Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 1 articles for you...
202
security advisoryhtml parsingDoSRed Hat Strengthens SLE-15-SP8 to Resolve Critical Flaw in Secure Link
An update that fixes two vulnerabilities is now available.. openSUSE Security Update: Security update for v2ray-core ______________________________________________________________________________ Announcement ID: openSUSE-SU-2026:0100-1 Rating: important References: #1251404 #1260329 Cross-References: CVE-2025-47911 CVE-2026-33186 CVSS scores: CVE-2025-47911 (SUSE): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2026-33186 (SUSE): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N Affected Products: openSUSE Backports SLE-15-SP6 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for v2ray-core fixes the following issues: - Update version to 5.47.0 * Add sticky choice option for leastping * Add support for enrollment links in tlsmirror * Add Wireguard Outbound (unreleased) * Add sticky choice option for leastping * Generalize IP address parsing in TUN stack options * Fix bugs - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-header (boo#1260329) - Update version to 5.44.1 * uTLS: bundled library updated to v1.8.2 for Chrome120 imitation profile identification * Update golang toolchain to v1.25.6, which fixed an vulnerable (tls.Config).Clone function * Fix bugs - Update version to 5.42.0 * Add TLSMirror bootstrap enrollment and self enrollment feature * TLSMirror Inverse Role Request Tripper Enrollment Server Support - CVE-2025-47911: v2ray-core: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents (boo#1251404) * Update golang.org/x/net to 0.45.0 in vendor - Update version to 5.38.0 * TLSMirror Connection Enrollment System * AddTLSMirror Sequence Watermarking * LSMirror developer preview protocol is now a part of mainline V2Ray * proxy dns with NOTIMP error * Add TLSMirror looks like TLS censorship resistant transport protocol as a developer preview transport * proxy dns with NOTIMP error * fix false success from SOCKS server when Dispatch() fails * HTTP inbound: Directly forward plain HTTP 1xx response header * add a option to override domain used to query https record * Fix bugs * Update vendor Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP6: zypper in -t patch openSUSE-2026-100=1 Package List: - openSUSE Backports SLE-15-SP6 (aarch64 i586 ppc64le s390x x86_64): v2ray-core-5.47.0-bp156.2.6.1 - openSUSE Backports SLE-15-SP6 (noarch): golang-github-v2fly-v2ray-core-5.47.0-bp156.2.6.1 References: https://www.suse.com/security/cve/CVE-2025-47911.html https://www.suse.com/security/cve/CVE-2026-33186.html https://bugzilla.suse.com/1251404 https://bugzilla.suse.com/1260329 . An important security advisory for openSUSE fixing v2ray-core vulnerabilities and recommending updates for safety.. openSUSE security update,v2ray-core vulnerabilities,v2ray core advisory. . Severity: Important. LinuxSecurity.com Team
Mar 27, 2026
•Important
OpenSUSE
202
security advisoryhtml parsingimportantopenSUSE: go-sendxmpp Important Memory Issues CVE-2025-47911 2025:0493-1
An update that fixes two vulnerabilities is now available.. openSUSE Security Update: Security update for go-sendxmpp ______________________________________________________________________________ Announcement ID: openSUSE-SU-2025:0493-1 Rating: important References: #1251461 #1251677 Cross-References: CVE-2025-47911 CVE-2025-58190 CVSS scores: CVE-2025-47911 (SUSE): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2025-58190 (SUSE): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N Affected Products: openSUSE Backports SLE-15-SP6 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for go-sendxmpp fixes the following issues: Update to 0.15.1: - Added * Add XEP-0359 Origin-ID to messages (requires go-xmpp > = v0.2.18). - Changed * HTTP upload: Ignore timeouts on disco IQs as some components do not reply. - Upgrades the embedded golang.org/x/net to 0.46.0 * Fixes: boo#1251461, CVE-2025-47911: various algorithms with quadratic complexity when parsing HTML documents * Fixes: boo#1251677, CVE-2025-58190: excessive memory consumption by 'html.ParseFragment' when processing specially crafted input Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP6: zypper in -t patch openSUSE-2025-493=1 Package List: - openSUSE Backports SLE-15-SP6 (aarch64 i586 ppc64le s390x x86_64): go-sendxmpp-0.15.1-bp156.2.9.1 References: https://www.suse.com/security/cve/CVE-2025-47911.html https://www.suse.com/security/cve/CVE-2025-58190.html https://bugzilla.suse.com/1251461 https://bugzilla.suse.com/1251677 . Update available for openSUSE addressing important flaws in go-sendxmpp, including memory issues and HTML parsing.. openSUSE Security Update, go-sendxmpp vulnerabilities, important updates. . Severity: Important. LinuxSecurity.com Team
