Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoraDoS

Fedora: 2019-bce6498890 High: xen Security Update for Various Flaws

xen: various flaws (#1685577) grant table transfer issues on large hosts [XSA-284] race with pass-through device hotplug [XSA-285] x86: steal_page violates page_struct access discipline [XSA-287] x86: Inconsistent PV IOMMU discipline [XSA-288] missing preemption in x86 PV page table unvalidation [XSA-290] x86/PV: page type reference counting issue with failed IOMMU update. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-bce6498890 2019-03-21 21:08:05.034360 --------------------------------------------------------------------------------Name : xen Product : Fedora 28 Version : 4.10.3 Release : 2.fc28 URL : https://xenproject.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor --------------------------------------------------------------------------------Update Information: xen: various flaws (#1685577) grant table transfer issues on large hosts [XSA-284] race with pass-through device hotplug [XSA-285] x86: steal_page violates page_struct access discipline [XSA-287] x86: Inconsistent PV IOMMU discipline [XSA-288] missing preemption in x86 PV page table unvalidation [XSA-290] x86/PV: page type reference counting issue with failed IOMMU update [XSA-291] x86: insufficient TLB flushing when using PCID [XSA-292] x86: PV kernel context switch corruption [XSA-293] x86 shadow: Insufficient TLB flushing when using PCID [XSA-294] ---- update to xen-4.10.3 ---- - insufficient TLB flushing / improper large page mappings with AMD IOMMUs [XSA-275] (#1651665) -x86: DoS from attempting to use INVPCID with a non-canonical addresses [XSA-279] - Fix for XSA-240 conflicts with shadow paging [XSA-280] ---- guest use of HLE constructs may lock up host [XSA-282] --------------------------------------------------------------------------------ChangeLog: * TueMar 5 2019 Michael Young - 4.10.3-2 - xen: various flaws (#1685577) grant table transfer issues on large hosts [XSA-284] race with pass-through device hotplug [XSA-285] x86: steal_page violates page_struct access discipline [XSA-287] x86: Inconsistent PV IOMMU discipline [XSA-288] missing preemption in x86 PV page table unvalidation [XSA-290] x86/PV: page type reference counting issue with failed IOMMU update [XSA-291] x86: insufficient TLB flushing when using PCID [XSA-292] x86: PV kernel context switch corruption [XSA-293] x86 shadow: Insufficient TLB flushing when using PCID [XSA-294] * Tue Feb 26 2019 Michael Young - 4.10.3-1 - update to xen-4.10.3 adjust xen.use.fedora.ipxe.patch drop most of xen.fedora.efi.build.patch and let efi build on i686 remove patches for issues now fixed upstream * Tue Nov 20 2018 Michael Young - 4.10.2-4 - insufficient TLB flushing / improper large page mappings with AMD IOMMUs [XSA-275, CVE-2018-19961, CVE-2018-19962] (#1651665) - x86: DoS from attempting to use INVPCID with a non-canonical addresses [XSA-279, CVE-2018-19965] (#1651970) - Fix for XSA-240 conflicts with shadow paging [XSA-280, CVE-2018-19966] (#1652251) * Tue Nov 6 2018 Michael Young - 4.10.2-3 - guest use of HLE constructs may lock up host [XSA-282, CVE-2018-19967] * Thu Oct 25 2018 Michael Young - 4.10.2-2 - x86: Nested VT-x usable even when disabled [XSA-278, CVE-2018-18883] (#1643118) * Tue Sep 25 2018 Michael Young - 4.10.2-1 - update to xen-4.10.2 adjust xen.use.fedora.ipxe.patch remove patches for issues now fixed upstream * Wed Aug 15 2018 Michael Young - 4.10.1-6 - L1 Terminal Fault speculative side channel patch bundle [XSA-273, CVE-2018-3620, CVE-2018-3646] drop patches also in the bundle, which also includes Use of v2 grant tables may cause crash on ARM [XSA-268, CVE-2018-15469] (#1616081) x86: Incorrect MSR_DEBUGCTL handling lets guests enable BTS [XSA-269, CVE-2018-15468] (#1616077) oxenstored does not apply quota-maxentity [XSA-272, CVE-2018-15470] (#1616080) * Wed Jun 27 2018 Michael Young - 4.10.1-5 - preemption checks bypassed in x86 PV MM handling [XSA-264, CVE-2018-12891] (#1595959) - x86: #DB exception safety check can be triggered by a guest [XSA-265, CVE-2018-12893] (#1595958) - libxl fails to honour readonly flag on HVM emulated SCSI disks [XSA-266, CVE-2018-12892] (#1595957) * Fri Jun 15 2018 Michael Young - 4.10.1-4 - Speculative register leakage from lazy FPU context switching [XSA-267, CVE-2018-3665] - fix for change in iasl output * Tue May 22 2018 Michael Young - 4.10.1-3 - Speculative Store Bypass [XSA-263, CVE-2018-3639] (with extra patches so it applies cleanly) * Tue May 8 2018 Michael Young - 4.10.1-2 - x86: mishandling of debug exceptions [XSA-260, CVE-2018-8897] - x86 vHPET interrupt injection errors [XSA-261, CVE-2018-10982] (#1576089) - qemu may drive Xen into unbounded loop [XSA-262, CVE-2018-10981] (#1576680) * Thu May 3 2018 Michael Young - 4.10.1-1 - update to xen-4.10.1 adjust xen.use.fedora.ipxe.patch and xen.fedora.efi.build.patch remove patches for issues now fixed upstream package /usr/lib/debug/usr/lib/xen/boot/xen-shim-syms * Wed Apr 25 2018 Michael Young - 4.10.0-9 - Information leak via crafted user-supplied CDROM [XSA-258, CVE-2018-10472] (#1571867) - x86: PV guest may crash Xen with XPTI [XSA-259, CVE-2018-10471] (#1571878) --------------------------------------------------------------------------------References: [ 1 ] Bug #1679321 - xen: xsa288: Inconsistent PV IOMMU discipline https://bugzilla.redhat.com/show_bug.cgi?id=1679321 [ 2 ] Bug #1679326 - xen: xsa292: insufficient TLB flushing when using PCID https://bugzilla.redhat.com/show_bug.cgi?id=1679326 [ 3 ] Bug #1679327 - xen: xsa293: PV kernel context switch corruption https://bugzilla.redhat.com/show_bug.cgi?id=1679327 [ 4 ] Bug #1679328 - xen: xsa287: steal_page violates page_struct accessdiscipline https://bugzilla.redhat.com/show_bug.cgi?id=1679328 [ 5 ] Bug #1679332 - xen: xsa285: race with pass-through device hotplug https://bugzilla.redhat.com/show_bug.cgi?id=1679332 [ 6 ] Bug #1679334 - xen: xsa290: missing preemption in x86 PV page table unvalidation https://bugzilla.redhat.com/show_bug.cgi?id=1679334 [ 7 ] Bug #1683956 - xen: xsa294: Insufficient TLB flushing when using PCID https://bugzilla.redhat.com/show_bug.cgi?id=1683956 [ 8 ] Bug #1685568 - xen: xsa284: grant table transfer issues on large hosts https://bugzilla.redhat.com/show_bug.cgi?id=1685568 [ 9 ] Bug #1685570 - xen: xsa291: x86/PV: page type reference counting issue with failed IOMMU update https://bugzilla.redhat.com/show_bug.cgi?id=1685570 [ 10 ] Bug #1647573 - CVE-2018-19961 CVE-2018-19962 xen: insufficient TLB flushing / improper large page mappings with AMD IOMMUs https://bugzilla.redhat.com/show_bug.cgi?id=1647573 [ 11 ] Bug #1647588 - CVE-2018-19965 xen: x86: DoS from attempting to use INVPCID with a non-canonical addresses https://bugzilla.redhat.com/show_bug.cgi?id=1647588 [ 12 ] Bug #1652235 - CVE-2018-19966 xsa280 xen: Conflicts with shadow paging due to XSA-240 incomplete fix (XSA-280) https://bugzilla.redhat.com/show_bug.cgi?id=1652235 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-bce6498890' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Fedora's latest Xen security patch addresses multiple vulnerabilities, such as potential Denial of Service (DoS) threats, page table management issues, and device hotplug risks. Fedora Update,xen Security Update,xen Flaws,x86 IOMMU. . LinuxSecurity.com Team

