Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorypatchimportant

SUSE: 2022:14888-2 Critical: OpenSSL Heartbeat Vulnerability Patch

An update that fixes four vulnerabilities is now available. . SUSE Security Update: Security update for strongswan ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:14887-1 Rating: important References: #1107874 #1109845 #1194471 Cross-References: CVE-2018-16151 CVE-2018-16152 CVE-2018-17540 CVE-2021-45079 CVSS scores: CVE-2018-16151 (NVD) : 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVE-2018-16151 (SUSE): 4.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2018-16152 (NVD) : 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVE-2018-16152 (SUSE): 4.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2018-17540 (NVD) : 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2018-17540 (SUSE): 7 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H CVE-2021-45079 (NVD) : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVE-2021-45079 (SUSE): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L Affected Products: SUSE Linux Enterprise Debuginfo 11-SP3 SUSE Linux Enterprise Debuginfo 11-SP4 SUSE Linux Enterprise Point of Sale 11-SP3 SUSE Linux Enterprise Server 11-SP4-LTSS ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: This update for strongswan fixes the following issues: - CVE-2018-16151: Fixed flaws in gmp plugin that could lead to authorization bypass. (bsc#1107874) - CVE-2018-16152: Fixed flaws in gmp plugin that could lead to authorization bypass. (bsc#1107874) - CVE-2018-17540: Fixed insufficient input validation in gmp plugin. (bsc#1109845) - CVE-2021-45079: Fixed authentication bypass in EAP authentication. (bsc#1194471) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11-SP4-LTSS: zypper in -t patch slessp4-strongswan-14887=1 - SUSE Linux Enterprise Point of Sale 11-SP3: zypper in -t patch sleposp3-strongswan-14887=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-strongswan-14887=1 - SUSE Linux Enterprise Debuginfo 11-SP3: zypper in -t patch dbgsp3-strongswan-14887=1 Package List: - SUSE Linux Enterprise Server 11-SP4-LTSS (i586 ppc64 s390x x86_64): strongswan-4.4.0-6.36.12.1 strongswan-doc-4.4.0-6.36.12.1 - SUSE Linux Enterprise Point of Sale 11-SP3 (i586): strongswan-4.4.0-6.36.12.1 strongswan-doc-4.4.0-6.36.12.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ppc64 s390x x86_64): strongswan-debuginfo-4.4.0-6.36.12.1 strongswan-debugsource-4.4.0-6.36.12.1 - SUSE Linux Enterprise Debuginfo 11-SP3 (i586 s390x x86_64): strongswan-debuginfo-4.4.0-6.36.12.1 strongswan-debugsource-4.4.0-6.36.12.1 References: https://www.suse.com/security/cve/CVE-2018-16151.html https://www.suse.com/security/cve/CVE-2018-16152.html https://www.suse.com/security/cve/CVE-2018-17540.html https://www.suse.com/security/cve/CVE-2021-45079.html https://bugzilla.suse.com/1107874 https://bugzilla.suse.com/1109845 https://bugzilla.suse.com/1194471 . An update has resolved four vulnerabilities in strongswan, highlighting an authentication bypass and input validation flaws. Follow the instructions below to apply these patches. strongswan Fix, SUSE Security Patch, Authentication Bypass Fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 18, 2022 Important SuSE
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorysecurity issueDebian

Debian LTS: DLA-1522-1 StrongSwan Security Fix for GMP Plugin Issues

Sze Yiu Chau and his team from Purdue University and The University of Iowa found several security issues in the gmp plugin for strongSwan, an IKE/IPsec suite. . Package : strongswan Version : 5.2.1-6+deb8u7 CVE ID : CVE-2018-16151 CVE-2018-16152 Sze Yiu Chau and his team from Purdue University and The University of Iowa found several security issues in the gmp plugin for strongSwan, an IKE/IPsec suite. CVE-2018-16151 The OID parser in the ASN.1 code in gmp allows any number of random bytes after a valid OID. CVE-2018-16152 The algorithmIdentifier parser in the ASN.1 code in gmp doesn't enforce a NULL value for the optional parameter which is not used with any PKCS#1 algorithm. For Debian 8 "Jessie", these problems have been fixed in version 5.2.1-6+deb8u7. We recommend that you upgrade your strongswan packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Ubuntu LTS issued a patch for openvpn resolving various tls plugin vulnerabilities, improving safe communication.. Debian StrongSwan Update, IKE/IPsec Security Fix, GMP Plugin Issues. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 26, 2018 Critical Debian LTS
Banner 2 1028x280 1708121730 1 1771599631
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydenial of servicedebian

