Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -2 articles for you...
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorysecurity issuedebian

Debian DSA-5645-1 Moderate: Firefox-ESR JavaScript Injection Threat

Manfred Paul discovered a flaw in the Mozilla Firefox web browser, allowing an attacker to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-5645-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Salvatore Bonaccorso March 23, 2024 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : firefox-esr CVE ID : CVE-2024-29944 Manfred Paul discovered a flaw in the Mozilla Firefox web browser, allowing an attacker to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process. For the oldstable distribution (bullseye), this problem has been fixed in version 115.9.1esr-1~deb11u1. For the stable distribution (bookworm), this problem has been fixed in version 115.9.1esr-1~deb12u1. We recommend that you upgrade your firefox-esr packages. For the detailed security status of firefox-esr please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/firefox-esr Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . The latest Debian security advisory DSA-5646-1 resolves a significant vulnerability in Chromium that permits unauthorized access via HTML manipulation.. Debian Firefox Security, JavaScript Injection Flaw, Browser Security Update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 23, 2024 Important Debian
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedorasecurity fix

Fedora 31: FEDORA-2020-01d7b8b690 Moderate: PHP Horde JS Injection Issue

**horde 5.2.23** * [mjr] SECURITY: Fix javascript injection vulnerability in mobile login page. * [mjr] Fix broken cloud search in portal block.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-01d7b8b690 2020-06-25 01:09:25.301187 --------------------------------------------------------------------------------Name : php-horde-horde Product : Fedora 31 Version : 5.2.23 Release : 1.fc31 URL : https://www.horde.org/apps/horde Summary : Horde Application Framework Description : The Horde Application Framework is a flexible, modular, general-purpose web application framework written in PHP. It provides an extensive array of components that are targeted at the common problems and tasks involved in developing modern web applications. It is the basis for a large number of production-level web applications, notably the Horde Groupware suites. For more information on Horde or the Horde Groupware suites, visit https://www.horde.org/ --------------------------------------------------------------------------------Update Information: **horde 5.2.23** * [mjr] SECURITY: Fix javascript injection vulnerability in mobile login page. * [mjr] Fix broken cloud search in portal block. --------------------------------------------------------------------------------ChangeLog: * Mon Jun 15 2020 Remi Collet - 5.2.23-1 - update to 5.2.23 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-01d7b8b690' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . The recent php-horde-horde update includes a vital patch addressing JavaScript injection vulnerabilities in the mobile login interface, improving security.. Horde Framework, Security Fix, Javascript Injection, Fedora Update. . LinuxSecurity.com Team

Calendar 2 Jun 24, 2020 Fedora
Banner 3 1028x280 1708121785 1771599793
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoramobile security

Fedora 32: FEDORA-2020-a41fda3b4c Moderate: php-Horde JavaScript Injection

**horde 5.2.23** * [mjr] SECURITY: Fix javascript injection vulnerability in mobile login page. * [mjr] Fix broken cloud search in portal block.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-a41fda3b4c 2020-06-24 00:59:05.970412 --------------------------------------------------------------------------------Name : php-horde-horde Product : Fedora 32 Version : 5.2.23 Release : 1.fc32 URL : https://www.horde.org/apps/horde Summary : Horde Application Framework Description : The Horde Application Framework is a flexible, modular, general-purpose web application framework written in PHP. It provides an extensive array of components that are targeted at the common problems and tasks involved in developing modern web applications. It is the basis for a large number of production-level web applications, notably the Horde Groupware suites. For more information on Horde or the Horde Groupware suites, visit https://www.horde.org/ --------------------------------------------------------------------------------Update Information: **horde 5.2.23** * [mjr] SECURITY: Fix javascript injection vulnerability in mobile login page. * [mjr] Fix broken cloud search in portal block. --------------------------------------------------------------------------------ChangeLog: * Mon Jun 15 2020 Remi Collet - 5.2.23-1 - update to 5.2.23 * Tue Jun 2 2020 Remi Collet - 5.2.22-2 - requires php(httpd) --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-a41fda3b4c' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Enhance mobile login security in Fedora's php-Horde by implementing strategies like input sanitization, CSP, output escaping, prepared statements, and two-factor authentication. Fedora 32, php-Horde, javascript Injection, security fix, web applications. . LinuxSecurity.com Team

