Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 32 articles for you...
202
security advisorymoderateimpactopenSUSE Tumbleweed Amazon-SSM-Agent Moderate CVE-2026-39821 Update 10872-1
An update that solves one vulnerability can now be installed.. # amazon-ssm-agent-3.3.4515.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10872-1 Rating: moderate Cross-References: * CVE-2026-39821 CVSS scores: * CVE-2026-39821 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-39821 ( SUSE ): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the amazon-ssm-agent-3.3.4515.0-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * amazon-ssm-agent 3.3.4515.0-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-39821.html . An update for openSUSE Tumbleweed fixes a moderate security issue in amazon-ssm-agent regarding CVE-2026-39821.. openSUSE Tumbleweed, amazon-ssm-agent, CVE-2026-39821, security update, moderate advisory. . Severity: moderate. LinuxSecurity.com Team
May 29, 2026
•moderate
OpenSUSE
217
security advisorymoderateDoSOracle Linux 9 dtrace Moderate Security Advisory ELSA-2026-50250
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-50250 http://linux.oracle.com/errata/ELSA-2026-50250.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: aarch64: dtrace-2.0.7-4.el9.aarch64.rpm dtrace-devel-2.0.7-4.el9.aarch64.rpm dtrace-testsuite-2.0.7-4.el9.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/dtrace-2.0.7-4.el9.src.rpm Related CVEs: CVE-2026-21996 CVE-2026-35233 Description of changes: [2.0.7-4] - Prevent out-of-buonds memory access during object symbol table construction (CVE-2026-35233). [Orabug: 39121881] - Prevent divide-by-zero (FPE trap) if section header data is corrupted. (CVE-2026-21996). [Orabug: 39121874] - Ensure safety checks are performed on program header data from ELF objects. - Ensure that the data of string table sections is proper terminated. - Ensure that the symbol table references a valid string table. [2.0.6-1] - Fix dtprobed unsafe probe description handling (CVE-2026-21991). [Orabug: 39054018] [2.0.5-1] - Implement PID-specific uprobes. (Kris Van Hees) - Allocate the buffers BPF map to fit highest CPU id. (Kris Van Hees) - Fix argument handling for multi-location user probes. (Kris Van Hees) [Orabug: 38922360] - Change the "stack skip" to 3 for fbt (fprobe) and rawtp providers. [Orabug: 38776929] - Fix prvname so that both rawfbt and fbt probes are seen. [Orabug: 38842114] - Do not convert "__" to "-" for stapsdt provider names. - Fix printf formatting with non-monetary grouping chars. [Orabug: 30430270] - Discontinue -xversion=V as an option. (Kris Van Hees) [Orabug: 38615307] - Add the DTrace Tutorial to the git repo and install package. - Add missing documentation: trunc(), stapsdt, usdt.h include path. - Update LLM context files to forbid "if" statements. - Test suite weakly pulls in kernel-uek-tools to get perf. (Nick Alcock) [Orabug: 38064413] [2.0.4-1] - TCP, UDP, andstapsdt providers implemented. (Alan Maguire) - New learning materials: the User's Guide in Markdown format, example scripts, and a context file for LLMs. (Eugene Loh, Bruce McCulloch, Ruud van der Pas, Elena Zannoni). - Allow [u]stack() to be used as a variable value. (Kris Van Hees) [Orabug: 37950533] - Comments using // are now supported. (Kris Van Hees) - Scalability improvements. (Kris Van Hees) - Error injection via return() action. (Kris Van Hees) - Improved string handling. (Kris Van Hees) - Various bug fixes. (Eugene Loh, Kris Van Hees) - Fix dyn vars overwriting one another. [Orabug: 37994729] - Fix regression: list fbt probes by default. [Orabug: 38249511] - Various testsuite fixes and improvements. (Nick Alcock, Eugene Loh, Alan Maguire, Kris Van Hees) - Add test for preprocessor definitions. [Orabug: 28763074] - Fix some stack tests. [Orabug: 37459289] [2.0.3-1] - This is only released on OL10. - Redesigned USDT support to work for LTO compilations. [Orabug: 38011704] - New builtin variable: execargs. - Offset probes in pid provider. (Eugene