Dec 31, 2025
•Important
OpenSUSE
100
security advisorySuSEhtml parsingSUSE: Important Security Update for Grafana Vulnerabilities 2025:4482-1
An update that solves seven vulnerabilities and contains two features can now be installed.. # Security update for grafana Announcement ID: SUSE-SU-2025:4482-1 Release Date: 2025-12-18T12:22:32Z Rating: important References: * bsc#1245302 * bsc#1246735 * bsc#1246736 * bsc#1250616 * bsc#1251454 * bsc#1251657 * bsc#1254113 * jsc#MSQA-1034 * jsc#PED-14178 Cross-References: * CVE-2025-11065 * CVE-2025-3415 * CVE-2025-47911 * CVE-2025-58190 * CVE-2025-6023 * CVE-2025-6197 * CVE-2025-64751 CVSS scores: * CVE-2025-11065 ( SUSE ): 5.7 CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2025-11065 ( SUSE ): 4.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N * CVE-2025-3415 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2025-3415 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2025-3415 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2025-47911 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-47911 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-58190 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-58190 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-6023 ( SUSE ): 7.2 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-6023 ( SUSE ): 7.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L * CVE-2025-6023 ( NVD ): 7.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L * CVE-2025-6197 ( SUSE ): 2.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-6197 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2025-6197 ( NVD ): 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2025-64751 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N * CVE-2025-64751 ( SUSE ): 8.2CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N * CVE-2025-64751 ( NVD ): 5.8 CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP6 * SUSE Package Hub 15 15-SP7 An update that solves seven vulnerabilities and contains two features can now be installed. ## Description: This update for grafana fixes the following issues: grafana was updated from version 11.5.5 to 11.5.10: * Security issues fixed: * CVE-2025-64751: Dropped experimental implementation of authorization Zanzana server/client (version 11.5.10) (bsc#1254113) * CVE-2025-47911: Fixed parsing HTML documents (version 11.5.10) (bsc#1251454) * CVE-2025-58190: Fixed excessive memory consumption (version 11.5.10) (bsc#1251657) * CVE-2025-11065: Fixed sensitive information leak in logs (version 11.5.9) (bsc#1250616) * CVE-2025-6023: Fixed cross-site-scripting via scripted dashboards (version 11.5.7) (bsc#1246735) * CVE-2025-6197: Fixed open redirect in organization switching (version 11.5.7) (bsc#1246736) * CVE-2025-3415: Fixed exposure of DingDing alerting integration URL to Viewer level users (version 11.5.6) (bsc#1245302) * Other changes, new features and bugs fixed: * Version 11.5.10: * Use forked wire from Grafana repository instead of external package (jsc#PED-14178) * Auth: Fix render user OAuth passthrough. * LDAP Authentication: Fix URL to propagate username context as parameter. * Plugins: Dependencies do notinherit parent URL for preinstall. * Version 11.5.9: * Auditing: Document new options for recording datasource query request/response body. * Login: Fixed redirection after login when Grafana is served from subpath. * Version 11.5.7: * Azure: Fixed legend formatting and resource name determination in template variable queries. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-4482=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-4482=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-4482=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * grafana-debuginfo-11.5.10-150200.3.80.1 * grafana-11.5.10-150200.3.80.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * grafana-debuginfo-11.5.10-150200.3.80.1 * grafana-11.5.10-150200.3.80.