Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorydenial of servicefedora

Fedora 2.4.7-13.2 Critical: Iproute Denial Of Service Fix

iproute 2.4.7 and earlier allows local users to cause a denial of service via spoofed messages as other users to the kernel netlink interface.. Fedora Update Notification FEDORA-2004-115 2004-05-11 --------------------------------------------------------------------- Name : iproute Version : 2.4.7 Release : 13.2 Summary : Advanced IP routing and network device configuration tools. Description : The iproute package contains networking utilities (ip and rtmon, for example) which are designed to use the advanced networking capabilities of the Linux 2.4.x and 2.6.x kernel. --------------------------------------------------------------------- This update of the iproute package fixes a security problem found in netlink. See CAN-2003-0856. All users of the netlink application are very strongly advised to update to these latest packages. * Thu May 06 2004 Phil Knirsch 2.4.7-13.2 - Built security errata version for FC1. * Wed Apr 21 2004 Phil Knirsch 2.4.7-14 - Fixed -f option for ss (#118355). - Small description fix (#110997). - Added initialization of some vars (#74961). - Added patch to initialize "default" rule as well (#60693). * Fri Feb 13 2004 Elliot Lee - rebuilt * Wed Nov 05 2003 Phil Knirsch 2.4.7-12 - Security errata for netlink (CAN-2003-0856). --------------------------------------------------------------------- This update can be downloaded from: 742a66f04b4bb5f4e814908bd33fbdde SRPMS/iproute-2.4.7-13.2.src.rpm ece1fcf398e9e7b234584e942c08d6e1 i386/iproute-2.4.7-13.2.i386.rpm 842d74b8f79ebfe414a1ee1ca5f7ecc7 i386/debug/iproute-debuginfo-2.4.7-13.2.i386.rpm 738a0454d2d4f390d11fa484768dc7ce x86_64/iproute-2.4.7-13.2.x86_64.rpm 2a4e1ee78d017c593588ec0172159295 x86_64/debug/iproute-debuginfo-2.4.7-13.2.x86_64.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -- Philipp Knirsch | Tel.: +49-711-96437-470 Development | Fax.: +49-711-96437-111 Red Hat GmbH | Email: Phil Knirsch Hauptstaetterstr. 58 | Web: Red Hat DACH-Region D-70178 Stuttgart Motd: You're only jealous cos the little penguins are talking to me. . A recent Fedora update addresses a Denial of Service flaw in iproute by implementing a patch to the kernel netlink subsystem.. Denial of Service,Fedora,iproute Update,Network Security,Kernel Patch. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 14, 2004 Critical Fedora
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorymoderatedenial of service

Debian: DSA 492-1 Moderate: iproute Denial of Service Exploit

Herbert Xu reported that local users could cause a denial of service against iproute, a set of tools for controlling networking in Linux kernels.. Debian Security Advisory DSA 492-1 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Matt Zimmerman April 18th, 2004 Debian -- Debian security FAQ - -------------------------------------------------------------------------- Package : iproute Vulnerability : denial of service Problem-Type : local Debian-specific: no CVE Ids : CAN-2003-0856 Debian Bug : 242994 Herbert Xu reported that local users could cause a denial of service against iproute, a set of tools for controlling networking in Linux kernels. iproute uses the netlink interface to communicate with the kernel, but failed to verify that the messages it received came from the kernel (rather than from other user processes). For the current stable distribution (woody) this problem has been fixed in version 20010824-8woody1. For the unstable distribution (sid), this problem will be fixed soon. We recommend that you update your iproute package. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.0 alias woody - -------------------------------- Source archives: Size/MD5 checksum: 583 4ddfda116fcaa5670bd0a395ce62c249 Size/MD5 checksum: 30926 818c356e9a703804987a99452a5cb5bf Size/MD5 checksum: 140139 b05a4e375d9468be3a1dd3f0e83daee8 Alpha architecture: Size/MD5 checksum: 535862 84d99c4199f8ae7eab695f8e06a9de6b ARMarchitecture: Size/MD5 checksum: 509116 d4e7b52ca059ab99b67a9f01e07ccb1e Intel IA-32 architecture: Size/MD5 checksum: 499718 194a49253bf81cdcf702f935e2b35534 Intel IA-64 architecture: Size/MD5 checksum: 570038 180ddee3ed7373989d54a2b3783c58f2 HP Precision architecture: Size/MD5 checksum: 525956 30b521f7417acb9150cd2b79f065734d Motorola 680x0 architecture: Size/MD5 checksum: 489736 196339f8c47b861aff2c110e5405ecc1 Big endian MIPS architecture: Size/MD5 checksum: 512874 2781925dd48d9bb9cb8b948e397b2947 Little endian MIPS architecture: Size/MD5 checksum: 513570 b61d21209d3cd1bf6b828396ef347676 PowerPC architecture: Size/MD5 checksum: 507942 cfa15b75474d3faa2bdaeb1b3c399d99 IBM S/390 architecture: Size/MD5 checksum: 503396 13e689f21473365267f7f73b44b05c2f Sun Sparc architecture: Size/MD5 checksum: 515030 fbc32ebc11a4cb14b98154b6cb257c8c These files will probably be moved into the stable distribution on its next revision. - --------------------------------------------------------------------------------- For apt-get: deb Debian -- Security Information stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . Local users can cause a denial of service in iproute on Debian systems. Updating is strongly recommended to mitigate risks.. Denial of Service, Iproute Exploit, Debian Security Update. . LinuxSecurity.com Team