Loh) - Various bug fixes. (Nick Alcock, Eugene Loh, Kris Van Hees) - Various testsuite fixes and improvements. (Nick Alcock, Sam James, Eugene Loh, Kris Van Hees) [2.0.2-1] - Translators to support kernels 6.10 and later. - FBT return probe argument support. - The print() action is augmented with type information. (Alan Maguire) - Support to discover and trace USDT probes after a tracing session has started. (Eugene Loh, Nick Alcock) - USDT probe argument support (translated types, mapping). (Nick Alcock) - Installation locations are now configurable. (Nick Alcock) - Valgrind is no longer a required build dependency. (Nick Alcock) - Self-grabs have been improved. (Nick Alcock) - New provider: rawfbt. (Kris Van Hees) - Various bug fixes. (Nick Alcock, Eugene Loh, Alan Maguire, Kris Van Hees) - Various testsuite fixes and improvements. (Nick Alcock, Sam James, Eugene Loh, Kris Van Hees) - Various code improvements. (NickAlcock, Eugene Loh, Kris Van Hees) [Orabug: 37274251] [2.0.1-1] - Implement FBT probes with fentry/fexit tracepoints - Provide argument info for FBT probes. - Provide pre-generated translator files sets. [Orabug: 36504847] _______________________________________________ El-errata mailing list
May 01, 2026
Oracle
172
security advisorydenial of servicesecurity issueUbuntu 26.04 LTS strongSwan Advisory USN-8196-2 CVE-2026-35328 to 35334
Several security issues were fixed in strongSwan.. ========================================================================== Ubuntu Security Notice USN-8196-2 April 27, 2026 strongswan vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: Summary: Several security issues were fixed in strongSwan. Software Description: Details: USN-8196-1 fixed vulnerabilities in strongSwan. This update provides the corresponding update to Ubuntu 26.04 LTS. Original advisory details: Haruto Kimura discovered that strongSwan incorrectly handled the supported_versions extension in TLS. A remote attacker could possibly use this issue to cause strongSwan to stop responding, resulting in a denial of service. (CVE-2026-35328) Haruto Kimura discovered that strongSwan incorrectly handled certain encrypted PKCS#7 containers. A remote attacker could possibly use this issue to cause strongSwan to crash, resulting in a denial of service. (CVE-2026-35329) Lukas Johannes Moeller discovered that strongSwan incorrectly handled certain EAP-SIM/AKA attributes. A remote attacker could use this issue to cause strongSwan to stop responding, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2026-35330) Haruto Kimura discovered that strongSwan incorrectly handled processing of X.509 name constraints. A remote attacker could possibly use this issue to bypass excluded name constraints. (CVE-2026-35331) Haruto Kimura discovered that strongSwan incorrectly processed ECDH public values. A remote attacker could possibly use this issue to cause strongSwan to crash, resulting in a denial of service. (CVE-2026-35332) Lukas Johannes Moeller discovered that strongSwan incorrectly handled certain RADIUS attributes. A remote attacker could possibly use this issue to cause strongSwan to crash, resulting in a denial of service. (CVE-2026-35333) Ryo Shimada discovered that strongSwan incorrectlyhandled RSA decryption. A remote attacker could possibly use this issue to cause strongSwan to crash, resulting in a denial of service. (CVE-2026-35334) Update instructions: The problem can be corrected by updating your system to the following package versions: In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8196-2 https://ubuntu.com/security/notices/USN-8196-1 CVE-2026-35328, CVE-2026-35329, CVE-2026-35330, CVE-2026-35331, CVE-2026-35332, CVE-2026-35333, CVE-2026-35334 . Explore the recent security advisory for strongSwan in Ubuntu addressing multiple denial of service issues and their fixes.. strongSwan advisory, Ubuntu security update, denial of service threat. . Severity: Important. LinuxSecurity.com Team
Apr 27, 2026
•Important
Ubuntu
89
