Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 0 articles for you...
100
security advisorydenial of serviceSuSESUSE Linux Micro 6.1 Iproute2 Low Denial of Service Patch Update
An update that solves one vulnerability and has four fixes can now be installed.. # Security update for iproute2 Announcement ID: SUSE-SU-2026:21737-1 Release Date: 2026-05-20T11:02:46Z Rating: low References: * bsc#1204562 * bsc#1234383 * bsc#1243005 * bsc#1248660 * bsc#1254324 Cross-References: * CVE-2024-58251 CVSS scores: * CVE-2024-58251 ( SUSE ): 2.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2024-58251 ( SUSE ): 2.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L * CVE-2024-58251 ( NVD ): 2.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: * SUSE Linux Micro 6.1 An update that solves one vulnerability and has four fixes can now be installed. ## Description: This update for iproute2 fixes the following issue * CVE-2024-58251: denial of service via terminal escape sequences (bsc#1254324). Changes for iproute2: * support display of bound but unconnected sockets (bsc#1204562). * avoid spurious cgroup warning (bsc#1234383). * add post-6.4 follow-up fixes (bsc#1243005). * devlink: support ipsec_crypto and ipsec_packet cap (bsc#1248660). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-537=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * iproute2-debugsource-6.4-slfo.1.1_1.1 * iproute2-6.4-slfo.1.1_1.1 * iproute2-debuginfo-6.4-slfo.1.1_1.1 ## References: * https://www.suse.com/security/cve/CVE-2024-58251.html * https://bugzilla.suse.com/show_bug.cgi?id=1204562 * https://bugzilla.suse.com/show_bug.cgi?id=1234383 * https://bugzilla.suse.com/show_bug.cgi?id=1243005 * https://bugzilla.suse.com/show_bug.cgi?id=1248660 * https://bugzilla.suse.com/show_bug.cgi?id=1254324 . Install the latest SUSE security advisory foriproute2 addressing a low-level denial of service issue and more.. SUSE Security, iproute2 Update, Linux Micro Security, Denial of Service Fix, Security Patch. . Severity: Low. LinuxSecurity.com Team
May 22, 2026
•Low
SuSE
100
security advisorydenial of serviceSuSESUSE Linux Micro 6.0 iproute2 Low Denial of Service Update 2026-21679-1
An update that solves one vulnerability and has four fixes can now be installed.. # Security update for iproute2 Announcement ID: SUSE-SU-2026:21679-1 Release Date: 2026-05-15T10:43:49Z Rating: low References: * bsc#1204562 * bsc#1234383 * bsc#1243005 * bsc#1248660 * bsc#1254324 Cross-References: * CVE-2024-58251 CVSS scores: * CVE-2024-58251 ( SUSE ): 2.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2024-58251 ( SUSE ): 2.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L * CVE-2024-58251 ( NVD ): 2.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: * SUSE Linux Micro 6.0 An update that solves one vulnerability and has four fixes can now be installed. ## Description: This update for iproute2 fixes the following issue * CVE-2024-58251: denial of service via terminal escape sequences (bsc#1254324). Changes for iproute2: * support display of bound but unconnected sockets (bsc#1204562). * avoid spurious cgroup warning (bsc#1234383). * add post-6.4 follow-up fixes (bsc#1243005). * devlink: support ipsec_crypto and ipsec_packet cap (bsc#1248660). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-714=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * iproute2-debugsource-6.4-1.1 * iproute2-6.4-1.1 * iproute2-debuginfo-6.4-1.1 ## References: * https://www.suse.com/security/cve/CVE-2024-58251.html * https://bugzilla.suse.com/show_bug.cgi?id=1204562 * https://bugzilla.suse.com/show_bug.cgi?id=1234383 * https://bugzilla.suse.com/show_bug.cgi?id=1243005 * https://bugzilla.suse.com/show_bug.cgi?id=1248660 * https://bugzilla.suse.com/show_bug.cgi?id=1254324 . Update for iproute2 addresses one issue and four useful fixes for SUSE Linux Micro6.0.. SUSE Update, iproute2 Fix, Denial of Service, Linux Security. . Severity: Low. LinuxSecurity.com Team
