Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
197
security advisorysoftware updatedebianDebian 11 DLA-4573-1 libpng Important Heap Disclosure Fix
A security vulnerability has been discovered in libpng, a library implementing an interface for reading and writing PNG (Portable Network Graphics) files, which could leading to corrupted chunk data and potential heap information disclosure. For Debian 11 bullseye, this problem has been fixed in version. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4573-1
May 09, 2026
•Important
Debian LTS
202
security advisorydenial of serviceimportantopenSUSE 15.4 libsoup Important Denial of Service CVE-2025-32049
An update that solves four vulnerabilities can now be installed.. # Security update for libsoup Announcement ID: SUSE-SU-2026:0689-1 Release Date: 2026-02-27T15:10:54Z Rating: important References: * bsc#1240751 * bsc#1258120 * bsc#1258170 * bsc#1258508 Cross-References: * CVE-2025-32049 * CVE-2026-2369 * CVE-2026-2443 * CVE-2026-2708 CVSS scores: * CVE-2025-32049 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-32049 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-32049 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-2369 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-2369 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-2443 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-2443 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-2443 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-2708 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-2708 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves four vulnerabilities can now beinstalled. ## Description: This update for libsoup fixes the following issues: * CVE-2025-32049: denial of Service attack to websocket server (bsc#1240751). * CVE-2026-2369: buffer overread due to integer underflow when handling zero- length resources (bsc#1258120). * CVE-2026-2443: out-of-bounds read when processing specially crafted HTTP Range headers can lead to heap information disclosure to remote attackers (bsc#1258170). * CVE-2026-2708: HTTP request smuggling via duplicate Content-Length headers (bsc#1258508). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-689=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-689=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-689=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-689=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-689=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-689=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-689=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-689=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-689=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libsoup-3_0-0-3.0.4-150400.3.34.1 * libsoup-devel-3.0.4-150400.3.34.1 *typelib-1_0-Soup-3_0-3.0.4-150400.3.34.1 * libsoup-debugsource-3.0.4-150400.3.34.1 * libsoup-3_0-0-debuginfo-3.0.4-150400.3.34.1 * openSUSE Leap 15.4 (x86_64) * libsoup-devel-32bit-3.0.4-150400.3.34.1 * libsoup-3_0-0-32bit-3.0.4-150400.3.34.1 * libsoup-3_0-0-32bit-debuginfo-3.0.4-150400.3.34.1 * openSUSE Leap 15.4 (noarch) * libsoup-lang-3.0.4-150400.3.34.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libsoup-devel-64bit-3.0.4-150400.3.34.1 * libsoup-3_0-0-64bit-debuginfo-3.0.4-150400.3.34.1 * libsoup-3_0-0-64bit-3.0.4-150400.3.34.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libsoup-3_0-0-3.0.4-150400.3.34.1 * libsoup-devel-3.0.4-150400.3.34.1 * typelib-1_0-Soup-3_0-3.0.4-150400.3.34.1 * libsoup-debugsource-3.0.4-150400.3.34.1 * libsoup-3_0-0-debuginfo-3.0.4-150400.3.34.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * libsoup-lang-3.0.4-150400.3.34.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libsoup-3_0-0-3.0.4-150400.3.34.1 * libsoup-devel-3.0.4-150400.3.34.1 * typelib-1_0-Soup-3_0-3.0.4-150400.3.34.1 * libsoup-debugsource-3.0.4-150400.3.34.1 * libsoup-3_0-0-debuginfo-3.0.4-150400.3.34.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * libsoup-lang-3.0.4-150400.3.34.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * libsoup-3_0-0-3.0.4-150400.3.34.1 * libsoup-devel-3.0.4-150400.3.34.1 * typelib-1_0-Soup-3_0-3.0.4-150400.3.34.1 * libsoup-debugsource-3.0.4-150400.3.34.1 * libsoup-3_0-0-debuginfo-3.0.4-150400.3.34.