Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoraCVE fix

Fedora 43: buildah Security Update Fixing CVEs 2025-8f97b687c8

Rebuild for security fixes in golang. bump to v1.42.0. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-8f97b687c8 2025-11-07 00:54:39.974739+00:00 -------------------------------------------------------------------------------- Name : buildah Product : Fedora 43 Version : 1.42.0 Release : 4.fc43 URL : https://buildah.io Summary : A command line tool used for creating OCI Images Description : The buildah package provides a command line tool which can be used to * create a working container from scratch or * create a working container from an image as a starting point * mount/umount a working container's root file system for manipulation * save container's root file system layer to create a new image * delete a working container or an image -------------------------------------------------------------------------------- Update Information: Rebuild for security fixes in golang. bump to v1.42.0 -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 3 2025 Lokesh Mandvekar - 2:1.42.0-4 - Rebuild for CVE fixes * Thu Oct 23 2025 Lokesh Mandvekar - 2:1.42.0-3 - cleanup changelog * Thu Oct 23 2025 Lokesh Mandvekar - 2:1.42.0-2 - build with sequoia on f43+ * Wed Oct 22 2025 Packit - 2:1.42.0-1 - Update to 1.42.0 upstream release -------------------------------------------------------------------------------- References: [ 1 ] Bug #2408127 - CVE-2025-58189 buildah: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2408127 [ 2 ] Bug #2408694 - CVE-2025-61725 buildah: Excessive CPU consumption in ParseAddress in net/mail [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2408694 [ 3 ] Bug #2409597 - CVE-2025-61723 buildah: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2409597 [ 4 ] Bug #2410548 - CVE-2025-58185 buildah: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2410548 [ 5 ] Bug #2411446 - CVE-2025-58188 buildah: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2411446 [ 6 ] Bug #2412667 - CVE-2025-58183 buildah: Unbounded allocation when parsing GNU sparse map [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2412667 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-8f97b687c8' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Security update for Fedora 43's buildah addresses several CVE fixes to enhance golang's security integrity.. Fedora security, buildah update, golang issues, command line tool, CVE fixes. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Nov 07, 2025 Important Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorymoderateinstallation fix

Fedora 36: 2023-6d71ff268e Moderate: Syncthing 1.23.0 Installation Fix

Update to version 1.23.0. Release notes: https://github.com/syncthing/syncthing/releases/tag/v1.23.0 Additionally, this update was built with a version of golang that addresses CVE-2022-41717, and it fixes the installation of icon files.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-6d71ff268e 2023-02-04 01:16:02.743615 --------------------------------------------------------------------------------Name : syncthing Product : Fedora 36 Version : 1.23.0 Release : 2.fc36 URL : https://syncthing.net Summary : Continuous File Synchronization Description : Syncthing replaces other file synchronization services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third party and how it's transmitted over the Internet. Using syncthing, that control is returned to you. This package contains the syncthing client binary and systemd services. --------------------------------------------------------------------------------Update Information: Update to version 1.23.0. Release notes: https://github.com/syncthing/syncthing/releases/tag/v1.23.0 Additionally, this update was built with a version of golang that addresses CVE-2022-41717, and it fixes the installation of icon files. --------------------------------------------------------------------------------ChangeLog: * Thu Jan 26 2023 Justin Koh - 1.23.0-2 - Install desktop file icons to correct locations * Thu Jan 26 2023 Fabio Valentini - 1.23.0-1 - Update to version 1.23.0; Fixes RHBZ#2139321 --------------------------------------------------------------------------------References: [ 1 ] Bug #2139321 - syncthing-1.23.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2139321 --------------------------------------------------------------------------------This update can be installed with the "dnf" updateprogram. Use su -c 'dnf upgrade --advisory FEDORA-2023-6d71ff268e' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . The latest Fedora update for Syncthing addresses icon configuration challenges and boosts security by incorporating the newest Golang release.. Fedora Update, File Synchronization, Syncthing Fix. . LinuxSecurity.com Team

Calendar 2 Feb 04, 2023 Fedora
Banner 2 1028x280 1708121730 1 1771599631
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorysecurity updateDoS threat