May 19, 2026
•Low
SuSE
100
security advisorySuSElowSUSE Linux Micro 6.2 iproute2 Low Terminal Lock Up 2026-21582-1
An update that solves one vulnerability, contains one feature and has two fixes can now be installed.. # Security update for iproute2 Announcement ID: SUSE-SU-2026:21582-1 Release Date: 2026-05-07T07:31:57Z Rating: low References: * bsc#1241316 * bsc#1253044 * bsc#1254324 * jsc#PED-14787 Cross-References: * CVE-2024-58251 CVSS scores: * CVE-2024-58251 ( SUSE ): 2.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2024-58251 ( SUSE ): 2.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L * CVE-2024-58251 ( NVD ): 2.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: * SUSE Linux Micro 6.2 An update that solves one vulnerability, contains one feature and has two fixes can now be installed. ## Description: This update for iproute2 fixes the following issues: Security issues fixed: * CVE-2024-58251: terminal lock up via ANSI terminal escape sequence set in `argv[0]` (bsc#1254324). Other updates and bugfixes: * Fix package for immutable mode (jsc#PED-14787). * Add netshaper support (bsc#1253044). * Add follow-up fixes included by upstream after the 6.12 release (bsc#1241316): * Parse FQ band weights correctly * bond: fix stack smash in xstats * ip: support setting multiple features * tc: gred: fix debug print ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.2 zypper in -t patch SUSE-SL-Micro-6.2-715=1 ## Package List: * SUSE Linux Micro 6.2 (aarch64 ppc64le s390x x86_64) * iproute2-debugsource-6.12-160000.3.1 * iproute2-debuginfo-6.12-160000.3.1 * iproute2-6.12-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-58251.html * https://bugzilla.suse.com/show_bug.cgi?id=1241316 * https://bugzilla.suse.com/show_bug.cgi?id=1253044 *https://bugzilla.suse.com/show_bug.cgi?id=1254324 * https://jira.suse.com/browse/PED-14787 . Update released for SUSE to address a terminal lock-up issue in iproute2; patch recommended for low severity vulnerability.. SUSE Linux, iproute2, terminal lock up, CVE-2024-58251. . Severity: Low. LinuxSecurity.com Team
May 15, 2026
•Low
SuSE
100
security advisorySuSElowSUSE iproute2 Low Terminal Hang Fix CVE-2024-58251 2026-21572-1
An update that solves one vulnerability, contains one feature and has two fixes can now be installed.. # Security update for iproute2 Announcement ID: SUSE-SU-2026:21572-1 Release Date: 2026-05-07T07:37:28Z Rating: low References: * bsc#1241316 * bsc#1253044 * bsc#1254324 * jsc#PED-14787 Cross-References: * CVE-2024-58251 CVSS scores: * CVE-2024-58251 ( SUSE ): 2.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2024-58251 ( SUSE ): 2.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L * CVE-2024-58251 ( NVD ): 2.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves one vulnerability, contains one feature and has two fixes can now be installed. ## Description: This update for iproute2 fixes the following issues: Security issues fixed: * CVE-2024-58251: terminal lock up via ANSI terminal escape sequence set in `argv[0]` (bsc#1254324). Other updates and bugfixes: * Fix package for immutable mode (jsc#PED-14787). * Add netshaper support (bsc#1253044). * Add follow-up fixes included by upstream after the 6.12 release (bsc#1241316): * Parse FQ band weights correctly * bond: fix stack smash in xstats * ip: support setting multiple features * tc: gred: fix debug print ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-715=1 * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-715=1 ## Package List: * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * iproute2-6.12-160000.3.1 * iproute2-debugsource-6.12-160000.3.1 * iproute2-debuginfo-6.12-160000.3.1 *libnetlink-devel-6.12-160000.3.1 * iproute2-arpd-6.12-160000.3.1 * iproute2-bash-completion-6.12-160000.3.1 * iproute2-arpd-debuginfo-6.12-160000.3.1 * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * iproute2-6.12-160000.3.1 * iproute2-debugsource-6.12-160000.3.1 * iproute2-debuginfo-6.12-160000.3.1 * libnetlink-devel-6.12-160000.3.1 * iproute2-arpd-6.12-160000.3.1 * iproute2-bash-completion-6.12-160000.3.1 * iproute2-arpd-debuginfo-6.12-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-58251.html * https://bugzilla.suse.com/show_bug.cgi?id=1241316 * https://bugzilla.suse.com/show_bug.cgi?id=1253044 * https://bugzilla.suse.com/show_bug.cgi?id=1254324 * https://jira.suse.com/browse/PED-14787 . SUSE updates iproute2 to address terminal hang issues, fixing CVE-2024-58251 with low severity rating. Stay secure!. SUSE iproute2 CVE-2024-58251 security updates low severity. . Severity: Low. LinuxSecurity.com Team
May 11, 2026
•Low
SuSE
202
security advisorydenial of servicesecurity updateopenSUSE networking tools Risk Notice CVE-2025-67126 SUSE-SU-2027-1532-2
An update that solves one vulnerability can now be installed.. # Security update for iproute2 Announcement ID: SUSE-SU-2026:1418-1 Release Date: 2026-04-16T16:43:07Z Rating: low References: * bsc#1254324 Cross-References: * CVE-2024-58251 CVSS scores: * CVE-2024-58251 ( SUSE ): 2.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2024-58251 ( SUSE ): 2.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L * CVE-2024-58251 ( NVD ): 2.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for iproute2 fixes the following issue: * CVE-2024-58251: denial of service via terminal escape sequences (bsc#1254324). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-1418=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1418=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * iproute2-arpd-debuginfo-6.4-150600.7.12.1 * libnetlink-devel-6.4-150600.7.12.1 * iproute2-6.4-150600.7.12.1 * iproute2-debugsource-6.4-150600.7.12.1 * iproute2-bash-completion-6.4-150600.7.12.1 * iproute2-debuginfo-6.4-150600.7.12.1 * iproute2-arpd-6.4-150600.7.12.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * iproute2-arpd-debuginfo-6.4-150600.7.12.1 * libnetlink-devel-6.4-150600.7.12.1 * iproute2-6.4-150600.7.12.1 * iproute2-debugsource-6.4-150600.7.12.1 *iproute2-bash-completion-6.4-150600.7.12.1 * iproute2-debuginfo-6.4-150600.7.12.1 * iproute2-arpd-6.4-150600.7.12.1 ## References: * https://www.suse.com/security/cve/CVE-2024-58251.html * https://bugzilla.suse.com/show_bug.cgi?id=1254324 . An important security advisory for openSUSE regarding iproute2 vulnerability and recommended actions to mitigate risks.. iproute2 update openSUSE security risk. . Severity: Low. LinuxSecurity.com Team
Apr 17, 2026
•Low
OpenSUSE
100
security advisorydenial of serviceupdateSUSE connectivity tool iproute2 Potential DDoS Risk SUSE-SU-2026-1450-5
An update that solves one vulnerability can now be installed.. # Security update for iproute2 Announcement ID: SUSE-SU-2026:1418-1 Release Date: 2026-04-16T16:43:07Z Rating: low References: * bsc#1254324 Cross-References: * CVE-2024-58251 CVSS scores: * CVE-2024-58251 ( SUSE ): 2.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2024-58251 ( SUSE ): 2.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L * CVE-2024-58251 ( NVD ): 2.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for iproute2 fixes the following issue: * CVE-2024-58251: denial of service via terminal escape sequences (bsc#1254324). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-1418=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1418=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * iproute2-arpd-debuginfo-6.4-150600.7.12.1 * libnetlink-devel-6.4-150600.7.12.1 * iproute2-6.4-150600.7.12.1 * iproute2-debugsource-6.4-150600.7.12.1 * iproute2-bash-completion-6.4-150600.7.12.1 * iproute2-debuginfo-6.4-150600.7.12.1 * iproute2-arpd-6.4-150600.7.12.