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * grafana-debuginfo-11.5.10-150200.3.80.1 * grafana-11.5.10-150200.3.80.1 ## References: * https://www.suse.com/security/cve/CVE-2025-11065.html * https://www.suse.com/security/cve/CVE-2025-3415.html * https://www.suse.com/security/cve/CVE-2025-47911.html * https://www.suse.com/security/cve/CVE-2025-58190.html * https://www.suse.com/security/cve/CVE-2025-6023.html * https://www.suse.com/security/cve/CVE-2025-6197.html * https://www.suse.com/security/cve/CVE-2025-64751.html * https://bugzilla.suse.com/show_bug.cgi?id=1245302 * https://bugzilla.suse.com/show_bug.cgi?id=1246735 * https://bugzilla.suse.com/show_bug.cgi?id=1246736 * https://bugzilla.suse.com/show_bug.cgi?id=1250616 * https://bugzilla.suse.com/show_bug.cgi?id=1251454 *https://bugzilla.suse.com/show_bug.cgi?id=1251657 * https://bugzilla.suse.com/show_bug.cgi?id=1254113 * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=https%3A%2F%2Fjira.suse.com%2Fbrowse%2FMSQA-1034 * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=https%3A%2F%2Fjira.suse.com%2Fbrowse%2FPED-14178 . SUSE updates Grafana to resolve multiple vulnerabilities, ensuring enhanced security and performance.. grafana update, SUSE security, important update, software vulnerabilities, Linux patch. . Severity: Important. LinuxSecurity.com Team
Dec 18, 2025
•Important
SuSE
202
security advisorycode executionhtml parsingopenSUSE: helm Important Local Execution Memory Issues 2025:4190-1
An update that solves three vulnerabilities can now be installed.. # Security update for helm Announcement ID: SUSE-SU-2025:4190-1 Release Date: 2025-11-24T09:21:06Z Rating: important References: * bsc#1246152 * bsc#1251442 * bsc#1251649 Cross-References: * CVE-2025-47911 * CVE-2025-53547 * CVE-2025-58190 CVSS scores: * CVE-2025-47911 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-47911 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-53547 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:L/VI:H/VA:H/SC:L/SI:H/SA:H * CVE-2025-53547 ( SUSE ): 8.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:H * CVE-2025-53547 ( NVD ): 8.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:H * CVE-2025-53547 ( NVD ): 8.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H * CVE-2025-58190 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-58190 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * Containers Module 15-SP6 * Containers Module 15-SP7 * openSUSE Leap 15.6 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS * SUSE Linux Enterprise Server 15 SP4 * SUSE LinuxEnterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP6 * SUSE Package Hub 15 15-SP7 An update that solves three vulnerabilities can now be installed. ## Description: This update for helm fixes the following issues: * Update to version 3.19.1 * CVE-2025-53547: Fixed local code execution in Helm Chart. (bsc#1246152) * CVE-2025-58190: Fixed excessive memory consumption by `html.ParseFragment` when processing specially crafted input. (bsc#1251649) * CVE-2025-47911: Fixed various algorithms with quadratic complexity when parsing HTML documents. (bsc#1251442) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-4190=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-4190=1 * Containers Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Containers-15-SP6-2025-4190=1 * Containers Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Containers-15-SP7-2025-4190=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-4190=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-4190=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-4190=1 * SUSE Linux Enterprise HighPerformance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-4190=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-4190=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-4190=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-4190=1 * SUSE Linux Enterprise Server 15 SP3 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-4190=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-4190=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-4190=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2025-4190=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-4190=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-4190=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2025-4190=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 * openSUSE Leap 15.6 (noarch) * helm-fish-completion-3.19.1-150000.1.57.1 * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * helm-bash-completion-3.19.1-150000.1.57.1 * Containers Module 15-SP6 (aarch64 ppc64le s390x x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 *Containers Module 15-SP6 (noarch) * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 * Containers Module 15-SP7 (aarch64 ppc64le s390x x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 * Containers Module 15-SP7 (noarch) * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 * SUSE Package Hub 15 15-SP6 (noarch) * helm-fish-completion-3.19.1-150000.1.57.1 * SUSE Package Hub 15 15-SP7 (noarch) * helm-fish-completion-3.19.1-150000.1.57.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 *helm-3.19.1-150000.1.57.