Alerts This Week
Warning Icon 1 537
Alerts This Week
Warning Icon 1 537

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -3 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderate severitysuse

SUSE: 2023:1337-1 Moderate: glib2 and libxml2 Security Update

The container suse/sle15 was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sle15 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:1337-1 Container Tags : bci/bci-base:15.4 , bci/bci-base:15.4.27.14.55 , suse/sle15:15.4 , suse/sle15:15.4.27.14.55 Container Release : 27.14.55 Severity : moderate Type : security References : 1209713 1209714 1209918 1210135 1210411 1210412 CVE-2023-24593 CVE-2023-25180 CVE-2023-28484 CVE-2023-29469 ----------------------------------------------------------------- The container suse/sle15 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:2053-1 Released: Thu Apr 27 11:31:08 2023 Summary: Security update for libxml2 Type: security Severity: moderate References: 1209918,1210411,1210412,CVE-2023-28484,CVE-2023-29469 This update for libxml2 fixes the following issues: - CVE-2023-29469: Fixed inconsistent result when hashing empty strings (bsc#1210412). - CVE-2023-28484: Fixed NULL pointer dereference in xmlSchemaFixupComplexType (bsc#1210411). The following non-security bug was fixed: - Remove unneeded dependency (bsc#1209918). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:2060-1 Released: Thu Apr 27 17:04:25 2023 Summary: Security update for glib2 Type: security Severity: moderate References: 1209713,1209714,1210135,CVE-2023-24593,CVE-2023-25180 This update for glib2 fixes the following issues: - CVE-2023-24593: Fixed a denial of service caused by handling a malicious text-form variant (bsc#1209714). - CVE-2023-25180: Fixed a denial of service caused by malicious serialised variant (bsc#1209713). The following non-security bug was fixed: - Fixed regression on s390x (bsc#1210135,glgo#GNOME/glib!2978). The following package changes have been done: - libglib-2_0-0-2.70.5-150400.3.8.1 updated - libxml2-2-2.9.14-150400.5.16.1 updated . Updates for the SUSE container suse/sle15 have been released, focusing on vulnerabilities found in glib2 and libxml2, categorized with moderate severity.. SUSE Container Update, Security Patches, SUSE Security Advisory. . LinuxSecurity.com Team

Calendar 2 Apr 28, 2023 SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryimportantsuse

SUSE: 2023:224-1 Important: Security Update for SUSE/SLE15

The container suse/sle15 was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sle15 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:224-1 Container Tags : suse/sle15:15.2 , suse/sle15:15.2.9.5.257 Container Release : 9.5.257 Severity : important Type : security References : 1183533 1203652 1206412 1206738 CVE-2021-28153 ----------------------------------------------------------------- The container suse/sle15 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:174-1 Released: Thu Jan 26 20:52:38 2023 Summary: Security update for glib2 Type: security Severity: low References: 1183533,CVE-2021-28153 This update for glib2 fixes the following issues: - CVE-2021-28153: Fixed an issue where symlink targets would be incorrectly created as empty files (bsc#1183533). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:176-1 Released: Thu Jan 26 20:56:20 2023 Summary: Recommended update for permissions Type: recommended Severity: moderate References: 1206738 This update for permissions fixes the following issues: Update to version 20181225: * Backport postfix permissions to SLE 15 SP2 (bsc#1206738) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:181-1 Released: Thu Jan 26 21:55:43 2023 Summary: Recommended update for procps Type: recommended Severity: low References: 1206412 This update for procps fixes the following issues: - Improve memory handling/usage (bsc#1206412) - Make sure that correct library version is installed (bsc#1206412) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:188-1 Released: Fri Jan 27 12:07:19 2023 Summary: Recommended update forzlib Type: recommended Severity: important References: 1203652 This update for zlib fixes the following issues: - Follow up fix for bug bsc#1203652 due to libxml2 issues The following package changes have been done: - libglib-2_0-0-2.62.6-150200.3.10.1 updated - libprocps7-3.3.15-150000.7.28.1 updated - libz1-1.2.11-150000.3.39.1 updated - permissions-20181225-150200.23.23.1 updated - procps-3.3.15-150000.7.28.1 updated . SUSE Container Patch Notice: suse/sle15 updates contain security enhancements and fixes across multiple elements.. SUSE Container Update, Security Advisory, SUSE-SLE15. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 28, 2023 Important SuSE
Banner 4 1028x280 1708121825 1771600306
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderate severityperl update

