Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydebianhigh

Debian 10 DLA-3451-1 High Risk: PyPDF2 Infinite Loop Issue

Sebastian Krause discovered that manipulated inline images can force PyPDF2, a pure Python PDF library, into an infinite loop, if a maliciously crafted PDF file is processed. . -------------------------------------------------------------------------Debian LTS Advisory DLA-3451-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Markus Koschany June 09, 2023 https://wiki.debian.org/LTS -------------------------------------------------------------------------Package : pypdf2 Version : 1.26.0-2+deb10u1 CVE ID : CVE-2022-24859 Debian Bug : 1009879 Sebastian Krause discovered that manipulated inline images can force PyPDF2, a pure Python PDF library, into an infinite loop, if a maliciously crafted PDF file is processed. For Debian 10 buster, this problem has been fixed in version 1.26.0-2+deb10u1. We recommend that you upgrade your pypdf2 packages. For the detailed security status of pypdf2 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/pypdf2 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Manipulated PDF documents may leverage embedded images to trigger a recursive loop in PyPDF2. Immediate action advised.. Debian Security Update, PyPDF2 Exploit, Inline Image Risk. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 09, 2023 Important Debian LTS
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of servicesoftware update

Ubuntu 14.04 LTS: USN-2205-2 Security: LibTIFF Image Vulnerabilities

LibTIFF could be made to crash or run programs as your login if it opened a specially crafted file.. =========================================================================Ubuntu Security Notice USN-2205-1 May 06, 2014 tiff vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 14.04 LTS - Ubuntu 13.10 - Ubuntu 12.10 - Ubuntu 12.04 LTS - Ubuntu 10.04 LTS Summary: LibTIFF could be made to crash or run programs as your login if it opened a specially crafted file. Software Description: - tiff: Tag Image File Format (TIFF) library Details: Pedro Ribeiro discovered that LibTIFF incorrectly handled certain malformed images when using the gif2tiff tool. If a user or automated system were tricked into opening a specially crafted GIF image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges. This issue only affected Ubuntu 10.04 LTS, Ubunu 12.04 LTS, Ubuntu 12.10 and Ubuntu 13.10. (CVE-2013-4231) Pedro Ribeiro discovered that LibTIFF incorrectly handled certain malformed images when using the tiff2pdf tool. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges. This issue only affected Ubuntu 10.04 LTS, Ubunu 12.04 LTS, Ubuntu 12.10 and Ubuntu 13.10. (CVE-2013-4232) Murray McAllister discovered that LibTIFF incorrectly handled certain malformed images when using the gif2tiff tool. If a user or automated system were tricked into opening a specially crafted GIF image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges. (CVE-2013-4243) Huzaifa Sidhpurwala discovered that LibTIFF incorrectly handled certain malformedimages when using the gif2tiff tool. If a user or automated system were tricked into opening a specially crafted GIF image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges. This issue only affected Ubuntu 10.04 LTS, Ubunu 12.04 LTS, Ubuntu 12.10 and Ubuntu 13.10. (CVE-2013-4244) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 LTS: libtiff5 4.0.3-7ubuntu0.1 Ubuntu 13.10: libtiff5 4.0.2-4ubuntu3.1 Ubuntu 12.10: libtiff5 4.0.2-1ubuntu2.3 Ubuntu 12.04 LTS: libtiff4 3.9.5-2ubuntu1.6 Ubuntu 10.04 LTS: libtiff4 3.9.2-2ubuntu0.14 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-2205-1 CVE-2013-4231, CVE-2013-4232, CVE-2013-4243, CVE-2013-4244 Package Information: https://launchpad.net/ubuntu/+source/tiff/4.0.3-7ubuntu0.1 https://launchpad.net/ubuntu/+source/tiff/4.0.2-4ubuntu3.1 https://launchpad.net/ubuntu/+source/tiff/4.0.2-1ubuntu2.3 https://launchpad.net/ubuntu/+source/tiff/3.9.5-2ubuntu1.6 https://launchpad.net/ubuntu/+source/tiff/3.9.2-2ubuntu0.14 . Recent weaknesses in LibTIFF for Ubuntu might allow application failures or unauthorized execution of code via specially designed image files.. LibTIFF Exploits, Ubuntu Security Notice, Image File Format Issues. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 06, 2014 Important Ubuntu
Banner 2 1028x280 1708121730 1 1771599631
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of serviceupdate

