Alerts This Week
Warning Icon 1 609
Alerts This Week
Warning Icon 1 609

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Calendar White Jun 05, 2026
Important
Fedora Large Esm H800
Fedora

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Calendar White Jun 05, 2026
Critical
Fedora Large Esm H900
Fedora

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Calendar White Jun 05, 2026
high
Fedora Large Esm H800
Fedora

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 0 articles for you...
198
Ls Advisories Archlinux Esm H240
Price Tag 1security advisoryhigh severitysoftware update

Arch Linux ASA-202103-14 High Severity: Groovy Privilege Escalation

The package groovy before version 2.5.14-1 is vulnerable to privilege escalation. . Arch Linux Security Advisory ASA-202103-14 ========================================= Severity: High Date : 2021-03-25 CVE-ID : CVE-2020-17521 Package : groovy Type : privilege escalation Remote : No Link : https://security.archlinux.org/AVG-1325 Summary ====== The package groovy before version 2.5.14-1 is vulnerable to privilege escalation. Resolution ========= Upgrade to 2.5.14-1. # pacman -Syu "groovy> =2.5.14-1" The problem has been fixed upstream in version 2.5.14. Workaround ========= None. Description ========== Groovy before version 2.5.14 may create temporary directories within the OS temporary directory which is shared between all users on affected systems. Groovy will create such directories for internal use when producing Java Stubs or on behalf of user code via two extension methods for creating temporary directories. If Groovy user code uses either of these extension methods, and stores executable code in the resulting temporary directory, this can lead to local privilege escalation. If such Groovy code is making use of the temporary directory to store sensitive information, such information could be exposed or modified. Impact ===== A local attacker is able to obtain and modify sensitive information in Groovy temporary directories leading to privilege escalation if executable code is stored. References ========= https://bugs.archlinux.org/task/68865 https://issues.apache.org/jira/browse/GROOVY-9824 https://github.com/apache/groovy/commit/98dc5d713926cd81b006c510a1546ccd520fe17f https://security.archlinux.org/CVE-2020-17521 . Debian Security Notice DSA-2023-1234 addresses a critical denial of service vulnerability in nginx versions earlier than 1.19.10.. Groovy Privilege Escalation, Arch Linux Security, Software Vulnerability. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 26, 2021 Important ArchLinux
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateinformation disclosure

SUSE: 2020:3917-1 Moderate Vulnerability: Groovy Information Disclosure

An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for groovy ______________________________________________________________________________ Announcement ID: SUSE-SU-2020:3917-1 Rating: moderate References: #1179729 Cross-References: CVE-2020-17521 Affected Products: SUSE Linux Enterprise Module for Development Tools 15-SP2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for groovy fixes the following issues: - groovy was updated to 2.4.21 - CVE-2020-17521: Fixed an information disclosure vulnerability (bsc#1179729). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Development Tools 15-SP2: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP2-2020-3917=1 Package List: - SUSE Linux Enterprise Module for Development Tools 15-SP2 (noarch): groovy-lib-2.4.21-3.3.2 References: https://www.suse.com/security/cve/CVE-2020-17521.html https://bugzilla.suse.com/1179729 . SUSE Security Patch addresses a potential information leak in groovy. Notification ID: SUSE-SU-2020:3918-1, moderate risk level.. SUSE Security Update,groovy patch,information disclosure,software update. . LinuxSecurity.com Team

Calendar 2 Dec 22, 2020 SuSE
Banner 1 1028x280 1708121660 1771599717
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentooarbitrary code execution

Gentoo: GLSA-202003-01 Normal: Groovy Code Execution Risk

A vulnerability within serialization might allow remote attackers to execute arbitrary code.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 202003-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Groovy: Arbitrary code execution Date: March 07, 2020 Bugs: #605690 ID: 202003-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= A vulnerability within serialization might allow remote attackers to execute arbitrary code. Background ========= A multi-faceted language for the Java platform Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-java/groovy

Calendar 2 Mar 12, 2020 Gentoo
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisoryremote code executionapplication security

Scientific Linux 7: SLSA-2017-2486-1 Important Groovy RCE Advisory

It was found that a flaw in Apache groovy library allows remote code execution wherever deserialization occurs in the application. It is possible for an attacker to craft a special serialized object that will execute code directly when deserialized. All applications which rely on serialization and do not isolate the code which deserializes objects are subject to this vulnerability. (CVE-2016-6 [More...]. Synopsis: Important: groovy security update Advisory ID: SLSA-2017:2486-1 Issue Date: 2017-08-17 CVE Numbers: CVE-2016-6814 -- Security Fix(es): * It was found that a flaw in Apache groovy library allows remote code execution wherever deserialization occurs in the application. It is possible for an attacker to craft a special serialized object that will execute code directly when deserialized. All applications which rely on serialization and do not isolate the code which deserializes objects are subject to this vulnerability. (CVE-2016-6814) -- SL7 noarch groovy-1.8.9-8.el7_4.noarch.rpm groovy-javadoc-1.8.9-8.el7_4.noarch.rpm - Scientific Linux Development Team . Tackling a significant vulnerability in the Apache Groovy framework reveals remote code execution threats impacting various software solutions.. Apache Groovy Security, Adversarial Serialization, Scientific Linux Update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 21, 2017 Important Scientific Linux
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoracritical

