Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -1 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorycriticaldebian

Debian 10 Buster: DLA-3678-1 Critical Horizon Open Redirect Fix

[ NB: The original message sent included the wrong DLA reference ID. This message corrects the reference ID in the subject line. Everything else about the content of the former message, including the CVE identified as fixed and the version of the package in which it is fixed, . ------------------------------------------------------------------------- Debian LTS Advisory DLA-3678-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Guilhem Moulin December 30, 2023 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : horizon Version : 3:14.0.2-3+deb10u3 CVE ID : CVE-2022-45582 [ NB: The original message sent included the wrong DLA reference ID. This message corrects the reference ID in the subject line. Everything else about the content of the former message, including the CVE identified as fixed and the version of the package in which it is fixed, remains the same. ] Phan Nguyên Long discovered an Open Redirect vulnerability in horizon, a web application to control an OpenStack cloud, which could lead to phishing. For Debian 10 buster, this problem has been fixed in version 3:14.0.2-3+deb10u3. We recommend that you upgrade your horizon packages. For the detailed security status of horizon please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/horizon Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Improve your Debian horizon packages following the LTS Notice DLA-3678-1, which resolves the Open Redirect vulnerability issue.. Debian LTS,Horizon Security,Open Redirect Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 01, 2023 Critical Debian LTS
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisoryDebiancritical threat

Debian 10 Horizon: DLA-3676-1 critical Open Redirect risk

Phan Nguyên Long discovered an Open Redirect vulnerability in horizon, a web application to control an OpenStack cloud, which could lead to phishing. . ------------------------------------------------------------------------- Debian LTS Advisory DLA-3676-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Guilhem Moulin November 30, 2023 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : horizon Version : 3:14.0.2-3+deb10u3 CVE ID : CVE-2022-45582 Phan Nguyên Long discovered an Open Redirect vulnerability in horizon, a web application to control an OpenStack cloud, which could lead to phishing. For Debian 10 buster, this problem has been fixed in version 3:14.0.2-3+deb10u3. We recommend that you upgrade your horizon packages. For the detailed security status of horizon please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/horizon Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Update Horizon on Debian LTS to mitigate severe Open Redirect vulnerability that poses phishing dangers. Discover further information here.. Debian Security Update, Open Redirect Issue, Horizon Application Patch. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 30, 2023 Critical Debian LTS
Banner 3 1028x280 1708121785 1771599793
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorysoftware updateUbuntu

Ubuntu 20.04 LTS USN-4675-1 Critical: OpenStack Horizon Redirect

OpenStack Horizon could be made to redirect to a malicious URL.. =========================================================================Ubuntu Security Notice USN-4675-1 January 05, 2021 horizon vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: OpenStack Horizon could be made to redirect to a malicious URL. Software Description: - horizon: Web interface for OpenStack cloud infrastructure Details: Pritam Singh discovered that OpenStack Horizon incorrectly validated certain parameters. An attacker could possibly use this issue to cause OpenStack Horizon to redirect to a malicious URL. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS: openstack-dashboard 3:18.3.2-0ubuntu0.20.04.4 Ubuntu 18.04 LTS: openstack-dashboard 3:13.0.3-0ubuntu2 Ubuntu 16.04 LTS: openstack-dashboard 2:9.1.2-0ubuntu5.2 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-4675-1 CVE-2020-29565 Package Information: https://launchpad.net/ubuntu/+source/horizon/3:18.3.2-0ubuntu0.20.04.4 https://launchpad.net/ubuntu/+source/horizon/3:13.0.3-0ubuntu2 https://launchpad.net/ubuntu/+source/horizon/2:9.1.2-0ubuntu5.2 . The recent Ubuntu Security Notice USN-4675-1 highlights a vulnerability within OpenStack Horizon that may result in unauthorized redirects by malicious entities.. Openstack Vulnerability,Horizon Redirect Issue,Ubuntu Security Notice. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 05, 2021 Critical Ubuntu
87
Ls Advisories Debian Esm H240
Price Tag 1security advisoryupdatecritical

Debian Buster DSA-4820-2 Critical: Open Redirect in Horizon

Pritam Singh discovered an open redirect in the workflow forms of OpenStack Horizon. For the stable distribution (buster), this problem has been fixed in . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4820-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff December 27, 2020 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : horizon CVE ID : CVE-2020-29565 Debian Bug : 976872 Pritam Singh discovered an open redirect in the workflow forms of OpenStack Horizon. For the stable distribution (buster), this problem has been fixed in version 3:14.0.2-3+deb10u2. We recommend that you upgrade your horizon packages. For the detailed security status of horizon please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/horizon Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . A security flaw involving an open redirect within OpenStack Horizon has been identified and addressed in Debian's stable release. Users are advised to perform an upgrade.. Debian Security, OpenStack Horizon, Critical Threat, Security Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 27, 2020 Critical Debian
Banner 3 1028x280 1708121785 1771599793
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorymoderatecross-site scripting

