Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorycriticalUbuntu

Ubuntu 18.04 LTS: USN-5319-1 Critical: Linux Kernel Security Issues

Several security issues were fixed in the Linux kernel.. =========================================================================Ubuntu Security Notice USN-5319-1 March 09, 2022 linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-dell300x, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm, ilinux-lts-xenial, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS - Ubuntu 16.04 ESM - Ubuntu 14.04 ESM Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services (AWS) systems - linux-azure-4.15: Linux kernel for Microsoft Azure Cloud systems - linux-dell300x: Linux kernel for Dell 300x platforms - linux-gcp-4.15: Linux kernel for Google Cloud Platform (GCP) systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud systems - linux-raspi2: Linux kernel for Raspberry Pi systems - linux-snapdragon: Linux kernel for Qualcomm Snapdragon processors- linux-aws-hwe: Linux kernel for Amazon Web Services (AWS-HWE) systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems - linux-hwe: Linux hardware enablement (HWE) kernel - linux-lts-xenial: Linux hardware enablement kernel from Xenial for Trusty Details: Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano Giuffrida discovered that hardware mitigations added by Intel to their processors to address Spectre-BTI were insufficient. A local attacker could potentially use this to expose sensitive information. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: linux-image-4.15.0-1037-dell300x 4.15.0-1037.42 linux-image-4.15.0-1089-oracle 4.15.0-1089.98 linux-image-4.15.0-1105-raspi2 4.15.0-1105.112 linux-image-4.15.0-1109-kvm 4.15.0-1109.112 linux-image-4.15.0-1118-gcp 4.15.0-1118.132 linux-image-4.15.0-1122-snapdragon 4.15.0-1122.131 linux-image-4.15.0-1123-aws 4.15.0-1123.132 linux-image-4.15.0-1133-azure 4.15.0-1133.146 linux-image-4.15.0-171-generic 4.15.0-171.180 linux-image-4.15.0-171-generic-lpae 4.15.0-171.180 linux-image-4.15.0-171-lowlatency 4.15.0-171.180 linux-image-aws-lts-18.04 4.15.0.1123.126 linux-image-azure-lts-18.04 4.15.0.1133.106 linux-image-dell300x 4.15.0.1037.39 linux-image-gcp-lts-18.04 4.15.0.1118.137 linux-image-generic 4.15.0.171.160 linux-image-generic-lpae 4.15.0.171.160 linux-image-kvm 4.15.0.1109.105 linux-image-lowlatency 4.15.0.171.160 linux-image-oracle-lts-18.04 4.15.0.1089.99 linux-image-raspi2 4.15.0.1105.103 linux-image-snapdragon 4.15.0.1122.125 linux-image-virtual 4.15.0.171.160 Ubuntu 16.04 ESM: linux-image-4.15.0-1089-oracle 4.15.0-1089.98~16.04.1 linux-image-4.15.0-1118-gcp 4.15.0-1118.132~16.04.1 linux-image-4.15.0-1123-aws-hwe 4.15.0-1123.132~16.04.1 linux-image-4.15.0-1133-azure 4.15.0-1133.146~16.04.1 linux-image-4.15.0-171-generic 4.15.0-171.180~16.04.1 linux-image-4.15.0-171-lowlatency 4.15.0-171.180~16.04.1 linux-image-4.4.0-1102-kvm 4.4.0-1102.111 linux-image-4.4.0-1137-aws 4.4.0-1137.151 linux-image-4.4.0-221-generic 4.4.0-221.254 linux-image-4.4.0-221-lowlatency 4.4.0-221.254 linux-image-aws 4.4.0.1137.142 linux-image-aws-hwe 4.15.0.1123.113 linux-image-azure 4.15.0.1133.124 linux-image-gcp 4.15.0.1118.119 linux-image-generic 4.4.0.221.228 linux-image-generic-hwe-16.04 4.15.0.171.163 linux-image-gke 4.15.0.1118.119 linux-image-kvm 4.4.0.1102.100 linux-image-lowlatency 4.4.0.221.228 linux-image-lowlatency-hwe-16.04 4.15.0.171.163 linux-image-oem 4.15.0.171.163 linux-image-oracle 4.15.0.1089.77 linux-image-virtual 4.4.0.221.228 linux-image-virtual-hwe-16.04 4.15.0.171.163 Ubuntu 14.04 ESM: linux-image-4.15.0-1133-azure 4.15.0-1133.146~14.04.1 linux-image-4.4.0-1101-aws 4.4.0-1101.106 linux-image-4.4.0-221-generic 4.4.0-221.254~14.04.1 linux-image-4.4.0-221-lowlatency 4.4.0-221.254~14.04.1 linux-image-aws 4.4.0.1101.99 linux-image-azure 4.15.0.1133.106 linux-image-generic-lts-xenial 4.4.0.221.192 linux-image-lowlatency-lts-xenial 4.4.0.221.192 linux-image-virtual-lts-xenial 4.4.0.221.192 IMPORTANT: As part of this update, unprivileged eBPF is being disabled by default, as it is the primary known means of exploiting the Branch History Injection issues described above. It should be noted that other mechanisms for exploiting the underlying issues may be discovered. Also, this may cause issues for applications that rely on the unprivileged eBPF functionality. Please see the knowledge base article at https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/BHI for more details. After a standard system update you need to reboot your computer to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-5319-1 CVE-2022-0001, CVE-2022-0002, https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/BHI Package Information: https://launchpad.net/ubuntu/+source/linux/4.15.0-171.180 https://launchpad.net/ubuntu/+source/linux-aws/4.15.0-1123.132 https://launchpad.net/ubuntu/+source/linux-azure-4.15/4.15.0-1133.146 https://launchpad.net/ubuntu/+source/linux-dell300x/4.15.0-1037.42 https://launchpad.net/ubuntu/+source/linux-gcp-4.15/4.15.0-1118.132 https://launchpad.net/ubuntu/+source/linux-kvm/4.15.0-1109.112 https://launchpad.net/ubuntu/+source/linux-oracle/4.15.0-1089.98 https://launchpad.net/ubuntu/+source/linux-raspi2/4.15.0-1105.112 https://launchpad.net/ubuntu/+source/linux-snapdragon/4.15.0-1122.131 . Multiple vulnerabilities in the Linux kernel addressed for Ubuntu versions 18.04, 16.04, and 14.04. Ensure updates are implemented to uphold system integrity.. Linux Kernel Security, Ubuntu Update, Kernel Threats. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 08, 2022 Critical Ubuntu
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorybuffer overflowFedora

