Alerts This Week
Warning Icon 1 684
Alerts This Week
Warning Icon 1 684

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedorabuffer overrun

Fedora 27: LibRaw Security Advisory - Buffer And Heap Issues

Fix for possible buffer overrun in kodak_65000 decoder Fix for possible heap overrun in Canon makernotes parser Fix for CVE-2017-13735 CVE-2017-14265: Additional check for X-Trans CFA pattern data. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-0348398d64 2017-09-30 05:57:53.283255 --------------------------------------------------------------------------------Name : LibRaw Product : Fedora 27 Version : 0.18.5 Release : 1.fc27 URL : https://www.libraw.org/ Summary : Library for reading RAW files obtained from digital photo cameras Description : LibRaw is a library for reading RAW files obtained from digital photo cameras (CRW/CR2, NEF, RAF, DNG, and others). LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. --------------------------------------------------------------------------------Update Information: Fix for possible buffer overrun in kodak_65000 decoder Fix for possible heap overrun in Canon makernotes parser Fix for CVE-2017-13735 CVE-2017-14265: Additional check for X-Trans CFA pattern data --------------------------------------------------------------------------------References: [ 1 ] Bug #1488947 - CVE-2017-13735 libraw: Floating point exception in kodak_radc_load_raw function in internal/dcraw_common.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1488947 [ 2 ] Bug #1494522 - LibRaw-0.18.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1494522 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade LibRaw' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key.More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Improvements addressing buffer and heap overflows in LibRaw tailored for Fedora, including security fortifications and revisions.. LibRaw Security, Fedora Update, Security Fix, Buffer Overrun, Heap Overrun. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Sep 30, 2017 Important Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryhigh severityFedora

Fedora 26: 2017-90500f87f3 High: LibRaw Buffer Overrun and Heap Fix

Fix for possible buffer overrun in kodak_65000 decoder Fix for possible heap overrun in Canon makernotes parser Fix for CVE-2017-13735 CVE-2017-14265: Additional check for X-Trans CFA pattern data ---- Patch for CVE-2017-14348. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-90500f87f3 2017-09-24 22:32:16.648424 --------------------------------------------------------------------------------Name : LibRaw Product : Fedora 26 Version : 0.18.5 Release : 1.fc26 URL : https://www.libraw.org/ Summary : Library for reading RAW files obtained from digital photo cameras Description : LibRaw is a library for reading RAW files obtained from digital photo cameras (CRW/CR2, NEF, RAF, DNG, and others). LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. --------------------------------------------------------------------------------Update Information: Fix for possible buffer overrun in kodak_65000 decoder Fix for possible heap overrun in Canon makernotes parser Fix for CVE-2017-13735 CVE-2017-14265: Additional check for X-Trans CFA pattern data ---- Patch for CVE-2017-14348 --------------------------------------------------------------------------------References: [ 1 ] Bug #1488947 - CVE-2017-13735 libraw: Floating point exception in kodak_radc_load_raw function in internal/dcraw_common.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1488947 [ 2 ] Bug #1494522 - LibRaw-0.18.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1494522 [ 3 ] Bug #1492122 - CVE-2017-14348 libraw: Heap-based 1 byte buffer over-write in processCanonCameraInfo function in internal/dcraw_common.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1492122 --------------------------------------------------------------------------------Thisupdate can be installed with the "dnf" update program. Use su -c 'dnf upgrade LibRaw' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . The latest patch for LibRaw in Fedora 26 tackles issues related to buffer and heap overflow vulnerabilities, delivering essential security enhancements.. Fedora Security, LibRaw Update, Buffer Overrun Fix, Heap Overrun Fix. . LinuxSecurity.com Team

Calendar 2 Sep 25, 2017 Fedora
Banner 3 1028x280 1708121785 1771599793
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryred hatprivilege escalation