Debian: DSA-3962-1 Critical: strongSwan DoS Due To GMP Plugin Issue

A denial of service vulnerability was identified in strongSwan, an IKE/IPsec suite, using Google's OSS-Fuzz fuzzing project. The gmp plugin in strongSwan had insufficient input validation when verifying . - ------------------------------------------------------------------------- Debian Security Advisory DSA-3962-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Yves-Alexis Perez September 03, 2017 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : strongswan CVE ID : CVE-2017-11185 Debian Bug : 872155 A denial of service vulnerability was identified in strongSwan, an IKE/IPsec suite, using Google's OSS-Fuzz fuzzing project. The gmp plugin in strongSwan had insufficient input validation when verifying RSA signatures. This coding error could lead to a null pointer dereference, leading to process crash. For the oldstable distribution (jessie), this problem has been fixed in version 5.2.1-6+deb8u5. For the stable distribution (stretch), this problem has been fixed in version 5.5.1-4+deb9u1. For the testing distribution (buster), this problem has been fixed in version 5.6.0-1. For the unstable distribution (sid), this problem has been fixed in version 5.6.0-1. We recommend that you upgrade your strongswan packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Ubuntu Security Notice USN-3962-1 announces an essential OpenSSH patch addressing a serious vulnerability. Keep your systems secured!. strongSwan Denial Of Service, Debian Security, IKE/IPsec Suite, Input Validation Issue. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 03, 2017 Critical Debian
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorysecurity issueimportant

openSUSE 12.1: Important Security Update for Strongswan CVE-2012-2388

An update that fixes one vulnerability is now available.. openSUSE Security Update: update for strongswan ______________________________________________________________________________ Announcement ID: openSUSE-SU-2012:0691-1 Rating: important References: #761325 Cross-References: CVE-2012-2388 Affected Products: openSUSE 12.1 openSUSE 11.4 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: Strongswan's gmp plugin could treat empty RSA signature as valid ones Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 12.1: zypper in -t patch openSUSE-2012-309 - openSUSE 11.4: zypper in -t patch openSUSE-2012-309 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 12.1 (i586 x86_64): strongswan-4.5.3-5.4.1 strongswan-debugsource-4.5.3-5.4.1 strongswan-doc-4.5.3-5.4.1 strongswan-ikev1-4.5.3-5.4.1 strongswan-ikev1-debuginfo-4.5.3-5.4.1 strongswan-ikev2-4.5.3-5.4.1 strongswan-ikev2-debuginfo-4.5.3-5.4.1 strongswan-ipsec-4.5.3-5.4.1 strongswan-ipsec-debuginfo-4.5.3-5.4.1 strongswan-libs0-4.5.3-5.4.1 strongswan-libs0-debuginfo-4.5.3-5.4.1 strongswan-mysql-4.5.3-5.4.1 strongswan-mysql-debuginfo-4.5.3-5.4.1 strongswan-nm-4.5.3-5.4.1 strongswan-nm-debuginfo-4.5.3-5.4.1 strongswan-sqlite-4.5.3-5.4.1 strongswan-sqlite-debuginfo-4.5.3-5.4.1 - openSUSE 11.4 (i586 x86_64): strongswan-4.5.0-6.45.1 strongswan-debugsource-4.5.0-6.45.1 strongswan-doc-4.5.0-6.45.1 strongswan-ikev1-4.5.0-6.45.1 strongswan-ikev1-debuginfo-4.5.0-6.45.1 strongswan-ikev2-4.5.0-6.45.1 strongswan-ikev2-debuginfo-4.5.0-6.45.1 strongswan-ipsec-4.5.0-6.45.1 strongswan-ipsec-debuginfo-4.5.0-6.45.1 strongswan-libs0-4.5.0-6.45.1 strongswan-libs0-debuginfo-4.5.0-6.45.1 strongswan-mysql-4.5.0-6.45.1 strongswan-mysql-debuginfo-4.5.0-6.45.1 strongswan-nm-4.5.0-6.45.1 strongswan-nm-debuginfo-4.5.0-6.45.1 strongswan-sqlite-4.5.0-6.45.1 strongswan-sqlite-debuginfo-4.5.0-6.45.1 References: https://www.suse.com/security/cve/CVE-2012-2388.html -- . This critical patch for strongswan mitigates a vulnerability labeled CVE-2012-2388, reinforcing system security.. openSUSE Update,strongswan Security,Linux Patch,Open Source Update,System Integrity. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 04, 2012 Important OpenSUSE
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here