Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -3 articles for you...
219
security advisorysecurity updateimportantAlmaLinux 8 RLSA-2026-4225 kernel-lt High-Impact Security Patch Released
Important: kernel-rt security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:9135", "synopsis": "Important: kernel-rt security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for kernel-rt.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* kernel: scsi: qla2xxx: Fix improper freeing of purex item (CVE-2025-68741)\n\n* kernel: ALSA: aloop: Fix racy access at PCM trigger (CVE-2026-23191)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2425046", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2425046", "description": ""}, {"ticket": "2439947", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2439947", "description": ""}], "cves": [{"name": "CVE-2025-68741", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68741", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H", "cvss3BaseScore": "7.3", "cwe": "CWE-763"}, {"name": "CVE-2026-23191", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23191", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "cvss3BaseScore": "7.1", "cwe": "CWE-367"}], "references": [], "publishedAt": "2026-04-25T12:01:38.858188Z", "rpms": {"Rocky Linux 8": {"nvras": ["kernel-rt-0:4.18.0-553.120.1.rt7.461.el8_10.src.rpm", "kernel-rt-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm","kernel-rt-core-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm", "kernel-rt-debug-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm", "kernel-rt-debug-core-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm", "kernel-rt-debug-debuginfo-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm", "kernel-rt-debug-devel-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm", "kernel-rt-debuginfo-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm", "kernel-rt-debuginfo-common-x86_64-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm", "kernel-rt-debug-kvm-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm", "kernel-rt-debug-modules-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm", "kernel-rt-debug-modules-extra-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm", "kernel-rt-devel-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm", "kernel-rt-kvm-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm", "kernel-rt-modules-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm", "kernel-rt-modules-extra-0:4.18.0-553.120.1.rt7.461.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Important kernel-rt security update for Rocky Linux 8 addresses critical access issues with timely fixes.. kernel-rt security update, Rocky Linux kernel, security hotfixes, Linux kernel vulnerabilities. . Severity: Important. LinuxSecurity.com Team
Apr 25, 2026
•Important
Rocky Linux
89
security advisoryfedoraaccess controlFedora 42: FEDORA-2025-48e8e5f8ed Apache Commons BeanUtils Access Control
Fix improper access control vulnerability Resolves: CVE-2025-48734. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-48e8e5f8ed 2025-06-22 05:57:57.824474+00:00 -------------------------------------------------------------------------------- Name : apache-commons-beanutils Product : Fedora 42 Version : 1.9.4 Release : 39.fc42 URL : https://commons.apache.org/proper/commons-beanutils/ Summary : Java utility methods for accessing and modifying the properties of arbitrary JavaBeans Description : The scope of this package is to create a package of Java utility methods for accessing and modifying the properties of arbitrary JavaBeans. No dependencies outside of the JDK are required, so the use of this package is very lightweight. -------------------------------------------------------------------------------- Update Information: Fix improper access control vulnerability Resolves: CVE-2025-48734 -------------------------------------------------------------------------------- ChangeLog: * Fri Jun 13 2025 Mikolaj Izdebski - 1.9.4-39 - Fix improper access control vulnerability -------------------------------------------------------------------------------- References: [ 1 ] Bug #2369090 - CVE-2025-48734 apache-commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by default [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2369090 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-48e8e5f8ed' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the FedoraProject can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jun 22, 2025