security advisoryfedoracriticalFedora 44 qt6-qtutilities Important Patch Release 2026-88570d2be4
Qt 6.10.3 bugfix update.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-70776c2dc3 2026-04-25 01:21:36.172096+00:00 -------------------------------------------------------------------------------- Name : qt6-qttranslations Product : Fedora 44 Version : 6.10.3 Release : 1.fc44 URL : http://www.qt.io Summary : Qt6 - QtTranslations module Description : Qt6 - QtTranslations module. -------------------------------------------------------------------------------- Update Information: Qt 6.10.3 bugfix update. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 31 2026 Jan Grulich - 6.10.3-1 - 6.10.3 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-70776c2dc3' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Apr 25, 2026
•Critical
Fedora
219
security advisoryimportantimpactRocky Linux 9 RLSA-2026-8846 lib-security Significant Exposure Risk Found
Important: go-rpm-macros security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:8841", "synopsis": "Important: go-rpm-macros security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for go-rpm-macros.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "This package provides build-stage rpm automation to simplify the creation of Go language (golang) packages. It does not need to be included in the default build root: go-srpm-macros will pull it in for Go packages only.\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}], "cves": [{"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}], "references": [], "publishedAt": "2026-04-21T12:03:54.560238Z", "rpms": {"Rocky Linux 9": {"nvras": ["go-filesystem-0:3.6.0-14.el9_7.aarch64.rpm", "go-filesystem-0:3.6.0-14.el9_7.ppc64le.rpm", "go-filesystem-0:3.6.0-14.el9_7.s390x.rpm", "go-filesystem-0:3.6.0-14.el9_7.x86_64.rpm", "go-rpm-macros-0:3.6.0-14.el9_7.aarch64.rpm", "go-rpm-macros-0:3.6.0-14.el9_7.ppc64le.rpm", "go-rpm-macros-0:3.6.0-14.el9_7.s390x.rpm", "go-rpm-macros-0:3.6.0-14.el9_7.src.rpm", "go-rpm-macros-0:3.6.0-14.el9_7.x86_64.rpm", "go-rpm-macros-debuginfo-0:3.6.0-14.el9_7.aarch64.rpm","go-rpm-macros-debuginfo-0:3.6.0-14.el9_7.ppc64le.rpm", "go-rpm-macros-debuginfo-0:3.6.0-14.el9_7.s390x.rpm", "go-rpm-macros-debuginfo-0:3.6.0-14.el9_7.x86_64.rpm", "go-rpm-macros-debugsource-0:3.6.0-14.el9_7.aarch64.rpm", "go-rpm-macros-debugsource-0:3.6.0-14.el9_7.ppc64le.rpm", "go-rpm-macros-debugsource-0:3.6.0-14.el9_7.s390x.rpm", "go-rpm-macros-debugsource-0:3.6.0-14.el9_7.x86_64.rpm", "go-rpm-templates-0:3.6.0-14.el9_7.noarch.rpm", "go-srpm-macros-0:3.6.0-14.el9_7.noarch.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Important security update for go-rpm-macros in Rocky Linux 9 addressing parsing issues in IPv6 host literals.. important security update, Rocky Linux go-rpm-macros, IPv6 parsing issue. . Severity: Important. LinuxSecurity.com Team
Apr 21, 2026
•Important
Rocky Linux
217
security advisorybuffer overflowimportantOracle Linux 9 ELSA-2026-8457 freerdp Important Buffer Overflow
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-8457 http://linux.oracle.com/errata/ELSA-2026-8457.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: freerdp-2.11.7-1.el9_7.6.x86_64.rpm freerdp-devel-2.11.7-1.el9_7.6.i686.rpm freerdp-devel-2.11.7-1.el9_7.6.x86_64.rpm freerdp-libs-2.11.7-1.el9_7.6.i686.rpm freerdp-libs-2.11.7-1.el9_7.6.x86_64.rpm libwinpr-2.11.7-1.el9_7.6.i686.rpm libwinpr-2.11.7-1.el9_7.6.x86_64.rpm libwinpr-devel-2.11.7-1.el9_7.6.i686.rpm libwinpr-devel-2.11.7-1.el9_7.6.x86_64.rpm aarch64: freerdp-2.11.7-1.el9_7.6.aarch64.rpm freerdp-devel-2.11.7-1.el9_7.6.aarch64.rpm freerdp-libs-2.11.7-1.el9_7.6.aarch64.rpm libwinpr-2.11.7-1.el9_7.6.aarch64.rpm libwinpr-devel-2.11.7-1.el9_7.6.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/freerdp-2.11.7-1.el9_7.6.src.rpm Related CVEs: CVE-2026-33983 CVE-2026-33984 Description of changes: [2:2.11.7-1.6] - Update CLEAR_VBAR_ENTRY size after alloc (CVE-2026-33984) - Fail progressive_rfx_quant_sub on invalid values (CVE-2026-33983) Resolves: RHEL-162958, RHEL-162978 _______________________________________________ El-errata mailing list
