Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 49 articles for you...
202

openSUSE assimp Important Heap Issue Fix CVE-2026-10232 2026-0223-1

An update that fixes one vulnerability is now available.. openSUSE Security Update: Security update for assimp ______________________________________________________________________________ Announcement ID: openSUSE-SU-2026:0223-1 Rating: important References: #1267037 Cross-References: CVE-2026-10232 CVSS scores: CVE-2026-10232 (SUSE): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: openSUSE Backports SLE-15-SP7 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for assimp fixes the following issues: - CVE-2026-10232: heap use-after-free in aiNode::~aiNode due to invalid node tree when processing malformed ASE files (boo#1267037) Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP7: zypper in -t patch openSUSE-2026-223=1 Package List: - openSUSE Backports SLE-15-SP7 (aarch64 ppc64le s390x x86_64): assimp-devel-5.3.1-bp157.5.3.1 libassimp5-5.3.1-bp157.5.3.1 References: https://www.suse.com/security/cve/CVE-2026-10232.html https://bugzilla.suse.com/1267037 . An important update for openSUSE addresses a critical heap issue in the assimp application. Install for protection.. Security Update, Heap Issue, Assimp Fix, OpenSUSE Advisory. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 29, 2026 Important OpenSUSE
89

Fedora 43 Squid 7.5 Critical Update Denial of Service 2026-e6a4814a4d

new version 7.5 security update. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-e6a4814a4d 2026-05-06 16:45:18.195694+00:00 -------------------------------------------------------------------------------- Name : squid Product : Fedora 43 Version : 7.5 Release : 1.fc43 URL : http://www.squid-cache.org Summary : The Squid proxy caching server Description : Squid is a high-performance proxy caching server for Web clients, supporting FTP and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups, supports non-blocking DNS lookups, and implements negative caching of failed requests. Squid consists of a main server program squid, a Domain Name System lookup program (dnsserver), a program for retrieving FTP data (ftpget), and some management and client tools. -------------------------------------------------------------------------------- Update Information: new version 7.5 security update -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 27 2026 Lubo\u0161 Uhliarik - 7:7.5-1 - new version 7.5 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2431445 - squid-7.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=2431445 [ 2 ] Bug #2451599 - CVE-2026-33526 squid: Squid: Denial of Service via heap Use-After-Free vulnerability in ICP handling [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2451599 [ 3 ] Bug #2451601 - CVE-2026-32748 squid: Squid: Denial of Service via crafted ICP traffic [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2451601 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnfupgrade --advisory FEDORA-2026-e6a4814a4d' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Fedora 43 Squid 7.5 update resolves Critical security issues and Denial of Service risks.. Fedora Squid update security DoS. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 May 06, 2026 Critical Fedora
202