SUSE: 2022:819-1 Moderate: bci/openjdk Security Update Advisory

The container bci/openjdk was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/openjdk ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:819-1 Container Tags : bci/openjdk:11 , bci/openjdk:11-16.5 , bci/openjdk:latest Container Release : 16.5 Severity : moderate Type : security References : 1183533 1193489 CVE-2021-28153 ----------------------------------------------------------------- The container bci/openjdk was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:1451-1 Released: Thu Apr 28 10:47:22 2022 Summary: Recommended update for perl Type: recommended Severity: moderate References: 1193489 This update for perl fixes the following issues: - Fix Socket::VERSION evaluation and stabilize Socket:VERSION comparisons (bsc#1193489) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:1455-1 Released: Thu Apr 28 11:31:51 2022 Summary: Security update for glib2 Type: security Severity: low References: 1183533,CVE-2021-28153 This update for glib2 fixes the following issues: - CVE-2021-28153: Fixed an issue where symlink targets would be incorrectly created as empty files (bsc#1183533). The following package changes have been done: - libglib-2_0-0-2.62.6-150200.3.9.1 updated - perl-base-5.26.1-150300.17.3.1 updated - container:sles15-image-15.0.0-17.14.6 updated . SUSE Container Refresh for bci/python incorporates fixes for significant security vulnerabilities alongside updates to glibc and ruby.. SUSE Container Update,bci/openjdk,security patch,perl update,glib2 fix. . LinuxSecurity.com Team

Calendar 2 Apr 29, 2022 SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorysecurity issuemoderate severity

SUSE: 2022:795-1 Moderate Security Update for suse/sle15 Released

The container suse/sle15 was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sle15 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:795-1 Container Tags : suse/sle15:15.2 , suse/sle15:15.2.9.5.129 Container Release : 9.5.129 Severity : moderate Type : security References : 1183533 1193489 CVE-2021-28153 ----------------------------------------------------------------- The container suse/sle15 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:1452-1 Released: Thu Apr 28 10:48:06 2022 Summary: Recommended update for perl Type: recommended Severity: moderate References: 1193489 This update for perl fixes the following issues: - Fix Socket::VERSION evaluation and stabilize Socket:VERSION comparisons (bsc#1193489) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:1455-1 Released: Thu Apr 28 11:31:51 2022 Summary: Security update for glib2 Type: security Severity: low References: 1183533,CVE-2021-28153 This update for glib2 fixes the following issues: - CVE-2021-28153: Fixed an issue where symlink targets would be incorrectly created as empty files (bsc#1183533). The following package changes have been done: - libglib-2_0-0-2.62.6-150200.3.9.1 updated - perl-base-5.26.1-150000.7.15.1 updated . Stay updated on critical patches and security vulnerabilities for SUSE/SLE15 containers; enhance system integrity and safeguard data effectively. SUSE Container, Security Advisory, glib2 Fixes, perl Update, Container Update. . LinuxSecurity.com Team

Calendar 2 Apr 29, 2022 SuSE
Banner 4 1028x280 1708121825 1771600306
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorylow severitysymlink issue