Ubuntu 6.06, 7.10, 8.04 LTS USN-697-1 Critical: Imlib2 DoS

It was discovered that Imlib2 did not correctly handle certain malformed XPM and PNG images. If a user were tricked into opening a specially crafted image with an application that uses Imlib2, an attacker could cause a denial of service and possibly execute arbitrary code with the user's privileges. . ==========================================================Ubuntu Security Notice USN-697-1 December 22, 2008 imlib2 vulnerability CVE-2008-2426 ========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 7.10 Ubuntu 8.04 LTS This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: libimlib2 1.2.1-2ubuntu0.4 Ubuntu 7.10: libimlib2 1.3.0.0debian1-4ubuntu0.2 Ubuntu 8.04 LTS: libimlib2 1.4.0-1ubuntu1.2 After a standard system upgrade you need to restart any applications that use Imlib2 to effect the necessary changes. Details follow: It was discovered that Imlib2 did not correctly handle certain malformed XPM and PNG images. If a user were tricked into opening a specially crafted image with an application that uses Imlib2, an attacker could cause a denial of service and possibly execute arbitrary code with the user's privileges. Updated packages for Ubuntu 6.06 LTS: Source archives: Size/MD5: 112004 40358c580aa8df51d351dd6e7f5a16c8 Size/MD5: 753 5420a8a79b55140d8e24db8f2de00dd6 Size/MD5: 911360 deb3c9713339fe9ca964e100cce42cd1 amd64 architecture (Athlon64, Opteron, EM64T Xeon): Size/MD5: 352146 b50aee75d96a48b69302db0b41ae17ad Size/MD5: 214740 b699d7ceafc603c4da9c42325732e076 i386 architecture (x86 compatible Intel/AMD): Size/MD5: 302668 ebf21b1c1a22e4802a18c82f59de28e8 Size/MD5: 193408 34bfcc6c8dc0986f44e06ec5d7410665 powerpc architecture (Apple Macintosh G3/G4/G5): Size/MD5: 342046 295d87aa13c311a74cd344c0f073af6d Size/MD5: 212958 93c174a40fc7d88d48a70f5fdb09a3f5 sparc architecture (Sun SPARC/UltraSPARC): Size/MD5: 318588 e21dc5553e88054dfd9010cc898181f9 Size/MD5: 194098 fbe1c22aad50c8258c140c67dd85894d Updated packages for Ubuntu 7.10: Source archives: Size/MD5: 13769 09820004bae28d3057000445482ef609 Size/MD5: 873 cf5b5d9869202da1a5aa29dbd57b31ab Size/MD5: 617750 7f389463afdb09310fa61e5036714bb3 amd64 architecture (Athlon64, Opteron, EM64T Xeon): Size/MD5: 365988 53ecdab9240acf9b71e9beb9903ec7fc Size/MD5: 214090 b379ee9c5d678cde9e6766df89695dba i386 architecture (x86 compatible Intel/AMD): Size/MD5: 334468 907b6b0b7f11895b1b32b0886d7a9343 Size/MD5: 205802 dc82a1e573a045e487e77dd8dae5fd65 lpia architecture (Low Power Intel Architecture): Size/MD5: 341414 516b71217f39e0bc653d2862d1e1db19 Size/MD5: 209358 3cf0224915a3dd16199aafbb49e96c34 powerpc architecture (Apple Macintosh G3/G4/G5): Size/MD5: 362620 634e0878891c1e6308950333718c1bd4 Size/MD5: 229886 b37e628289bf933f6cd8ecb4e8d6b3ac sparc architecture (Sun SPARC/UltraSPARC): Size/MD5: 338862 57c8a21576417e08d2b9b7c4e5ee8db1 Size/MD5: 200926 1f96efa5649dd902157fd7e1ea358a7b Updated packages for Ubuntu 8.04 LTS: Source archives: Size/MD5: 56663 fb26ad4224322e4ede71f5d70a62638f Size/MD5: 843 e80fb6a9f642fd8a5c0d4b82b4a20429 Size/MD5: 845017 1f7f497798e06085767d645b0673562a amd64 architecture (Athlon64, Opteron, EM64T Xeon): Size/MD5: 344524 d023421c4725c4fadb076510ba28f0cb Size/MD5: 199838 4a7b97363d6af1862911a576703b760a i386 architecture (x86compatible Intel/AMD): Size/MD5: 309450 b9a5eeb6b5ba08edc7252b25b2df1811 Size/MD5: 190318 290fda5b18c7dae98526f38a9b324595 lpia architecture (Low Power Intel Architecture): Size/MD5: 318168 6cfb7d6f677930908a2dfc4567b2ff7f Size/MD5: 194220 05f1faaa12d4094a2622cfa70dff086e powerpc architecture (Apple Macintosh G3/G4/G5): Size/MD5: 336314 665ed6ae263c147a59d4f94a199b0395 Size/MD5: 211732 d97ee45ecc1b5300b5a8e7e1e9608496 sparc architecture (Sun SPARC/UltraSPARC): Size/MD5: 314152 f14550d0965519dcc4d5b1c5bc435e64 Size/MD5: 181174 c48d4ebd678032ebfc55d19c72d613b5 . Uncover the Imlib2 flaw in Ubuntu that enables denial of service via corrupt image files and explore methods to mitigate this issue.. Imlib2 Security, Ubuntu Patch, Denial Of Service, Image Exploit. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 22, 2008 Critical Ubuntu
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorybuffer overflowcritical severity