Calendar 2 Jun 23, 2020 Fedora
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryred hatimportant

Red Hat: RHSA-2020-0577-01 Important: Mozilla Thunderbird Security Flaws

An update for thunderbird is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: thunderbird security update Advisory ID: RHSA-2020:0577-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:0577 Issue date: 2020-02-24 CVE Names: CVE-2020-6792 CVE-2020-6793 CVE-2020-6794 CVE-2020-6795 CVE-2020-6798 CVE-2020-6800 ==================================================================== 1. Summary: An update for thunderbird is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 8) - ppc64le, x86_64 3. Description: Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.5.0. Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5 (CVE-2020-6800) * Mozilla: Out-of-bounds read when processing certain email messages (CVE-2020-6793) * Mozilla: Setting a master password post-Thunderbird 52 does not delete unencrypted previously stored passwords (CVE-2020-6794) * Mozilla: Crash processing S/MIME messages with multiple signatures (CVE-2020-6795) * Mozilla: Incorrect parsing of template tag could result in JavaScript injection (CVE-2020-6798) * Mozilla: Message ID calculation was based onuninitialized data (CVE-2020-6792) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 All running instances of Thunderbird must be restarted for the update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1801918 - CVE-2020-6798 Mozilla: Incorrect parsing of template tag could result in JavaScript injection 1801920 - CVE-2020-6800 Mozilla: Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5 1801955 - CVE-2020-6793 Mozilla: Out-of-bounds read when processing certain email messages 1801956 - CVE-2020-6794 Mozilla: Setting a master password post-Thunderbird 52 does not delete unencrypted previously stored passwords 1801957 - CVE-2020-6795 Mozilla: Crash processing S/MIME messages with multiple signatures 1801958 - CVE-2020-6792 Mozilla: Message ID calculation was based on uninitialized data 6. Package List: Red Hat Enterprise Linux AppStream (v. 8): Source: thunderbird-68.5.0-1.el8_1.src.rpm ppc64le: thunderbird-68.5.0-1.el8_1.ppc64le.rpm thunderbird-debuginfo-68.5.0-1.el8_1.ppc64le.rpm thunderbird-debugsource-68.5.0-1.el8_1.ppc64le.rpm x86_64: thunderbird-68.5.0-1.el8_1.x86_64.rpm thunderbird-debuginfo-68.5.0-1.el8_1.x86_64.rpm thunderbird-debugsource-68.5.0-1.el8_1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7.References: https://access.redhat.com/security/cve/CVE-2020-6792 https://access.redhat.com/security/cve/CVE-2020-6793 https://access.redhat.com/security/cve/CVE-2020-6794 https://access.redhat.com/security/cve/CVE-2020-6795 https://access.redhat.com/security/cve/CVE-2020-6798 https://access.redhat.com/security/cve/CVE-2020-6800 https://access.redhat.com/security/updates/classification#important https://www.mozilla.org/en-US/security/advisories/mfsa2020-07/ 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXlO+x9zjgjWX9erEAQhNiw/9FVonQMYgOKOOId4YbhElaJ7o+2CnsG1A wLdgzGCe/C1h53Cu6ZEoj6Gu0KE3Nqwo82bMR9QuP6NkxH/HaN264Ij0eZoCyWLN 0IC3ANGk0TwGR4qyCI13g36aoAA/w/0O/pWw25w8muuolDGAR7E/rmrHpIapVjxx qoY9urr3Fpv9FIxBlU5f6nyzX2ylDudyrcuNGASh4LjWJ2ULqnQSi7Oac8Xi6eRO OreA+GsWBA7+bTm5YTO8BDOKBTc7ANEZ8jm0+aG0szMWcTtR0+v+VgDJsrm2dvmL eshLeqiCqRfhxlNQ4ELPyFcLP5Me5vCTxZL31qTsPg/nLDF3VelqETauZrWhFIr3 OcbKxZ8Vg7noMvzhb1wh+Kfm7YHcIMbz0mu5llPnY1YNbHim0ALb6pHKaYs85s5L VkzMWLvuOWx4SnFi31xZm6OJAGUhWoPQNTlgYlaSPV7TXHW1ORo5/omB2jhB0NxP nkMHFx/T/mPSLs7rvEGonTPFmBaUTi/9WpmPAD5w7clZ/i0a8LDJCbMj0hxYYSEJ cOPFQFeLtk1DSM32v6x3galS83oKCBGQi/WyIOD8EizaqzMHW/rTMo5D2YVSwOKD bW9kjnXIjoYgpmb6SXBRoM2FgtsXmI343D1GXn2sFGaTBdm9LooOyu/oMGhal1j3 DbCiPVzfo8s=PaFH -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Ubuntu announces a significant notification for Firefox, disclosing essential improvements and security patches for enhanced defense.. Thunderbird Update, Red Hat Security, Email Client Risks, Important Security Fixes. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 24, 2020 Important Red Hat
Banner 3 1028x280 1708121785 1771599793
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisoryfirefoxmemory safety

