Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -2 articles for you...
89
security advisoryfedorasoftware updateFedora 44 perl-ExtUtils-Builder-Compiler Notice CVE-2026-8463
Update to 0.031 #2477035 #2481131 fixes CVE-2026-8463. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-dafdad8fd3 2026-06-05 04:25:00.358941+00:00 -------------------------------------------------------------------------------- Name : perl-ExtUtils-Builder-Compiler Product : Fedora 44 Version : 0.036 Release : 1.fc44 URL : https://metacpan.org/dist/ExtUtils-Builder-Compiler Summary : Interface around different compilers Description : This is an interface wrapping around different compilers. It's usually not used directly but by a portability layer like ExtUtils::Builder::Autodetect::C. -------------------------------------------------------------------------------- Update Information: Update to 0.031 #2477035 #2481131 fixes CVE-2026-8463 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2026 Charles R. Anderson 0.036-1 - Update to 0.036 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-dafdad8fd3' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jun 05, 2026
•Informational
Fedora
87
security advisorydebiandata destructionDebian DSA-6145-1 Nova Image Resize Issue CVE-2026-24708
Dan Smith discovered that nova, a cloud computing fabric controller, calls qemu-img without format restrictions for resize, which may result in unsafe image resize operations that could destroy data on the host system. Only compute nodes using the Flat image backend are affected. For the oldstable distribution (bookworm), this problem has been fixed. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6145-1
Feb 19, 2026
•Informational
Debian
89
security advisoryfedoraupdateFedora 42: linux-firmware Update 20260110 for Various Devices Available
Update to 20260110: update firmware for MT7925 WiFi device mediatek MT7925: update bluetooth firmware to 20260106153314 mediatek MT7920: update bluetooth firmware to 20260105151350 mediatek MT7922: update bluetooth firmware to 20260106153735. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-1d240112ff 2026-01-15 00:51:57.354759+00:00 -------------------------------------------------------------------------------- Name : linux-firmware Product : Fedora 42 Version : 20260110 Release : 1.fc42 URL : http://www.kernel.org/ Summary : Firmware files used by the Linux kernel Description : This package includes firmware files required for some devices to operate. -------------------------------------------------------------------------------- Update Information: Update to 20260110: update firmware for MT7925 WiFi device mediatek MT7925: update bluetooth firmware to 20260106153314 mediatek MT7920: update bluetooth firmware to 20260105151350 mediatek MT7922: update bluetooth firmware to 20260106153735 update firmware for MT7922 WiFi device Mellanox: Add new mlxsw_spectrum firmware xx.2016.3900 amdgpu: Update dcn314, dcn315 firmware to 0.1.42.0 qcom: Update DSP firmware for sa8775 platform QCA: Add Bluetooth firmware for QCC2072 uart interface i915: Xe3p_LPD DMC v2.33 qcom: Update DSP firmware for qcs8300 platform update firmware for MT7920 WiFi device qcom: Update aic100 firmware files qca: Update Bluetooth WCN6750 1.1.3-00100 firmware to 1.1.3-00105 firmware: Revert kernel_boot.elf due to license compliance issue add firmware for an8811hb 2.5G ethernet phy i915: Xe3LPD_3002 DMC v2.28 i915: Xe3LPD DMC v2.33 intel_vpu: Add firmware for 50xx NPUs and update older ones Update AMD SEV firmware amdgpu: DMCUB updates for various ASICs qcom: venus-5.4: fix ELF segment alignment to 4 bytes mediatek MT7925: update bluetooth firmware to 20251210093205 update firmware for MT7925 WiFidevice rcar_gen4_pcie: add firmware for Renesas R-Car Gen4 PCIe controller qcom: Update CDSP firmware for qcm6490 platform rtl_bt: Update RTL8852BT/RTL8852BE-VT BT USB FW to 0x488C_DB55 iwlwifi: Add firmware file for Intel Scorpius core rtw89: 8852b: update fw to v0.29.29.15 cirrus: cs35l41: Update firmware and tuning for various HP laptops cirrus: cs35l41: Add support for new HP Clipper laptop qcom: drop compatibility a640_zap.mdt symlink qcom: add version for a530v3_gpmu.fw2 xe: Update GUC to v70.55.3 for BMG, PTL iwlwifi: add Bz/Sc FW for core101-82 release iwlwifi: Add Sc/Gf firmware for core101-82 release iwlwifi: update ty/So/Ma firmwares for core101-82 release iwlwifi: update cc/Qu/QuZ firmwares