Apr 19, 2026
•Important
Oracle
89
security advisoryfedoravulnerabilityFedora 42 perl-Net-CIDR Critical Leading Zeros Issue 2026-baf8782c7a
Net::CIDR versions before 0.24 for Perl mishandle leading zeros in IP CIDR addresses, which may have unspecified impact. The functions addr2cidr and cidrlookup may return leading zeros in a CIDR string, which may in turn be parsed as octal numbers by subsequent users. Current versions of the module strip leading zeros from octets.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-baf8782c7a 2026-03-10 01:09:17.057996+00:00 -------------------------------------------------------------------------------- Name : perl-Net-CIDR Product : Fedora 42 Version : 0.27 Release : 1.fc42 URL : https://metacpan.org/dist/Net-CIDR Summary : Manipulate IPv4/IPv6 netblocks in CIDR notation Description : The Net::CIDR package contains functions that manipulate lists of IP netblocks expressed in CIDR notation. The Net::CIDR functions handle both IPv4 and IPv6 addresses. -------------------------------------------------------------------------------- Update Information: Net::CIDR versions before 0.24 for Perl mishandle leading zeros in IP CIDR addresses, which may have unspecified impact. The functions addr2cidr and cidrlookup may return leading zeros in a CIDR string, which may in turn be parsed as octal numbers by subsequent users. Current versions of the module strip leading zeros from octets. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 13 2025 Paul Howarth - 0.27-1 - Update to 0.27 (rhbz#2388145) - cidrvalidate() bug fix (GH#9) * Mon Jun 23 2025 Paul Howarth - 0.26-1 - Update to 0.26 (rhbz#2374271) - cidrvalidate() should accept IPv6 addresses with one uncompressed 0 * Sat May 24 2025 Paul Howarth - 0.25-1 - Update to 0.25 (rhbz#2368340) - Fix warning with Perl 5.40 * Wed May 21 2025 Paul Howarth - 0.24.1-1 - Update to 0.24.1 - Strip extra leading zeros from octets in addr2cidr (GH#4) * Tue May 20 2025 PaulHowarth - 0.24-1 - Update to 0.24 (no changes) * Mon Mar 10 2025 Paul Howarth - 0.23-1 - Update to 0.23 - Add metadata to Makefile.PL and use Test::More (GH#3) * Sun Mar 9 2025 Emmanuel Seyman - 0.22-1 - Update to 0.22 - Improve several error messages - Allow unabbreviated IPv6 addresses - Use %{make_build} and %{make_install} where appropriate -------------------------------------------------------------------------------- References: [ 1 ] Bug #2443387 - CVE-2021-4456 perl-Net-CIDR: mishandling of leading zeros in IP CIDR addresses [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2443387 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-baf8782c7a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Mar 10, 2026
•Critical
Fedora
202
security advisorymoderatesecurity issueopenSUSE: Helm Moderate CVE Fixes for Vulnerability 2025:15730-1
An update that solves 2 vulnerabilities can now be installed.. # helm-3.19.1-1.1 on GA media Announcement ID: openSUSE-SU-2025:15730-1 Rating: moderate Cross-References: * CVE-2025-47911 * CVE-2025-58190 CVSS scores: * CVE-2025-47911 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-47911 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-58190 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-58190 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves 2 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the helm-3.19.1-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * helm 3.19.1-1.1 * helm-bash-completion 3.19.1-1.1 * helm-fish-completion 3.19.1-1.1 * helm-zsh-completion 3.19.1-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-47911.html * https://www.suse.com/security/cve/CVE-2025-58190.html . Moderate security update for Helm on openSUSE Tumbleweed addresses two vulnerabilities with CVEs 2025-47911 and 2025-58190.. openSUSE security update, Helm vulnerabilities, CVE fixes, Linux software patching. . LinuxSecurity.com Team
Nov 13, 2025
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!