•Important
Fedora
98
security advisorydenial of servicered hatRedHat Enterprise Linux 6: RHSA-2018:3003-01 Critical: Java Update
An update for java-1.8.0-oracle is now available for Oracle Java for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Critical: java-1.8.0-oracle security update Advisory ID: RHSA-2018:3003-01 Product: Oracle Java for Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2018:3003 Issue date: 2018-10-24 CVE Names: CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3183 CVE-2018-3209 CVE-2018-3211 CVE-2018-3214 CVE-2018-13785 ==================================================================== 1. Summary: An update for java-1.8.0-oracle is now available for Oracle Java for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Oracle Java for Red Hat Enterprise Linux Desktop 6 - i386, x86_64 Oracle Java for Red Hat Enterprise Linux HPC Node 6 - x86_64 Oracle Java for Red Hat Enterprise Linux Server 6 - i386, x86_64 Oracle Java for Red Hat Enterprise Linux Workstation 6 - i386, x86_64 3. Description: Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update upgrades Oracle Java SE 8 to version 8 Update 191. Security Fix(es): * OpenJDK: Improper field access checks (Hotspot, 8199226) (CVE-2018-3169) * OpenJDK: Unrestricted access to scripting engine (Scripting, 8202936) (CVE-2018-3183) * Oracle JDK:unspecified vulnerability fixed in 8u191 (JavaFX) (CVE-2018-3209) * OpenJDK: Incomplete enforcement of the trustURLCodebase restriction (JNDI, 8199177) (CVE-2018-3149) * OpenJDK: Incorrect handling of unsigned attributes in signed Jar manifests (Security, 8194534) (CVE-2018-3136) * OpenJDK: Leak of sensitive header data via HTTP redirect (Networking, 8196902) (CVE-2018-3139) * OpenJDK: Missing endpoint identification algorithm check during TLS session resumption (JSSE, 8202613) (CVE-2018-3180) * Oracle JDK: unspecified vulnerability fixed in 8u191 and 11.0.1 (Serviceability) (CVE-2018-3211) * OpenJDK: Infinite loop in RIFF format reader (Sound, 8205361) (CVE-2018-3214) * libpng: Integer overflow and resultant divide-by-zero in pngrutil.c:png_check_chunk_length() allows for denial of service (CVE-2018-13785) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 All running instances of Oracle Java must be restarted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1599943 - CVE-2018-13785 libpng: Integer overflow and resultant divide-by-zero in pngrutil.c:png_check_chunk_length() allows for denial of service 1639268 - CVE-2018-3183 OpenJDK: Unrestricted access to scripting engine (Scripting, 8202936) 1639293 - CVE-2018-3169 OpenJDK: Improper field access checks (Hotspot, 8199226) 1639301 - CVE-2018-3214 OpenJDK: Infinite loop in RIFF format reader (Sound, 8205361) 1639442 - CVE-2018-3139 OpenJDK: Leak of sensitive header data via HTTP redirect (Networking, 8196902) 1639484 - CVE-2018-3180 OpenJDK: Missing endpoint identification algorithm check during TLS session resumption (JSSE, 8202613) 1639755 - CVE-2018-3136 OpenJDK: Incorrect handling of unsigned attributes in signed Jar manifests (Security,8194534) 1639834 - CVE-2018-3149 OpenJDK: Incomplete enforcement of the trustURLCodebase restriction (JNDI, 8199177) 1639904 - CVE-2018-3209 Oracle JDK: unspecified vulnerability fixed in 8u191 (JavaFX) 1639906 - CVE-2018-3211 Oracle JDK: unspecified vulnerability fixed in 8u191 and 11.0.1 (Serviceability) 6. Package List: Oracle Java for Red Hat Enterprise Linux Desktop 6: i386: java-1.8.0-oracle-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-devel-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-javafx-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-jdbc-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-plugin-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-src-1.8.0.191-1jpp.1.el6.i686.rpm