Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 86 articles for you...
219

Rocky Linux 8 FreeRADIUS Moderate Info Leak Crash RLSA-2023-2870

Moderate: freeradius:3.0 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2023:2870", "synopsis": "Moderate: freeradius:3.0 security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for module.freeradius, freeradius.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service (RADIUS) server, designed to allow centralized authentication and authorization for a network.\n\nSecurity Fix(es):\n\n* freeradius: Information leakage in EAP-PWD (CVE-2022-41859)\n\n* freeradius: Crash on unknown option in EAP-SIM (CVE-2022-41860)\n\n* freeradius: Crash on invalid abinary data (CVE-2022-41861)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Rocky Linux 8.8 Release Notes linked from the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2078483", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2078483", "description": ""}, {"ticket": "2078485", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2078485", "description": ""}, {"ticket": "2078487", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2078487", "description": ""}], "cves": [{"name": "CVE-2022-41859", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41859", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "cvss3BaseScore": "7.5", "cwe": "CWE-208"}, {"name": "CVE-2022-41860", "sourceBy": "MITRE", "sourceLink":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41860", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-476"}, {"name": "CVE-2022-41861", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41861", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-20"}], "references": [], "publishedAt": "2026-06-26T18:00:57.979049Z", "rpms": {"Rocky Linux 8": {"nvras": ["freeradius-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.src.rpm", "freeradius-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-debugsource-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-devel-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-doc-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-krb5-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-krb5-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-ldap-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-ldap-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-mysql-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-mysql-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-perl-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-perl-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-postgresql-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-postgresql-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-rest-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-rest-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-sqlite-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-sqlite-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm","freeradius-unixODBC-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-unixODBC-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-utils-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-utils-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "python3-freeradius-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "python3-freeradius-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-devel-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-doc-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-krb5-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-ldap-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-mysql-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-perl-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-postgresql-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-rest-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-sqlite-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-unixODBC-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-utils-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "python3-freeradius-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Security update for freeradius addresses moderate issues including information leakage and crashes in Rocky Linux 8.. moderate issues, freeradius, rocky linux security, software updates. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jun 26, 2026 moderate Rocky Linux
197

Debian LTS python-aiohttp Advisory DLA-4613-1 Request Smuggling DoS

Several vulnerabilities have been found in aiohttp, an asynchronous HTTP client/server framework for asyncio and Python. CVE-2025-53643 Request smuggling vulnerability due to not parsing trailer sections of an HTTP request.. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4613-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Daniel Leidert June 01, 2026 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : python-aiohttp Version : 3.7.4-1+deb11u2 CVE ID : CVE-2025-53643 CVE-2025-69224 CVE-2025-69225 CVE-2025-69226 CVE-2025-69227 CVE-2025-69228 CVE-2025-69229 CVE-2026-22815 CVE-2026-34513 CVE-2026-34514 CVE-2026-34516 CVE-2026-34517 CVE-2026-34518 CVE-2026-34519 CVE-2026-34520 CVE-2026-34525 Several vulnerabilities have been found in aiohttp, an asynchronous HTTP client/server framework for asyncio and Python. CVE-2025-53643 Request smuggling vulnerability due to not parsing trailer sections of an HTTP request. CVE-2025-69224 Possible request smuggling attack in the HTTP parser with the presence of non-ASCII characters. CVE-2025-69225 Parser logic which allows non-ASCII decimals to be present in the Range header. CVE-2025-69226 Path traversal vulnerability that allows an attacker to ascertain the existence of path components. CVE-2025-69227 When processing a POST body, an infinite loop can occur when assert statements are bypassed leading to a possible DoS attack. CVE-2025-69228 Possible DoS attack that can freeze the server by exhausting the memory using Request.post(). CVE-2025-69229 The handling of chunked messages that can result in an excessive blocking of CPU usage when receiving a large number of chunks. CVE-2026-22815 Uncapped memory usage due to insufficient restrictionsin header and trailer handling. CVE-2026-34513 Excessive memory usage possibly resulting in a DoS due to an an unbounded DNS cache. CVE-2026-34514 Header injection. CVE-2026-34516 Potential DoS vulnerability caused by a response with an excessive number of multipart headers. CVE-2026-34517 Possible excessive memory usage caused by some multipart form fields due to reading the entiry field into memory before checking client_max_size. CVE-2026-34518 Leaking sensitive information by dropping the Cookie and the Proxy- Authorization headers When following redirects to a different origin. CVE-2026-34519 Header injection via the reason parameter. CVE-2026-34520 Possible security bypass by checking header values for control characters accordingly to RFC 9110. CVE-2026-34525 Headers can be duplicated, e.g. the host header. For Debian 11 bullseye, these problems have been fixed in version 3.7.4-1+deb11u2. We recommend that you upgrade your python-aiohttp packages. For the detailed security status of python-aiohttp please refer to its security tracker page at: https://security-tracker.debian.org/tracker/python-aiohttp Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Multiple vulnerabilities found in python-aiohttp requiring immediate upgrades for security enhancements and stability.. Debian python-aiohttp vulnerabilities DoS request smuggling. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 01, 2026 Important Debian LTS
217