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * libsoup-lang-3.0.4-150400.3.34.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * libsoup-3_0-0-3.0.4-150400.3.34.1 * libsoup-devel-3.0.4-150400.3.34.1 *typelib-1_0-Soup-3_0-3.0.4-150400.3.34.1 * libsoup-debugsource-3.0.4-150400.3.34.1 * libsoup-3_0-0-debuginfo-3.0.4-150400.3.34.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * libsoup-lang-3.0.4-150400.3.34.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * libsoup-3_0-0-3.0.4-150400.3.34.1 * libsoup-devel-3.0.4-150400.3.34.1 * typelib-1_0-Soup-3_0-3.0.4-150400.3.34.1 * libsoup-debugsource-3.0.4-150400.3.34.1 * libsoup-3_0-0-debuginfo-3.0.4-150400.3.34.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * libsoup-lang-3.0.4-150400.3.34.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libsoup-3_0-0-3.0.4-150400.3.34.1 * libsoup-devel-3.0.4-150400.3.34.1 * typelib-1_0-Soup-3_0-3.0.4-150400.3.34.1 * libsoup-debugsource-3.0.4-150400.3.34.1 * libsoup-3_0-0-debuginfo-3.0.4-150400.3.34.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * libsoup-lang-3.0.4-150400.3.34.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libsoup-3_0-0-3.0.4-150400.3.34.1 * libsoup-devel-3.0.4-150400.3.34.1 * typelib-1_0-Soup-3_0-3.0.4-150400.3.34.1 * libsoup-debugsource-3.0.4-150400.3.34.1 * libsoup-3_0-0-debuginfo-3.0.4-150400.3.34.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * libsoup-lang-3.0.4-150400.3.34.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libsoup-3_0-0-3.0.4-150400.3.34.1 * libsoup-devel-3.0.4-150400.3.34.1 * typelib-1_0-Soup-3_0-3.0.4-150400.3.34.1 * libsoup-debugsource-3.0.4-150400.3.34.1 * libsoup-3_0-0-debuginfo-3.0.4-150400.3.34.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * libsoup-lang-3.0.4-150400.3.34.1 ## References: * https://www.suse.com/security/cve/CVE-2025-32049.html * https://www.suse.com/security/cve/CVE-2026-2369.html * https://www.suse.com/security/cve/CVE-2026-2443.html *https://www.suse.com/security/cve/CVE-2026-2708.html * https://bugzilla.suse.com/show_bug.cgi?id=1240751 * https://bugzilla.suse.com/show_bug.cgi?id=1258120 * https://bugzilla.suse.com/show_bug.cgi?id=1258170 * https://bugzilla.suse.com/show_bug.cgi?id=1258508 . This update for openSUSE libsoup addresses four critical issues including denial of service and buffer overflow vulnerabilities.. openSUSE libsoup important security update denial of service buffer overread. . Severity: Important. LinuxSecurity.com Team
Feb 27, 2026
•Important
OpenSUSE
89
security advisorycriticalFedoraFedora 27: Samba Security Advisory for CVE-2017-14746 and CVE-2017-15275
Security fix for CVE-2017-14746 and CVE-2017-15275. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-791c5d52be 2017-11-27 18:03:48.925922 --------------------------------------------------------------------------------Name : samba Product : Fedora 27 Version : 4.7.3 Release : 0.fc27 URL : / Summary : Server and Client software to interoperate with Windows machines Description : Samba is the standard Windows interoperability suite of programs for Linux and Unix. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2017-14746 and CVE-2017-15275 --------------------------------------------------------------------------------References: [ 1 ] Bug #1511899 - CVE-2017-14746 samba: Use-after-free in processing SMB1 requests https://bugzilla.redhat.com/show_bug.cgi?id=1511899 [ 2 ] Bug #1512465 - CVE-2017-15275 samba: Server heap-memory disclosure https://bugzilla.redhat.com/show_bug.cgi?id=1512465 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade samba' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Nov 27, 2017
•Critical
Fedora
98
security advisoryRed Hatbug fixRed Hat 7: RHSA-2016:1875-01 Critical: Kernel-RT Security Risks