x86_64: java-1.8.0-oracle-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-devel-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-javafx-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-jdbc-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-plugin-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-src-1.8.0.191-1jpp.1.el6.x86_64.rpm Oracle Java for Red Hat Enterprise Linux HPC Node 6: x86_64: java-1.8.0-oracle-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-devel-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-javafx-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-jdbc-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-plugin-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-src-1.8.0.191-1jpp.1.el6.x86_64.rpm Oracle Java for Red Hat Enterprise Linux Server6: i386: java-1.8.0-oracle-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-devel-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-javafx-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-jdbc-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-plugin-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-src-1.8.0.191-1jpp.1.el6.i686.rpm x86_64: java-1.8.0-oracle-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-devel-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-javafx-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-jdbc-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-plugin-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-src-1.8.0.191-1jpp.1.el6.x86_64.rpm Oracle Java for Red Hat Enterprise Linux Workstation 6: i386: java-1.8.0-oracle-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-devel-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-javafx-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-jdbc-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-plugin-1.8.0.191-1jpp.1.el6.i686.rpm java-1.8.0-oracle-src-1.8.0.191-1jpp.1.el6.i686.rpm x86_64: java-1.8.0-oracle-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-devel-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-javafx-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-jdbc-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-plugin-1.8.0.191-1jpp.1.el6.x86_64.rpm java-1.8.0-oracle-src-1.8.0.191-1jpp.1.el6.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7.References: https://access.redhat.com/security/cve/CVE-2018-3136 https://access.redhat.com/security/cve/CVE-2018-3139 https://access.redhat.com/security/cve/CVE-2018-3149 https://access.redhat.com/security/cve/CVE-2018-3169 https://access.redhat.com/security/cve/CVE-2018-3180 https://access.redhat.com/security/cve/CVE-2018-3183 https://access.redhat.com/security/cve/CVE-2018-3209 https://access.redhat.com/security/cve/CVE-2018-3211 https://access.redhat.com/security/cve/CVE-2018-3214 https://access.redhat.com/security/cve/CVE-2018-13785 https://access.redhat.com/security/updates/classification/#critical 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2018 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBW9DtQdzjgjWX9erEAQhYAw/9Fk7QY5vgBcZ/OQZYsbVWzmMwr6K0VtJJ agyCXNXNFk9u/3Q8aN8kTXGaaXT3bkQde9JuojxdBhmA0uHyKBua7pT9No9tn+S2 hHr3xZcHUUyo6Onb0phNgkrfVFGupL76tTE+8lcQONAiyh5ZDKc4ouic0jQNAhgH xxG5KA8DLJRu38y5iCtB4pSmjVlavN2gJPumm0ZyYJ2K/CvsnagRYKx8ysRTNGJI 4pyb5S8S47vgxSeh2MPqxRojKQ0qU6CfzOPhg092SyYqtwm/0N2H+3X0pMDwnc4Z RqUcVYibw+c1Q1ZIQ/m0miLfE+YwOMxYXzBn860ONbn3MBVDyYIfYlRP11gX2lj0 pFx/KgFp/Gz6CWWadJIx/aO9n7OVkzbWkqz1nD0zcpHVTisUHpTIRBJT9QI1jZpb Gew7UhaqAaC3vXdx1mDa2r6CcBfJcC5f5m2AfiIzY3iWGif//KCCyHvzRJ38e67i 2GknaTFt27GX1tGM4QgqmPZ1KkSes/5HR22i7A2bWoD1hc2Dtr6UuMGbWuTPraKq Gfi68r/dk412cvKVZEDpNsG1T1jroLPMz790BMOkpwXAeylXYk6EXQhXlpW98PZY QpAxi/NwSy+xOzXVmNgHQ9PNz6bEX8PAXdL7XwPLdsv3UzEdBNmbxa3QjGLFutmh ZD1VOBSAYks=XOxY -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Oct 24, 2018
•Critical
Red Hat
200
security advisorysecurity issuecritical updateScientific Linux: SLSA-2018-2943-1 Critical: Java Security Update