Oracle Linux 7 squid Important Security Updates ELSA-2026-8880

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-8880 http://linux.oracle.com/errata/ELSA-2026-8880.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: squid-3.5.20-17.0.11.el7_9.13.x86_64.rpm squid-migration-script-3.5.20-17.0.11.el7_9.13.x86_64.rpm squid-sysvinit-3.5.20-17.0.11.el7_9.13.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates/squid-3.5.20-17.0.11.el7_9.13.src.rpm Related CVEs: CVE-2026-32748 CVE-2026-33526 Description of changes: [7:3.5.20-17.0.11.13] - Security update for CVE-2026-32748 CVE-2026-33526 [Orabug: 39230173] [7:3.5.20-17.0.9.13] - Fixes CVE-2025-62168, squid: Squid vulnerable to information disclosure via - authentication credential leakage in error handling [Orabug: 38587551] [7:3.5.20-17.0.7.13] - Fixes CVE-2025-54574, add URN access disabling config options [Orabug: 38350105] [7:3.5.20-17.0.5.13] - Fixed cve 2023-46846 for http and icap request/response smuggling [Orabug: 37326730] _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Oracle Linux 7 updates include important security fixes for Squid addressing multiple vulnerabilities.. Oracle Linux Security Squid Fixes Information Leakage. . Severity: Important. LinuxSecurity.com Team

Calendar%202 May 20, 2026 Important Oracle
172

Ubuntu 26.04 Python Marshmallow Critical DoS and Info Leak USN-8225-1

Several security issues were fixed in Python marshmallow.. ========================================================================== Ubuntu Security Notice USN-8225-1 April 30, 2026 python-marshmallow vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS Summary: Several security issues were fixed in Python marshmallow. Software Description: - python-marshmallow: ORM/ODM/framework-agnostic library for converting complex datatypes. Details: Jared Deckard discovered that Python marshmallow did not correctly handle hiding certain fields. An attacker could possibly use this issue to leak sensitive information. This issue only affected Ubuntu 18.04 LTS. (CVE-2018-17175) It was discovered that Python marshmallow did not efficiently handle merging certain objects. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS and Ubuntu 26.04 LTS. (CVE-2025-68480) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS python3-marshmallow 3.26.1-0.4ubuntu0.1~esm1 Available with Ubuntu Pro python3-marshmallow-doc 3.26.1-0.4ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 24.04 LTS python3-marshmallow 3.20.1-1.1ubuntu0.1~esm1 Available with Ubuntu Pro python3-marshmallow-doc 3.20.1-1.1ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 22.04 LTS python3-marshmallow 3.13.0-1ubuntu0.1~esm1 Available with Ubuntu Pro python3-marshmallow-doc 3.13.0-1ubuntu0.1~esm1 Available with UbuntuPro Ubuntu 20.04 LTS python3-marshmallow 3.4.0-1ubuntu0.1~esm1 Available with Ubuntu Pro python3-marshmallow-doc 3.4.0-1ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 18.04 LTS python3-marshmallow 3.0.0b3-1ubuntu0.1~esm1 Available with Ubuntu Pro python3-marshmallow-doc 3.0.0b3-1ubuntu0.1~esm1 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8225-1 CVE-2018-17175, CVE-2025-68480 . Ubuntu releases fixed several critical security issues in Python marshmallow affecting multiple LTS versions. Act promptly.. Ubuntu security advisory, python-marshmallow fix, critical vulnerabilities, information leakage, denial of service. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Apr 30, 2026 Critical Ubuntu
100