SUSE: 2022:1455-1 Low Severity: glib2 Symlink Issue Advisory

An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for glib2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:1455-1 Rating: low References: #1183533 Cross-References: CVE-2021-28153 CVSS scores: CVE-2021-28153 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-28153 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N Affected Products: SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Micro 5.0 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Realtime Extension 15-SP2 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for glib2 fixes the following issues: - CVE-2021-28153: Fixed an issue where symlink targets would be incorrectly created as empty files (bsc#1183533). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-1455=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-1455=1 - SUSE Linux Enterprise Realtime Extension 15-SP2: zypper in -t patch SUSE-SLE-Product-RT-15-SP2-2022-1455=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-1455=1 - SUSE Linux Enterprise Micro 5.2: zypper in -t patch SUSE-SUSE-MicroOS-5.2-2022-1455=1 - SUSE Linux Enterprise Micro 5.1: zypper in -t patch SUSE-SUSE-MicroOS-5.1-2022-1455=1 - SUSE Linux Enterprise Micro 5.0: zypper in -t patch SUSE-SUSE-MicroOS-5.0-2022-1455=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): glib2-tests-2.62.6-150200.3.9.1 glib2-tests-debuginfo-2.62.6-150200.3.9.1 libgio-fam-2.62.6-150200.3.9.1 libgio-fam-debuginfo-2.62.6-150200.3.9.1 - openSUSE Leap 15.4 (x86_64): libgio-fam-32bit-2.62.6-150200.3.9.1 libgio-fam-32bit-debuginfo-2.62.6-150200.3.9.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): glib2-debugsource-2.62.6-150200.3.9.1 glib2-devel-2.62.6-150200.3.9.1 glib2-devel-debuginfo-2.62.6-150200.3.9.1 glib2-devel-static-2.62.6-150200.3.9.1 glib2-tests-2.62.6-150200.3.9.1 glib2-tests-debuginfo-2.62.6-150200.3.9.1 glib2-tools-2.62.6-150200.3.9.1 glib2-tools-debuginfo-2.62.6-150200.3.9.1 libgio-2_0-0-2.62.6-150200.3.9.1 libgio-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgio-fam-2.62.6-150200.3.9.1 libgio-fam-debuginfo-2.62.6-150200.3.9.1 libglib-2_0-0-2.62.6-150200.3.9.1 libglib-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgmodule-2_0-0-2.62.6-150200.3.9.1 libgmodule-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgobject-2_0-0-2.62.6-150200.3.9.1 libgobject-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgthread-2_0-0-2.62.6-150200.3.9.1 libgthread-2_0-0-debuginfo-2.62.6-150200.3.9.1 - openSUSE Leap 15.3 (x86_64): glib2-devel-32bit-2.62.6-150200.3.9.1 glib2-devel-32bit-debuginfo-2.62.6-150200.3.9.1 glib2-tools-32bit-2.62.6-150200.3.9.1 glib2-tools-32bit-debuginfo-2.62.6-150200.3.9.1 libgio-2_0-0-32bit-2.62.6-150200.3.9.1 libgio-2_0-0-32bit-debuginfo-2.62.6-150200.3.9.1 libgio-fam-32bit-2.62.6-150200.3.9.1 libgio-fam-32bit-debuginfo-2.62.6-150200.3.9.1 libglib-2_0-0-32bit-2.62.6-150200.3.9.1 libglib-2_0-0-32bit-debuginfo-2.62.6-150200.3.9.1 libgmodule-2_0-0-32bit-2.62.6-150200.3.9.1 libgmodule-2_0-0-32bit-debuginfo-2.62.6-150200.3.9.1 libgobject-2_0-0-32bit-2.62.6-150200.3.9.1 libgobject-2_0-0-32bit-debuginfo-2.62.6-150200.3.9.1 libgthread-2_0-0-32bit-2.62.6-150200.3.9.1 libgthread-2_0-0-32bit-debuginfo-2.62.6-150200.3.9.1 - openSUSE Leap 15.3 (noarch): gio-branding-upstream-2.62.6-150200.3.9.1 glib2-lang-2.62.6-150200.3.9.1 - SUSE Linux Enterprise Realtime Extension 15-SP2 (noarch): glib2-lang-2.62.6-150200.3.9.1 - SUSE Linux Enterprise Realtime Extension 15-SP2 (x86_64): glib2-debugsource-2.62.6-150200.3.9.1 glib2-devel-2.62.6-150200.3.9.1 glib2-devel-debuginfo-2.62.6-150200.3.9.1 glib2-tools-2.62.6-150200.3.9.1 glib2-tools-debuginfo-2.62.6-150200.3.9.1 libgio-2_0-0-2.62.6-150200.3.9.1 libgio-2_0-0-32bit-2.62.6-150200.3.9.1 libgio-2_0-0-32bit-debuginfo-2.62.6-150200.3.9.1 libgio-2_0-0-debuginfo-2.62.6-150200.3.9.1 