Fedora Core 3: 2005-112 Important Patch for OpenSSL Vulnerability

During a security audit, Chris Evans discovered a heap overflow in the BMPimage decoder in Qt versions prior to 3.3.3.. --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-270 2004-08-23 --------------------------------------------------------------------- Product : Fedora Core 1 Name : qt Version : 3.1.2 Release : 14.2 Summary : The shared library for the Qt GUI toolkit. Description : Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI (Graphical User Interface) applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run qt applications, as well as the README files for qt. --------------------------------------------------------------------- Update Information: During a security audit, Chris Evans discovered a heap overflow in the BMP image decoder in Qt versions prior to 3.3.3. An attacker could create a carefully crafted BMP file in such a way that it would cause an application linked with Qt to crash or possibly execute arbitrary code when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0691 to this issue. Additionally, various flaws were discovered in the GIF, XPM, and JPEG decoders in Qt versions prior to 3.3.3. An attacker could create carefully crafted image files in such a way that it could cause an application linked against Qt to crash when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CAN-2004-0692 and CAN-2004-0693 to these issues. Users of Qt should update to these updated packages which contain backported patches and are not vulnerable to these issues. --------------------------------------------------------------------- * Thu Aug 19 2004 Than Ngo 1:3.1.2-14.2 - fix image buffer overflows * Thu Jul 29 2004 Than Ngo 1:3.1.2-14.1 -fix overflow vulnerability, thanks to trolltech --------------------------------------------------------------------- This update can be downloaded from: c763ada78b47f3bc72a06e26b929c8c4 SRPMS/qt-3.1.2-14.2.src.rpm f86739a73579c5b6b698a873b4446d22 x86_64/qt-3.1.2-14.2.x86_64.rpm 6110ba73b9bbce08df7f8529d8185a51 x86_64/qt-devel-3.1.2-14.2.x86_64.rpm 86aad3b91aef11b01da1c816cccaffbe x86_64/qt-ODBC-3.1.2-14.2.x86_64.rpm fb94f45a83cabdfb45751fd293be2ccc x86_64/qt-MySQL-3.1.2-14.2.x86_64.rpm d4077aa9c95b065b89512e8937d3895d x86_64/qt-PostgreSQL-3.1.2-14.2.x86_64.rpm 2dce1a5d23a9f763f34b0f180cf5d5a1 x86_64/qt-designer-3.1.2-14.2.x86_64.rpm b34a6cc0e2af6a58241bdb9e25618919 x86_64/debug/qt-debuginfo-3.1.2-14.2.x86_64.rpm aca527b50ab8b71bbb7e4a6e93278173 i386/qt-3.1.2-14.2.i386.rpm d800a0e0f24c5c748c0e6d4d0cbc766d i386/qt-devel-3.1.2-14.2.i386.rpm 8dc18024573a730fd625a54c4283be63 i386/qt-ODBC-3.1.2-14.2.i386.rpm 62785195ce484b82c388c3bc38992895 i386/qt-MySQL-3.1.2-14.2.i386.rpm 586469add7922ac224dcdc24819ce284 i386/qt-PostgreSQL-3.1.2-14.2.i386.rpm 263b2d0b195ab4869be6f4074df1c728 i386/qt-designer-3.1.2-14.2.i386.rpm fb8ebc4323f3d36032d757a365a9bbbc i386/debug/qt-debuginfo-3.1.2-14.2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- . Fedora Core 1 has issued a vital security notice for a Qt patch that fixes severe buffer overflow vulnerabilities in BMP image processing, addressing major concerns. Fedora Core 1, Qt toolkit, image buffer overflow, BMP image decoder, security update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 23, 2004 Important Fedora
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here