Severe Security Vulnerability Detected in Ubuntu Server CVE-2023-9876-7

An update that solves three vulnerabilities can now be installed.. # Security update for kea Announcement ID: SUSE-SU-2026:1091-1 Release Date: 2026-03-26T17:48:28Z Rating: important References: * bsc#1243240 Cross-References: * CVE-2025-32801 * CVE-2025-32802 * CVE-2025-32803 CVSS scores: * CVE-2025-32801 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-32801 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-32801 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-32802 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-32802 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2025-32802 ( NVD ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2025-32803 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2025-32803 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2025-32803 ( NVD ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves three vulnerabilities can now be installed. ## Description: This update for kea fixes the following issues: Update to release 2.6.3 (bsc#1243240): * CVE-2025-32801: Fixed loading a malicious hook library can lead to local privilege escalation. * CVE-2025-32802: Fixed insecure handling of file paths allows multiple local attacks. * CVE-2025-32803: Fixed insecure file permissions can result in confidential information leakage. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-1091=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-1091=1 openSUSE-SLE-15.6-2026-1091=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-1091=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * libkea-util86-debuginfo-2.6.3-150600.13.6.1 * python3-kea-2.6.3-150600.13.6.1 * libkea-dhcpsrv111-2.6.3-150600.13.6.1 * libkea-exceptions33-debuginfo-2.6.3-150600.13.6.1 * libkea-cfgclient66-debuginfo-2.6.3-150600.13.6.1 * libkea-eval69-2.6.3-150600.13.6.1 * libkea-log61-2.6.3-150600.13.6.1 * kea-debuginfo-2.6.3-150600.13.6.1 * libkea-util86-2.6.3-150600.13.6.1 * kea-hooks-debuginfo-2.6.3-150600.13.6.1 * libkea-asiodns49-debuginfo-2.6.3-150600.13.6.1 * libkea-dns++57-2.6.3-150600.13.6.1 * libkea-cryptolink50-2.6.3-150600.13.6.1 * libkea-process74-debuginfo-2.6.3-150600.13.6.1 * libkea-dhcp_ddns57-debuginfo-2.6.3-150600.13.6.1 * libkea-cryptolink50-debuginfo-2.6.3-150600.13.6.1 * kea-devel-2.6.3-150600.13.6.1 * libkea-stats41-2.6.3-150600.13.6.1 * libkea-util-io0-debuginfo-2.6.3-150600.13.6.1 * libkea-hooks100-debuginfo-2.6.3-150600.13.6.1 * libkea-process74-2.6.3-150600.13.6.1 * libkea-stats41-debuginfo-2.6.3-150600.13.6.1 * libkea-tcp19-debuginfo-2.6.3-150600.13.6.1 * libkea-asiolink72-debuginfo-2.6.3-150600.13.6.1 * libkea-d2srv47-2.6.3-150600.13.6.1 * libkea-dns++57-debuginfo-2.6.3-150600.13.6.1 * libkea-cc68-2.6.3-150600.13.6.1 * libkea-exceptions33-2.6.3-150600.13.6.1 * kea-hooks-2.6.3-150600.13.6.1 * libkea-dhcp++92-2.6.3-150600.13.6.1 * libkea-dhcp_ddns57-2.6.3-150600.13.6.1 * libkea-d2srv47-debuginfo-2.6.3-150600.13.6.1 * libkea-database62-debuginfo-2.6.3-150600.13.6.1 * libkea-log61-debuginfo-2.6.3-150600.13.6.1 * libkea-mysql71-2.6.3-150600.13.6.1 * libkea-cfgclient66-2.6.3-150600.13.6.1 * kea-debugsource-2.6.3-150600.13.6.1 * libkea-mysql71-debuginfo-2.6.3-150600.13.6.1 * libkea-eval69-debuginfo-2.6.3-150600.13.6.1 * libkea-pgsql71-2.6.3-150600.13.6.1 * kea-2.6.3-150600.13.6.1 * libkea-database62-2.6.3-150600.13.6.1 * libkea-pgsql71-debuginfo-2.6.3-150600.13.6.1 * libkea-hooks100-2.6.3-150600.13.6.1 * libkea-http72-debuginfo-2.6.3-150600.13.6.1 * libkea-tcp19-2.6.3-150600.13.6.1 * libkea-http72-2.6.3-150600.13.6.1 * libkea-dhcpsrv111-debuginfo-2.6.3-150600.13.6.1 * libkea-asiodns49-2.6.3-150600.13.6.1 * libkea-cc68-debuginfo-2.6.3-150600.13.6.1 * libkea-util-io0-2.6.3-150600.13.6.1 * libkea-asiolink72-2.6.3-150600.13.6.1 * libkea-dhcp++92-debuginfo-2.6.3-150600.13.6.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch) * kea-doc-2.6.3-150600.13.6.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * libkea-util86-debuginfo-2.6.3-150600.13.6.1 * python3-kea-2.6.3-150600.13.6.1 * libkea-dhcpsrv111-2.6.3-150600.13.6.1 * libkea-exceptions33-debuginfo-2.6.3-150600.13.6.1 * libkea-cfgclient66-debuginfo-2.6.3-150600.13.6.1 * libkea-eval69-2.6.3-150600.13.6.1 * libkea-log61-2.6.3-150600.13.6.1 * kea-debuginfo-2.6.3-150600.13.6.1 * libkea-util86-2.6.3-150600.13.6.1 * kea-hooks-debuginfo-2.6.3-150600.13.6.1 * libkea-asiodns49-debuginfo-2.6.3-150600.13.6.1 * libkea-dns++57-2.6.3-150600.13.6.1 * libkea-cryptolink50-2.6.3-150600.13.6.1 * libkea-process74-debuginfo-2.6.3-150600.13.6.1 * libkea-dhcp_ddns57-debuginfo-2.6.3-150600.13.6.1 * libkea-cryptolink50-debuginfo-2.6.3-150600.13.6.1 * kea-devel-2.6.3-150600.13.6.1 * libkea-stats41-2.6.3-150600.13.6.1 * libkea-util-io0-debuginfo-2.6.3-150600.13.6.1 * libkea-hooks100-debuginfo-2.6.3-150600.13.6.1 * libkea-process74-2.6.3-150600.13.6.1 * libkea-stats41-debuginfo-2.6.3-150600.13.6.1 * libkea-tcp19-debuginfo-2.6.3-150600.13.6.1 *libkea-asiolink72-debuginfo-2.6.3-150600.13.6.1 * libkea-d2srv47-2.6.3-150600.13.6.1 * libkea-dns++57-debuginfo-2.6.3-150600.13.6.1 * libkea-cc68-2.6.3-150600.13.6.1 * libkea-exceptions33-2.6.3-150600.13.6.1 * kea-hooks-2.6.3-150600.13.6.1 * libkea-dhcp++92-2.6.3-150600.13.6.1 * libkea-dhcp_ddns57-2.6.3-150600.13.6.1 * libkea-d2srv47-debuginfo-2.6.3-150600.13.6.1 * libkea-database62-debuginfo-2.6.3-150600.13.6.1 * libkea-log61-debuginfo-2.6.3-150600.13.6.1 * libkea-mysql71-2.6.3-150600.13.6.1 * libkea-cfgclient66-2.6.3-150600.13.6.1 * kea-debugsource-2.6.3-150600.13.6.1 * libkea-mysql71-debuginfo-2.6.3-150600.13.6.1 * libkea-eval69-debuginfo-2.6.3-150600.13.6.1 * libkea-pgsql71-2.6.3-150600.13.6.1 * kea-2.6.3-150600.13.6.1 * libkea-database62-2.6.3-150600.13.6.1 * libkea-pgsql71-debuginfo-2.6.3-150600.13.6.1 * libkea-hooks100-2.6.3-150600.13.6.1 * libkea-http72-debuginfo-2.6.3-150600.13.6.1 * libkea-tcp19-2.6.3-150600.13.6.1 * libkea-http72-2.6.3-150600.13.6.1 * libkea-dhcpsrv111-debuginfo-2.6.3-150600.13.6.1 * libkea-asiodns49-2.6.3-150600.13.6.1 * libkea-cc68-debuginfo-2.6.3-150600.13.6.1 * libkea-util-io0-2.6.3-150600.13.6.1 * libkea-asiolink72-2.6.3-150600.13.6.1 * libkea-dhcp++92-debuginfo-2.6.3-150600.13.6.1 * openSUSE Leap 15.6 (noarch) * kea-doc-2.6.3-150600.13.6.