libglib-2_0-0-2.62.6-150200.3.9.1 libglib-2_0-0-32bit-2.62.6-150200.3.9.1 libglib-2_0-0-32bit-debuginfo-2.62.6-150200.3.9.1 libglib-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgmodule-2_0-0-2.62.6-150200.3.9.1 libgmodule-2_0-0-32bit-2.62.6-150200.3.9.1 libgmodule-2_0-0-32bit-debuginfo-2.62.6-150200.3.9.1 libgmodule-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgobject-2_0-0-2.62.6-150200.3.9.1 libgobject-2_0-0-32bit-2.62.6-150200.3.9.1 libgobject-2_0-0-32bit-debuginfo-2.62.6-150200.3.9.1 libgobject-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgthread-2_0-0-2.62.6-150200.3.9.1 libgthread-2_0-0-debuginfo-2.62.6-150200.3.9.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): glib2-debugsource-2.62.6-150200.3.9.1 glib2-devel-2.62.6-150200.3.9.1 glib2-devel-debuginfo-2.62.6-150200.3.9.1 glib2-tools-2.62.6-150200.3.9.1 glib2-tools-debuginfo-2.62.6-150200.3.9.1 libgio-2_0-0-2.62.6-150200.3.9.1 libgio-2_0-0-debuginfo-2.62.6-150200.3.9.1 libglib-2_0-0-2.62.6-150200.3.9.1 libglib-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgmodule-2_0-0-2.62.6-150200.3.9.1 libgmodule-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgobject-2_0-0-2.62.6-150200.3.9.1 libgobject-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgthread-2_0-0-2.62.6-150200.3.9.1 libgthread-2_0-0-debuginfo-2.62.6-150200.3.9.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (x86_64): libgio-2_0-0-32bit-2.62.6-150200.3.9.1 libgio-2_0-0-32bit-debuginfo-2.62.6-150200.3.9.1 libglib-2_0-0-32bit-2.62.6-150200.3.9.1 libglib-2_0-0-32bit-debuginfo-2.62.6-150200.3.9.1 libgmodule-2_0-0-32bit-2.62.6-150200.3.9.1 libgmodule-2_0-0-32bit-debuginfo-2.62.6-150200.3.9.1 libgobject-2_0-0-32bit-2.62.6-150200.3.9.1 libgobject-2_0-0-32bit-debuginfo-2.62.6-150200.3.9.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (noarch): glib2-lang-2.62.6-150200.3.9.1 - SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64): glib2-debugsource-2.62.6-150200.3.9.1 glib2-tools-2.62.6-150200.3.9.1 glib2-tools-debuginfo-2.62.6-150200.3.9.1 libgio-2_0-0-2.62.6-150200.3.9.1 libgio-2_0-0-debuginfo-2.62.6-150200.3.9.1 libglib-2_0-0-2.62.6-150200.3.9.1 libglib-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgmodule-2_0-0-2.62.6-150200.3.9.1 libgmodule-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgobject-2_0-0-2.62.6-150200.3.9.1 libgobject-2_0-0-debuginfo-2.62.6-150200.3.9.1 - SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64): glib2-debugsource-2.62.6-150200.3.9.1 glib2-tools-2.62.6-150200.3.9.1 glib2-tools-debuginfo-2.62.6-150200.3.9.1 libgio-2_0-0-2.62.6-150200.3.9.1 libgio-2_0-0-debuginfo-2.62.6-150200.3.9.1 libglib-2_0-0-2.62.6-150200.3.9.1 libglib-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgmodule-2_0-0-2.62.6-150200.3.9.1 libgmodule-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgobject-2_0-0-2.62.6-150200.3.9.1 libgobject-2_0-0-debuginfo-2.62.6-150200.3.9.1 - SUSE Linux Enterprise Micro 5.0 (aarch64 x86_64): glib2-debugsource-2.62.6-150200.3.9.1 glib2-tools-2.62.6-150200.3.9.1 glib2-tools-debuginfo-2.62.6-150200.3.9.1 libgio-2_0-0-2.62.6-150200.3.9.1 libgio-2_0-0-debuginfo-2.62.6-150200.3.9.1 libglib-2_0-0-2.62.6-150200.3.9.1 libglib-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgmodule-2_0-0-2.62.6-150200.3.9.1 libgmodule-2_0-0-debuginfo-2.62.6-150200.3.9.1 libgobject-2_0-0-2.62.6-150200.3.9.1 libgobject-2_0-0-debuginfo-2.62.6-150200.3.9.1 References: https://www.suse.com/security/cve/CVE-2021-28153.html https://bugzilla.suse.com/1183533 . Patch released for glib2 addressing minor symlink vulnerability on SUSE systems. Refer to the advisory for guidance on installation procedures.. SUSE Security Update, glib2 Fix, Linux Enterprise Security. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Apr 28, 2022 Low SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorysecurity updateinteger overflow

