Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 9 articles for you...
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of servicearbitrary code execution

Ubuntu 20.04 LTS USN-5099-1: Severe DoS Vulnerability in Imlib2

Imlib2 could be made to denial of service and possibly execute arbitrary code.. =========================================================================Ubuntu Security Notice USN-5099-1 October 04, 2021 imlib2 vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS Summary: Imlib2 could be made to denial of service and possibly execute arbitrary code. Software Description: - imlib2: Image manipulation and rendering library Details: It was discovered that Imlib2 incorrectly handled certain ICO images. An attacker could use this issue to cause a denial of service and possibly execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS: libimlib2 1.6.1-1ubuntu0.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-5099-1 CVE-2020-12761 Package Information: https://launchpad.net/ubuntu/+source/imlib2/1.6.1-1ubuntu0.1 . Ubuntu Security Notice USN-5100-1 pertains to a libxml2 flaw affecting LTS editions, potentially leading to operational interruptions.. Imlib2 Vulnerability, Ubuntu Security, Denial of Service, Code Execution. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 04, 2021 Critical Ubuntu
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisoryremote executionGentoo Linux

Gentoo: GLSA-201611-12 Normal: imlib2 Remote Code Execution Risk

Multiple vulnerabilities have been found in imlib2, the worst of which allows for the remote execution of arbitrary code.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201611-12 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: imlib2: Multiple vulnerabilities Date: November 20, 2016 Bugs: #572884, #578810, #580038 ID: 201611-12 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Multiple vulnerabilities have been found in imlib2, the worst of which allows for the remote execution of arbitrary code. Background ========= imlib2 is an advanced replacement for image manipulation libraries such as libXpm. It is utilized by numerous programs, including gkrellm and several window managers, to display images. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-libs/imlib2 < 1.4.9 > = 1.4.9 Description ========== Multiple vulnerabilities have been discovered in imlib2. Please review the CVE identifiers referenced below for details. Impact ===== A remote attacker could entice a user to open a specially crafted image file using an application linked against imlib2, possibly resulting in execution of arbitrary code with the privileges of the process or a Denial of Service condition. Workaround ========= There is no known workaround at this time. Resolution ========= All imlib2 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =media-libs/imlib2-1.4.9" References ========= [ 1 ]CVE-2014-9762 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-9762 [ 2 ] CVE-2014-9763 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-9763 [ 3 ] CVE-2014-9764 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-9764 [ 4 ] CVE-2016-4024 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-4024 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/201611-12 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org. License ====== Copyright 2016 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . Numerous security flaws in imlib2 on Gentoo might permit remote code execution. Apply updates immediately to address potential risks.. Gentoo Linux, imlib2 vulnerabilities, remote code execution. . LinuxSecurity.com Team

Calendar 2 Nov 21, 2016 Gentoo
Banner 1 1028x280 1708121660 1771599717
198
Ls Advisories Archlinux Esm H240
Price Tag 1security advisoryhigh severityinformation leak

Arch Linux: 201605-1 High Severity Advisory For Imlib2 Security Issues

The package imlib2 before version 1.4.9-1 is vulnerable to multiple issues that can lead to information leakage, application crash or arbitrary code execution. . Arch Linux Security Advisory ASA-201605-1 ======================================== Severity: High Date : 2016-05-01 CVE-ID : CVE-2011-5326 CVE-2016-3993 CVE-2016-3994 CVE-2016-4024 Package : imlib2 Type : multiple issues Remote : Yes Link : https://wiki.archlinux.org/title/CVE Summary ====== The package imlib2 before version 1.4.9-1 is vulnerable to multiple issues that can lead to information leakage, application crash or arbitrary code execution. Resolution ========= Upgrade to 1.4.9-1. # pacman -Syu "imlib2> =1.4.9-1" The problems have been fixed upstream in version 1.4.9. Workaround ========= None. Description ========== - CVE-2011-5326 (denial of service) Kevin Ryde discovered that attempting to draw a 2x1 radi ellipse results in a floating point exception. - CVE-2016-3993 (information leakage) Yuriy M. Kaminskiy discovered that drawing using coordinates from an untrusted source could lead to an out-of-bound memory read, which in turn could result in an application crash. - CVE-2016-3994 (information Leakage) Jakub Wilk discovered that a malformed image could lead to an out-of-bound read in the GIF loader, which may result in an application crash or information leak. - CVE-2016-4024 (arbitrary code execution) Yuriy M. Kaminskiy discovered an integer overflow that could lead to an insufficient heap allocation and out-of-bound memory write. Impact ===== An attacker can leverage vulnerable library calls in imlib2 to crash an application, or read/write to the application's memory. This can lead to potential information leak or modification of the application'sflow. References ========= https://www.cve.org/CVERecord?id=CVE-2011-5326 https://www.cve.org/CVERecord?id=CVE-2016-3993 https://www.cve.org/CVERecord?id=CVE-2016-3994 https://www.cve.org/CVERecord?id=CVE-2016-4021 . Numerous vulnerabilities detected in imlib2 before version 1.4.9-1 as detailed in Arch Linux advisory. Prompt update advised.. Imlib2 Issues, High Severity Fix, Arch Linux Security Advisory. . LinuxSecurity.com Team