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (aarch64 ppc64le s390x x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (noarch) * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 *SUSE Enterprise Storage 7.1 (aarch64 x86_64) * helm-debuginfo-3.19.1-150000.1.57.1 * helm-3.19.1-150000.1.57.1 * SUSE Enterprise Storage 7.1 (noarch) * helm-zsh-completion-3.19.1-150000.1.57.1 * helm-bash-completion-3.19.1-150000.1.57.1 ## References: * https://www.suse.com/security/cve/CVE-2025-47911.html * https://www.suse.com/security/cve/CVE-2025-53547.html * https://www.suse.com/security/cve/CVE-2025-58190.html * https://bugzilla.suse.com/show_bug.cgi?id=1246152 * https://bugzilla.suse.com/show_bug.cgi?id=1251442 * https://bugzilla.suse.com/show_bug.cgi?id=1251649 . SUSE's helm security update addresses critical issues, including local code execution and excessive memory usage. Recommended for installation.. helm security update, SUSE helm vulnerabilities, openSUSE security patch. . Severity: Important. LinuxSecurity.com Team
Nov 24, 2025
•Important
OpenSUSE
98
security advisorysecurity updatehtml parsingRedHat: RHSA-2023-1883-01 Important: OpenJDK 11 TLS Issues
An update is now available for OpenJDK. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: OpenJDK 11.0.19 Security Update for Windows Builds Advisory ID: RHSA-2023:1883-01 Product: OpenJDK Advisory URL: https://access.redhat.com/errata/RHSA-2023:1883 Issue date: 2023-04-19 CVE Names: CVE-2023-21930 CVE-2023-21937 CVE-2023-21938 CVE-2023-21939 CVE-2023-21954 CVE-2023-21967 CVE-2023-21968 ==================================================================== 1. Summary: An update is now available for OpenJDK. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: The OpenJDK 11 packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix(es): * OpenJDK: improper connection handling during TLS handshake (8294474) (CVE-2023-21930) * OpenJDK: Swing HTML parsing issue (8296832) (CVE-2023-21939) * OpenJDK: incorrect enqueue of references in garbage collector (8298191) (CVE-2023-21954) * OpenJDK: certificate validation issue in TLS session negotiation (8298310) (CVE-2023-21967) * OpenJDK: missing string checks for NULL characters (8296622) (CVE-2023-21937) * OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304) (CVE-2023-21938) * OpenJDK: missing check for slash characters in URI-to-path conversion (8298667) (CVE-2023-21968) For more details about the securityissue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 4. Bugs fixed (https://bugzilla.redhat.com/): 2187435 - CVE-2023-21930 OpenJDK: improper connection handling during TLS handshake (8294474) 2187441 - CVE-2023-21954 OpenJDK: incorrect enqueue of references in garbage collector (8298191) 2187704 - CVE-2023-21967 OpenJDK: certificate validation issue in TLS session negotiation (8298310) 2187724 - CVE-2023-21939 OpenJDK: Swing HTML parsing issue (8296832) 2187758 - CVE-2023-21938 OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304) 2187790 - CVE-2023-21937 OpenJDK: missing string checks for NULL characters (8296622) 2187802 - CVE-2023-21968 OpenJDK: missing check for slash characters in URI-to-path conversion (8298667) 5. References: https://access.redhat.com/security/cve/CVE-2023-21930 https://access.redhat.com/security/cve/CVE-2023-21937 https://access.redhat.com/security/cve/CVE-2023-21938 https://access.redhat.com/security/cve/CVE-2023-21939 https://access.redhat.com/security/cve/CVE-2023-21954 https://access.redhat.com/security/cve/CVE-2023-21967 https://access.redhat.com/security/cve/CVE-2023-21968 https://access.redhat.com/security/updates/classification#important 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBZEgr4NzjgjWX9erEAQidDg//UTMMVK03J99yfq2IH44mq1ajTlK4b1x/ xfRLNqOBaglnD56fQRcjcSv3cmpDIyOzKyDUJJdWcujQEQhX/hwXVCoEcN4FrdY9 jBBZqso9eYYUTIQH0BdHDDuNtCbJBfd3yoT6OHGNYBz4xWdzy43PekvwhBi13CpT jz/OyPSzoT86s+UL51+98esieVWRxCn/opJ0TLu9xDORbas2WD6MesvwzQQPv1Ip wLiHpHkiOhJ7McUbPPx3P17v403alLtwJXAEt0W+ZRya0Rz/XRdG8nebWZ5iWg7D JUzh4Sh+9BHQC2P5aSLs4jMLDlqsJKr2UNp07jYQqzgalivExWZ1h0qhVm015/M+ KhqwNpTr8VeWBailGixttANnlO464rwkB9Jo2JsgNVhAp8L3NRTv2e4fJHBV8iq6 vvM7Vtj4DsVlyL2hKb6Sz9MYncfM1g5bIniaFPY6+CwGudhRILIUMMw513Ts+y/g RGfV1XAXdhIKPFsFVrKw9nRU7ITa35u40JQMANn7vdu9NUB9FTj5vKwpeRO40SWQ F24x3T8euvgfkjOZ21mNjVG1YUEzepX+aa+EXahyPBXNwmWO4SNfPBbCHpMvDEDq Xu2Vg1vqSLozvmF3rptGtCUMX/f32pOP5VgkHvIdM9voDGhvsBLhRnvMUcxB9B33 GElYjV9GF6w=pcgF -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Apr 25, 2023
•Important
Red Hat
203
security advisoryupdatehtml parsingMageia: 2019-0316 Moderate: Thunderbird Use-After-Free and Overflow Issues