Fedora 31: FEDORA-2019-68d7f68507 Moderate: Kernel Security Update

The 5.3.11 stable kernel update contains a number of important security updates across the tree, including mitigations for the most recent hardware issues disclosed on Nov 12.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-68d7f68507 2019-11-13 06:35:24.660460 --------------------------------------------------------------------------------Name : kernel Product : Fedora 31 Version : 5.3.11 Release : 300.fc31 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package --------------------------------------------------------------------------------Update Information: The 5.3.11 stable kernel update contains a number of important security updates across the tree, including mitigations for the most recent hardware issues disclosed on Nov 12. --------------------------------------------------------------------------------ChangeLog: * Tue Nov 12 2019 Justin M. Forbes - 5.3.11-300 - Linux v5.3.11 - Fixes CVE-2019-11135 (rhbz 1753062 1771649) - Fixes CVE-2018-12207 (rhbz 1646768 1771645) - Fixes CVE-2019-0154 (rhbz 1724393 1771642) - Fixes CVE-2019-0155 (rhbz 1724398 1771644) * Mon Nov 11 2019 Laura Abbott - 5.3.10-300 - Linux v5.3.10 * Thu Nov 7 2019 Jeremy Cline - Add support for a number of Macbook keyboards and touchpads (rhbz 1769465) * Wed Nov 6 2019 Laura Abbott - 5.3.9-300 - Linux v5.3.9 * Tue Oct 29 2019 Laura Abbott - 5.3.8-300 - Linux v5.3.8 --------------------------------------------------------------------------------References: [ 1 ] Bug #1753062 - CVE-2019-11135 hw: TSX Transaction Asynchronous Abort (TAA) https://bugzilla.redhat.com/show_bug.cgi?id=1753062 [ 2 ] Bug #1646768 - CVE-2018-12207 hw: Machine Check Error on Page Size Change (IPU) https://bugzilla.redhat.com/show_bug.cgi?id=1646768 [ 3 ] Bug #1724393 - CVE-2019-0154 hw: Intel GPU Denial Of Service while accessing MMIO in lowerpower state https://bugzilla.redhat.com/show_bug.cgi?id=1724393 [ 4 ] Bug #1724398 - CVE-2019-0155 hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write https://bugzilla.redhat.com/show_bug.cgi?id=1724398 [ 5 ] Bug #1758414 - CVE-2019-0117 hw: Intel SGX information leak https://bugzilla.redhat.com/show_bug.cgi?id=1758414 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-68d7f68507' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . This software patch resolves critical vulnerabilities with system safeguards on Ubuntu for improved performance.. Kernel Updates, Fedora Security, Hardware Mitigation, Software Stability, Security Notices. . LinuxSecurity.com Team