Red Hat OpenShift 4.5.37 RHSA-2021-1016 Low Severity DoS Risk

Red Hat OpenShift Container Platform release 4.5.37 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Low: OpenShift Container Platform 4.5.37 security update Advisory ID: RHSA-2021:1016-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2021:1016 Issue date: 2021-04-13 CVE Names: CVE-2020-15586 CVE-2020-16845 ==================================================================== 1. Summary: Red Hat OpenShift Container Platform release 4.5.37 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenShift Container Platform 4.5 - noarch, ppc64le, s390x, x86_64 3. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.5.37. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHBA-2021:1015 All OpenShift Container Platform 4.6 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift Console or the CLI oc command. Instructions for upgrading a clusterare available at - -between-minor.html#understanding-upgrade-channels_updating-cluster-between - -minor Security Fix(es): * golang: data race in certain net/http servers including ReverseProxy can lead to DoS (CVE-2020-15586) * golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs (CVE-2020-16845) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For OpenShift Container Platform 4.5 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.5/html/release_notes/ocp-4-5-release-notes Details on how to access this content are available at - -cli.html 5. Bugs fixed (https://bugzilla.redhat.com/): 1856953 - CVE-2020-15586 golang: data race in certain net/http servers including ReverseProxy can lead to DoS 1867099 - CVE-2020-16845 golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs 1944040 - Placeholder bug for OCP 4.5.z rpm release 6. Package List: Red Hat OpenShift Container Platform 4.5: Source: kubefed-client-4.5.0-202002271711.git.2.3bd46d6.el7.src.rpm openshift-eventrouter-0.2-5.git7c289cc.el7.src.rpm ppc64le: kubefed-client-4.5.0-202002271711.git.2.3bd46d6.el7.ppc64le.rpm openshift-eventrouter-0.2-5.git7c289cc.el7.ppc64le.rpm openshift-eventrouter-debuginfo-0.2-5.git7c289cc.el7.ppc64le.rpm s390x: kubefed-client-4.5.0-202002271711.git.2.3bd46d6.el7.s390x.rpm openshift-eventrouter-0.2-5.git7c289cc.el7.s390x.rpm openshift-eventrouter-debuginfo-0.2-5.git7c289cc.el7.s390x.rpm x86_64: kubefed-client-4.5.0-202002271711.git.2.3bd46d6.el7.x86_64.rpm openshift-eventrouter-0.2-5.git7c289cc.el7.x86_64.rpm openshift-eventrouter-debuginfo-0.2-5.git7c289cc.el7.x86_64.rpm Red HatOpenShift Container Platform4.5: Source: ignition-0.35.1-12.rhaos4.5.gitb4d18ad.el8.src.rpm podman-1.9.3-2.rhaos4.5.el8.src.rpm skopeo-1.1.1-2.rhaos4.5.el8.src.rpm noarch: podman-docker-1.9.3-2.rhaos4.5.el8.noarch.rpm ppc64le: containers-common-1.1.1-2.rhaos4.5.el8.ppc64le.rpm ignition-0.35.1-12.rhaos4.5.gitb4d18ad.el8.ppc64le.rpm ignition-debuginfo-0.35.1-12.rhaos4.5.gitb4d18ad.el8.ppc64le.rpm ignition-debugsource-0.35.1-12.rhaos4.5.gitb4d18ad.el8.ppc64le.rpm ignition-validate-0.35.1-12.rhaos4.5.gitb4d18ad.el8.ppc64le.rpm ignition-validate-debuginfo-0.35.1-12.rhaos4.5.gitb4d18ad.el8.ppc64le.rpm podman-1.9.3-2.rhaos4.5.el8.ppc64le.rpm podman-debuginfo-1.9.3-2.rhaos4.5.el8.ppc64le.rpm podman-debugsource-1.9.3-2.rhaos4.5.el8.ppc64le.rpm podman-remote-1.9.3-2.rhaos4.5.el8.ppc64le.rpm podman-remote-debuginfo-1.9.3-2.rhaos4.5.el8.ppc64le.rpm podman-tests-1.9.3-2.rhaos4.5.el8.ppc64le.rpm