openSUSE Leap 16.0 Essential Security Patch for qemu DoS 2026-20567-1

An update that solves 3 vulnerabilities and has 3 bug fixes can now be installed.. openSUSE security update: security update for qemu ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20567-1 Rating: important References: * bsc#1258509 * bsc#1259079 * bsc#1259080 Cross-References: * CVE-2026-2243 * CVE-2026-3195 * CVE-2026-3196 CVSS scores: * CVE-2026-2243 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2026-2243 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-3195 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-3195 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:H/SI:H/SA:H * CVE-2026-3196 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-3196 ( SUSE ): 8.2 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves 3 vulnerabilities and has 3 bug fixes can now be installed. Description: This update for qemu fixes the following issues: Update to version 10.0.9. Security issues fixed: - CVE-2026-3196: unbounded memory allocation and host denial-of-service via PCM_INFO requests sent from the guest (bsc#1259079). - CVE-2026-3195: heap out-of-bounds write when reading input audio in the virtio-snd device input callback (bsc#1259080). - CVE-2026-2243: heap out-of-bounds read and 12-byte information leak when processing specially crafted VMDK files with qemu-img (bsc#1258509). Other updates and bugfixes: - Version 10.0.9: * Full backport list: https://lore.kernel.org/qemu-devel/20260318045608.7E1B513DFF6@think4mjt.localdomain/ * hyperv/syndbg: check length returned by cpu_physical_memory_map() * fuse: Copy write buffer content before polling * target/loongarch: Avoid recursive PNX exception on CSR_BADI fetch * target/loongarch: Preserve PTE permission bitsin LDPTE * hw/net/npcm_gmac: Catch accesses off the end of the register array * linux-user: fix TIOCGSID ioctl * tests/tcg/multiarch/test-mmap: Check mmaps beyond reserved_va * bsd-user: Deal with mmap where start > reserved_va * linux-user: Deal with mmap where start > reserved_va * hw/net/xilinx_ethlite: Check for oversized TX packets * virtio-gpu: Ensure BHs are invoked only from main-loop thread * block/nfs: Do not enter coroutine from CB * block: Never drop BLOCK_IO_ERROR with action=stop for rate limiting * block/throttle-groups: fix deadlock with iolimits and muliple iothreads * mirror: Fix missed dirty bitmap writes during startup * block/curl: fix concurrent completion handling * block/vmdk: fix OOB read in vmdk_read_extent() * hw/net/smc91c111: Don't allow negative-length packets * io: fix cleanup for websock I/O source data on cancellation * io: fix cleanup for TLS I/O source data on cancellation * io: separate freeing of tasks from marking them as complete * target/i386/hvf/x86_mmu: Fix compiler warning * hw/i386/vmmouse: Fix hypercall clobbers * tests/docker: upgrade most non-lcitool debian tests to debian 13 * hw/9pfs: fix missing EOPNOTSUPP on Twstat and Trenameat for fs synth driver * hw/9pfs: fix data race in v9fs_mark_fids_unreclaim() - Add support for AMD-Turn CPUs (jsc#PED-13174) * target/i386: Add support for EPYC-Turin model (jsc#PED-13174) * target/i386: Update EPYC-Genoa for Cache property, perfmon-v2, RAS and SVM feature bits (jsc#PED-13174) * target/i386: Add couple of feature bits in CPUID_Fn80000021_EAX (jsc#PED-13174) * target/i386: Update EPYC-Milan CPU model for Cache property, RAS, SVM feature bits (jsc#PED-13174) * target/i386: Update EPYC-Rome CPU model for Cache property, RAS, SVM feature bits (jsc#PED-13174) * target/i386: Update EPYC CPU model for Cache property, RAS, SVM feature bits (jsc#PED-13174) Patch instructions: To install this openSUSE security update use the suse recommendedinstallation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-591=1 Package List: - openSUSE Leap 16.0: qemu-10.0.9-160000.1.1 qemu-SLOF-10.0.9-160000.1.1 qemu-accel-qtest-10.0.9-160000.1.1 qemu-arm-10.0.9-160000.1.1 qemu-audio-alsa-10.0.9-160000.1.1 qemu-audio-dbus-10.0.9-160000.1.1 qemu-audio-jack-10.0.9-160000.1.1 qemu-audio-oss-10.0.9-160000.1.1 qemu-audio-pa-10.0.9-160000.1.1 qemu-audio-pipewire-10.0.9-160000.1.1 qemu-audio-spice-10.0.9-160000.1.1 qemu-block-curl-10.0.9-160000.1.1 qemu-block-dmg-10.0.9-160000.1.1 qemu-block-iscsi-10.0.9-160000.1.1 qemu-block-nfs-10.0.9-160000.1.1 qemu-block-rbd-10.0.9-160000.1.1 qemu-block-ssh-10.0.9-160000.1.1 qemu-chardev-baum-10.0.9-160000.1.1 qemu-chardev-spice-10.0.9-160000.1.1 qemu-doc-10.0.9-160000.1.1 qemu-extra-10.0.9-160000.1.1 qemu-guest-agent-10.0.9-160000.1.1 qemu-headless-10.0.9-160000.1.1 qemu-hw-display-qxl-10.0.9-160000.1.1 qemu-hw-display-virtio-gpu-10.0.9-160000.1.1 qemu-hw-display-virtio-gpu-pci-10.0.9-160000.1.1 qemu-hw-display-virtio-vga-10.0.9-160000.1.1 qemu-hw-s390x-virtio-gpu-ccw-10.0.9-160000.1.1 qemu-hw-usb-host-10.0.9-160000.1.1 qemu-hw-usb-redirect-10.0.9-160000.1.1 qemu-hw-usb-smartcard-10.0.9-160000.1.1 qemu-img-10.0.9-160000.1.1 qemu-ipxe-10.0.9-160000.1.1 qemu-ivshmem-tools-10.0.9-160000.1.1 qemu-ksm-10.0.9-160000.1.1 qemu-lang-10.0.9-160000.1.1 qemu-linux-user-10.0.9-160000.1.1 qemu-microvm-10.0.9-160000.1.1 qemu-ppc-10.0.9-160000.1.1 qemu-pr-helper-10.0.9-160000.1.1 qemu-s390x-10.0.9-160000.1.1 qemu-seabios-10.0.91.16.3_3_g3d33c746-160000.1.1 qemu-skiboot-10.0.9-160000.1.1 qemu-spice-10.0.9-160000.1.1 qemu-tools-10.0.9-160000.1.1 qemu-ui-curses-10.0.9-160000.1.1 qemu-ui-dbus-10.0.9-160000.1.1 qemu-ui-gtk-10.0.9-160000.1.1 qemu-ui-opengl-10.0.9-160000.1.1 qemu-ui-spice-app-10.0.9-160000.1.1 qemu-ui-spice-core-10.0.9-160000.1.1 qemu-vgabios-10.0.91.16.3_3_g3d33c746-160000.1.1 qemu-vhost-user-gpu-10.0.9-160000.1.1 qemu-vmsr-helper-10.0.9-160000.1.1 qemu-x86-10.0.9-160000.1.1 References: * https://www.suse.com/security/cve/CVE-2026-2243.html * https://www.suse.com/security/cve/CVE-2026-3195.html * https://www.suse.com/security/cve/CVE-2026-3196.html . Important security updates for openSUSE qemu address critical issues and enhance overall system security efficiency.. openSUSE security updates,qemu vulnerabilities,critical updates for qemu. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Apr 21, 2026 Important OpenSUSE
100

