Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -4 articles for you...
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisorysecurity issueSQL injection

Rocky Linux 8 RLSA-2024:1435 important: SQL injection in PostgreSQL JDBC

Important: postgresql-jdbc security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2024:1435", "synopsis": "Important: postgresql-jdbc security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for postgresql-jdbc.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "PostgreSQL is an advanced object-relational database management system. The postgresql-jdbc package includes the .jar files needed for Java programs to access a PostgreSQL database.\n\nSecurity Fix(es):\n\n* PostgreSQL JDBC Driver allows attacker to inject SQL if using PreferQueryMode=SIMPLE (CVE-2024-1597)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2266523", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2266523", "description": ""}], "cves": [{"name": "CVE-2024-1597", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2024-1597", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}], "references": [], "publishedAt": "2024-03-27T04:34:32.999941Z", "rpms": {"Rocky Linux 8": {"nvras": ["postgresql-jdbc-0:42.2.14-3.el8_9.noarch.rpm", "postgresql-jdbc-0:42.2.14-3.el8_9.src.rpm", "postgresql-jdbc-javadoc-0:42.2.14-3.el8_9.noarch.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Uncover the critical security patch for PostgreSQL JDBC pertaining to Rocky Linux 8 and examine its implications for vulnerabilities associated with SQL injection.. PostgreSQL JDBC Update, Rocky Linux Security, SQL Injection Threats, JDBC Driver Vulnerabilities. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 27, 2024 Important Rocky Linux
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity issuecritical

Fedora 35: 2022-1151f65e9a Critical: Postgresql JDBC Security Update

Rebase on upstream version 42.2.25. This rebase fixes CVE-2022-21724.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-1151f65e9a 2022-04-14 16:06:11.136474 --------------------------------------------------------------------------------Name : postgresql-jdbc Product : Fedora 35 Version : 42.2.25 Release : 1.fc35 URL : https://jdbc.postgresql.org/ Summary : JDBC driver for PostgreSQL Description : PostgreSQL is an advanced Object-Relational database management system. The postgresql-jdbc package includes the .jar files needed for Java programs to access a PostgreSQL database. --------------------------------------------------------------------------------Update Information: Rebase on upstream version 42.2.25. This rebase fixes CVE-2022-21724. --------------------------------------------------------------------------------ChangeLog: * Wed Apr 6 2022 Zuzana Miklankova - 42.2.25-1 - rebase to version 42.2.25 --------------------------------------------------------------------------------References: [ 1 ] Bug #2050863 - CVE-2022-21724 jdbc-postgresql: Unchecked Class Instantiation when providing Plugin Classes https://bugzilla.redhat.com/show_bug.cgi?id=2050863 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-1151f65e9a' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. Tounsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Essential Fedora patch resolves vulnerabilities in the postgresql-jdbc library, enhancing database connection security and safeguarding user data.. Postgresql-Jdbc Driver, Fedora Update, Security Fix, JDBC Security, Database Security. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 14, 2022 Critical Fedora
Banner 2 1028x280 1708121730 1 1771599631
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorysecurity updatecritical

Debian: DSA-4703-1 Critical Fix for mysql-connector-java JDBC Issues

Three vulnerabilities have been found in the MySQL Connector/J JDBC driver. For the oldstable distribution (stretch), these problems have been fixed . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4703-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff June 11, 2020 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : mysql-connector-java CVE ID : CVE-2020-2875 CVE-2020-2933 CVE-2020-2934 Three vulnerabilities have been found in the MySQL Connector/J JDBC driver. For the oldstable distribution (stretch), these problems have been fixed in version 5.1.49-0+deb9u1. We recommend that you upgrade your mysql-connector-java packages. For the detailed security status of mysql-connector-java please refer to its security tracker page at: Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . The latest mysql-connector-java security patch is vital for addressing serious vulnerabilities in Debian systems, enhancing protection against potential database exploits. mysql connector, Java security, Debian update, JDBC driver vulnerabilities. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 11, 2020 Critical Debian
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 28 Security Advisory: PostgreSQL JDBC Update for CVE-2018-10936

new upstream version, to fix CVE-2018-10936. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-1b9e80874d 2019-03-12 21:43:59.599270 --------------------------------------------------------------------------------Name : postgresql-jdbc Product : Fedora 28 Version : 42.2.5 Release : 2.fc28 URL : https://jdbc.postgresql.org/ Summary : JDBC driver for PostgreSQL Description : PostgreSQL is an advanced Object-Relational database management system. The postgresql-jdbc package includes the .jar files needed for Java programs to access a PostgreSQL database. --------------------------------------------------------------------------------Update Information: new upstream version, to fix CVE-2018-10936 --------------------------------------------------------------------------------ChangeLog: * Sat Feb 2 2019 Fedora Release Engineering - 42.2.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Wed Nov 21 2018 Pavel Raiskup - 42.2.5-1 - new upstream release * Fri Aug 3 2018 Pavel Raiskup - 42.2.4-1 - new upstream release (rhbz#1601193) * Fri Jul 13 2018 Pavel Raiskup - 42.2.3-1 - new upstream release (rhbz#1600759) * Wed May 30 2018 Mikolaj Izdebski - 42.2.2-4 - Remove and obsolete parent-poms subpackage * Fri Apr 20 2018 Pavel Raiskup - 42.2.2-3 - provide postgresql.jar, as that's the upstream's artifactId * Fri Apr 13 2018 Pavel Raiskup - 42.2.2-2 - BR postgresql-test-rpm-macros * Fri Mar 16 2018 Pavel Raiskup - 42.2.2-1 - new upstream release --------------------------------------------------------------------------------References: [ 1 ] Bug #1601193 - postgresql-jdbc-42.2.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1601193 [ 2 ] Bug #1664337 - CVE-2018-10936 postgresql-jdbc: PostgreSQL: Postgres JDBC driver does not perform host name validation by default [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1664337 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-1b9e80874d' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . --------------------------------------------------------------------------------Fedora Update Notifi. upstream, version, cve-2018-10936, --------------------------------------------------------. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 12, 2019 Important Fedora
Banner 2 1028x280 1708121730 1 1771599631
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorysoftware updatedebian

Debian Jessie: DSA-3857-1 Critical: MySQL Connector/J Security Threat

Two vulnerabilities have been found in the MySQL Connector/J JDBC driver. For the stable distribution (jessie), these problems have been fixed in version 5.1.42-1~deb8u1. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3857-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff May 18, 2017 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : mysql-connector-java CVE ID : CVE-2017-3586 CVE-2017-3589 Two vulnerabilities have been found in the MySQL Connector/J JDBC driver. For the stable distribution (jessie), these problems have been fixed in version 5.1.42-1~deb8u1. For the upcoming stable distribution (stretch), these problems have been fixed in version 5.1.42-1. For the unstable distribution (sid), these problems have been fixed in version 5.1.42-1. We recommend that you upgrade your mysql-connector-java packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Two security flaws addressed in mysql-connector-java for Debian jessie. It is advised to upgrade to version 5.1.42-1~deb8u2.. MySQL Security Update, JDBC Driver Issues, Debian Software Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 18, 2017 Critical Debian
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here