Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -4 articles for you...
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisoryimportantrocky linux

Rocky Linux 10 RLSA-2026-11418 seahorse Security Announcement Issue

Important: yggdrasil security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:11413", "synopsis": "Important: yggdrasil security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for yggdrasil.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "yggdrasil is a system daemon that subscribes to topics on an MQTT broker and routes any data received on the topics to an appropriate child \"worker\" process, exchanging data with its worker processes through a D-Bus message broker.\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}], "cves": [{"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}], "references": [], "publishedAt": "2026-05-01T12:06:42.394267Z", "rpms": {"Rocky Linux 10": {"nvras": ["yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64.rpm", "yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64.rpm", "yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le.rpm", "yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x.rpm", "yggdrasil-0:0.4.8-4.el10_1.aarch64.rpm", "yggdrasil-devel-0:0.4.8-4.el10_1.aarch64.rpm", "yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64.rpm", "yggdrasil-0:0.4.8-4.el10_1.src.rpm", "yggdrasil-devel-0:0.4.8-4.el10_1.x86_64.rpm", "yggdrasil-0:0.4.8-4.el10_1.x86_64.rpm","yggdrasil-devel-0:0.4.8-4.el10_1.ppc64le.rpm", "yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64.rpm", "yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x.rpm", "yggdrasil-0:0.4.8-4.el10_1.ppc64le.rpm", "yggdrasil-0:0.4.8-4.el10_1.s390x.rpm", "yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le.rpm", "yggdrasil-devel-0:0.4.8-4.el10_1.s390x.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Significant yggdrasil update fixing parsing issues in Rocky Linux 10, enhancing security with important patches.. Rocky Linux,yggdrasil,security update,system daemon. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 01, 2026 Important Rocky Linux
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisoryimportantfile write

CentOS Stream 9 Python Security Alert Recent Issues in Data Management

Important: golang security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:5941", "synopsis": "Important: golang security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for golang.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The golang packages provide the Go programming language compiler.\n\nSecurity Fix(es):\n\n* cmd/go: cmd/go: Arbitrary file write via malicious pkg-config directive (CVE-2025-61731)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}, {"ticket": "2434433", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2434433", "description": ""}], "cves": [{"name": "CVE-2025-61731", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61731", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "cvss3BaseScore": "8.6", "cwe": "CWE-88"}, {"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}], "references": [], "publishedAt": "2026-04-09T12:07:05.484110Z", "rpms": {"Rocky Linux 10": {"nvras": ["golang-race-0:1.25.8-1.el10_1.aarch64.rpm", "golang-bin-0:1.25.8-1.el10_1.ppc64le.rpm", "go-toolset-0:1.25.8-1.el10_1.x86_64.rpm", "golang-0:1.25.8-1.el10_1.x86_64.rpm", "golang-0:1.25.8-1.el10_1.src.rpm","golang-bin-0:1.25.8-1.el10_1.s390x.rpm", "golang-race-0:1.25.8-1.el10_1.x86_64.rpm", "golang-docs-0:1.25.8-1.el10_1.noarch.rpm", "golang-race-0:1.25.8-1.el10_1.ppc64le.rpm", "golang-0:1.25.8-1.el10_1.aarch64.rpm", "golang-bin-0:1.25.8-1.el10_1.x86_64.rpm", "go-toolset-0:1.25.8-1.el10_1.aarch64.rpm", "golang-bin-0:1.25.8-1.el10_1.aarch64.rpm", "go-toolset-0:1.25.8-1.el10_1.ppc64le.rpm", "golang-0:1.25.8-1.el10_1.s390x.rpm", "golang-race-0:1.25.8-1.el10_1.s390x.rpm", "golang-tests-0:1.25.8-1.el10_1.noarch.rpm", "golang-0:1.25.8-1.el10_1.ppc64le.rpm", "golang-misc-0:1.25.8-1.el10_1.noarch.rpm", "go-toolset-0:1.25.8-1.el10_1.s390x.rpm", "golang-src-0:1.25.8-1.el10_1.noarch.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Explore the essential golang security update for Rocky Linux addressing significant threats with detailed resolutions.. golang security update, Rocky Linux advisories, important security patch, Go programming language fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 09, 2026 Important Rocky Linux
Banner 3 1028x280 1708121785 1771599793
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisoryimportantarbitrary file write