SUSE freerdp Important Buffer Overflow Issues Fixed 2026-0761-1

An update that solves six vulnerabilities can now be installed.. # Security update for freerdp Announcement ID: SUSE-SU-2026:0761-1 Release Date: 2026-03-03T12:40:27Z Rating: important References: * bsc#1256721 * bsc#1256723 * bsc#1256943 * bsc#1256945 * bsc#1256946 * bsc#1256947 Cross-References: * CVE-2026-22855 * CVE-2026-22857 * CVE-2026-23533 * CVE-2026-23732 * CVE-2026-23883 * CVE-2026-23884 CVSS scores: * CVE-2026-22855 ( SUSE ): 6.1 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-22855 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:H * CVE-2026-22855 ( NVD ): 5.6 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-22855 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-22857 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-22857 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-22857 ( NVD ): 6.8 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-22857 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23533 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23533 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-23533 ( NVD ): 7.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23732 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23732 ( SUSE ): 4.3CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2026-23732 ( NVD ): 5.5 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23732 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23883 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23883 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-23883 ( NVD ): 7.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23883 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23884 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23884 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-23884 ( NVD ): 7.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23884 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves six vulnerabilities can now be installed. ## Description: This update for freerdp fixes the following issues: * CVE-2026-22855: heap-buffer-overflow in smartcard_unpack_set_attrib_call (bsc#1256721). * CVE-2026-22857: heap-use-after-free in irp_thread_func (bsc#1256723). * CVE-2026-23533: improper validation can lead to heap buffer overflow in `clear_decompress_residual_data` (bsc#1256943). * CVE-2026-23732: improper validation can lead to heap bufferoverflow in `Glyph_Alloc` (bsc#1256945). * CVE-2026-23883: use-after-free when `update_pointer_color` and `freerdp_image_copy_from_pointer_data` fail (bsc#1256946). * CVE-2026-23884: use-after-free in `gdi_set_bounds` (bsc#1256947). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2026-761=1 SUSE-2026-761=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-761=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * libfreerdp2-2-2.11.2-150600.4.12.1 * freerdp-devel-2.11.2-150600.4.12.1 * freerdp-proxy-debuginfo-2.11.2-150600.4.12.1 * libuwac0-0-debuginfo-2.11.2-150600.4.12.1 * freerdp-proxy-2.11.2-150600.4.12.1 * libwinpr2-2-debuginfo-2.11.2-150600.4.12.1 * freerdp-2.11.2-150600.4.12.1 * uwac0-0-devel-2.11.2-150600.4.12.1 * freerdp-wayland-debuginfo-2.11.2-150600.4.12.1 * winpr-devel-2.11.2-150600.4.12.1 * freerdp-debuginfo-2.11.2-150600.4.12.1 * freerdp-server-2.11.2-150600.4.12.1 * libuwac0-0-2.11.2-150600.4.12.1 * libfreerdp2-2-debuginfo-2.11.2-150600.4.12.1 * freerdp-wayland-2.11.2-150600.4.12.1 * libwinpr2-2-2.11.2-150600.4.12.1 * freerdp-debugsource-2.11.2-150600.4.12.1 * freerdp-server-debuginfo-2.11.2-150600.4.12.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x) * uwac0-0-devel-2.11.2-150600.4.12.1 * freerdp-debuginfo-2.11.2-150600.4.12.1 * freerdp-debugsource-2.11.2-150600.4.12.1 ## References: * https://www.suse.com/security/cve/CVE-2026-22855.html * https://www.suse.com/security/cve/CVE-2026-22857.html * https://www.suse.com/security/cve/CVE-2026-23533.html * https://www.suse.com/security/cve/CVE-2026-23732.html * https://www.suse.com/security/cve/CVE-2026-23883.html *https://www.suse.com/security/cve/CVE-2026-23884.html * https://bugzilla.suse.com/show_bug.cgi?id=1256721 * https://bugzilla.suse.com/show_bug.cgi?id=1256723 * https://bugzilla.suse.com/show_bug.cgi?id=1256943 * https://bugzilla.suse.com/show_bug.cgi?id=1256945 * https://bugzilla.suse.com/show_bug.cgi?id=1256946 * https://bugzilla.suse.com/show_bug.cgi?id=1256947 . Critical security update for freerdp addresses major issues affecting SUSE users with important fixes and patches.. freerdp security,suse patch,heap overflow,linux application,linux vulnerabilities. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Mar 03, 2026 Important SuSE
99