for core101-82 release amdgpu: DMCUB updates for various ASICs qcom: Add firmwares for sm8150/sm8450/sm8550/sm8650/sm8750 GPUs ath10k: WCN3990 hw1.0: update board-2.bin ath10k: QCA9888 hw2.0: update board-2.bin ath10k: QCA4019 hw1.0: update board-2.bin cirrus: cs35l41: Add support for new HP laptops Revert "amdgpu: update GC 11.5.0 firmware" Update amd-ucode copyright information Update AMD cpu microcode Update firmware file for Intel Scorpius core Update firmware file for Intel BlazarIGfP core Update firmware file for Intel BlazarI core Update firmware file for Intel BlazarU-HrPGfP core Update firmware file for Intel BlazarU core ath11k: QCA6698AQ hw2.1: update to WLAN.HSP.1.1-04866-QCAHSPSWPL_V1_V2_SILICONZ_IOE-1 ath11k: QCA2066 hw2.1: update board-2.bin qcom: update ADSP firmware for x1e80100 platform, change the license qcom: reorder ADSP, CDSP firmware entries for qcs8300 in WHENCE Reapply "amdgpu: update SMU 14.0.3 firmware" Revert "amdgpu: update SMU 14.0.3 firmware" Revert "amdgpu: update GC 10.3.6 firmware" Revert "amdgpu: update GC 11.5.1 firmware" update firmware for MT7925 WiFi device mediatek MT7925: update bluetooth firmware to 20251124093155 intel_vpu: Update NPU firmware qcom: vpu: update video firmware binary for SM8250 xe: Update GUC to v70.54.0 for BMG,PTL -------------------------------------------------------------------------------- ChangeLog: * Sun Jan 11 2026 Peter Robinson - 20260110-1 - Update to 20260110 - update firmware for MT7925 WiFi device - mediatek MT7925: update bluetooth firmware to 20260106153314 - mediatek MT7920: update bluetooth firmware to 20260105151350 - mediatek MT7922: update bluetooth firmware to 20260106153735 - update firmware for MT7922 WiFi device - Mellanox: Add new mlxsw_spectrum firmware xx.2016.3900 - amdgpu: Update dcn314, dcn315 firmware to 0.1.42.0 - qcom: Update DSP firmware for sa8775 platform - QCA: Add Bluetooth firmware for QCC2072 uart interface - i915: Xe3p_LPD DMC v2.33 - qcom: Update DSP firmware for qcs8300 platform - update firmware for MT7920 WiFi device - qcom: Update aic100 firmware files - qca: Update Bluetooth WCN6750 1.1.3-00100 firmware to 1.1.3-00105 - firmware: Revert kernel_boot.elf due to license compliance issue - add firmware for an8811hb 2.5G ethernet phy - i915: Xe3LPD_3002 DMC v2.28 - i915: Xe3LPD DMC v2.33 - intel_vpu: Add firmware for 50xx NPUs and update older ones - Update AMD SEV firmware - amdgpu: DMCUB updates for various ASICs - qcom: venus-5.4: fix ELF segment alignment to 4 bytes - mediatek MT7925: update bluetooth firmware to 20251210093205 - update firmware for MT7925 WiFi device - rcar_gen4_pcie: add firmware for Renesas R-Car Gen4 PCIe controller - qcom: Update CDSP firmware for qcm6490 platform - rtl_bt: Update RTL8852BT/RTL8852BE-VT BT USB FW to 0x488C_DB55 - iwlwifi: Add firmware file for Intel Scorpius core - rtw89: 8852b: update fw to v0.29.29.15 - cirrus: cs35l41: Update firmware and tuning for various HP laptops - cirrus: cs35l41: Add support for new HP Clipper laptop - qcom: drop compatibility a640_zap.mdt symlink - qcom: add version for a530v3_gpmu.fw2 - xe: Update GUC to v70.55.3 for BMG, PTL - iwlwifi: add Bz/Sc FW for core101-82 release - iwlwifi: Add Sc/Gf firmware for core101-82 release - iwlwifi: update ty/So/Ma firmwaresfor core101-82 release - iwlwifi: update cc/Qu/QuZ firmwares for core101-82 release - amdgpu: DMCUB updates for various ASICs - qcom: Add firmwares for sm8150/sm8450/sm8550/sm8650/sm8750 GPUs - ath10k: WCN3990 hw1.0: update board-2.bin - ath10k: QCA9888 hw2.0: update board-2.bin - ath10k: QCA4019 hw1.0: update board-2.bin - cirrus: cs35l41: Add support for new HP laptops - Revert "amdgpu: update GC 11.5.0 firmware" - Update amd-ucode copyright information - Update AMD cpu microcode - Update firmware file for Intel Scorpius core - Update firmware file for Intel BlazarIGfP core - Update firmware file for Intel BlazarI core - Update firmware file for Intel BlazarU-HrPGfP core - Update firmware file for Intel BlazarU core - ath11k: QCA6698AQ hw2.1: update to WLAN.HSP.1.1-04866-QCAHSPSWPL_V1_V2_SILICONZ_IOE-1 - ath11k: QCA2066 hw2.1: update board-2.bin - qcom: update ADSP firmware for x1e80100 platform, change the license - qcom: reorder ADSP, CDSP firmware entries for qcs8300 in WHENCE - Reapply "amdgpu: update SMU 14.0.3 firmware" - Revert "amdgpu: update SMU 14.0.3 firmware" - Revert "amdgpu: update GC 10.3.6 firmware" - Revert "amdgpu: update GC 11.5.1 firmware" - update firmware for MT7925 WiFi device - mediatek MT7925: update bluetooth firmware to 20251124093155 - intel_vpu: Update NPU firmware - qcom: vpu: update video firmware binary for SM8250 - xe: Update GUC to v70.54.0 for BMG, PTL -------------------------------------------------------------------------------- References: [ 1 ] Bug #2341650 - Bluetooth audio stutter or completely lost when wifi is being used https://bugzilla.redhat.com/show_bug.cgi?id=2341650 [ 2 ] Bug #2390638 - amd graphics fail on laptop, due to faulty amd-gpu firmware file. https://bugzilla.redhat.com/show_bug.cgi?id=2390638 [ 3 ] Bug #2419812 - mt7xxx-firmware-20251125 breaks bluetooth https://bugzilla.redhat.com/show_bug.cgi?id=2419812 [ 4 ] Bug #2420062 - requesting updated build to fix issues with AMD APUplatforms https://bugzilla.redhat.com/show_bug.cgi?id=2420062 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-1d240112ff' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jan 15, 2026
•Informational
Fedora
89
security advisoryfedoradata corruptionFedora 42: luksmeta Update CVE-2025-11568 Severity Informational
New upstream release v10 Fix: CVE-2025-11568. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-457000540a 2025-11-16 00:54:19.352364+00:00 -------------------------------------------------------------------------------- Name : luksmeta Product : Fedora 42 Version : 10 Release : 1.fc42 URL : https://github.com/latchset/luksmeta Summary : Utility for storing small metadata in the LUKSv1 header Description : LUKSMeta is a command line utility for storing small portions of metadata in the LUKSv1 header for use before unlocking the volume. -------------------------------------------------------------------------------- Update Information: New upstream release v10 Fix: CVE-2025-11568 -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 31 2025 Sergio Correia - 10-1 - New upstream release v10 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2404247 - CVE-2025-11568 luksmeta: Data corruption when handling LUKS1 partitions with luksmeta [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2404247 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-457000540a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Nov 16, 2025
•Informational
Fedora
203
security advisorydevice managementbugfixMageia 9: nvidia-current Bugfix Advisory MGAA-2025-0091
MGAA-2025-0091 - Updated nvidia-current packages fix bug. MGAA-2025-0091 - Updated nvidia-current packages fix bug Publication date: 07 Nov 2025 URL: https://advisories.mageia.org/MGAA-2025-0091.html Type: bugfix Affected Mageia releases: 9 Description: Added support for YCbCr 4:2:2 display modes over HDMI Fixed Rate Link (FRL). This capability is only supported on Blackwell or later. Downgraded an error message "Failed to allocate NvKmsKapiDevice" to an informational message "NUMA was not set up yet; ignoring this device" when initializing nvidia-drm in cases where initialization is expected to fail due to NUMA not being online. Fixed a bug that caused interactive object outlines to not be rendered in Indiana Jones and the Great Circle. Fixed a regression introduced in the 575 driver series that caused GPUs to be powered on unnecessarily when processing redundant system power source notifications from the ACPI subsystem. References: - https://bugs.mageia.org/show_bug.cgi?id=34712 - https://www.nvidia.com/en-us/drivers/details/254665/ SRPMS: - 9/nonfree/nvidia-current-580.95.05-1.mga9.nonfree . Updated nvidia-current packages in Mageia resolve critical bugs and improve HDMI display modes for enhanced performance.. Mageia updates,nvidia-current bugfix,device management improvements,HDMI display support. . Severity: Informational. LinuxSecurity.com Team
Nov 07, 2025
•Informational
Mageia
89
security advisoryfedoraheap overflowFedora 41: Chromium High Heap Buffer Overflows Advisories 2025-2d4d91b00a