CentOS 8 go-toolset Security Patch RLSA-2026-2090 Launched

Important: go-toolset:rhel8 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:6949", "synopsis": "Important: go-toolset:rhel8 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for module.delve, delve.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. \n\nSecurity Fix(es):\n\n* cmd/go: cmd/go: Arbitrary file write via malicious pkg-config directive (CVE-2025-61731)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2434433", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2434433", "description": ""}, {"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}], "cves": [{"name": "CVE-2025-61731", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-61731", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "cvss3BaseScore": "8.6", "cwe": "CWE-88"}, {"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}], "references": [], "publishedAt": "2026-04-08T06:00:32.918205Z", "rpms": {"Rocky Linux 8": {"nvras": ["delve-0:1.25.2-1.module+el8.10.0+40035+ee0a7047.aarch64.rpm", "delve-0:1.25.2-1.module+el8.10.0+40035+ee0a7047.src.rpm","delve-0:1.25.2-1.module+el8.10.0+40035+ee0a7047.x86_64.rpm", "delve-debuginfo-0:1.25.2-1.module+el8.10.0+40035+ee0a7047.aarch64.rpm", "delve-debuginfo-0:1.25.2-1.module+el8.10.0+40035+ee0a7047.x86_64.rpm", "delve-debugsource-0:1.25.2-1.module+el8.10.0+40035+ee0a7047.aarch64.rpm", "delve-debugsource-0:1.25.2-1.module+el8.10.0+40035+ee0a7047.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Explore the important go-toolset security update for Rocky Linux, addressing CVE-2025-61731 and CVE-2026-25679.. go toolset security update, Rocky Linux vulnerabilities, RLSA-2026:6949, important security advisories. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 08, 2026 Important Rocky Linux
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisoryimportantarbitrary file write

Falcon Inc 7 TXRK-5041-4321 net-mob Secure Health Notice CVE-2026-45678

Important: golang security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:5942", "synopsis": "Important: golang security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for golang.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The golang packages provide the Go programming language compiler.\n\nSecurity Fix(es):\n\n* cmd/go: cmd/go: Arbitrary file write via malicious pkg-config directive (CVE-2025-61731)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2434433", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2434433", "description": ""}, {"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}], "cves": [{"name": "CVE-2025-61731", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61731", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "cvss3BaseScore": "8.6", "cwe": "CWE-88"}, {"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}], "references": [], "publishedAt": "2026-04-07T12:03:55.701474Z", "rpms": {"Rocky Linux 9": {"nvras": ["golang-0:1.25.8-1.el9_7.aarch64.rpm", "golang-0:1.25.8-1.el9_7.ppc64le.rpm", "golang-0:1.25.8-1.el9_7.s390x.rpm", "golang-0:1.25.8-1.el9_7.src.rpm", "golang-0:1.25.8-1.el9_7.x86_64.rpm","golang-bin-0:1.25.8-1.el9_7.aarch64.rpm", "golang-bin-0:1.25.8-1.el9_7.ppc64le.rpm", "golang-bin-0:1.25.8-1.el9_7.s390x.rpm", "golang-bin-0:1.25.8-1.el9_7.x86_64.rpm", "golang-docs-0:1.25.8-1.el9_7.noarch.rpm", "golang-misc-0:1.25.8-1.el9_7.noarch.rpm", "golang-race-0:1.25.8-1.el9_7.aarch64.rpm", "golang-race-0:1.25.8-1.el9_7.ppc64le.rpm", "golang-race-0:1.25.8-1.el9_7.s390x.rpm", "golang-race-0:1.25.8-1.el9_7.x86_64.rpm", "golang-src-0:1.25.8-1.el9_7.noarch.rpm", "golang-tests-0:1.25.8-1.el9_7.noarch.rpm", "go-toolset-0:1.25.8-1.el9_7.aarch64.rpm", "go-toolset-0:1.25.8-1.el9_7.ppc64le.rpm", "go-toolset-0:1.25.8-1.el9_7.s390x.rpm", "go-toolset-0:1.25.8-1.el9_7.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Explore the important golang security update for Rocky Linux 9, addressing critical issues and risks involved.. golang update, Rocky Linux security, important security fixes, arbitrary file write, IPv6 parsing issue. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 07, 2026 Important Rocky Linux
Banner 3 1028x280 1708121785 1771599793
87
Ls Advisories Debian Esm H240
Price Tag 1security advisoryremote code executionhttpcomponents-client

Debian Buster: DSA-4772-1 Critical: Httpcomponents Client Misinterpretation

Priyank Nigam discovered that HttpComponents Client, a Java HTTP agent implementation, could misinterpret malformed authority component in a request URI and pick the wrong target host for request execution. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4772-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff October 14, 2020 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : httpcomponents-client CVE ID : CVE-2020-13956 Priyank Nigam discovered that HttpComponents Client, a Java HTTP agent implementation, could misinterpret malformed authority component in a request URI and pick the wrong target host for request execution. For the stable distribution (buster), this problem has been fixed in version 4.5.7-1+deb10u1. We recommend that you upgrade your httpcomponents-client packages. For the detailed security status of httpcomponents-client please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/httpcomponents-client Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . HttpClient library fails to accurately parse incorrect authority segments, posing risk for vulnerabilities. Suggested to update.. Httpcomponents Client Security, Debian DSA-4772-1, Java HTTP Agent, Security Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 14, 2020 Critical Debian
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here