OpenJDK: Improper field access checks (Hotspot, 8199226) (CVE-2018-3169) * OpenJDK: Unrestricted access to scripting engine (Scripting, 8202936) (CVE-2018-3183) * OpenJDK: Incomplete enforcement of the trustURLCodebase restriction (JNDI, 8199177) (CVE-2018-3149) * OpenJDK: Incorrect handling of unsigned attributes in singed Jar manifests (Security, 8194534) (CVE-2018-3136) * OpenJDK: Leak [More...]. Synopsis: Critical: java-1.8.0-openjdk security update Advisory ID: SLSA-2018:2943-1 Issue Date: 2018-10-18 CVE Numbers: CVE-2018-3183 CVE-2018-3169 CVE-2018-3214 CVE-2018-3139 CVE-2018-3180 CVE-2018-3136 CVE-2018-3149 -- Security Fix(es): * OpenJDK: Improper field access checks (Hotspot, 8199226) (CVE-2018-3169) * OpenJDK: Unrestricted access to scripting engine (Scripting, 8202936) (CVE-2018-3183) * OpenJDK: Incomplete enforcement of the trustURLCodebase restriction (JNDI, 8199177) (CVE-2018-3149) * OpenJDK: Incorrect handling of unsigned attributes in singed Jar manifests (Security, 8194534) (CVE-2018-3136) * OpenJDK: Leak of sensitive header data via HTTP redirect (Networking, 8196902) (CVE-2018-3139) * OpenJDK: Missing endpoint identification algorithm check during TLS session resumption (JSSE, 8202613) (CVE-2018-3180) * OpenJDK: Infinite loop in RIFF format reader (Sound, 8205361) (CVE-2018-3214) -- SL6 x86_64 java-1.8.0-openjdk-1.8.0.191.b12-0.el6_10.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.191.b12-0.el6_10.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.191.b12-0.el6_10.x86_64.rpm java-1.8.0-openjdk-debug-1.8.0.191.b12-0.el6_10.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.191.b12-0.el6_10.x86_64.rpm java-1.8.0-openjdk-demo-debug-1.8.0.191.b12-0.el6_10.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.191.b12-0.el6_10.x86_64.rpm java-1.8.0-openjdk-devel-debug-1.8.0.191.b12-0.el6_10.x86_64.rpm java-1.8.0-openjdk-headless-debug-1.8.0.191.b12-0.el6_10.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.191.b12-0.el6_10.x86_64.rpm java-1.8.0-openjdk-src-debug-1.8.0.191.b12-0.el6_10.x86_64.rpm i386 java-1.8.0-openjdk-1.8.0.191.b12-0.el6_10.i686.rpm java-1.8.0-openjdk-debuginfo-1.8.0.191.b12-0.el6_10.i686.rpm java-1.8.0-openjdk-headless-1.8.0.191.b12-0.el6_10.i686.rpm java-1.8.0-openjdk-debug-1.8.0.191.b12-0.el6_10.i686.rpm java-1.8.0-openjdk-demo-1.8.0.191.b12-0.el6_10.i686.rpm java-1.8.0-openjdk-demo-debug-1.8.0.191.b12-0.el6_10.i686.rpm java-1.8.0-openjdk-devel-1.8.0.191.b12-0.el6_10.i686.rpm java-1.8.0-openjdk-devel-debug-1.8.0.191.b12-0.el6_10.i686.rpm java-1.8.0-openjdk-headless-debug-1.8.0.191.b12-0.el6_10.i686.rpm java-1.8.0-openjdk-src-1.8.0.191.b12-0.el6_10.i686.rpm java-1.8.0-openjdk-src-debug-1.8.0.191.b12-0.el6_10.i686.rpm noarch java-1.8.0-openjdk-javadoc-1.8.0.191.b12-0.el6_10.noarch.rpm java-1.8.0-openjdk-javadoc-debug-1.8.0.191.b12-0.el6_10.noarch.rpm - Scientific Linux Development Team . Recent patches for java-1.8.0-openjdk have been released to tackle various vulnerabilities affecting Scientific Linux.. java update, security patch, OpenJDK fix. . Severity: Critical. LinuxSecurity.com Team
Oct 18, 2018
•Critical
Scientific Linux
200
security advisorysecurity issuecriticalScientific Linux SL7: SLSA-2018-2942-1 Critical OpenJDK Security Fix
OpenJDK: Improper field access checks (Hotspot, 8199226) (CVE-2018-3169) * OpenJDK: Unrestricted access to scripting engine (Scripting, 8202936) (CVE-2018-3183) * OpenJDK: Incomplete enforcement of the trustURLCodebase restriction (JNDI, 8199177) (CVE-2018-3149) * OpenJDK: Incorrect handling of unsigned attributes in singed Jar manifests (Security, 8194534) (CVE-2018-3136) * OpenJDK: Leak [More...]. Synopsis: Critical: java-1.8.0-openjdk security update Advisory ID: SLSA-2018:2942-1 Issue Date: 2018-10-18 CVE Numbers: CVE-2018-3183 CVE-2018-3169 CVE-2018-3214 CVE-2018-3139 CVE-2018-3180 CVE-2018-3136 CVE-2018-3149 -- Security Fix(es): * OpenJDK: Improper field access checks (Hotspot, 8199226) (CVE-2018-3169) * OpenJDK: Unrestricted access to scripting engine (Scripting, 8202936) (CVE-2018-3183) * OpenJDK: Incomplete enforcement of the trustURLCodebase restriction (JNDI, 8199177) (CVE-2018-3149) * OpenJDK: Incorrect handling of unsigned attributes in singed Jar manifests (Security, 8194534) (CVE-2018-3136) * OpenJDK: Leak of sensitive header data via HTTP redirect (Networking, 8196902) (CVE-2018-3139) * OpenJDK: Missing endpoint identification algorithm check during TLS session resumption (JSSE, 8202613) (CVE-2018-3180) * OpenJDK: Infinite loop in RIFF format reader (Sound, 8205361) (CVE-2018-3214) -- SL7 x86_64 java-1.8.0-openjdk-1.8.0.191.b12-0.el7_5.i686.rpm java-1.8.0-openjdk-1.8.0.191.b12-0.el7_5.