Update to 141.0.7390.54 * High CVE-2025-11205: Heap buffer overflow in WebGPU * High CVE-2025-11206: Heap buffer overflow in Video * Medium CVE-2025-11207: Side-channel information leakage in Storage * Medium CVE-2025-11208: Inappropriate implementation in Media. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-2d4d91b00a 2025-10-09 01:14:09.802863+00:00 -------------------------------------------------------------------------------- Name : chromium Product : Fedora 41 Version : 141.0.7390.54 Release : 1.fc41 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 141.0.7390.54 * High CVE-2025-11205: Heap buffer overflow in WebGPU * High CVE-2025-11206: Heap buffer overflow in Video * Medium CVE-2025-11207: Side-channel information leakage in Storage * Medium CVE-2025-11208: Inappropriate implementation in Media * Medium CVE-2025-11209: Inappropriate implementation in Omnibox * Medium CVE-2025-11210: Side-channel information leakage in Tab * Medium CVE-2025-11211: Out of bounds read in Media * Medium CVE-2025-11212: Inappropriate implementation in Media * Medium CVE-2025-11213: Inappropriate implementation in Omnibox * Medium CVE-2025-11215: Off by one error in V8 * Low CVE-2025-11216: Inappropriate implementation in Storage * Low CVE-2025-11219: Use after free in V8 -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 2 2025 Than Ngo - 141.0.7390.54-1 - Update to 141.0.7390.54 * High CVE-2025-11205: Heap buffer overflow in WebGPU * High CVE-2025-11206: Heap buffer overflow in Video * Medium CVE-2025-11207: Side-channel informationleakage in Storage * Medium CVE-2025-11208: Inappropriate implementation in Media * Medium CVE-2025-11209: Inappropriate implementation in Omnibox * Medium CVE-2025-11210: Side-channel information leakage in Tab * Medium CVE-2025-11211: Out of bounds read in Media * Medium CVE-2025-11212: Inappropriate implementation in Media * Medium CVE-2025-11213: Inappropriate implementation in Omnibox * Medium CVE-2025-11215: Off by one error in V8 * Low CVE-2025-11216: Inappropriate implementation in Storage * Low CVE-2025-11219: Use after free in V8 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2381730 - DebugInfo packages aren't being produced. https://bugzilla.redhat.com/show_bug.cgi?id=2381730 [ 2 ] Bug #2400095 - Update chromium-141.0.7390.54 major release [fedora-all, epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2400095 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-2d4d91b00a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Oct 09, 2025
Fedora
89
security advisoryfedoraunsafe functionDebian 12: yarnpkg Vulnerability Report CVE-2025-8263 CVE-2025-7784
Apply fixes for CVE-2025-8262 and CVE-2025-7783.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-b19f3ed5f4 2025-08-08 01:11:45.710107+00:00 -------------------------------------------------------------------------------- Name : yarnpkg Product : Fedora 41 Version : 1.22.22 Release : 11.fc41 URL : https://github.com/yarnpkg/yarn Summary : Fast, reliable, and secure dependency management. Description : Fast, reliable, and secure dependency management. -------------------------------------------------------------------------------- Update Information: Apply fixes for CVE-2025-8262 and CVE-2025-7783. -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2025 Sandro Mani - 1.22.22-11 - Refresh bundle - Drop patches obsoleted by new bundle - Add yarn-update-jest.prebundle.patch to update jest and avoid some vulerable dependencies - Apply fixes for CVE-2025-8262 and CVE-2025-8263 * Fri Jul 25 2025 Fedora Release Engineering - 1.22.22-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2382001 - CVE-2025-7783 yarnpkg: Unsafe random function in form-data [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2382001 [ 2 ] Bug #2382007 - CVE-2025-7783 yarnpkg: Unsafe random function in form-data [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2382007 [ 3 ] Bug #2382017 - CVE-2025-7783 yarnpkg: Unsafe random function in form-data [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2382017 [ 4 ] Bug #2382027 - CVE-2025-7783 yarnpkg: Unsafe random function in form-data [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2382027 [ 5 ] Bug #2383877 - CVE-2025-8262 yarnpkg: Yarn Regex Complexity Vulnerability [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2383877 [ 6 ] Bug #2383879 - CVE-2025-8262 yarnpkg: Yarn Regex Complexity Vulnerability [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2383879 [ 7 ] Bug #2383880 - CVE-2025-8262 yarnpkg: Yarn Regex Complexity Vulnerability [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2383880 [ 8 ] Bug #2383881 - CVE-2025-8262 yarnpkg: Yarn Regex Complexity Vulnerability [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2383881 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-b19f3ed5f4' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Aug 08, 2025
•Important
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!