SUSE: 2021:0785-3 Critical: glibc Buffer Overflow Patch

An update that fixes two vulnerabilities is now available. . SUSE Security Update: Security update for glib2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:0778-1 Rating: important References: #1182328 #1182362 Cross-References: CVE-2021-27218 CVE-2021-27219 CVSS scores: CVE-2021-27218 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-27218 (SUSE): 5 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N CVE-2021-27219 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-27219 (SUSE): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H Affected Products: SUSE MicroOS 5.0 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP2 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for glib2 fixes the following issues: - CVE-2021-27218: g_byte_array_new_take takes a gsize as length but stores in a guint, this patch will refuse if the length is larger than guint. (bsc#1182328) - CVE-2021-27219: g_memdup takes a guint as parameter and sometimes leads into an integer overflow, so add a g_memdup2 function which uses gsize to replace it. (bsc#1182362) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE MicroOS 5.0: zypper in -t patch SUSE-SUSE-MicroOS-5.0-2021-778=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2021-778=1 - SUSE Linux Enterprise Module for Basesystem 15-SP2: zypper in -t patchSUSE-SLE-Module-Basesystem-15-SP2-2021-778=1 Package List: - SUSE MicroOS 5.0 (aarch64 x86_64): glib2-debugsource-2.62.6-3.6.1 glib2-tools-2.62.6-3.6.1 glib2-tools-debuginfo-2.62.6-3.6.1 libgio-2_0-0-2.62.6-3.6.1 libgio-2_0-0-debuginfo-2.62.6-3.6.1 libglib-2_0-0-2.62.6-3.6.1 libglib-2_0-0-debuginfo-2.62.6-3.6.1 libgmodule-2_0-0-2.62.6-3.6.1 libgmodule-2_0-0-debuginfo-2.62.6-3.6.1 libgobject-2_0-0-2.62.6-3.6.1 libgobject-2_0-0-debuginfo-2.62.6-3.6.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): glib2-debugsource-2.62.6-3.6.1 glib2-devel-2.62.6-3.6.1 glib2-devel-debuginfo-2.62.6-3.6.1 glib2-tools-2.62.6-3.6.1 glib2-tools-debuginfo-2.62.6-3.6.1 libgio-2_0-0-2.62.6-3.6.1 libgio-2_0-0-debuginfo-2.62.6-3.6.1 libglib-2_0-0-2.62.6-3.6.1 libglib-2_0-0-debuginfo-2.62.6-3.6.1 libgmodule-2_0-0-2.62.6-3.6.1 libgmodule-2_0-0-debuginfo-2.62.6-3.6.1 libgobject-2_0-0-2.62.6-3.6.1 libgobject-2_0-0-debuginfo-2.62.6-3.6.1 libgthread-2_0-0-2.62.6-3.6.1 libgthread-2_0-0-debuginfo-2.62.6-3.6.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (noarch): glib2-lang-2.62.6-3.6.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (x86_64): libgio-2_0-0-32bit-2.62.6-3.6.1 libgio-2_0-0-32bit-debuginfo-2.62.6-3.6.1 libglib-2_0-0-32bit-2.62.6-3.6.1 libglib-2_0-0-32bit-debuginfo-2.62.6-3.6.1 libgmodule-2_0-0-32bit-2.62.6-3.6.1 libgmodule-2_0-0-32bit-debuginfo-2.62.6-3.6.1 libgobject-2_0-0-32bit-2.62.6-3.6.1 libgobject-2_0-0-32bit-debuginfo-2.62.6-3.6.1 - SUSE Linux Enterprise Module for Basesystem 15-SP2 (aarch64 ppc64le s390x x86_64): glib2-debugsource-2.62.6-3.6.1 glib2-devel-2.62.6-3.6.1 glib2-devel-debuginfo-2.62.6-3.6.1 glib2-tools-2.62.6-3.6.1 glib2-tools-debuginfo-2.62.6-3.6.1 libgio-2_0-0-2.62.6-3.6.1 libgio-2_0-0-debuginfo-2.62.6-3.6.1 libglib-2_0-0-2.62.6-3.6.1 libglib-2_0-0-debuginfo-2.62.6-3.6.1 libgmodule-2_0-0-2.62.6-3.6.1 libgmodule-2_0-0-debuginfo-2.62.6-3.6.1 libgobject-2_0-0-2.62.6-3.6.1 libgobject-2_0-0-debuginfo-2.62.6-3.6.1 libgthread-2_0-0-2.62.6-3.6.1 libgthread-2_0-0-debuginfo-2.62.6-3.6.1 - SUSE Linux Enterprise Module for Basesystem 15-SP2 (x86_64): libgio-2_0-0-32bit-2.62.6-3.6.1 libgio-2_0-0-32bit-debuginfo-2.62.6-3.6.1 libglib-2_0-0-32bit-2.62.6-3.6.1 libglib-2_0-0-32bit-debuginfo-2.62.6-3.6.1 libgmodule-2_0-0-32bit-2.62.6-3.6.1 libgmodule-2_0-0-32bit-debuginfo-2.62.6-3.6.1 libgobject-2_0-0-32bit-2.62.6-3.6.1 libgobject-2_0-0-32bit-debuginfo-2.62.6-3.6.1 - SUSE Linux Enterprise Module for Basesystem 15-SP2 (noarch): glib2-lang-2.62.6-3.6.1 References: https://www.suse.com/security/cve/CVE-2021-27218.html https://www.suse.com/security/cve/CVE-2021-27219.html https://bugzilla.suse.com/1182328 https://bugzilla.suse.com/1182362 . Stay informed about the most recent security patch for glib2 that addresses two critical vulnerabilities impacting SUSE systems.. SUSE Security Update, glib2 issue fix, important updates. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 12, 2021 Important SuSE
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here