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.191.b12-0.el7_5.i686.rpm java-1.8.0-openjdk-debuginfo-1.8.0.191.b12-0.el7_5.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.191.b12-0.el7_5.i686.rpm java-1.8.0-openjdk-headless-1.8.0.191.b12-0.el7_5.x86_64.rpm java-1.8.0-openjdk-accessibility-1.8.0.191.b12-0.el7_5.i686.rpm java-1.8.0-openjdk-accessibility-1.8.0.191.b12-0.el7_5.x86_64.rpm java-1.8.0-openjdk-accessibility-debug-1.8.0.191.b12-0.el7_5.i686.rpm java-1.8.0-openjdk-accessibility-debug-1.8.0.191.b12-0.el7_5.x86_64.rpm java-1.8.0-openjdk-debug-1.8.0.191.b12-0.el7_5.i686.rpm java-1.8.0-openjdk-debug-1.8.0.191.b12-0.el7_5.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.191.b12-0.el7_5.i686.rpm java-1.8.0-openjdk-demo-1.8.0.191.b12-0.el7_5.x86_64.rpm java-1.8.0-openjdk-demo-debug-1.8.0.191.b12-0.el7_5.i686.rpm java-1.8.0-openjdk-demo-debug-1.8.0.191.b12-0.el7_5.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.191.b12-0.el7_5.i686.rpm java-1.8.0-openjdk-devel-1.8.0.191.b12-0.el7_5.x86_64.rpm java-1.8.0-openjdk-devel-debug-1.8.0.191.b12-0.el7_5.i686.rpm java-1.8.0-openjdk-devel-debug-1.8.0.191.b12-0.el7_5.x86_64.rpm java-1.8.0-openjdk-headless-debug-1.8.0.191.b12-0.el7_5.i686.rpm java-1.8.0-openjdk-headless-debug-1.8.0.191.b12-0.el7_5.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.191.b12-0.el7_5.i686.rpm java-1.8.0-openjdk-src-1.8.0.191.b12-0.el7_5.x86_64.rpm java-1.8.0-openjdk-src-debug-1.8.0.191.b12-0.el7_5.i686.rpm java-1.8.0-openjdk-src-debug-1.8.0.191.b12-0.el7_5.x86_64.rpm java-1.8.0-openjdk-1.8.0.191.b12-0.el7_5.src.rpm noarch java-1.8.0-openjdk-javadoc-1.8.0.191.b12-0.el7_5.noarch.rpm java-1.8.0-openjdk-javadoc-debug-1.8.0.191.b12-0.el7_5.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.191.b12-0.el7_5.noarch.rpm java-1.8.0-openjdk-javadoc-zip-debug-1.8.0.191.b12-0.el7_5.noarch.rpm - Scientific Linux Development Team . Important security notification regarding java-1.8.0-openjdk enhancements targeting various vulnerabilities on Scientific Linux.. java Update, OpenJDK Security, Critical Update, SL7 Java Fix. . Severity: Critical. LinuxSecurity.com Team
Oct 18, 2018
•Critical
Scientific Linux
217
security advisorysecurity fixcritical updateOracle: ELSA-2007-0310 Critical: OpenLDAP Improper Selfwrite Access
The following updated rpms for Enterprise Linux 4 have been uploaded to the Unbreakable Linux Network: . Enterprise Linux Security Advisory ELSA-2007-0310 https://access.redhat.com/errata/RHSA-2007:0310.html The following updated rpms for Enterprise Linux 4 have been uploaded to the Unbreakable Linux Network: i386: compat-openldap-2.1.30-7.4E.i386.rpm openldap-2.2.13-7.4E.i386.rpm openldap-clients-2.2.13-7.4E.i386.rpm openldap-devel-2.2.13-7.4E.i386.rpm openldap-servers-2.2.13-7.4E.i386.rpm openldap-servers-sql-2.2.13-7.4E.i386.rpm x86_64: compat-openldap-2.1.30-7.4E.i386.rpm compat-openldap-2.1.30-7.4E.x86_64.rpm openldap-2.2.13-7.4E.i386.rpm openldap-2.2.13-7.4E.x86_64.rpm openldap-clients-2.2.13-7.4E.x86_64.rpm openldap-devel-2.2.13-7.4E.x86_64.rpm openldap-servers-2.2.13-7.4E.x86_64.rpm openldap-servers-sql-2.2.13-7.4E.x86_64.rpm SRPMS: https://oss.oracle.com:443/el4/SRPMS-updates/openldap-2.2.13-7.4E.src.rpm Description of changes: [2.3.13-7.4E] - include the -selfwrite patch to close Resolves: rhbz#205826: CVE-2006-4600 openldap improper selfwrite access . Keep yourself updated regarding the Enterprise Linux Security Advisory ELSA-2007-0310, which includes comprehensive links and information pertaining to the identified security vulnerability.. Enterprise Linux Advisory, OpenLDAP Update, Security Patch. . Severity: Critical. LinuxSecurity.com Team
May 17, 2007
•Critical
Oracle
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!