Fedora 25: 2017-33c8085c5d Critical: Groovy18 Information Disclosure

Fixes information disclosure vulnerability (CVE-2016-6814). --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-33c8085c5d 2017-08-17 23:34:46.456642 --------------------------------------------------------------------------------Name : groovy18 Product : Fedora 25 Version : 1.8.9 Release : 28.fc25 URL : http://groovy-lang.org Summary : Dynamic language for the Java Platform Description : Groovy is an agile and dynamic language for the Java Virtual Machine, built upon Java with features inspired by languages like Python, Ruby and Smalltalk. It seamlessly integrates with all existing Java objects and libraries and compiles straight to Java byte-code so you can use it anywhere you can use Java. --------------------------------------------------------------------------------Update Information: Fixes information disclosure vulnerability (CVE-2016-6814) --------------------------------------------------------------------------------References: [ 1 ] Bug #1413466 - CVE-2016-6814 Apache Groovy: Remote code execution via deserialization https://bugzilla.redhat.com/show_bug.cgi?id=1413466 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade groovy18' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . The Ubuntu patch addresses avulnerability in nifty22, enhancing the safety and reliability for its users.. Fedora Security Update,Groovy18,Information Disclosure,Remote Code Execution. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Aug 18, 2017 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalFedora

Fedora 24: Security Advisory for Groovy Remote Code Execution

Security fix for CVE-2016-6814. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-1ce2a05ff1 2017-01-24 19:30:33.806708 -------------------------------------------------------------------------------- Name : groovy Product : Fedora 24 Version : 2.4.5 Release : 8.fc24 URL : http://groovy-lang.org Summary : Dynamic language for the Java Platform Description : Groovy is an agile and dynamic language for the Java Virtual Machine, built upon Java with features inspired by languages like Python, Ruby and Smalltalk. It seamlessly integrates with all existing Java objects and libraries and compiles straight to Java bytecode so you can use it anywhere you can use Java. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-6814 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413466 - CVE-2016-6814 Apache Groovy: Remote code execution via deserialization https://bugzilla.redhat.com/show_bug.cgi?id=1413466 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade groovy' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . An important patch for Fedora 24 fixes a severe vulnerability in Groovy that could enable remote code execution. Updateimmediately.. Fedora 24, Groovy Security Update, Remote Code Execution. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 25, 2017 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalsoftware update

Ubuntu 18.04: 2022-a1b2c3d4e5 Medium: Funky Data Exposure

Security fix for CVE-2016-6814. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-cc0e0daf0f 2017-01-21 16:03:46.478947 -------------------------------------------------------------------------------- Name : groovy Product : Fedora 25 Version : 2.4.5 Release : 10.fc25 URL : http://groovy-lang.org Summary : Dynamic language for the Java Platform Description : Groovy is an agile and dynamic language for the Java Virtual Machine, built upon Java with features inspired by languages like Python, Ruby and Smalltalk. It seamlessly integrates with all existing Java objects and libraries and compiles straight to Java bytecode so you can use it anywhere you can use Java. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-6814 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413466 - CVE-2016-6814 Apache Groovy: Information disclosure https://bugzilla.redhat.com/show_bug.cgi?id=1413466 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade groovy' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Important security patch for Fedora 25 addresses exposure risks in Groovy associated with CVE-2016-6814.. Fedora 25 Security Update, GroovyInformation Disclosure, Apache Groovy Fix. . Severity: Medium. LinuxSecurity.com Team

Calendar 2 Jan 21, 2017 Medium Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoracritical

Fedora Update: 2015-15907 Critical Fix for Groovy CVE-2015-3253

Fixes CVE-2015-3253. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-15907 2015-09-24 05:07:02.458138 -------------------------------------------------------------------------------- Name : groovy Product : Fedora 22 Version : 2.4.0 Release : 2.fc22 URL : Summary : Dynamic language for the Java Platform Description : Groovy is an agile and dynamic language for the Java Virtual Machine, built upon Java with features inspired by languages like Python, Ruby and Smalltalk. It seamlessly integrates with all existing Java objects and libraries and compiles straight to Java bytecode so you can use it anywhere you can use Java. -------------------------------------------------------------------------------- Update Information: Fixes CVE-2015-3253 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update groovy' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . Ubuntu System Patch Address Vulnerability in Erlang Programming Language Enhancing Overall Safety Measures.. Fedora Security Update, Groovy CVE Fix, Java Language Security, Dynamic Language Protection. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 24, 2015 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here