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * libkea-util86-debuginfo-2.6.3-150600.13.6.1 * python3-kea-2.6.3-150600.13.6.1 * libkea-dhcpsrv111-2.6.3-150600.13.6.1 * libkea-exceptions33-debuginfo-2.6.3-150600.13.6.1 * libkea-cfgclient66-debuginfo-2.6.3-150600.13.6.1 * libkea-eval69-2.6.3-150600.13.6.1 * libkea-log61-2.6.3-150600.13.6.1 * kea-debuginfo-2.6.3-150600.13.6.1 * libkea-util86-2.6.3-150600.13.6.1 * kea-hooks-debuginfo-2.6.3-150600.13.6.1 * libkea-asiodns49-debuginfo-2.6.3-150600.13.6.1 * libkea-dns++57-2.6.3-150600.13.6.1 *libkea-cryptolink50-2.6.3-150600.13.6.1 * libkea-process74-debuginfo-2.6.3-150600.13.6.1 * libkea-dhcp_ddns57-debuginfo-2.6.3-150600.13.6.1 * libkea-cryptolink50-debuginfo-2.6.3-150600.13.6.1 * kea-devel-2.6.3-150600.13.6.1 * libkea-stats41-2.6.3-150600.13.6.1 * libkea-util-io0-debuginfo-2.6.3-150600.13.6.1 * libkea-hooks100-debuginfo-2.6.3-150600.13.6.1 * libkea-process74-2.6.3-150600.13.6.1 * libkea-stats41-debuginfo-2.6.3-150600.13.6.1 * libkea-tcp19-debuginfo-2.6.3-150600.13.6.1 * libkea-asiolink72-debuginfo-2.6.3-150600.13.6.1 * libkea-d2srv47-2.6.3-150600.13.6.1 * libkea-dns++57-debuginfo-2.6.3-150600.13.6.1 * libkea-cc68-2.6.3-150600.13.6.1 * libkea-exceptions33-2.6.3-150600.13.6.1 * kea-hooks-2.6.3-150600.13.6.1 * libkea-dhcp++92-2.6.3-150600.13.6.1 * libkea-dhcp_ddns57-2.6.3-150600.13.6.1 * libkea-d2srv47-debuginfo-2.6.3-150600.13.6.1 * libkea-database62-debuginfo-2.6.3-150600.13.6.1 * libkea-log61-debuginfo-2.6.3-150600.13.6.1 * libkea-mysql71-2.6.3-150600.13.6.1 * libkea-cfgclient66-2.6.3-150600.13.6.1 * kea-debugsource-2.6.3-150600.13.6.1 * libkea-mysql71-debuginfo-2.6.3-150600.13.6.1 * libkea-eval69-debuginfo-2.6.3-150600.13.6.1 * libkea-pgsql71-2.6.3-150600.13.6.1 * kea-2.6.3-150600.13.6.1 * libkea-database62-2.6.3-150600.13.6.1 * libkea-pgsql71-debuginfo-2.6.3-150600.13.6.1 * libkea-hooks100-2.6.3-150600.13.6.1 * libkea-http72-debuginfo-2.6.3-150600.13.6.1 * libkea-tcp19-2.6.3-150600.13.6.1 * libkea-http72-2.6.3-150600.13.6.1 * libkea-dhcpsrv111-debuginfo-2.6.3-150600.13.6.1 * libkea-asiodns49-2.6.3-150600.13.6.1 * libkea-cc68-debuginfo-2.6.3-150600.13.6.1 * libkea-util-io0-2.6.3-150600.13.6.1 * libkea-asiolink72-2.6.3-150600.13.6.1 * libkea-dhcp++92-debuginfo-2.6.3-150600.13.6.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch) * kea-doc-2.6.3-150600.13.6.1 ## References: * https://www.suse.com/security/cve/CVE-2025-32801.html * https://www.suse.com/security/cve/CVE-2025-32802.html * https://www.suse.com/security/cve/CVE-2025-32803.html * https://bugzilla.suse.com/show_bug.cgi?id=1243240 . Important update for kea resolves three security issues affecting SUSE and openSUSE, enhancing system safety and integrity.. SUSE Security Update, kea vulnerabilities, openSUSE patch, Linux security advisory. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Mar 27, 2026 Important SuSE
202