skopeo-1.1.1-2.rhaos4.5.el8.ppc64le.rpm skopeo-debuginfo-1.1.1-2.rhaos4.5.el8.ppc64le.rpm skopeo-debugsource-1.1.1-2.rhaos4.5.el8.ppc64le.rpm skopeo-tests-1.1.1-2.rhaos4.5.el8.ppc64le.rpm s390x: containers-common-1.1.1-2.rhaos4.5.el8.s390x.rpm ignition-0.35.1-12.rhaos4.5.gitb4d18ad.el8.s390x.rpm ignition-debuginfo-0.35.1-12.rhaos4.5.gitb4d18ad.el8.s390x.rpm ignition-debugsource-0.35.1-12.rhaos4.5.gitb4d18ad.el8.s390x.rpm ignition-validate-0.35.1-12.rhaos4.5.gitb4d18ad.el8.s390x.rpm ignition-validate-debuginfo-0.35.1-12.rhaos4.5.gitb4d18ad.el8.s390x.rpm podman-1.9.3-2.rhaos4.5.el8.s390x.rpm podman-debuginfo-1.9.3-2.rhaos4.5.el8.s390x.rpm podman-debugsource-1.9.3-2.rhaos4.5.el8.s390x.rpm podman-remote-1.9.3-2.rhaos4.5.el8.s390x.rpm podman-remote-debuginfo-1.9.3-2.rhaos4.5.el8.s390x.rpm podman-tests-1.9.3-2.rhaos4.5.el8.s390x.rpm skopeo-1.1.1-2.rhaos4.5.el8.s390x.rpm skopeo-debuginfo-1.1.1-2.rhaos4.5.el8.s390x.rpm skopeo-debugsource-1.1.1-2.rhaos4.5.el8.s390x.rpm skopeo-tests-1.1.1-2.rhaos4.5.el8.s390x.rpm x86_64: containers-common-1.1.1-2.rhaos4.5.el8.x86_64.rpm ignition-0.35.1-12.rhaos4.5.gitb4d18ad.el8.x86_64.rpm ignition-debuginfo-0.35.1-12.rhaos4.5.gitb4d18ad.el8.x86_64.rpm ignition-debugsource-0.35.1-12.rhaos4.5.gitb4d18ad.el8.x86_64.rpm ignition-validate-0.35.1-12.rhaos4.5.gitb4d18ad.el8.x86_64.rpm ignition-validate-debuginfo-0.35.1-12.rhaos4.5.gitb4d18ad.el8.x86_64.rpm podman-1.9.3-2.rhaos4.5.el8.x86_64.rpm podman-debuginfo-1.9.3-2.rhaos4.5.el8.x86_64.rpm podman-debugsource-1.9.3-2.rhaos4.5.el8.x86_64.rpm podman-remote-1.9.3-2.rhaos4.5.el8.x86_64.rpm podman-remote-debuginfo-1.9.3-2.rhaos4.5.el8.x86_64.rpm podman-tests-1.9.3-2.rhaos4.5.el8.x86_64.rpm skopeo-1.1.1-2.rhaos4.5.el8.x86_64.rpm skopeo-debuginfo-1.1.1-2.rhaos4.5.el8.x86_64.rpm skopeo-debugsource-1.1.1-2.rhaos4.5.el8.x86_64.rpm skopeo-tests-1.1.1-2.rhaos4.5.el8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-15586 https://access.redhat.com/security/cve/CVE-2020-16845 https://access.redhat.com/security/updates/classification/#low 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYHYqe9zjgjWX9erEAQibBxAAorJpj7QrP24Kd3x4PBaXlV/W4fRpFTr/ ncUNzel/o8R4RMSnwl3QvpMcdlLeg2GTcWIZybIfXt5pmLtf27pWQVYf1mkd9WNw +r00r3I7RAAi0rrU1GKGEURbskY7ohV4F4Y79pD8NaPQSDulQz79GEG8BIb6t18i I+4HUpNfgkVz8HcjTheHTH1TLqspw/OnruCVJQnFmIjOTc51xzjRIM7b8pHxtKoW TZQO0+PmUachXhjQfVGfXhFwi4byW395CYZKMMJJxA5nEsHSz+egsv/+UFesZ4mQ dqvAwealCF/fuIhE/d2V4rmOpPTHrB/ocA5UaAuLYKA3/3AKm3JfU8okgvcMuIm9 RtfxuEEz78Itk7mVXCYW5g1EvBEqHzqxYFR/98qZQfJJUucKM5zJchA0B6mqHSMy JSmnXUT9n/rlh+3ijzBJcuEFQF0ZlBhdiQp+lj/1z0v11cArVH8u7syTezKYGkrg 9O2HLm94jb3sTJ7pAhV0VgcKhGSVrw6lOiff5JMrCGOxyxLC+WKsAwbMp0Suecpg DqzrlOGef+s5FU8meVqRtqAEyrnEXczuk4p5dbqepWnPT2J9pT2S5gnTvMz097C7 ECdluqA/cWhsIeeATJgyVp/z2XAswrccfper31KkZtQxUCM5EcApRJcDxqzW0Nwt uMCoCyDOn0s=ThE8 -----END PGP SIGNATURE----- -- RHSA-announce mailinglist This email address is being protected from spambots. You need JavaScript enabled to view it. https://listman.redhat.com/mailman/listinfo/rhsa-announce . Red Hat OpenShift Container Platform 4.5.37 features updates that address security vulnerabilities of low severity along with package enhancements.. OpenShift Security Update, Container Platform 4.5.37, Low Severity Fixes. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Apr 13, 2021 Low Red Hat
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here