Calendar 2 May 04, 2016 ArchLinux
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydebianmoderate severity

Debian Jessie: DSA-3555-1 Moderate: Imlib2 Memory Issues

Several vulnerabilities were discovered in imlib2, an image manipulation library. CVE-2011-5326 . - ------------------------------------------------------------------------- Debian Security Advisory DSA-3555-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Alessandro Ghedini April 23, 2016 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : imlib2 CVE ID : CVE-2011-5326 CVE-2014-9771 CVE-2016-3993 CVE-2016-3994 CVE-2016-4024 Debian Bug : 639414 785369 819818 820206 821732 Several vulnerabilities were discovered in imlib2, an image manipulation library. CVE-2011-5326 Kevin Ryde discovered that attempting to draw a 2x1 radi ellipse results in a floating point exception. CVE-2014-9771 It was discovered that an integer overflow could lead to invalid memory reads and unreasonably large memory allocations. CVE-2016-3993 Yuriy M. Kaminskiy discovered that drawing using coordinates from an untrusted source could lead to an out-of-bound memory read, which in turn could result in an application crash. CVE-2016-3994 Jakub Wilk discovered that a malformed image could lead to an out-of-bound read in the GIF loader, which may result in an application crash or information leak. CVE-2016-4024 Yuriy M. Kaminskiy discovered an integer overflow that could lead to an insufficient heap allocation and out-of-bound memory write. For the oldstable distribution (wheezy), these problems have been fixed in version 1.4.5-1+deb7u2. For the stable distribution (jessie), these problems have been fixed in version 1.4.6-2+deb8u2. For the unstable distribution (sid), these problems have been fixed in version 1.4.8-1. We recommend that you upgrade your imlib2 packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be foundat: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . This notice outlines various vulnerabilities found in imlib2 impacting Debian environments, along with suggested corrective measures.. imlib2 security,debian advisory,image manipulation library,memory issues,debian updates. . LinuxSecurity.com Team

Calendar 2 Apr 23, 2016 Debian
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysoftware updateFedora

Fedora 23 Security Advisory: 2016-f8eee2e628 Critical Imlib2 Out Of Bounds

Rebase to the new upstream bugfix-only version. Add security fixes for the referenced bugs.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-f8eee2e628 2016-04-13 03:26:08.777154 -------------------------------------------------------------------------------- Name : imlib2 Product : Fedora 23 Version : 1.4.8 Release : 1.fc23 URL : Summary : Image loading, saving, rendering, and manipulation library Description : Imlib 2 is a library that does image file loading and saving as well as rendering, manipulation, arbitrary polygon support, etc. It does ALL of these operations FAST. Imlib2 also tries to be highly intelligent about doing them, so writing naive programs can be done easily, without sacrificing speed. This is a complete rewrite over the Imlib 1.x series. The architecture is more modular, simple, and flexible. -------------------------------------------------------------------------------- Update Information: Rebase to the new upstream bugfix-only version. Add security fixes for the referenced bugs. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1323060 - CVE-2016-3994 imlib2: out of bound read in GIF loader https://bugzilla.redhat.com/show_bug.cgi?id=1323060 [ 2 ] Bug #1323080 - CVE-2011-5326 imlib2: divide by zero on 2x1 ellipse https://bugzilla.redhat.com/show_bug.cgi?id=1323080 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update imlib2' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . Critical patch release for imlib2 on Fedora 23 addressing urgent vulnerabilities linked to buffer overflow issues.. Imlib2 Security Update,Fedora Notification,Bug Fixes,Software Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 13, 2016 Critical Fedora
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorycriticaldebian

Debian 8 DSA-3537-1 Critical: Imlib2 Segmentation Faults and Fixes

Several vulnerabilities were discovered in imlib2, an image manipulation library. CVE-2014-9762 . - ------------------------------------------------------------------------- Debian Security Advisory DSA-3537-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Sebastien Delafond March 31, 2016 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : imlib2 CVE ID : CVE-2014-9762 CVE-2014-9763 CVE-2014-9764 Several vulnerabilities were discovered in imlib2, an image manipulation library. CVE-2014-9762 A segmentation fault could occur when opening GIFs without a colormap. CVE-2014-9763 Several divisions by zero, resulting in a program crash, could occur when handling PNM files. CVE-2014-9764 A segmentation fault could occur when opening GIFs with feh. For the oldstable distribution (wheezy), these problems have been fixed in version 1.4.5-1+deb7u1. For the stable distribution (jessie), these problems have been fixed in version 1.4.6-2+deb8u1. For the testing (stretch) and unstable (sid) distributions, these problems have been fixed in version 1.4.7-1. We recommend that you upgrade your imlib2 packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Enhance your imlib2 installation to resolve severe problems, including segmentation faults and application crashes. Take immediate action to protect your Debian environment.. Debian Security Advisory, Imlib2 Critical Update, Image Processing Issues. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 31, 2016 Critical Debian
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity issuebuffer overflow

Fedora: imlib2 Security Update February 2016 Critical: Multiple Issues

Rebase to version 1.4.7 Security fix for CVE-2014-9762, CVE-2014-9763, CVE-2014-9764. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-3c0b37e056 2016-02-10 10:19:50.056754 -------------------------------------------------------------------------------- Name : imlib2 Product : Fedora 22 Version : 1.4.7 Release : 1.fc22 URL : Summary : Image loading, saving, rendering, and manipulation library Description : Imlib 2 is a library that does image file loading and saving as well as rendering, manipulation, arbitrary polygon support, etc. It does ALL of these operations FAST. Imlib2 also tries to be highly intelligent about doing them, so writing naive programs can be done easily, without sacrificing speed. This is a complete rewrite over the Imlib 1.x series. The architecture is more modular, simple, and flexible. -------------------------------------------------------------------------------- Update Information: Rebase to version 1.4.7 Security fix for CVE-2014-9762, CVE-2014-9763, CVE-2014-9764 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1301614 - CVE-2014-9762 imlib2: security issues fixed in 1.4.7 https://bugzilla.redhat.com/show_bug.cgi?id=1301614 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update imlib2' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailinglist This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . Essential patch for libjpeg in Fedora 22 tackles several exploits to improve overall system security.. Fedora 22, imlib2, security fix, image processing. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 10, 2016 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity issueFedora

Fedora 23 Imlib2 Security Update 2016-b62d19661f Critical Fix

Rebase to version 1.4.7 Security fix for CVE-2014-9762, CVE-2014-9763, CVE-2014-9764. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-b62d19661f 2016-01-30 14:54:08.579964 -------------------------------------------------------------------------------- Name : imlib2 Product : Fedora 23 Version : 1.4.7 Release : 1.fc23 URL : http://docs.enlightenment.org/api/imlib2/html/ Summary : Image loading, saving, rendering, and manipulation library Description : Imlib 2 is a library that does image file loading and saving as well as rendering, manipulation, arbitrary polygon support, etc. It does ALL of these operations FAST. Imlib2 also tries to be highly intelligent about doing them, so writing naive programs can be done easily, without sacrificing speed. This is a complete rewrite over the Imlib 1.x series. The architecture is more modular, simple, and flexible. -------------------------------------------------------------------------------- Update Information: Rebase to version 1.4.7 Security fix for CVE-2014-9762, CVE-2014-9763, CVE-2014-9764 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1301614 - CVE-2014-9762 imlib2: security issues fixed in 1.4.7 https://bugzilla.redhat.com/show_bug.cgi?id=1301614 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update imlib2' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailinglist This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . This document outlines a security enhancement for Fedora 23 regarding imlib2, targeting critical vulnerabilities and optimizations.. Imlib2 Update, Fedora 23 Security, Image Manipulation Library. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 30, 2016 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here