Calendar 2 Apr 19, 2004 Debian
Banner 1 1028x280 1708121660 1771599717
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorydenial of servicelocal exploit

Gentoo Linux: GLSA 200404-10 Low Severity: Iproute DoS Risk

The iproute package allows local users to cause a denial of service.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200404-10 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Low Title: iproute local Denial of Service vulnerability Date: April 09, 2004 Bugs: #34294 ID: 200404-10 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= The iproute package allows local users to cause a denial of service. Background ========= iproute is a set of tools for managing linux network routing and advanced features. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- sys-apps/iproute = 20010824-r5 Description ========== It has been reported that iproute can accept spoofed messages on the kernel netlink interface from local users. This could lead to a local Denial of Service condition. Impact ===== Local users could cause a Denial of Service. Workaround ========= A workaround is not currently known for this issue. All users are advised to upgrade to the latest version of the affected package. Resolution ========= All iproute users should upgrade to version 20010824-r5 or later: # emerge sync # emerge -pv "> =sys-apps/iproute-20010824-r5"; # emerge "> =sys-apps/iproute-20010824-r5"; References ========= [ 1 ] https://www.cve.org/CVERecord?id=CVE-CAN-2003-0856 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressedto This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200404-10 Copyright/License =================Copyright 2004 Gentoo Technologies, Inc. The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/1.0/ . Individuals utilizing iproute within Gentoo environments are able to trigger a denial of service. It is strongly recommended that users proceed with an immediate update.. iproute Local Exploit,Gentoo Security,Denial Of Service,IpRoute Upgrade,GLSA. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Apr 09, 2004 Low Gentoo
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorysecurity issueRed Hat