Slackware 15.0: libpng Critical Buffer Overread Fix SSA:2026-014-01

New libpng packages are available for Slackware 15.0 and -current to fix security issues.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] libpng (SSA:2026-014-01) New libpng packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: +--------------------------+ patches/packages/libpng-1.6.54-i586-1_slack15.0.txz: Upgraded. This update fixes security issues: Heap buffer over-read in the libpng simplified API function png_image_finish_read() when processing interlaced 16-bit PNGs with 8-bit output format and non-minimal row stride. Integer truncation in the libpng simplified write API functions png_write_image_16bit() and png_write_image_8bit() causes heap buffer over-read when the caller provides a negative row stride (for bottom-up image layouts) or a stride exceeding 65535 bytes. For more information, see: https://www.cve.org/CVERecord?id=CVE-2026-22695 https://www.cve.org/CVERecord?id=CVE-2026-22801 (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you. Updated package for Slackware 15.0: ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/libpng-1.6.54-i586-1_slack15.0.txz Updated package for Slackware x86_64 15.0: ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/libpng-1.6.54-x86_64-1_slack15.0.txz Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/libpng-1.6.54-i686-1.txz Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/l/libpng-1.6.54-x86_64-1.txz MD5 signatures: +-------------+ Slackware 15.0package: 19a8814a62c441d9fca8f8fe740de783 libpng-1.6.54-i586-1_slack15.0.txz Slackware x86_64 15.0 package: 0edc1119768449104dab38a6044bd777 libpng-1.6.54-x86_64-1_slack15.0.txz Slackware -current package: 0b6f7b32f0c861a45d5adfaad5b14899 l/libpng-1.6.54-i686-1.txz Slackware x86_64 -current package: e8ffbb237f4e419652de899d0d43803c l/libpng-1.6.54-x86_64-1.txz Installation instructions: +------------------------+ Upgrade the package as root: # upgradepkg libpng-1.6.54-i586-1_slack15.0.txz +-----+ . New libpng packages for Slackware 15.0 address critical security issues related to buffer over-read and integer truncation.. libpng security slackware buffer overflow 2026-014-01. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jan 14, 2026 Critical Slackware
197

Debian 11: jq Critical Heap Overflow Advisory DLA-4307-1 CVE-2025-48060

An issue has been found in jq, a lightweight and flexible command-line JSON processor. A heap buffer overflow may happen when formatting empty strings. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4307-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Thorsten Alteholz September 21, 2025 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : jq Version : 1.6-2.1+deb11u1 CVE ID : CVE-2025-48060 An issue has been found in jq, a lightweight and flexible command-line JSON processor. A heap buffer overflow may happen when formatting empty strings. For Debian 11 bullseye, this problem has been fixed in version 1.6-2.1+deb11u1. We recommend that you upgrade your jq packages. For the detailed security status of jq please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/jq Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Keep up to date with the important jq revision mitigating a memory overflow flaw in Debian LTS, bolstering the protection of your system.. Debian LTS, jq, buffer overflow, security update, heap issue. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Sep 21, 2025 Critical Debian LTS
87