Calendar 2 Mar 21, 2019 Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoramoderate severity

Fedora Core 2: 2005:128 Moderate: Hotplug USB Interaction Fix

This update fixes updfstab in the presence of multiple USB plug/unplug events.. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2005-128 2005-02-08 ---------------------------------------------------------------------Product : Fedora Core 2 Name : hotplug Version : 2004_04_01 Release : 1.1 Summary : A helper application which loads modules for USB devices. Description : The term "hotplugging" refers to the dynamic reconfiguration performed after a device has been attached to a running system. This package contains the application which is called by the kernel when a USB device is added; hotplug then loads the required modules for that device. ---------------------------------------------------------------------Update Information: This update fixes updfstab in the presence of multiple USB plug/unplug events. ---------------------------------------------------------------------* Mon Feb 07 2005 Bill Nottingham 3:2004_04_01-1.1 - run updfstab from the right place (#119140, others) ---------------------------------------------------------------------This update can be downloaded from: 50788c3ef8386139c5d745fd433707b6 SRPMS/hotplug-2004_04_01-1.1.src.rpm b0268ea71a287081b5516f874f2f0fbb x86_64/hotplug-2004_04_01-1.1.x86_64.rpm 4596b18e9f1307e525743f7ed3d4c8b2 x86_64/debug/hotplug-debuginfo-2004_04_01-1.1.x86_64.rpm 9085b428f15c1f7b3e88f127951f1aa9 i386/hotplug-2004_04_01-1.1.i386.rpm c0774f1ce2b15bbf1620e441b969dfe6 i386/debug/hotplug-debuginfo-2004_04_01-1.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. -----------------------------------------------------------------------fedora-announce-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . This patch addresses problems with updfstab that occur when USB devices are connected or disconnected in Fedora Core 2..Hotplug Update,Fedora Core 2,USB Event Fix. . LinuxSecurity.com Team

Calendar 2 Feb 08, 2005 Fedora
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedorasystem update

Fedora Core 3: Update 2004-11-08 Moderate: Hotplug Module Fix

This update fixes it so that the sg module gets loaded by hotplug for non-disk, non-optical devices.. --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-367 2004-11-08 --------------------------------------------------------------------- Product : Fedora Core 3 Name : hotplug Version : 2004_04_01 Release : 8 Summary : A helper application which loads modules for USB devices. Description : The term "hotplugging" refers to the dynamic reconfiguration performed after a device has been attached to a running system. This package contains the application which is called by the kernel when a USB device is added; hotplug then loads the required modules for that device. --------------------------------------------------------------------- Update Information: This update fixes it so that the sg module gets loaded by hotplug for non-disk, non-optical devices. --------------------------------------------------------------------- * Thu Nov 04 2004 Bill Nottingham 3:2004_04_01-8 - load sg module for appropriate devices (#137592) --------------------------------------------------------------------- This update can be downloaded from: dcccdec03a3a86db98e48a4d94bc8751 SRPMS/hotplug-2004_04_01-8.src.rpm 826e6bad86d1fcc030701d321c0b5812 x86_64/hotplug-2004_04_01-8.x86_64.rpm ad866ccacec274ba35d2654045a12890 x86_64/debug/hotplug-debuginfo-2004_04_01-8.x86_64.rpm d5cf0effec6432194ed2d0c38f7f0c80 i386/hotplug-2004_04_01-8.i386.rpm b57486a22ccf173660e805e310b39017 i386/debug/hotplug-debuginfo-2004_04_01-8.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- . Corrects the sg module initialization for devices that are neither disk nor optical in the Fedora hotplug update dated 2004-11-08.. Fedora Update, Hotplug Issue, Linux Module Loading, Device Support. . Severity: Important.LinuxSecurity.com Team

Calendar 2 Nov 08, 2004 Important Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here