Alerts This Week
Warning Icon 1 560
Alerts This Week
Warning Icon 1 560

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorySuSEimportant

SUSE Linux Enterprise Server 16.0 Kea Security Update 2026-20989-1

An update that solves two vulnerabilities can now be installed.. # Security update for kea Announcement ID: SUSE-SU-2026:20989-1 Release Date: 2026-04-01T09:24:21Z Rating: important References: * bsc#1252863 * bsc#1260380 Cross-References: * CVE-2025-11232 * CVE-2026-3608 CVSS scores: * CVE-2025-11232 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-11232 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-11232 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-3608 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-3608 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-3608 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Server - BCI 16.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for kea fixes the following issues: Update to 3.0.3: * CVE-2025-11232: invalid characters cause assert (bsc#1252863). * CVE-2026-3608: stack overflow via maliciously crafted message (bsc#1260380). Changelog: * A large number of bracket pairs in a JSON payload directed to any endpoint would result in a stack overflow, due to recursive calls when parsing the JSON. This has been fixed. (CVE-2026-3608) [bsc#1260380] * When a hostname or FQDN received from a client is reduced to an empty string by hostname sanitizing, kea-dhcp4 and kea-dhcp6 will now drop the option. (CVE-2025-11232) [bsc#1252863] * A null dereference is now no longer possible when configuring the Control Agent with a socket that lacks the mandatory socket-name entry. * UNIX sockets are now created as group-writable. * Removed logging an error in ping check hook library if using lease cache treshold. * Fixed deadlock in ping-check hooks library. * Fixed a data race in ping-check hooks library. ## Patch Instructions: Toinstall this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server - BCI 16.0 zypper in -t patch SUSE-SLES-16.0-470=1 ## Package List: * SUSE Linux Enterprise Server - BCI 16.0 (aarch64 ppc64le s390x x86_64) * libkea-log75-3.0.3-160000.1.1 * libkea-dns71-3.0.3-160000.1.1 * kea-hooks-3.0.3-160000.1.1 * libkea-hooks121-3.0.3-160000.1.1 * libkea-stats53-debuginfo-3.0.3-160000.1.1 * libkea-log-interprocess3-3.0.3-160000.1.1 * libkea-log75-debuginfo-3.0.3-160000.1.1 * libkea-dhcp109-debuginfo-3.0.3-160000.1.1 * kea-debugsource-3.0.3-160000.1.1 * libkea-dhcpsrv131-debuginfo-3.0.3-160000.1.1 * libkea-exceptions45-3.0.3-160000.1.1 * libkea-config84-3.0.3-160000.1.1 * libkea-dhcp_ddns68-3.0.3-160000.1.1 * libkea-process91-debuginfo-3.0.3-160000.1.1 * libkea-database76-3.0.3-160000.1.1 * libkea-eval84-debuginfo-3.0.3-160000.1.1 * libkea-config84-debuginfo-3.0.3-160000.1.1 * libkea-stats53-3.0.3-160000.1.1 * libkea-dhcpsrv131-3.0.3-160000.1.1 * libkea-cc83-debuginfo-3.0.3-160000.1.1 * libkea-d2srv63-3.0.3-160000.1.1 * libkea-database76-debuginfo-3.0.3-160000.1.1 * libkea-cfgrpt3-3.0.3-160000.1.1 * kea-devel-debuginfo-3.0.3-160000.1.1 * libkea-util-io12-3.0.3-160000.1.1 * libkea-tcp33-3.0.3-160000.1.1 * libkea-d2srv63-debuginfo-3.0.3-160000.1.1 * libkea-asiolink88-3.0.3-160000.1.1 * libkea-asiolink88-debuginfo-3.0.3-160000.1.1 * libkea-dns71-debuginfo-3.0.3-160000.1.1 * libkea-hooks121-debuginfo-3.0.3-160000.1.1 * libkea-eval84-3.0.3-160000.1.1 * libkea-pgsql88-3.0.3-160000.1.1 * libkea-asiodns62-3.0.3-160000.1.1 * kea-3.0.3-160000.1.1 * libkea-cryptolink64-debuginfo-3.0.3-160000.1.1 * libkea-http87-3.0.3-160000.1.1 * libkea-cfgrpt3-debuginfo-3.0.3-160000.1.1 * libkea-cc83-3.0.3-160000.1.1 *libkea-dhcp_ddns68-debuginfo-3.0.3-160000.1.1 * libkea-mysql88-3.0.3-160000.1.1 * libkea-pgsql88-debuginfo-3.0.3-160000.1.1 * libkea-log-interprocess3-debuginfo-3.0.3-160000.1.1 * python3-kea-3.0.3-160000.1.1 * libkea-util102-3.0.3-160000.1.1 * libkea-asiodns62-debuginfo-3.0.3-160000.1.1 * libkea-tcp33-debuginfo-3.0.3-160000.1.1 * libkea-http87-debuginfo-3.0.3-160000.1.1 * libkea-exceptions45-debuginfo-3.0.3-160000.1.1 * libkea-process91-3.0.3-160000.1.1 * libkea-util102-debuginfo-3.0.3-160000.1.1 * libkea-dhcp109-3.0.3-160000.1.1 * libkea-cryptolink64-3.0.3-160000.1.1 * kea-hooks-debuginfo-3.0.3-160000.1.1 * kea-debuginfo-3.0.3-160000.1.1 * kea-devel-3.0.3-160000.1.1 * libkea-util-io12-debuginfo-3.0.3-160000.1.1 * libkea-mysql88-debuginfo-3.0.3-160000.1.1 * SUSE Linux Enterprise Server - BCI 16.0 (noarch) * kea-doc-3.0.3-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-11232.html * https://www.suse.com/security/cve/CVE-2026-3608.html * https://bugzilla.suse.com/show_bug.cgi?id=1252863 * https://bugzilla.suse.com/show_bug.cgi?id=1260380 . Update addresses important vulnerabilities in kea, including security flaws allowing stack overflow and input validation errors.. SUSE update, kea vulnerabilities, important security patch. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 09, 2026 Important SuSE
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorysecurity updateimportant