The updated packages fix security issues: Use-after-free when creating index updates in IndexedDB. (CVE-2019-11757) . MGASA-2019-0316 - Updated thunderbird packages fix security vulnerabilities Publication date: 07 Nov 2019 URL: https://advisories.mageia.org/MGASA-2019-0316.html Type: security Affected Mageia releases: 7 CVE: CVE-2019-11757, CVE-2019-11758, CVE-2019-11759, CVE-2019-11760, CVE-2019-11761, CVE-2019-11762, CVE-2019-11763, CVE-2019-11764, CVE-2019-15903 The updated packages fix security issues: Use-after-free when creating index updates in IndexedDB. (CVE-2019-11757) Potentially exploitable crash due to 360 Total Security. (CVE-2019-11758) Stack buffer overflow in HKDF output. (CVE-2019-11759) Stack buffer overflow in WebRTC networking. (CVE-2019-11760) Unintended access to a privileged JSONView object. (CVE-2019-11761) document.domain-based origin isolation has same-origin-property violation. (CVE-2019-11762) Incorrect HTML parsing results in XSS bypass technique. (CVE-2019-11763) Memory safety bugs fixed in Thunderbird 68.2. (CVE-2019-11764) Heap overflow in expat library in XML_GetCurrentLineNumber. (CVE-2019-15903) Enigmail has been updated to 2.1.3. References: - https://bugs.mageia.org/show_bug.cgi?id=25597 - https://www.thunderbird.net/en-US/thunderbird/68.2.0/releasenotes/ - https://www.thunderbird.net/en-US/thunderbird/68.2.1/releasenotes/ - https://www.mozilla.org/en-US/security/advisories/mfsa2019-35/ - https://enigmail.net/index.php/en/download/changelog#enig2.1.3 - https://access.redhat.com/errata/RHSA-2019:3237 - https://www.cve.org/CVERecord?id=CVE-2019-11757 - https://www.cve.org/CVERecord?id=CVE-2019-11758 - https://www.cve.org/CVERecord?id=CVE-2019-11759 - https://www.cve.org/CVERecord?id=CVE-2019-11760 - https://www.cve.org/CVERecord?id=CVE-2019-11761 - https://www.cve.org/CVERecord?id=CVE-2019-11762 - https://www.cve.org/CVERecord?id=CVE-2019-11763 - https://www.cve.org/CVERecord?id=CVE-2019-11764 -https://www.cve.org/CVERecord?id=CVE-2019-15903 SRPMS: - 7/core/thunderbird-68.2.1-1.mga7 - 7/core/thunderbird-l10n-68.2.1-1.mga7 . Recent Thunderbird updates in Mageia tackle serious security threats and address various vulnerabilities. For more information, click this link.. Mageia Security Update, Thunderbird Vulnerabilities, Critical Security Advisories, IndexedDB Exploit, Stack Overflow Fixes. . LinuxSecurity.com Team
Nov 07, 2019
Mageia
197
security advisoryhtml parsingdebianDebian LTS: DLA-1872-1 Moderate: python-django Denial-Of-Service Risk
It was discovered that there were two vulnerabilities in the Django web development framework: * CVE-2019-14232: Prevent a possible denial-of-service in . Package : python-django Version : 1.7.11-1+deb8u7 CVE IDs : CVE-2019-14232 CVE-2019-14233 Debian Bug : #934026 It was discovered that there were two vulnerabilities in the Django web development framework: * CVE-2019-14232: Prevent a possible denial-of-service in django.utils.text.Truncator. If django.utils.text.Truncator's chars() and words() methods were passed the html=True argument, they were extremely slow to evaluate certain inputs due to a catastrophic backtracking vulnerability in a regular expression. The chars() and words() methods are used to implement the truncatechars_html and truncatewords_html template filters, which were thus vulnerable. The regular expressions used by Truncator have been simplified in order to avoid potential backtracking issues. As a consequence, trailing punctuation may now at times be included in the truncated output. * CVE-2019-14233: Prevent a possible denial-of-service in strip_tags(). Due to the behavior of the underlying HTMLParser, django.utils.html.strip_tags() would be extremely slow to evaluate certain inputs containing large sequences of nested incomplete HTML entities. The strip_tags() method is used to implement the corresponding striptags template filter, which was thus also vulnerable. strip_tags() now avoids recursive calls to HTMLParser when progress removing tags, but necessarily incomplete HTML entities, stops being made. Remember that absolutely NO guarantee is provided about the results of strip_tags() being HTML safe. So NEVER mark safe the result of a strip_tags() call without escaping it first, for example with django.utils.html.escape(). For Debian 8 "Jessie", these has been fixed in python-django version 1.7.11-1+deb8u7. We recommend that you upgrade yourpython-django packages. You can find more information in upstream's announcement: https://www.djangoproject.com/weblog/2019/aug/01/security-releases/ Thanks to Carlton Gibson et al. for their handling of these issues. Regards, - -- ,'`. : :' : Chris Lamb `. `'`
Aug 06, 2019
Debian LTS
98
security advisoryred hatcriticalRed Hat RHSA-2009:1134-01 Critical HTML Parsing Issue in SeaMonkey