Debian: libxml2 Critical Memory Corruption Fix CVE-2025-7425 DSA-5990-1

A flaw was found in libxslt, the XSLT 1.0 processing library, where the attribute type, atype, flags are modified in a way that corrupts internal memory management. This is addressed by adding guards in libxml2, the GNOME XML library, preventing the heap use-after-free from happening. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-5990-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Aron Xu August 29, 2025 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : libxml2 CVE ID : CVE-2025-7425 Debian Bug : 1109122 A flaw was found in libxslt, the XSLT 1.0 processing library, where the attribute type, atype, flags are modified in a way that corrupts internal memory management. This is addressed by adding guards in libxml2, the GNOME XML library, preventing the heap use-after-free from happening. For the oldstable distribution (bookworm), this problem has been fixed in version 2.9.14+dfsg-1.3~deb12u4. For the stable distribution (trixie), this problem has been fixed in version 2.12.7+dfsg+really2.9.14-2.1+deb13u1. We recommend that you upgrade your libxml2 packages. For the detailed security status of libxml2 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/libxml2 Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . A significant vulnerability notice concerning libxml2 highlights a flaw in memory handling that demands prompt attention from all users.. libxml2 upgrade, Debian security, memory corruption patch. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Aug 29, 2025 Critical Debian
100

SUSE: gdk-pixbuf Important Buffer Overflow CVE-2025-7345 Advisory

* bsc#1246114 Cross-References: * CVE-2025-7345 . # Security update for gdk-pixbuf Announcement ID: SUSE-SU-2025:03010-1 Release Date: 2025-08-28T10:46:36Z Rating: important References: * bsc#1246114 Cross-References: * CVE-2025-7345 CVSS scores: * CVE-2025-7345 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-7345 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2025-7345 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for gdk-pixbuf fixes the following issues: * CVE-2025-7345: Fixed heap buffer overflow in gdk_pixbuf__jpeg_image_load_increment function (bsc#1246114) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2025-3010=1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-3010=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 ppc64le s390x x86_64) * gdk-pixbuf-query-loaders-debuginfo-2.34.0-19.23.1 * gdk-pixbuf-devel-2.34.0-19.23.1 * libgdk_pixbuf-2_0-0-2.34.0-19.23.1 * gdk-pixbuf-devel-debuginfo-2.34.0-19.23.1 * typelib-1_0-GdkPixbuf-2_0-2.34.0-19.23.1 * libgdk_pixbuf-2_0-0-debuginfo-2.34.0-19.23.1 * gdk-pixbuf-query-loaders-2.34.0-19.23.1 * gdk-pixbuf-debugsource-2.34.0-19.23.1 * SUSE Linux Enterprise Server 12SP5 LTSS (noarch) * gdk-pixbuf-lang-2.34.0-19.23.1 * SUSE Linux Enterprise Server 12 SP5 LTSS (s390x x86_64) * libgdk_pixbuf-2_0-0-32bit-2.34.0-19.23.1 * gdk-pixbuf-query-loaders-32bit-2.34.0-19.23.1 * libgdk_pixbuf-2_0-0-debuginfo-32bit-2.34.0-19.23.1 * gdk-pixbuf-query-loaders-debuginfo-32bit-2.34.0-19.23.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * gdk-pixbuf-query-loaders-32bit-2.34.0-19.23.1 * gdk-pixbuf-query-loaders-debuginfo-2.34.0-19.23.1 * gdk-pixbuf-devel-2.34.0-19.23.1 * libgdk_pixbuf-2_0-0-2.34.0-19.23.1 * gdk-pixbuf-query-loaders-debuginfo-32bit-2.34.0-19.23.1 * gdk-pixbuf-devel-debuginfo-2.34.0-19.23.1 * typelib-1_0-GdkPixbuf-2_0-2.34.0-19.23.1 * libgdk_pixbuf-2_0-0-debuginfo-32bit-2.34.0-19.23.1 * libgdk_pixbuf-2_0-0-debuginfo-2.34.0-19.23.1 * gdk-pixbuf-query-loaders-2.34.0-19.23.1 * libgdk_pixbuf-2_0-0-32bit-2.34.0-19.23.1 * gdk-pixbuf-debugsource-2.34.0-19.23.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (noarch) * gdk-pixbuf-lang-2.34.0-19.23.1 ## References: * https://www.suse.com/security/cve/CVE-2025-7345.html * https://bugzilla.suse.com/show_bug.cgi?id=1246114 . Critical gdk-pixbuf vulnerability addressed concerning heap overflow on SUSE Linux Enterprise systems. Urgent update needed.. gdk-pixbuf security patch, SUSE update, important vulnerabilities, buffer overflow fix. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Aug 28, 2025 Important SuSE
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200