Ubuntu 13.10 USN-2206-1 Moderate: OpenStack Horizon XSS Risk

OpenStack Horizon did not properly process Heat templates.. =========================================================================Ubuntu Security Notice USN-2206-1 May 06, 2014 horizon vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 13.10 Summary: OpenStack Horizon did not properly process Heat templates. Software Description: - horizon: Web interface for OpenStack cloud infrastructure Details: Cristian Fiorentino discovered that OpenStack Horizon did not properly perform input sanitization for Heat templates. If a user were tricked into using a specially crafted Heat template, an attacker could conduct cross-site scripting attacks. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 13.10: openstack-dashboard 1:2013.2.3-0ubuntu1.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-2206-1 CVE-2014-0157 Package Information: https://launchpad.net/ubuntu/+source/horizon/1:2013.2.3-0ubuntu1.1 . The vulnerability in OpenStack Horizon impacts Ubuntu 13.10, highlighting concerns related to cross-site scripting along with necessary updates.. OpenStack Horizon, Cross-Site Scripting, Ubuntu Security Notice. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 06, 2014 Important Ubuntu
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorymoderatecross-site scripting

Ubuntu 13.10: 2062-1 Moderate: OpenStack Horizon Information Exposure

Horizon could be made to expose sensitive information over the network.. =========================================================================Ubuntu Security Notice USN-2062-1 December 20, 2013 horizon vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 13.10 - Ubuntu 13.04 - Ubuntu 12.10 Summary: Horizon could be made to expose sensitive information over the network. Software Description: - horizon: Web interface for OpenStack cloud infrastructure Details: Chris Chapman discovered cross-site scripting (XSS) vulnerabilities in Horizon via the Volumes and Network Topology pages. An authenticated attacker could exploit these to conduct stored cross-site scripting (XSS) attacks against users viewing these pages in order to modify the contents or steal confidential data within the same domain. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 13.10: python-django-horizon 1:2013.2-0ubuntu1.1 Ubuntu 13.04: python-django-horizon 1:2013.1.4-0ubuntu1.1 Ubuntu 12.10: python-django-horizon 2012.2.4-0ubuntu1.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-2062-1 CVE-2013-6858 Package Information: https://launchpad.net/ubuntu/+source/horizon/1:2013.2-0ubuntu1.1 https://launchpad.net/ubuntu/+source/horizon/1:2013.1.4-0ubuntu1.1 https://launchpad.net/ubuntu/+source/horizon/2012.2.4-0ubuntu1.1 . Ubuntu Security Notice USN-2073-1 warns of a critical vulnerability in the kernel that could lead to privilege escalation, putting user data at risk.. Horizon Vulnerability, Information Exposure, XSS Threats. . LinuxSecurity.com Team

Calendar 2 Dec 20, 2013 Ubuntu
Banner 3 1028x280 1708121785 1771599793
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorycriticalUbuntu

Ubuntu 12.04 LTS USN-1565-1 Critical: OpenStack Horizon Sensitive Exposure

OpenStack Horizon could help expose sensitive information.. =========================================================================Ubuntu Security Notice USN-1565-1 September 13, 2012 horizon vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 12.04 LTS Summary: OpenStack Horizon could help expose sensitive information. Software Description: - horizon: Web interface for OpenStack cloud infrastructure Details: Thomas Biege discovered that the Horizon authentication mechanism did not validate the next parameter. An attacker could use this to construct a link to legitimate OpenStack web dashboard that redirected the user to a malicious website after authentication. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 LTS: openstack-dashboard 2012.1.3+stable~20120815-691dd2-0ubuntu1.1 python-django-horizon 2012.1.3+stable~20120815-691dd2-0ubuntu1.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-1565-1 CVE-2012-3540 Package Information: https://launchpad.net/ubuntu/+source/horizon/2012.1.3+stable~20120815-691dd2-0ubuntu1.1 . OpenStack Horizon might reveal critical data. Mitigate this risk through appropriate patches.. OpenStack Horizon, Sensitive Information Exposure, Horizon Authentication. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 13, 2012 Critical Ubuntu
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorymoderateUbuntu

Ubuntu 12.04 LTS USN-1439-1 Moderate Horizon Information Exposure

Horizon could be made to expose sensitive information over the network.. =========================================================================Ubuntu Security Notice USN-1439-1 May 07, 2012 horizon vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 12.04 LTS Summary: Horizon could be made to expose sensitive information over the network. Software Description: - horizon: Web interface for OpenStack cloud infrastructure Details: Matthias Weckbecker discovered a cross-site scripting (XSS) vulnerability in Horizon via the log viewer refrash mechanism. If a user were tricked into viewing a specially crafted log message, a remote attacker could exploit this to modify the contents or steal confidential data within the same domain. (CVE-2012-2094) Thomas Biege discovered a session fixation vulnerability in Horizon. An attacker could exploit this to potentially allow access to unauthorized information and capabilities. (CVE-2012-2144) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 LTS: python-django-horizon 2012.1-0ubuntu8.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-1439-1 CVE-2012-2094, CVE-2012-2144 Package Information: https://launchpad.net/ubuntu/+source/horizon/2012.1-0ubuntu8.1 . Explore updates for Horizon vulnerabilities in Ubuntu 12.04 LTS exposing sensitive information over the network.. Horizon vulnerabilities, Ubuntu security updates, sensitive information exposure. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 07, 2012 Important Ubuntu
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here