Latest Linux Security advisories

We found -4 articles for you...

202

security advisorymoderateOpenSUSE

openSUSE 15.4 Python-Requests Moderate File Extraction Issue 2026-1647-1

An update that solves one vulnerability can now be installed.. # Security update for python-requests Announcement ID: SUSE-SU-2026:1647-1 Release Date: 2026-04-28T18:03:12Z Rating: moderate References: * bsc#1260589 Cross-References: * CVE-2026-25645 CVSS scores: * CVE-2026-25645 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-25645 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-25645 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N * CVE-2026-25645 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.6 * Public Cloud Module 15-SP4 * Python 3 Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for python-requests fixes the following issues: * CVE-2026-25645: `extract_zipped_paths()` uses predictable filenames when extracting files from zip archives and reuses target files that already exist without validation (bsc#1260589). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-1647=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2026-1647=1 * Public Cloud Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2026-1647=1 * Python 3 Module 15-SP7 zypper in -t patchSUSE-SLE-Module-Python3-15-SP7-2026-1647=1 ## Package List: * openSUSE Leap 15.4 (noarch) * python311-requests-2.31.0-150400.6.21.1 * openSUSE Leap 15.6 (noarch) * python311-requests-2.31.0-150400.6.21.1 * Public Cloud Module 15-SP4 (noarch) * python311-requests-2.31.0-150400.6.21.1 * Python 3 Module 15-SP7 (noarch) * python311-requests-2.31.0-150400.6.21.1 ## References: * https://www.suse.com/security/cve/CVE-2026-25645.html * https://bugzilla.suse.com/show_bug.cgi?id=1260589 . Update available for openSUSE addressing CVE-2026-25645 in python-requests with moderate severity threat level.. openSUSE python-requests security update CVE-2026-25645. . LinuxSecurity.com Team

Apr 29, 2026 OpenSUSE

100

security advisorymoderateSuSE

SUSE Python-Requests Moderate Extraction Issue CVE-2026-25645 2026-1647-1

An update that solves one vulnerability can now be installed.. # Security update for python-requests Announcement ID: SUSE-SU-2026:1647-1 Release Date: 2026-04-28T18:03:12Z Rating: moderate References: * bsc#1260589 Cross-References: * CVE-2026-25645 CVSS scores: * CVE-2026-25645 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-25645 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-25645 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N * CVE-2026-25645 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.6 * Public Cloud Module 15-SP4 * Python 3 Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for python-requests fixes the following issues: * CVE-2026-25645: `extract_zipped_paths()` uses predictable filenames when extracting files from zip archives and reuses target files that already exist without validation (bsc#1260589). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-1647=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2026-1647=1 * Public Cloud Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2026-1647=1 * Python 3 Module 15-SP7 zypper in -t patchSUSE-SLE-Module-Python3-15-SP7-2026-1647=1 ## Package List: * openSUSE Leap 15.4 (noarch) * python311-requests-2.31.0-150400.6.21.1 * openSUSE Leap 15.6 (noarch) * python311-requests-2.31.0-150400.6.21.1 * Public Cloud Module 15-SP4 (noarch) * python311-requests-2.31.0-150400.6.21.1 * Python 3 Module 15-SP7 (noarch) * python311-requests-2.31.0-150400.6.21.1 ## References: * https://www.suse.com/security/cve/CVE-2026-25645.html * https://bugzilla.suse.com/show_bug.cgi?id=1260589 . Python-Requests security update addresses CVE-2026-25645 in SUSE distributions, fixing extraction file validation problems.. SUSE python-requests security update moderate CVE-2026-25645. . LinuxSecurity.com Team

Apr 29, 2026 SuSE

100

security advisorymoderateSuSE

Fedora OS 38 Python Libraries Moderate Risk Alert FEDORA-ALERT-2035-51205-9

An update that solves one vulnerability can now be installed.. # Security update for python-requests Announcement ID: SUSE-SU-2026:21063-1 Release Date: 2026-04-08T14:11:11Z Rating: moderate References: * bsc#1260589 Cross-References: * CVE-2026-25645 CVSS scores: * CVE-2026-25645 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-25645 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-25645 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N * CVE-2026-25645 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves one vulnerability can now be installed. ## Description: This update for python-requests fixes the following issue: * CVE-2026-25645: `extract_zipped_paths()` uses predictable filenames when extracting files from zip archives and reuses target files that already exist without validation (bsc#1260589). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-655=1 ## Package List: * SUSE Linux Micro 6.0 (noarch) * python311-requests-2.32.3-3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-25645.html * https://bugzilla.suse.com/show_bug.cgi?id=1260589 . SUSE update addresses moderate risk issue in python-requests affecting file extraction and validation.. SUSE Python Requests Security Update Moderate CVE-2026-25645. . Severity: Important. LinuxSecurity.com Team