Red Hat 7.1 RHSA-2003:316-01 Critical: Iproute DoS Exploit Fix

Updated iproute packages that close a locally-exploitable denial of servicevulnerability are now available.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --------------------------------------------------------------------- Red Hat Security Advisory Synopsis: Updated iproute packages fix local security vulnerability Advisory ID: RHSA-2003:316-01 Issue date: 2003-11-24 Updated on: 2003-11-24 Product: Red Hat Linux Keywords: DoS Cross references: Obsoletes: CVE Names: CAN-2003-0856 - --------------------------------------------------------------------- 1. Topic: Updated iproute packages that close a locally-exploitable denial of service vulnerability are now available. 2. Relevant releases/architectures: Red Hat Linux 7.1 - i386 Red Hat Linux 7.1 for iSeries (64 bit) - ppc Red Hat Linux 7.1 for pSeries (64 bit) - ppc Red Hat Linux 7.2 - i386, ia64 Red Hat Linux 7.3 - i386 Red Hat Linux 8.0 - i386 Red Hat Linux 9 - i386 3. Problem description: The iproute package contains advanced IP routing and network device configuration tools. Herbert Xu reported that iproute can accept spoofed messages sent on the kernel netlink interface by other users on the local machine. This could lead to a local denial of service attack. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2003-0856 to this issue. Users of iproute should upgrade to these erratum packages, which contain a patch that checks that netlink messages actually came from the kernel. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. To update all RPMs for your particular architecture, run: rpm -Fvh [filenames] where [filenames] is a list of the RPMs you wish to upgrade. Only those RPMs which are currently installed will be updated. Those RPMs which are not installed but included in the list will not be updated. Note that you can also usewildcards (*.rpm) if your current directory *only* contains the desired RPMs. Please note that this update is also available via Red Hat Network. Many people find this an easier way to apply updates. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. If up2date fails to connect to Red Hat Network due to SSL Certificate Errors, you need to install a version of the up2date client with an updated certificate. The latest version of up2date is available from the Red Hat FTP site and may also be downloaded directly from the RHN website: 5. RPMs required: Red Hat Linux 7.1: SRPMS: i386: Red Hat Linux 7.1 for iSeries (64 bit): SRPMS: ppc: Red Hat Linux 7.1 for pSeries (64 bit): SRPMS: ppc: Red Hat Linux 7.2: SRPMS: i386: ia64: Red Hat Linux 7.3: SRPMS: i386: Red Hat Linux 8.0: SRPMS: i386: Red Hat Linux 9: SRPMS: i386: 6. Verification: MD5 sum Package Name - -------------------------------------------------------------------------- 2f1ea42cdf30113141f10538e2179beb 7.1/en/os/SRPMS/iproute-2.4.7-7.71.1.src.rpm 18b11d4c092ec8f32c90d6c46eff0e5e 7.1/en/os/i386/iproute-2.4.7-7.71.1.i386.rpm d610fcf135659a40e1cace634e706aef 7.1/en/os/iSeries/SRPMS/iproute-2.4.7-7.71ppc.1.src.rpm 10517e763dc7e25a93664fce504e1d0a 7.1/en/os/iSeries/ppc/iproute-2.4.7-7.71ppc.1.ppc.rpm d610fcf135659a40e1cace634e706aef 7.1/en/os/pSeries/SRPMS/iproute-2.4.7-7.71ppc.1.src.rpm 10517e763dc7e25a93664fce504e1d0a 7.1/en/os/pSeries/ppc/iproute-2.4.7-7.71ppc.1.ppc.rpm 3d7a9f23eb56e24012f0a2cfd4c4e403 7.2/en/os/SRPMS/iproute-2.4.7-7.72.1.src.rpm 90f4960d5e9013bfbe678ff4286bc17f 7.2/en/os/i386/iproute-2.4.7-7.72.1.i386.rpm 86f3216474f4effa7364b75da360b153 7.2/en/os/ia64/iproute-2.4.7-7.72.1.ia64.rpm 7e95bd6212c96d20b25a8c761dd2c7497.3/en/os/SRPMS/iproute-2.4.7-7.73.1.src.rpm e05fc87d3047905d89850dd705e2f641 7.3/en/os/i386/iproute-2.4.7-7.73.1.i386.rpm 22ca841ec539d36b14ba8f3b8c82f78c 8.0/en/os/SRPMS/iproute-2.4.7-7.80.1.src.rpm f0075b7a8250003ff06d50bec81627a3 8.0/en/os/i386/iproute-2.4.7-7.80.1.i386.rpm f373608f9f55848c2592c13e594319d3 9/en/os/SRPMS/iproute-2.4.7-7.90.1.src.rpm ffaab09f8adbc38e67a009c5a7780b45 9/en/os/i386/iproute-2.4.7-7.90.1.i386.rpm These packages are GPG signed by Red Hat for security. Our key is available from https://access.redhat.com/security/team/key You can verify each package with the following command: rpm --checksig -v If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command: md5sum 7. References: CVE -CVE-2003-0856 8. Contact: The Red Hat security contact is . More contact details at https://www.redhat.com/en/technologies/all-products Copyright 2003 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE/wcPzXlSAg2UNWIIRAlqyAJ99x6MkDh92ywHXC7vM6bIN7RVquwCeM2+O jpLJVxge98jvEIgswSb84nY=RwwK -----END PGP SIGNATURE----- . Recent enhancements to iproute address a denial of service threat in Red Hat Linux environments, ensuring security.. Red Hat Linux, iproute update, DoS threat. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 24, 2003 Critical Red Hat
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here