Updated seamonkey packages that fix a security issue are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team.. ==================================================================== Red Hat Security Advisory Synopsis: Important: seamonkey security update Advisory ID: RHSA-2009:1134-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2009:1134.html Issue date: 2009-06-30 CVE Names: CVE-2009-2210 ==================================================================== 1. Summary: Updated seamonkey packages that fix a security issue are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 3. Description: SeaMonkey is an open source Web browser, email and newsgroup client, IRC chat client, and HTML editor. A flaw was found in the way that SeaMonkey parsed malformed HTML mail messages. If a user opened a specially-crafted HTML mail message, it could cause SeaMonkey to crash or, possibly, to execute arbitrary code as the user running SeaMonkey. (CVE-2009-2210) All SeaMonkey users should upgrade to these updated packages, which correct this issue. After installing the update, SeaMonkey must be restarted for the changes to take effect. 4. Solution: Before applying this update, make sure that allpreviously-released errata relevant to your system have been applied. This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at 5. Bugs fixed (http://bugzilla.redhat.com/): 507812 - CVE-2009-2210 Thunderbird mail crash 6. Package List: Red Hat Enterprise Linux AS version3: Source: i386: seamonkey-1.0.9-0.39.el3.i386.rpm seamonkey-chat-1.0.9-0.39.el3.i386.rpm seamonkey-debuginfo-1.0.9-0.39.el3.i386.rpm seamonkey-devel-1.0.9-0.39.el3.i386.rpm seamonkey-dom-inspector-1.0.9-0.39.el3.i386.rpm seamonkey-js-debugger-1.0.9-0.39.el3.i386.rpm seamonkey-mail-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-devel-1.0.9-0.39.el3.i386.rpm seamonkey-nss-1.0.9-0.39.el3.i386.rpm seamonkey-nss-devel-1.0.9-0.39.el3.i386.rpm ia64: seamonkey-1.0.9-0.39.el3.ia64.rpm seamonkey-chat-1.0.9-0.39.el3.ia64.rpm seamonkey-debuginfo-1.0.9-0.39.el3.i386.rpm seamonkey-debuginfo-1.0.9-0.39.el3.ia64.rpm seamonkey-devel-1.0.9-0.39.el3.ia64.rpm seamonkey-dom-inspector-1.0.9-0.39.el3.ia64.rpm seamonkey-js-debugger-1.0.9-0.39.el3.ia64.rpm seamonkey-mail-1.0.9-0.39.el3.ia64.rpm seamonkey-nspr-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-1.0.9-0.39.el3.ia64.rpm seamonkey-nspr-devel-1.0.9-0.39.el3.ia64.rpm seamonkey-nss-1.0.9-0.39.el3.i386.rpm seamonkey-nss-1.0.9-0.39.el3.ia64.rpm seamonkey-nss-devel-1.0.9-0.39.el3.ia64.rpm ppc: seamonkey-1.0.9-0.39.el3.ppc.rpm seamonkey-chat-1.0.9-0.39.el3.ppc.rpm seamonkey-debuginfo-1.0.9-0.39.el3.ppc.rpm seamonkey-devel-1.0.9-0.39.el3.ppc.rpm seamonkey-dom-inspector-1.0.9-0.39.el3.ppc.rpm seamonkey-js-debugger-1.0.9-0.39.el3.ppc.rpm seamonkey-mail-1.0.9-0.39.el3.ppc.rpm seamonkey-nspr-1.0.9-0.39.el3.ppc.rpm seamonkey-nspr-devel-1.0.9-0.39.el3.ppc.rpm seamonkey-nss-1.0.9-0.39.el3.ppc.rpm seamonkey-nss-devel-1.0.9-0.39.el3.ppc.rpm s390: seamonkey-1.0.9-0.39.el3.s390.rpm seamonkey-chat-1.0.9-0.39.el3.s390.rpm seamonkey-debuginfo-1.0.9-0.39.el3.s390.rpm seamonkey-devel-1.0.9-0.39.el3.s390.rpm seamonkey-dom-inspector-1.0.9-0.39.el3.s390.rpm seamonkey-js-debugger-1.0.9-0.39.el3.s390.rpm seamonkey-mail-1.0.9-0.39.el3.s390.rpm seamonkey-nspr-1.0.9-0.39.el3.s390.rpm seamonkey-nspr-devel-1.0.9-0.39.el3.s390.rpm seamonkey-nss-1.0.9-0.39.el3.s390.rpm seamonkey-nss-devel-1.0.9-0.39.el3.s390.rpm s390x: seamonkey-1.0.9-0.39.el3.s390x.rpm seamonkey-chat-1.0.9-0.39.el3.s390x.rpm seamonkey-debuginfo-1.0.9-0.39.el3.s390.rpm seamonkey-debuginfo-1.0.9-0.39.el3.s390x.rpm seamonkey-devel-1.0.9-0.39.el3.s390x.rpm seamonkey-dom-inspector-1.0.9-0.39.el3.s390x.rpm seamonkey-js-debugger-1.0.9-0.39.el3.s390x.rpm seamonkey-mail-1.0.9-0.39.el3.s390x.rpm seamonkey-nspr-1.0.9-0.39.el3.s390.rpm seamonkey-nspr-1.0.9-0.39.el3.s390x.rpm seamonkey-nspr-devel-1.0.9-0.39.el3.s390x.rpm seamonkey-nss-1.0.9-0.39.el3.s390.rpm seamonkey-nss-1.0.9-0.39.el3.s390x.rpm seamonkey-nss-devel-1.0.9-0.39.el3.s390x.rpm x86_64: seamonkey-1.0.9-0.39.el3.i386.rpm seamonkey-1.0.9-0.39.el3.x86_64.rpm seamonkey-chat-1.0.9-0.39.el3.x86_64.rpm seamonkey-debuginfo-1.0.9-0.39.el3.i386.rpm seamonkey-debuginfo-1.0.9-0.39.el3.x86_64.rpm seamonkey-devel-1.0.9-0.39.el3.x86_64.rpm seamonkey-dom-inspector-1.0.9-0.39.el3.x86_64.rpm seamonkey-js-debugger-1.0.9-0.39.el3.x86_64.rpm seamonkey-mail-1.0.9-0.39.el3.x86_64.rpm seamonkey-nspr-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-1.0.9-0.39.el3.x86_64.rpm seamonkey-nspr-devel-1.0.9-0.39.el3.x86_64.rpm seamonkey-nss-1.0.9-0.39.el3.i386.rpm seamonkey-nss-1.0.9-0.39.el3.x86_64.rpm seamonkey-nss-devel-1.0.9-0.39.el3.x86_64.rpm Red Hat Desktop version3: Source: i386: seamonkey-1.0.9-0.39.el3.i386.rpm