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * iproute2-arpd-debuginfo-6.4-150600.7.12.1 * libnetlink-devel-6.4-150600.7.12.1 * iproute2-6.4-150600.7.12.1 * iproute2-debugsource-6.4-150600.7.12.1 *iproute2-bash-completion-6.4-150600.7.12.1 * iproute2-debuginfo-6.4-150600.7.12.1 * iproute2-arpd-6.4-150600.7.12.1 ## References: * https://www.suse.com/security/cve/CVE-2024-58251.html * https://bugzilla.suse.com/show_bug.cgi?id=1254324 . This update resolves a low-severity denial of service issue in iproute2 for SUSE systems. Stay secure with updates.. SUSE iproute2 security low update denial of service. . Severity: Low. LinuxSecurity.com Team
Apr 17, 2026
•Low
SuSE
100
security advisorymoderateiproute2SUSE Linux: 2021:3452-1 Moderate: iproute2 Use-After-Free Fix
An update that solves one vulnerability and has one errata is now available. . SUSE Security Update: Security update for iproute2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:3452-1 Rating: moderate References: #1085669 #1171452 Cross-References: CVE-2019-20795 CVSS scores: CVE-2019-20795 (NVD) : 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H CVE-2019-20795 (SUSE): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP5 SUSE Linux Enterprise Server 12-SP5 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for iproute2 fixes the following issues: - CVE-2019-20795: Fixed a use-after-free vulnerability in get_netnsid_from_name. (bsc#1171452) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP5: zypper in -t patch SUSE-SLE-SDK-12-SP5-2021-3452=1 - SUSE Linux Enterprise Server 12-SP5: zypper in -t patch SUSE-SLE-SERVER-12-SP5-2021-3452=1 Package List: - SUSE Linux Enterprise Software Development Kit 12-SP5 (aarch64 ppc64le s390x x86_64): iproute2-debuginfo-4.12-16.6.1 iproute2-debugsource-4.12-16.6.1 libnetlink-devel-4.12-16.6.1 - SUSE Linux Enterprise Server 12-SP5 (aarch64 ppc64le s390x x86_64): iproute2-4.12-16.6.1 iproute2-debuginfo-4.12-16.6.1 iproute2-debugsource-4.12-16.6.1 References: https://www.suse.com/security/cve/CVE-2019-20795.html https://bugzilla.suse.com/1085669 https://bugzilla.suse.com/1171452 . SUSE hasreleased a security patch for tcpdump addressing a moderate critical vulnerability. Updates can now be accessed for the impacted systems.. iproute2 Update, SUSE Security Announcement, Software Development Kit, Network Utilities Security. . LinuxSecurity.com Team
Oct 18, 2021
SuSE
91
security advisoryGentooDenial Of ServiceGentoo: GLSA-202109-04 Normal: libcgroup Privilege Escalation
A use-after-free was found in iproute2, possibly allowing a Denial of Service condition.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 202008-06 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: iproute2: Denial of service Date: August 08, 2020 Bugs: #722144 ID: 202008-06 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= A use-after-free was found in iproute2, possibly allowing a Denial of Service condition. Background ========= iproute2 is a set of tools for managing Linux network routing and advanced features. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 sys-apps/iproute2 < 5.1.0 > = 5.1.0 Description ========== iproute2 was found to contain a use-after-free in get_netnsid_from_name in ip/ipnetns.c. Impact ===== A remote attacker, able to feed iproute2 crafted data, may be able to cause a Denial of Service condition. Workaround ========= There is no known workaround at this time. Resolution ========= All iproute2 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =sys-apps/iproute2-5.1.0" References ========= [ 1 ] CVE-2019-20795 https://nvd.nist.gov/vuln/detail/CVE-2019-20795 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/202008-06 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is ofutmost importance to us. Any security concerns should be addressed to
Aug 08, 2020
Gentoo
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!