Red Hat: RHSA-2001:069-02 Critical Man Setgid Heap Overrun

A heap overrun exists in the man packages shipped with Red Hat Linux5.x, 6.x and 7.0.Since man is setgid man, users could gain gid man privileges.. ` --------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: Updated man package fixing security problems available Advisory ID: RHSA-2001:069-02 Issue date: 2001-05-13 Updated on: 2001-05-21 Product: Red Hat Linux Keywords: man setgid heap overflow Cross references: RHSA-2001:070 Obsoletes: --------------------------------------------------------------------- 1. Topic: A heap overrun exists in the man packages shipped with Red Hat Linux 5.x, 6.x and 7.0. Since man is setgid man, users could gain gid man privileges. Red Hat Linux 7.1 is not affected by this problem. 2. Relevant releases/architectures: Red Hat Linux 5.2 - alpha, i386, sparc Red Hat Linux 6.2 - alpha, i386, sparc Red Hat Linux 7.0 - alpha, i386 3. Problem description: A buffer size was calculated incorrectly in man.c 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. In particular, if you are running Red Hat Linux 5.x or 6.x, you need to install the mktemp errata (RHSA-2001:070) before applying this update. To update all RPMs for your particular architecture, run: rpm -Fvh [filenames] where [filenames] is a list of the RPMs you wish to upgrade. Only those RPMs which are currently installed will be updated. Those RPMs which are not installed but included in the list will not be updated. Note that you can also use wildcards (*.rpm) if your current directory *only* contains the desired RPMs. Please note that this update is also available via Red Hat Network. Many people find this an easier way to apply updates. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date This will start an interactive process that will result in theappropriate RPMs being upgraded on your system. 5. Bug IDs fixed ( for more info): 40400 - man 1.5h1-10 has an exploitable overflow 6. RPMs required: Red Hat Linux 5.2: SRPMS: alpha: i386: sparc: Red Hat Linux 6.2: SRPMS: alpha: i386: sparc: Red Hat Linux 7.0: SRPMS: alpha: i386: 7. Verification: MD5 sum Package Name -------------------------------------------------------------------------- 2b1c01c9490c9ee006566846a05b821a 5.2/en/os/SRPMS/man-1.5i-0.5x.1.src.rpm 00cea1dcef91591260a88dc61db73906 5.2/en/os/alpha/man-1.5i-0.5x.1.alpha.rpm dc0a21f7dda3f05c8599842ffff01482 5.2/en/os/i386/man-1.5i-0.5x.1.i386.rpm 75deb2a4464b3f50c930ef7d446edfe2 5.2/en/os/sparc/man-1.5i-0.5x.1.sparc.rpm 3ecc37d89a50cce2fa11851efc553569 6.2/en/os/SRPMS/man-1.5i-0.6x.1.src.rpm a13e86df8c929f337eb7eb12741fb9d8 6.2/en/os/alpha/man-1.5i-0.6x.1.alpha.rpm f132f39491c84f14d6f4d9120d1be777 6.2/en/os/i386/man-1.5i-0.6x.1.i386.rpm d1f322960a60560c45519600caa0f801 6.2/en/os/sparc/man-1.5i-0.6x.1.sparc.rpm 539ecb24566c3c4994379f8114fd58a0 7.0/en/os/SRPMS/man-1.5i-4.src.rpm 5fa9f106dbe9eadc2c148f11d6a15c7c 7.0/en/os/alpha/man-1.5i-4.alpha.rpm 1f99c169b03c1a59c038d77481a6710d 7.0/en/os/i386/man-1.5i-4.i386.rpm These packages are GPG signed by Red Hat, Inc. for security. Our key is available at: You can verify each package with the following command: rpm --checksig If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command: rpm --checksig --nogpg 8. References: Copyright(c) 2000, 2001 Red Hat, Inc. `. Heap overrun in Red Hat's man package urges immediate security update to prevent privilege escalation.. Heap Overflow, Red Hat Man, Security Patch, Privilege Escalation, Software Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 22, 2001 Critical Red Hat
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here