seamonkey-chat-1.0.9-0.39.el3.i386.rpm seamonkey-debuginfo-1.0.9-0.39.el3.i386.rpm seamonkey-devel-1.0.9-0.39.el3.i386.rpm seamonkey-dom-inspector-1.0.9-0.39.el3.i386.rpm seamonkey-js-debugger-1.0.9-0.39.el3.i386.rpm seamonkey-mail-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-devel-1.0.9-0.39.el3.i386.rpm seamonkey-nss-1.0.9-0.39.el3.i386.rpm seamonkey-nss-devel-1.0.9-0.39.el3.i386.rpm x86_64: seamonkey-1.0.9-0.39.el3.i386.rpm seamonkey-1.0.9-0.39.el3.x86_64.rpm seamonkey-chat-1.0.9-0.39.el3.x86_64.rpm seamonkey-debuginfo-1.0.9-0.39.el3.i386.rpm seamonkey-debuginfo-1.0.9-0.39.el3.x86_64.rpm seamonkey-devel-1.0.9-0.39.el3.x86_64.rpm seamonkey-dom-inspector-1.0.9-0.39.el3.x86_64.rpm seamonkey-js-debugger-1.0.9-0.39.el3.x86_64.rpm seamonkey-mail-1.0.9-0.39.el3.x86_64.rpm seamonkey-nspr-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-1.0.9-0.39.el3.x86_64.rpm seamonkey-nspr-devel-1.0.9-0.39.el3.x86_64.rpm seamonkey-nss-1.0.9-0.39.el3.i386.rpm seamonkey-nss-1.0.9-0.39.el3.x86_64.rpm seamonkey-nss-devel-1.0.9-0.39.el3.x86_64.rpm Red Hat Enterprise Linux ES version3: Source: i386: seamonkey-1.0.9-0.39.el3.i386.rpm seamonkey-chat-1.0.9-0.39.el3.i386.rpm seamonkey-debuginfo-1.0.9-0.39.el3.i386.rpm seamonkey-devel-1.0.9-0.39.el3.i386.rpm seamonkey-dom-inspector-1.0.9-0.39.el3.i386.rpm seamonkey-js-debugger-1.0.9-0.39.el3.i386.rpm seamonkey-mail-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-devel-1.0.9-0.39.el3.i386.rpm seamonkey-nss-1.0.9-0.39.el3.i386.rpm seamonkey-nss-devel-1.0.9-0.39.el3.i386.rpm ia64: seamonkey-1.0.9-0.39.el3.ia64.rpm seamonkey-chat-1.0.9-0.39.el3.ia64.rpm seamonkey-debuginfo-1.0.9-0.39.el3.i386.rpm seamonkey-debuginfo-1.0.9-0.39.el3.ia64.rpm seamonkey-devel-1.0.9-0.39.el3.ia64.rpm seamonkey-dom-inspector-1.0.9-0.39.el3.ia64.rpm seamonkey-js-debugger-1.0.9-0.39.el3.ia64.rpm seamonkey-mail-1.0.9-0.39.el3.ia64.rpm seamonkey-nspr-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-1.0.9-0.39.el3.ia64.rpm seamonkey-nspr-devel-1.0.9-0.39.el3.ia64.rpm seamonkey-nss-1.0.9-0.39.el3.i386.rpm seamonkey-nss-1.0.9-0.39.el3.ia64.rpm seamonkey-nss-devel-1.0.9-0.39.el3.ia64.rpm x86_64: seamonkey-1.0.9-0.39.el3.i386.rpm seamonkey-1.0.9-0.39.el3.x86_64.rpm seamonkey-chat-1.0.9-0.39.el3.x86_64.rpm seamonkey-debuginfo-1.0.9-0.39.el3.i386.rpm seamonkey-debuginfo-1.0.9-0.39.el3.x86_64.rpm seamonkey-devel-1.0.9-0.39.el3.x86_64.rpm seamonkey-dom-inspector-1.0.9-0.39.el3.x86_64.rpm seamonkey-js-debugger-1.0.9-0.39.el3.x86_64.rpm seamonkey-mail-1.0.9-0.39.el3.x86_64.rpm seamonkey-nspr-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-1.0.9-0.39.el3.x86_64.rpm seamonkey-nspr-devel-1.0.9-0.39.el3.x86_64.rpm seamonkey-nss-1.0.9-0.39.el3.i386.rpm seamonkey-nss-1.0.9-0.39.el3.x86_64.rpm seamonkey-nss-devel-1.0.9-0.39.el3.x86_64.rpm Red Hat Enterprise Linux WS version3: Source: i386: seamonkey-1.0.9-0.39.el3.i386.rpm seamonkey-chat-1.0.9-0.39.el3.i386.rpm seamonkey-debuginfo-1.0.9-0.39.el3.i386.rpm seamonkey-devel-1.0.9-0.39.el3.i386.rpm seamonkey-dom-inspector-1.0.9-0.39.el3.i386.rpm seamonkey-js-debugger-1.0.9-0.39.el3.i386.rpm seamonkey-mail-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-devel-1.0.9-0.39.el3.i386.rpm seamonkey-nss-1.0.9-0.39.el3.i386.rpm seamonkey-nss-devel-1.0.9-0.39.el3.i386.rpm ia64: seamonkey-1.0.9-0.39.el3.ia64.rpm seamonkey-chat-1.0.9-0.39.el3.ia64.rpm seamonkey-debuginfo-1.0.9-0.39.el3.i386.rpm seamonkey-debuginfo-1.0.9-0.39.el3.ia64.rpm seamonkey-devel-1.0.9-0.39.el3.ia64.rpm seamonkey-dom-inspector-1.0.9-0.39.el3.ia64.rpm seamonkey-js-debugger-1.0.9-0.39.el3.ia64.rpm seamonkey-mail-1.0.9-0.39.el3.ia64.rpm seamonkey-nspr-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-1.0.9-0.39.el3.ia64.rpm seamonkey-nspr-devel-1.0.9-0.39.el3.ia64.rpm seamonkey-nss-1.0.9-0.39.el3.i386.rpm seamonkey-nss-1.0.9-0.39.el3.ia64.rpm seamonkey-nss-devel-1.0.9-0.39.el3.ia64.rpm x86_64: seamonkey-1.0.9-0.39.el3.i386.rpm seamonkey-1.0.9-0.39.el3.x86_64.rpm seamonkey-chat-1.0.9-0.39.el3.x86_64.rpm seamonkey-debuginfo-1.0.9-0.39.el3.i386.rpm seamonkey-debuginfo-1.0.9-0.39.el3.x86_64.rpm seamonkey-devel-1.0.9-0.39.el3.x86_64.rpm seamonkey-dom-inspector-1.0.9-0.39.el3.x86_64.rpm seamonkey-js-debugger-1.0.9-0.39.el3.x86_64.rpm seamonkey-mail-1.0.9-0.39.el3.x86_64.rpm seamonkey-nspr-1.0.9-0.39.el3.i386.rpm seamonkey-nspr-1.0.9-0.39.el3.x86_64.rpm seamonkey-nspr-devel-1.0.9-0.39.el3.x86_64.rpm seamonkey-nss-1.0.9-0.39.el3.i386.rpm seamonkey-nss-1.0.9-0.39.el3.x86_64.rpm seamonkey-nss-devel-1.0.9-0.39.el3.x86_64.rpm Red Hat Enterprise Linux AS version4: Source: i386: seamonkey-1.0.9-44.el4_8.i386.rpm seamonkey-chat-1.0.9-44.el4_8.i386.rpm seamonkey-debuginfo-1.0.9-44.el4_8.i386.rpm seamonkey-devel-1.0.9-44.el4_8.i386.rpm