openSUSE Leap 16.0 kea Important Fix Stack Overflow 2026-20452-1

An update that solves 2 vulnerabilities and has 2 bug fixes can now be installed.. openSUSE security update: security update for kea ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20452-1 Rating: important References: * bsc#1252863 * bsc#1260380 Cross-References: * CVE-2025-11232 * CVE-2026-3608 CVSS scores: * CVE-2025-11232 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-11232 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-3608 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-3608 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves 2 vulnerabilities and has 2 bug fixes can now be installed. Description: This update for kea fixes the following issues: Update to 3.0.3: - CVE-2025-11232: invalid characters cause assert (bsc#1252863). - CVE-2026-3608: stack overflow via maliciously crafted message (bsc#1260380). Changelog: * A large number of bracket pairs in a JSON payload directed to any endpoint would result in a stack overflow, due to recursive calls when parsing the JSON. This has been fixed. (CVE-2026-3608) [bsc#1260380] * When a hostname or FQDN received from a client is reduced to an empty string by hostname sanitizing, kea-dhcp4 and kea-dhcp6 will now drop the option. (CVE-2025-11232) [bsc#1252863] * A null dereference is now no longer possible when configuring the Control Agent with a socket that lacks the mandatory socket-name entry. * UNIX sockets are now created as group-writable. * Removed logging an error in ping check hook library if using lease cache treshold. * Fixed deadlock in ping-check hooks library. * Fixed a data race in ping-check hooks library. Patch instructions: To install this openSUSE security update use the suse recommended installationmethods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-470=1 Package List: - openSUSE Leap 16.0: kea-3.0.3-160000.1.1 kea-devel-3.0.3-160000.1.1 kea-doc-3.0.3-160000.1.1 kea-hooks-3.0.3-160000.1.1 libkea-asiodns62-3.0.3-160000.1.1 libkea-asiolink88-3.0.3-160000.1.1 libkea-cc83-3.0.3-160000.1.1 libkea-cfgrpt3-3.0.3-160000.1.1 libkea-config84-3.0.3-160000.1.1 libkea-cryptolink64-3.0.3-160000.1.1 libkea-d2srv63-3.0.3-160000.1.1 libkea-database76-3.0.3-160000.1.1 libkea-dhcp109-3.0.3-160000.1.1 libkea-dhcp_ddns68-3.0.3-160000.1.1 libkea-dhcpsrv131-3.0.3-160000.1.1 libkea-dns71-3.0.3-160000.1.1 libkea-eval84-3.0.3-160000.1.1 libkea-exceptions45-3.0.3-160000.1.1 libkea-hooks121-3.0.3-160000.1.1 libkea-http87-3.0.3-160000.1.1 libkea-log-interprocess3-3.0.3-160000.1.1 libkea-log75-3.0.3-160000.1.1 libkea-mysql88-3.0.3-160000.1.1 libkea-pgsql88-3.0.3-160000.1.1 libkea-process91-3.0.3-160000.1.1 libkea-stats53-3.0.3-160000.1.1 libkea-tcp33-3.0.3-160000.1.1 libkea-util-io12-3.0.3-160000.1.1 libkea-util102-3.0.3-160000.1.1 python3-kea-3.0.3-160000.1.1 References: * https://www.suse.com/security/cve/CVE-2025-11232.html * https://www.suse.com/security/cve/CVE-2026-3608.html . Two important security issues identified in openSUSE's kea have been addressed with updates to enhance system integrity and performance.. important update, openSUSE security, kea update, stack overflow fix, character validation. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 02, 2026 Important OpenSUSE
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here