openSUSE Tumbleweed cargo-c Moderate CVE-2026-25727 Update

An update that solves one vulnerability can now be installed.. # cargo-c-0.10.15-2.1 on GA media Announcement ID: openSUSE-SU-2026:10185-1 Rating: moderate Cross-References: * CVE-2026-25727 CVSS scores: * CVE-2026-25727 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-25727 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the cargo-c-0.10.15-2.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * cargo-c 0.10.15-2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-25727.html . Moderate security update for openSUSE Tumbleweed resolves vulnerability in cargo-c 0.10.15-2.1 package.. openSUSE Tumbleweed, cargo-c update, security patch, CVE-2026-25727, moderate risk. . LinuxSecurity.com Team

Calendar%202 Feb 13, 2026 OpenSUSE
172

Ubuntu 25.10 OpenJDK 8 Critical Remote Code Exec Security Alert USN-8000-1

Several security issues were fixed in OpenJDK 8.. ========================================================================== Ubuntu Security Notice USN-8000-1 February 02, 2026 openjdk-8 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 25.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: Several security issues were fixed in OpenJDK 8. Software Description: - openjdk-8: Open Source Java implementation Details: It was discovered that the RMI component of OpenJDK 8 would establish RMI TCP endpoint connections to a remote host without setting an endpoint identification algorithm. An unauthenticated remote attacker could possibly use this issue to steal sensitive information. (CVE-2026-21925) Mingijung discovered that the AWT and JavaFX componenets of OpenJDK 8 could run programs if Desktop.browse() was supplied a filename as a URI. An unauthenticated remote attacker could possibly use this issue to execute arbitrary code. (CVE-2026-21932) Zhihui Chen discovered that the Networking component of OpenJDK 8 was suceptible to a CRLF injection vulnerability via the HttpServer class. An unauthenticated remote attacker could possibly use this issue to modify files or leak sensitive information. (CVE-2026-21933) Ireneusz Pastusiak discovered that the Security component of OpenJDK 8 failed to verify provided URIs point to a legitimate source when AIA is enabled. An unauthenticated remote attacker could possibly use this issue to redirect users to malicious hosts. (CVE-2026-21945) In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Please see the following for more information: https://openjdk.org/groups/vulnerability/advisories/2026-01-20 Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 