seamonkey-dom-inspector-1.0.9-44.el4_8.i386.rpm seamonkey-js-debugger-1.0.9-44.el4_8.i386.rpm seamonkey-mail-1.0.9-44.el4_8.i386.rpm ia64: seamonkey-1.0.9-44.el4_8.ia64.rpm seamonkey-chat-1.0.9-44.el4_8.ia64.rpm seamonkey-debuginfo-1.0.9-44.el4_8.ia64.rpm seamonkey-devel-1.0.9-44.el4_8.ia64.rpm seamonkey-dom-inspector-1.0.9-44.el4_8.ia64.rpm seamonkey-js-debugger-1.0.9-44.el4_8.ia64.rpm seamonkey-mail-1.0.9-44.el4_8.ia64.rpm ppc: seamonkey-1.0.9-44.el4_8.ppc.rpm seamonkey-chat-1.0.9-44.el4_8.ppc.rpm seamonkey-debuginfo-1.0.9-44.el4_8.ppc.rpm seamonkey-devel-1.0.9-44.el4_8.ppc.rpm seamonkey-dom-inspector-1.0.9-44.el4_8.ppc.rpm seamonkey-js-debugger-1.0.9-44.el4_8.ppc.rpm seamonkey-mail-1.0.9-44.el4_8.ppc.rpm s390: seamonkey-1.0.9-44.el4_8.s390.rpm seamonkey-chat-1.0.9-44.el4_8.s390.rpm seamonkey-debuginfo-1.0.9-44.el4_8.s390.rpm seamonkey-devel-1.0.9-44.el4_8.s390.rpm seamonkey-dom-inspector-1.0.9-44.el4_8.s390.rpm seamonkey-js-debugger-1.0.9-44.el4_8.s390.rpm seamonkey-mail-1.0.9-44.el4_8.s390.rpm s390x: seamonkey-1.0.9-44.el4_8.s390x.rpm seamonkey-chat-1.0.9-44.el4_8.s390x.rpm seamonkey-debuginfo-1.0.9-44.el4_8.s390x.rpm seamonkey-devel-1.0.9-44.el4_8.s390x.rpm seamonkey-dom-inspector-1.0.9-44.el4_8.s390x.rpm seamonkey-js-debugger-1.0.9-44.el4_8.s390x.rpm seamonkey-mail-1.0.9-44.el4_8.s390x.rpm x86_64: seamonkey-1.0.9-44.el4_8.x86_64.rpm seamonkey-chat-1.0.9-44.el4_8.x86_64.rpm seamonkey-debuginfo-1.0.9-44.el4_8.x86_64.rpm seamonkey-devel-1.0.9-44.el4_8.x86_64.rpm seamonkey-dom-inspector-1.0.9-44.el4_8.x86_64.rpm seamonkey-js-debugger-1.0.9-44.el4_8.x86_64.rpm seamonkey-mail-1.0.9-44.el4_8.x86_64.rpm Red Hat Enterprise Linux Desktop version4: Source: i386: seamonkey-1.0.9-44.el4_8.i386.rpm seamonkey-chat-1.0.9-44.el4_8.i386.rpm seamonkey-debuginfo-1.0.9-44.el4_8.i386.rpm seamonkey-devel-1.0.9-44.el4_8.i386.rpm seamonkey-dom-inspector-1.0.9-44.el4_8.i386.rpm seamonkey-js-debugger-1.0.9-44.el4_8.i386.rpm seamonkey-mail-1.0.9-44.el4_8.i386.rpm x86_64: seamonkey-1.0.9-44.el4_8.x86_64.rpm seamonkey-chat-1.0.9-44.el4_8.x86_64.rpm seamonkey-debuginfo-1.0.9-44.el4_8.x86_64.rpm seamonkey-devel-1.0.9-44.el4_8.x86_64.rpm seamonkey-dom-inspector-1.0.9-44.el4_8.x86_64.rpm seamonkey-js-debugger-1.0.9-44.el4_8.x86_64.rpm seamonkey-mail-1.0.9-44.el4_8.x86_64.rpm Red Hat Enterprise Linux ES version 4: Source: i386: seamonkey-1.0.9-44.el4_8.i386.rpm seamonkey-chat-1.0.9-44.el4_8.i386.rpm seamonkey-debuginfo-1.0.9-44.el4_8.i386.rpm seamonkey-devel-1.0.9-44.el4_8.i386.rpm seamonkey-dom-inspector-1.0.9-44.el4_8.i386.rpm seamonkey-js-debugger-1.0.9-44.el4_8.i386.rpm seamonkey-mail-1.0.9-44.el4_8.i386.rpm ia64: seamonkey-1.0.9-44.el4_8.ia64.rpm seamonkey-chat-1.0.9-44.el4_8.ia64.rpm seamonkey-debuginfo-1.0.9-44.el4_8.ia64.rpm seamonkey-devel-1.0.9-44.el4_8.ia64.rpm seamonkey-dom-inspector-1.0.9-44.el4_8.ia64.rpm seamonkey-js-debugger-1.0.9-44.el4_8.ia64.rpm seamonkey-mail-1.0.9-44.el4_8.ia64.rpm x86_64: seamonkey-1.0.9-44.el4_8.x86_64.rpm seamonkey-chat-1.0.9-44.el4_8.x86_64.rpm seamonkey-debuginfo-1.0.9-44.el4_8.x86_64.rpm seamonkey-devel-1.0.9-44.el4_8.x86_64.rpm seamonkey-dom-inspector-1.0.9-44.el4_8.x86_64.rpm seamonkey-js-debugger-1.0.9-44.el4_8.x86_64.rpm seamonkey-mail-1.0.9-44.el4_8.x86_64.rpm Red Hat Enterprise Linux WS version4: Source: i386: seamonkey-1.0.9-44.el4_8.i386.rpm seamonkey-chat-1.0.9-44.el4_8.i386.rpm seamonkey-debuginfo-1.0.9-44.el4_8.i386.rpm seamonkey-devel-1.0.9-44.el4_8.i386.rpm seamonkey-dom-inspector-1.0.9-44.el4_8.i386.rpm seamonkey-js-debugger-1.0.9-44.el4_8.i386.rpm seamonkey-mail-1.0.9-44.el4_8.i386.rpm ia64: seamonkey-1.0.9-44.el4_8.ia64.rpm seamonkey-chat-1.0.9-44.el4_8.ia64.rpm seamonkey-debuginfo-1.0.9-44.el4_8.ia64.rpm seamonkey-devel-1.0.9-44.el4_8.ia64.rpm seamonkey-dom-inspector-1.0.9-44.el4_8.ia64.rpm seamonkey-js-debugger-1.0.9-44.el4_8.ia64.rpm seamonkey-mail-1.0.9-44.el4_8.ia64.rpm x86_64: seamonkey-1.0.9-44.el4_8.x86_64.rpm seamonkey-chat-1.0.9-44.el4_8.x86_64.rpm seamonkey-debuginfo-1.0.9-44.el4_8.x86_64.rpm seamonkey-devel-1.0.9-44.el4_8.x86_64.rpm seamonkey-dom-inspector-1.0.9-44.el4_8.x86_64.rpm seamonkey-js-debugger-1.0.9-44.el4_8.x86_64.rpm seamonkey-mail-1.0.9-44.el4_8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://www.cve.org/CVERecord?id=CVE-2009-2210 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2009 Red Hat, Inc. . This notification outlines a significant enhancement for SeaMonkey within Red Hat, tackling vital vulnerabilities associated with HTML interpretation.. SeaMonkey Security Update, Red Hat Security Advisory, Linux Software Security. . Severity: Important. LinuxSecurity.com Team
Jun 30, 2009
•Important
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!