Scientific Linux 7: SLSA-2020-0520-1 Important Firefox Update

Mozilla: Missing bounds check on shared memory read in the parent process (CVE-2020-6796) * Mozilla: Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5 (CVE-2020-6800) * Mozilla: Incorrect parsing of template tag could result in JavaScript injection (CVE-2020-6798) SL7 x86_64 firefox-68.5.0-2.el7_7.x86_64.rpm firefox-debuginfo-68.5.0-2.el7_7.x86_64.rpm firefox-68.5.0- [More...]. Synopsis: Important: firefox security update Advisory ID: SLSA-2020:0520-1 Issue Date: 2020-02-17 CVE Numbers: None -- Security Fix(es): * Mozilla: Missing bounds check on shared memory read in the parent process (CVE-2020-6796) * Mozilla: Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5 (CVE-2020-6800) * Mozilla: Incorrect parsing of template tag could result in JavaScript injection (CVE-2020-6798) -- SL7 x86_64 firefox-68.5.0-2.el7_7.x86_64.rpm firefox-debuginfo-68.5.0-2.el7_7.x86_64.rpm firefox-68.5.0-2.el7_7.i686.rpm firefox-debuginfo-68.5.0-2.el7_7.i686.rpm - Scientific Linux Development Team . Important patch release for Firefox on Scientific Linux, targeting vulnerabilities related to memory integrity and script injection risks.. firefox security patch, scientific linux advisories, memory safety bugs. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 17, 2020 Important Scientific Linux
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryupdateimportant

Red Hat Enterprise Linux 7: RHSA-2020-0520-01 Important: Firefox Update

An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: firefox security update Advisory ID: RHSA-2020:0520-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:0520 Issue date: 2020-02-17 CVE Names: CVE-2020-6796 CVE-2020-6798 CVE-2020-6800 ==================================================================== 1. Summary: An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 68.5.0 ESR. Security Fix(es): * Mozilla: Missing bounds check on shared memory read in the parent process (CVE-2020-6796) * Mozilla: Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5 (CVE-2020-6800) * Mozilla: Incorrect parsing of template tag could result in JavaScript injection(CVE-2020-6798) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 After installing the update, Firefox must be restarted for the changes to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1801916 - CVE-2020-6796 Mozilla: Missing bounds check on shared memory read in the parent process 1801918 - CVE-2020-6798 Mozilla: Incorrect parsing of template tag could result in JavaScript injection 1801920 - CVE-2020-6800 Mozilla: Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5 6. Package List: Red Hat Enterprise Linux Client (v. 7): Source: firefox-68.5.0-2.el7_7.src.rpm x86_64: firefox-68.5.0-2.el7_7.x86_64.rpm firefox-debuginfo-68.5.0-2.el7_7.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: firefox-68.5.0-2.el7_7.i686.rpm firefox-debuginfo-68.5.0-2.el7_7.i686.rpm Red Hat Enterprise Linux Server (v. 7): Source: firefox-68.5.0-2.el7_7.src.rpm ppc64: firefox-68.5.0-2.el7_7.ppc64.rpm firefox-debuginfo-68.5.0-2.el7_7.ppc64.rpm ppc64le: firefox-68.5.0-2.el7_7.ppc64le.rpm firefox-debuginfo-68.5.0-2.el7_7.ppc64le.rpm s390x: firefox-68.5.0-2.el7_7.s390x.rpm firefox-debuginfo-68.5.0-2.el7_7.s390x.rpm x86_64: firefox-68.5.0-2.el7_7.x86_64.rpm firefox-debuginfo-68.5.0-2.el7_7.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 7): x86_64: firefox-68.5.0-2.el7_7.i686.rpm firefox-debuginfo-68.5.0-2.el7_7.i686.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: firefox-68.5.0-2.el7_7.src.rpm x86_64: firefox-68.5.0-2.el7_7.x86_64.rpm firefox-debuginfo-68.5.0-2.el7_7.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: firefox-68.5.0-2.el7_7.i686.rpm firefox-debuginfo-68.5.0-2.el7_7.i686.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-6796 https://access.redhat.com/security/cve/CVE-2020-6798 https://access.redhat.com/security/cve/CVE-2020-6800 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXkqI89zjgjWX9erEAQiIYw/9E2TNvvVz28h3XJz/V+exo/z9nYfkhTU0 jpRlqRsczQKpKFjMh2H571CSjv8AVTAKM2Dxa/Xk+G9AsMT4BdyHawyB3WmXI4eB IFEcgc5eJMwIF6CtV9vb6k+gy0jhcCkd+Y584DCEp5svAWQ3Gj2iJHPm88gxBisO QltXMwRNgZRM56MlVFvkgh8E39c+VoHEZJbzVZj7ST/6CZA8As0zaZ/LWgjJ235K +kxKGTI2IJMsA8IyOXHPVl2cBFN9NE4TgEA5d3Ik25tf/GI6EyBOTE2MIwbGkNtq VTCUk8eBS9ezB7dtKi4H3I7rwrkGe9GxSoTAl3OwDhvnJwqPPuhpaCnhnJ05ARHc As/ysK2V6XEMN6x4pvduTeLrywVtbxhdIeRUKyG02ZspA2dOjfPMf4nQGsYEmE2s KjwsJgPSyzuz5sji5fNv/Ne434dtWbmFiCjp5Ag0PGQYu81ccRs/VGq0b+SgRKQz ycJMSVSWb6yE5+3bx322AkZwUqCgMHF0lDUiMkaG/wzf8wz1QMGcUT8rAZqJt6sb SpufQ8yu6DOHXsq2jzFbN5VLnFmcQjpXMP1ygzM5devrBhFCZD+a9IFOEXvWzDud vkejdCVIXxAbeO+X7BXCu+EvcZKjEY8N6gwKlGvpMEwyH4QjRNARHhLnfKW/TiRw zRoJpRjymqE=FtDY -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Red Hat Enterprise Linux announces significant update to Firefox, resolving critical memory safety and code injection vulnerabilities. Find out more information here.. Firefox Security Update, Red Hat Security Advisory, Important Linux Updates. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 17, 2020 Important Red Hat
Banner 3 1028x280 1708121785 1771599793
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoracritical

Fedora 24: kf5-kcalendarutils Critical JavaScript Injection Update

KDE PIM Applications 16.08.2, https://kde.org/announcements/announce-applications-16.08.2/. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-1b042a79bd 2016-10-30 14:09:06.179463 -------------------------------------------------------------------------------- Name : kf5-kcalendarutils Product : Fedora 24 Version : 16.08.2 Release : 1.fc24 URL : Summary : The KCalendarUtils Library Description : The KCalendarUtils Library. -------------------------------------------------------------------------------- Update Information: KDE PIM Applications 16.08.2, https://kde.org/announcements/announce-applications-16.08.2/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1382288 - CVE-2016-7967 kdepim: JavaScript access to local and remote URLs in Kmail https://bugzilla.redhat.com/show_bug.cgi?id=1382288 [ 2 ] Bug #1382286 - CVE-2016-7966 kdepim: HTML injection in plain text viewer of KMail https://bugzilla.redhat.com/show_bug.cgi?id=1382286 [ 3 ] Bug #1382293 - CVE-2016-7968 kdepim: JavaScript execution in HTML Mails https://bugzilla.redhat.com/show_bug.cgi?id=1382293 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade kf5-kcalendarutils' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. .Important Fedora release for kf5-kcalendarutils rectifying vulnerabilities related to JavaScript and HTML code injection. Please upgrade promptly for enhanced security.. JavaScript Injection,Fedora Security,kf5-kcalendarutils,HTML Exploit,Security Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 30, 2016 Critical Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here