25.10 openjdk-8-jdk 8u482-ga~us1-0ubuntu1~25.10 openjdk-8-jdk-headless 8u482-ga~us1-0ubuntu1~25.10 openjdk-8-jre 8u482-ga~us1-0ubuntu1~25.10 openjdk-8-jre-headless 8u482-ga~us1-0ubuntu1~25.10 openjdk-8-jre-zero 8u482-ga~us1-0ubuntu1~25.10 Ubuntu 24.04 LTS openjdk-8-jdk 8u482-ga~us1-0ubuntu1~24.04 openjdk-8-jdk-headless 8u482-ga~us1-0ubuntu1~24.04 openjdk-8-jre 8u482-ga~us1-0ubuntu1~24.04 openjdk-8-jre-headless 8u482-ga~us1-0ubuntu1~24.04 openjdk-8-jre-zero 8u482-ga~us1-0ubuntu1~24.04 Ubuntu 22.04 LTS openjdk-8-jdk 8u482-ga~us1-0ubuntu1~22.04 openjdk-8-jdk-headless 8u482-ga~us1-0ubuntu1~22.04 openjdk-8-jre 8u482-ga~us1-0ubuntu1~22.04 openjdk-8-jre-headless 8u482-ga~us1-0ubuntu1~22.04 openjdk-8-jre-zero 8u482-ga~us1-0ubuntu1~22.04 Ubuntu 20.04 LTS openjdk-8-jdk 8u482-ga~us1-0ubuntu1~20.04 Available with Ubuntu Pro openjdk-8-jdk-headless 8u482-ga~us1-0ubuntu1~20.04 Available with Ubuntu Pro openjdk-8-jre 8u482-ga~us1-0ubuntu1~20.04 Available with Ubuntu Pro openjdk-8-jre-headless 8u482-ga~us1-0ubuntu1~20.04 Available with Ubuntu Pro openjdk-8-jre-zero 8u482-ga~us1-0ubuntu1~20.04 Available with Ubuntu Pro Ubuntu 18.04 LTS openjdk-8-jdk 8u482-ga~us1-0ubuntu1~18.04 Available with Ubuntu Pro openjdk-8-jdk-headless 8u482-ga~us1-0ubuntu1~18.04 Available with Ubuntu Pro openjdk-8-jre 8u482-ga~us1-0ubuntu1~18.04 Available with Ubuntu Pro openjdk-8-jre-headless 8u482-ga~us1-0ubuntu1~18.04 Available with Ubuntu Pro openjdk-8-jre-zero 8u482-ga~us1-0ubuntu1~18.04 Available with Ubuntu Pro Ubuntu 16.04 LTS openjdk-8-jdk 8u482-ga~us1-0ubuntu1~16.04 Available with Ubuntu Pro openjdk-8-jdk-headless 8u482-ga~us1-0ubuntu1~16.04 Available with Ubuntu Pro openjdk-8-jre 8u482-ga~us1-0ubuntu1~16.04 Available with Ubuntu Pro openjdk-8-jre-headless 8u482-ga~us1-0ubuntu1~16.04 Available with Ubuntu Pro openjdk-8-jre-jamvm 8u482-ga~us1-0ubuntu1~16.04 Available with Ubuntu Pro openjdk-8-jre-zero 8u482-ga~us1-0ubuntu1~16.04 Available with Ubuntu Pro This update uses a new upstream release, which includes additional bug fixes. After a standard system update you need to restart Java applications to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8000-1 CVE-2026-21925, CVE-2026-21932, CVE-2026-21933, CVE-2026-21945 Package Information: https://launchpad.net/ubuntu/+source/openjdk-8/8u482-ga~us1-0ubuntu1~22.04 . Fix critical security issues in OpenJDK 8 for Ubuntu, preventing remote code execution and data leaks.. OpenJDK 8 critical update, Ubuntu security issues, remote code execution fix. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Feb 03, 2026 Critical Ubuntu
89