An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel-rt security and bug fix update Advisory ID: RHSA-2016:1875-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2016:1875.html Issue date: 2016-09-14 CVE Names: CVE-2016-3134 CVE-2016-4997 CVE-2016-4998 ==================================================================== 1. Summary: An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Realtime (v. 7) - noarch, x86_64 Red Hat Enterprise Linux for Real Time for NFV (v. 7) - noarch, x86_64 3. Description: The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. The kernel-rt packages have been upgraded to the kernel-3.10.0-327.36.1 source tree, which provides a number of bug fixes over the previous version. (BZ#1366538) Security Fix(es): * A security flaw was found in the Linux kernel in the mark_source_chains() function in "net/ipv4/netfilter/ip_tables.c". It is possible for a user-supplied "ipt_entry" structure to have a large "next_offset" field. This field is not bounds checked prior to writing to a counter value at the supplied offset. (CVE-2016-3134, Important) *A flaw was discovered in processing setsockopt for 32 bit processes on 64 bit systems. This flaw will allow attackers to alter arbitrary kernel memory when unloading a kernel module. This action is usually restricted to root-privileged users but can also be leveraged if the kernel is compiled with CONFIG_USER_NS and CONFIG_NET_NS and the user is granted elevated privileges. (CVE-2016-4997, Important) * An out-of-bounds heap memory access leading to a Denial of Service, heap disclosure, or further impact was found in setsockopt(). The function call is normally restricted to root, however some processes with cap_sys_admin may also be able to trigger this flaw in privileged container environments. (CVE-2016-4998, Moderate) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1317383 - CVE-2016-3134 kernel: netfilter: missing bounds check in ipt_entry structure 1349722 - CVE-2016-4997 kernel: compat IPT_SO_SET_REPLACE setsockopt 1349886 - CVE-2016-4998 kernel: out of bounds reads when processing IPT_SO_SET_REPLACE setsockopt 1366538 - kernel-rt: update to the RHEL7.2.z batch#7 source tree 6. Package List: Red Hat Enterprise Linux for Real Time for NFV (v.7): Source: kernel-rt-3.10.0-327.36.1.rt56.237.el7.src.rpm noarch: kernel-rt-doc-3.10.0-327.36.1.rt56.237.el7.noarch.rpm x86_64: kernel-rt-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-debug-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-debug-debuginfo-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-debug-devel-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-debug-kvm-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-debug-kvm-debuginfo-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-debuginfo-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-debuginfo-common-x86_64-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-devel-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-kvm-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-kvm-debuginfo-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-trace-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-trace-debuginfo-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-trace-devel-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-trace-kvm-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-trace-kvm-debuginfo-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm Red Hat Enterprise Linux Realtime (v. 7): Source: kernel-rt-3.10.0-327.36.1.rt56.237.el7.src.rpm noarch: kernel-rt-doc-3.10.0-327.36.1.rt56.237.el7.noarch.rpm x86_64: kernel-rt-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-debug-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-debug-debuginfo-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-debug-devel-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-debuginfo-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-debuginfo-common-x86_64-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-devel-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-trace-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-trace-debuginfo-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm kernel-rt-trace-devel-3.10.0-327.36.1.rt56.237.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are availablefrom https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2016-3134 https://access.redhat.com/security/cve/CVE-2016-4997 https://access.redhat.com/security/cve/CVE-2016-4998 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFX2nHYXlSAg2UNWIIRAi9lAJ0ZAItgVyLqEckIpEgKUrgOun4/YgCePodm luwQfjceNxKu1LgXoLR9mMc=68Az -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Sep 15, 2016
•Critical
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!