Calendar 2 Nov 13, 2019 Fedora
Banner 3 1028x280 1708121785 1771599793
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisoryexploitkernel

SciLinux SL6: SLSA-2018-0008-1 Important Kernel Update on Exploit Risks

An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Note: This issue is present in hardware and cannot be fully fixed via software update. The updated kernel [More...]. Synopsis: Important: kernel security update Advisory ID: SLSA-2018:0008-1 Issue Date: 2018-01-03 CVE Numbers: CVE-2017-5753 CVE-2017-5715 CVE-2017-5754 -- Security Fix(es): An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used performance optimization). There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Note: This issue is present in hardware and cannot be fully fixed via software update. The updated kernel packages provide software mitigation for this hardware issue at a cost of potential performance penalty. The performance impact of these patches may vary considerably based on workload and hardware configuration. In this update mitigations for x86-64 architecture are provided. Variant CVE-2017-5753 triggers the speculative execution by performing a bounds-check bypass. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall boundary and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5753, Important) Variant CVE-2017-5715 triggers the speculative execution by utilizing branch target injection. It relies on the presence of aprecisely-defined instruction sequence in the privileged code as well as the fact that memory accesses may cause allocation into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to cross the syscall and guest/host boundaries and read privileged memory by conducting targeted cache side-channel attacks. (CVE-2017-5715, Important) Variant CVE-2017-5754 relies on the fact that, on impacted microprocessors, during speculative execution of instruction permission faults, exception generation triggered by a faulting access is suppressed until the retirement of the whole instruction block. In a combination with the fact that memory accesses may populate the cache even when the block is being dropped and never committed (executed), an unprivileged local attacker could use this flaw to read privileged (kernel space) memory by conducting targeted cache side-channel attacks. (CVE-2017-5754, Important) Note: CVE-2017-5754 affects Intel x86-64 microprocessors. AMD x86-64 microprocessors are not affected by this issue. -- SL6 x86_64 kernel-2.6.32-696.18.7.el6.x86_64.rpm kernel-debug-2.6.32-696.18.7.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-696.18.7.el6.i686.rpm kernel-debug-debuginfo-2.6.32-696.18.7.el6.x86_64.rpm kernel-debug-devel-2.6.32-696.18.7.el6.i686.rpm kernel-debug-devel-2.6.32-696.18.7.el6.x86_64.rpm kernel-debuginfo-2.6.32-696.18.7.el6.i686.rpm kernel-debuginfo-2.6.32-696.18.7.el6.x86_64.rpm kernel-debuginfo-common-i686-2.6.32-696.18.7.el6.i686.rpm kernel-debuginfo-common-x86_64-2.6.32-696.18.7.el6.x86_64.rpm kernel-devel-2.6.32-696.18.7.el6.x86_64.rpm kernel-headers-2.6.32-696.18.7.el6.x86_64.rpm perf-2.6.32-696.18.7.el6.x86_64.rpm perf-debuginfo-2.6.32-696.18.7.el6.i686.rpm perf-debuginfo-2.6.32-696.18.7.el6.x86_64.rpm python-perf-debuginfo-2.6.32-696.18.7.el6.i686.rpm python-perf-debuginfo-2.6.32-696.18.7.el6.x86_64.rpm python-perf-2.6.32-696.18.7.el6.x86_64.rpm i386 kernel-2.6.32-696.18.7.el6.i686.rpm kernel-debug-2.6.32-696.18.7.el6.i686.rpm kernel-debug-debuginfo-2.6.32-696.18.7.el6.i686.rpm kernel-debug-devel-2.6.32-696.18.7.el6.i686.rpm kernel-debuginfo-2.6.32-696.18.7.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-696.18.7.el6.i686.rpm kernel-devel-2.6.32-696.18.7.el6.i686.rpm kernel-headers-2.6.32-696.18.7.el6.i686.rpm perf-2.6.32-696.18.7.el6.i686.rpm perf-debuginfo-2.6.32-696.18.7.el6.i686.rpm python-perf-debuginfo-2.6.32-696.18.7.el6.i686.rpm python-perf-2.6.32-696.18.7.el6.i686.rpm noarch kernel-abi-whitelists-2.6.32-696.18.7.el6.noarch.rpm kernel-doc-2.6.32-696.18.7.el6.noarch.rpm kernel-firmware-2.6.32-696.18.7.el6.noarch.rpm - Scientific Linux Development Team . Important kernel patch mitigates vulnerabilities related to performance exploitation in SL6.x caused by speculative execution flaws.. kernel exploits, speculative execution, SL6 security, hardware mitigation, performance impact. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 03, 2018 Important Scientific Linux
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here