Important Crash Information Leak Vulnerabilities in Fedora 42 glibc 2026

This update switches the currency symbol for Bulgaria to the Euro. Furthermore, it addresses several security vulnerabilities: A crash when wordexp is used with WRDE_REUSE (CVE-2025-15281) Information leakage from the stack if getnetbyaddr is called for the zero address (CVE-2026-0915). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-a2f3af8a86 2026-01-27 06:42:28.827046+00:00 -------------------------------------------------------------------------------- Name : glibc Product : Fedora 42 Version : 2.41 Release : 16.fc42 URL : http://www.gnu.org/software/glibc/ Summary : The GNU libc libraries Description : The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important sets of shared libraries: the standard C library and the standard math library. Without these two libraries, a Linux system will not function. -------------------------------------------------------------------------------- Update Information: This update switches the currency symbol for Bulgaria to the Euro. Furthermore, it addresses several security vulnerabilities: A crash when wordexp is used with WRDE_REUSE (CVE-2025-15281) Information leakage from the stack if getnetbyaddr is called for the zero address (CVE-2026-0915) An integer overflow in memalign and related functions if they are called with out-of-bounds size/alignment combinations (CVE-2026-0861) LD_PROFILE is now ignored with a warning if LD_PROFILE_OUTPUT is not specified, rather than using the insecure /var/tmp default. The changes updates from the upstream stable release branch are applied: nptl: Optimize trylock for high cache contention workloads (BZ #33704) (Sunil K Pandey) sprof: fix -Wformat warnings on 32-bit hosts (Collin Funk) sprof: checkpread size and offset for overflow (DJ Delorie) -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 23 2026 Florian Weimer - 2.41-16 - Ignore LD_PROFILE if LD_PROFILE_OUTPUT is not set (#2432405) * Fri Jan 23 2026 Florian Weimer - 2.41-15 - Auto-sync with upstream branch release/2.41/master, commit fb4db64a04ad6c96cd1fbb7e02eb59323b1f2ac2: - posix: Reset wordexp_t fields with WRDE_REUSE (CVE-2025-15281) - resolv: Fix NSS DNS backend for getnetbyaddr (CVE-2026-0915) - memalign: reinstate alignment overflow check (CVE-2026-0861) * Tue Jan 13 2026 Florian Weimer - 2.41-14 - Switch currency symbol for the bg_BG locale to euro (#2429016) * Mon Jan 12 2026 Frdric Brat - 2.41-13 - Auto-sync with upstream branch master, commit c96b4ed1e26f06ebc56c17ba2c29d1647be68c1e: - nptl: Optimize trylock for high cache contention workloads (BZ #33704) (Sunil K Pandey) - support: Exit on consistency check failure in resolv_response_add_name (Florian Weimer) - support: Fix FILE * leak in check_for_unshare_hints in test-container (Florian Weimer) - sprof: fix -Wformat warnings on 32-bit hosts (Collin Funk) - sprof: check pread size and offset for overflow (DJ Delorie) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2429016 - glibc: Bulgaria joined the eurozone https://bugzilla.redhat.com/show_bug.cgi?id=2429016 [ 2 ] Bug #2430076 - CVE-2026-0861 glibc: Integer overflow in memalign leads to heap corruption [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2430076 [ 3 ] Bug #2430319 - CVE-2026-0915 glibc: glibc: Information disclosure via zero-valued network query [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2430319 [ 4 ] Bug #2431279 - CVE-2025-15281 glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2431279 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-a2f3af8a86' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Update for Fedora 42 glibc addresses critical issues including information leakage and crashes related to specific functions.. Fedora glibc security update information leakage crash vulnerabilities. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jan 27, 2026 Important Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200