Apr 13, 2026 •Important SuSE

100

security advisorycriticalauthentication bypass

SUSE Security Update 2024:2801-2 Critical: Docker Auth Bypass & File Issues

* bsc#1214855 * bsc#1219267 * bsc#1219268 * bsc#1219438 * bsc#1221916 . # Security update for docker Announcement ID: SUSE-SU-2024:2801-2 Rating: critical References: * bsc#1214855 * bsc#1219267 * bsc#1219268 * bsc#1219438 * bsc#1221916 * bsc#1223409 * bsc#1228324 Cross-References: * CVE-2024-23651 * CVE-2024-23652 * CVE-2024-23653 * CVE-2024-41110 CVSS scores: * CVE-2024-23651 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23651 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2024-23652 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2024-23652 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2024-23653 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-23653 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41110 ( SUSE ): 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * Containers Module 15-SP5 * Containers Module 15-SP6 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * openSUSE Leap Micro 5.5 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux EnterpriseReal Time 15 SP6 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves four vulnerabilities and has three security fixes can now be installed. ## Description: RETRACTED: This update for docker fixes the following issues: * CVE-2024-23651: Fixed arbitrary files write due to race condition on mounts (bsc#1219267) * CVE-2024-23652: Fixed insufficient validation of parent directory on mount (bsc#1219268) * CVE-2024-23653: Fixed insufficient validation on entitlement on container creation via buildkit (bsc#1219438) * CVE-2024-41110: A Authz zero length regression that could lead to authentication bypass was fixed (bsc#1228324) Other fixes: * Update to Docker 25.0.6-ce. See upstream changelog online at * Update to Docker 25.0.5-ce (bsc#1223409) * Fix BuildKit's symlink resolution logic to correctly handle non-lexical symlinks. (bsc#1221916) * Write volume options atomically so sudden system crashes won't result in future Docker starts failing due to empty files. (bsc#1214855) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap Micro 5.5 zypper in -t patch openSUSE-Leap-Micro-5.5-2024-2801=1 * openSUSE Leap 15.5 zypper in -t patchopenSUSE-SLE-15.5-2024-2801=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2801=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2801=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2801=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2801=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2801=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-2801=1 * Containers Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Containers-15-SP5-2024-2801=1 * Containers Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Containers-15-SP6-2024-2801=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2801=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2801=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2801=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2801=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2801=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2801=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2801=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2801=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2801=1 * SUSE Linux Enterprise Server for SAP Applications 15SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2801=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2801=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2801=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2801=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2801=1 ## Package List: * openSUSE Leap Micro 5.5 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * openSUSE Leap 15.5 (noarch) * docker-fish-completion-25.0.6_ce-150000.203.1 * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-zsh-completion-25.0.6_ce-150000.203.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * openSUSE Leap 15.6 (noarch) * docker-fish-completion-25.0.6_ce-150000.203.1 * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * docker-zsh-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) *docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * Containers Module 15-SP5 (aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * Containers Module 15-SP5 (noarch) * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * Containers Module 15-SP6 (aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * Containers Module 15-SP6 (noarch) * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * docker-fish-completion-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2(aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * docker-fish-completion-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * docker-fish-completion-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * docker-rootless-extras-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Enterprise Storage 7.1 (noarch) *docker-fish-completion-25.0.6_ce-150000.203.1 * docker-bash-completion-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * docker-25.0.6_ce-150000.203.1 * docker-debuginfo-25.0.6_ce-150000.203.1 ## References: * https://www.suse.com/security/cve/CVE-2024-23651.html * https://www.suse.com/security/cve/CVE-2024-23652.html * https://www.suse.com/security/cve/CVE-2024-23653.html * https://www.suse.com/security/cve/CVE-2024-41110.html * https://bugzilla.suse.com/show_bug.cgi?id=1214855 * https://bugzilla.suse.com/show_bug.cgi?id=1219267 * https://bugzilla.suse.com/show_bug.cgi?id=1219268 * https://bugzilla.suse.com/show_bug.cgi?id=1219438 * https://bugzilla.suse.com/show_bug.cgi?id=1221916 * https://bugzilla.suse.com/show_bug.cgi?id=1223409 * https://bugzilla.suse.com/show_bug.cgi?id=1228324 . Urgent docker security patch for SUSE Linux tackling various vulnerabilities related to file permissions and user authentication. Ensure your systems are secure.. SUSE Linux,Docker Security,Critical Update,File Validation,Authentication Bypass. . Severity: Critical. LinuxSecurity.com Team

Aug 07, 2024 •Critical SuSE

197

security advisorycritical issuesecurity update

Debian Stretch: DLA-2752-1 Critical: squashfs-tools File Validation Issue

An issue has been found in squashfs-tools, a tool to create and append to squashfs filesystems. As unsquashfs did not validate all filepaths, it would allow writing . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2752-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Thorsten Alteholz August 31, 2021 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : squashfs-tools Version : 1:4.3-3+deb9u2 CVE ID : CVE-2021-40153 An issue has been found in squashfs-tools, a tool to create and append to squashfs filesystems. As unsquashfs did not validate all filepaths, it would allow writing outside of the original destination. For Debian 9 stretch, this problem has been fixed in version 1:4.3-3+deb9u2. We recommend that you upgrade your squashfs-tools packages. For the detailed security status of squashfs-tools please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/squashfs-tools Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Debian LTS Advisory DLA-2753-1: Resolution for gzip-tools security flaw allowing unauthorized file modifications.. Squashfs Tools, Security Advisory, Debian Upgrade. . Severity: Critical. LinuxSecurity.com Team

Aug 31, 2021 •Critical Debian LTS

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.42%)

78.42% votes

Formal training or courses (4.32%)

4.32% votes

A job that required it (4.89%)

4.89% votes

Other (12.37%)

12.37% votes

bottom 200

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

openSUSE 15.4 Python-Requests Moderate File Extraction Issue 2026-1647-1

SUSE Python-Requests Moderate Extraction Issue CVE-2026-25645 2026-1647-1

Fedora OS 38 Python Libraries Moderate Risk Alert FEDORA-ALERT-2035-51205-9

SUSE Security Update 2024:2801-2 Critical: Docker Auth Bypass & File Issues

Debian Stretch: DLA-2752-1 Critical: squashfs-tools File Validation Issue

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!