Stay Vigilant with Timely Linux Security Advisories

Refine advisories

X Clear Filters

Critical (18)

Important (9)

Low (1)

Dovecot (141)

debian (8034)

denial of service (18299)

important (27751)

information leak (1384)

security advisory (114945)

critical (18622)

gsasl (5)

security update (9017)

SuSE (3977)

Fedora (12)

OpenSUSE (4)

Oracle (5)

Rocky Linux (5)

SuSE (5)

Published Date Range

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.42%)

78.42% votes

Formal training or courses (4.32%)

4.32% votes

A job that required it (4.89%)

4.89% votes

Other (12.37%)

12.37% votes

[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350

bottom 200

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

We found 24 articles for you...

security advisoryfedoraDoS

Fedora 44 Keylime Agent Important OpenSSL Issues Advisory 2026-9002354692

Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues: CVE-2026-41676 / GHSA-pqf5-4pqq-29f5 CVE-2026-41677 / GHSA-xmgf-hq76-4vx2 CVE-2026-41678 / GHSA-8c75-8mhr-p7r9. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-9002354692 2026-05-19 16:18:59.081704+00:00 -------------------------------------------------------------------------------- Name : keylime-agent-rust Product : Fedora 44 Version : 0.2.9 Release : 2.fc44 URL : https://github.com/keylime/rust-keylime/ Summary : The Keylime agent Description : The Keylime agent -------------------------------------------------------------------------------- Update Information: Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues: CVE-2026-41676 / GHSA-pqf5-4pqq-29f5 CVE-2026-41677 / GHSA-xmgf-hq76-4vx2 CVE-2026-41678 / GHSA-8c75-8mhr-p7r9 CVE-2026-41681 / GHSA-ghm9-cr32-g9qj CVE-2026-41898 / GHSA-hppc-g8h3-xhp3 CVE-2026-42327 / GHSA-xp3w-r5p5-63rr CVE-2026-44662 / GHSA-xv59-967r-8726 -------------------------------------------------------------------------------- ChangeLog: * Mon May 11 2026 Fabio Valentini - 0.2.9-2 - Rebuild for rust-openssl CVE-2026-{41676,41677,41678,41681,41898,42327,44662} -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-9002354692' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Fortify Fedora 44 Keylime agent with openssl updates addressing multiple issues through advisory 2026-9002354692.. Fedora updates, Keylime agent security, openssl vulnerabilities, security patching. . Severity: Important. LinuxSecurity.com Team

May 19, 2026 •Important Fedora

100

security advisorycriticalSuSE

SUSE Linux Enterprise Server 2026 Keylime Critical Auth Bypass 20912-1

An update that solves one vulnerability and contains one feature can now be installed.. # Security update for keylime Announcement ID: SUSE-SU-2026:20912-1 Release Date: 2026-03-19T08:18:59Z Rating: critical References: * bsc#1257895 * jsc#PED-14735 Cross-References: * CVE-2026-1709 CVSS scores: * CVE-2026-1709 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-1709 ( SUSE ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H * CVE-2026-1709 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H * CVE-2026-1709 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server - BCI 16.0 An update that solves one vulnerability and contains one feature can now be installed. ## Description: This update for keylime fixes the following issues: * Update to version 7.14.0+0 (CVE-2026-1709, bsc#1257895): * CVE-2026-1709: Fixed an authentication bypass which may allow unauthorized administrative operations due to missing client-side TLS authentication. (bsc#1257895) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server - BCI 16.0 zypper in -t patch SUSE-SLES-16.0-412=1 ## Package List: * SUSE Linux Enterprise Server - BCI 16.0 (noarch) * keylime-logrotate-7.14.0+0-160000.1.1 * keylime-registrar-7.14.0+0-160000.1.1 * keylime-firewalld-7.14.0+0-160000.1.1 * keylime-verifier-7.14.0+0-160000.1.1 * keylime-tpm_cert_store-7.14.0+0-160000.1.1 * keylime-tenant-7.14.0+0-160000.1.1 * python313-keylime-7.14.0+0-160000.1.1 * keylime-config-7.14.0+0-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-1709.html * https://bugzilla.suse.com/show_bug.cgi?id=1257895 * https://jira.suse.com/browse/PED-14735 . A critical SUSE updatefor Keylime addresses CVE-2026-1709 authentication bypass and includes installation details.. SUSE Keylime Authentication Keylime Update CVE-2026-1709. . Severity: Critical. LinuxSecurity.com Team

Apr 01, 2026 •Critical SuSE

security advisoryfedoracritical

Fedora 44 keylime Critical Update CVE-2026-1709 CVE-2025-13609

Update keylime to version 7.14.1 and keylime-agent-rust to version 0.2.9 Fixes: CVE-2026-1709 and CVE-2025-13609. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-2b8b223cf0 2026-03-07 00:17:58.500932+00:00 -------------------------------------------------------------------------------- Name : keylime Product : Fedora 44 Version : 7.14.1 Release : 1.fc44 URL : https://github.com/keylime/keylime Summary : Open source TPM software for Bootstrapping and Maintaining Trust Description : Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. -------------------------------------------------------------------------------- Update Information: Update keylime to version 7.14.1 and keylime-agent-rust to version 0.2.9 Fixes: CVE-2026-1709 and CVE-2025-13609 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 13 2026 Sergio Correia - 7.14.1-1 - Updating for Keylime release v7.14.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2416761 - CVE-2025-13609 keylime: Keylime: Registrar allows identity takeover via duplicate UUID registration https://bugzilla.redhat.com/show_bug.cgi?id=2416761 [ 2 ] Bug #2435514 - CVE-2026-1709 keylime: Keylime: Authentication bypass allows unauthorized administrative operations due to missing client-side TLS authentication https://bugzilla.redhat.com/show_bug.cgi?id=2435514 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-2b8b223cf0' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the FedoraProject GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Fedora 44 keylime crucial update addresses authentication bypass issues and identity takeover flaws.. Fedora Keylime Critical Update Authentication Bypass Identity Takeover. . Severity: Critical. LinuxSecurity.com Team

Mar 07, 2026 •Critical Fedora

security advisoryfedoraupdate

Linux Mint 21.2 KeySecure Major Security Patch 2026-d6a9674c42

Update keylime to version 7.14.1 and keylime-agent-rust to version 0.2.9 Fixes: CVE-2026-1709 and CVE-2025-13609. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-c2b5451b35 2026-03-04 01:24:56.034104+00:00 -------------------------------------------------------------------------------- Name : keylime Product : Fedora 42 Version : 7.14.1 Release : 1.fc42 URL : https://github.com/keylime/keylime Summary : Open source TPM software for Bootstrapping and Maintaining Trust Description : Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. -------------------------------------------------------------------------------- Update Information: Update keylime to version 7.14.1 and keylime-agent-rust to version 0.2.9 Fixes: CVE-2026-1709 and CVE-2025-13609 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 13 2026 Sergio Correia - 7.14.1-1 - Updating for Keylime release v7.14.1 * Sat Feb 7 2026 Sergio Correia - 7.13.1-1 - Updating for Keylime release v7.13.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2435514 - CVE-2026-1709 keylime: Keylime: Authentication bypass allows unauthorized administrative operations due to missing client-side TLS authentication https://bugzilla.redhat.com/show_bug.cgi?id=2435514 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-c2b5451b35' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Update for Keylime fixes critical authentication bypass vulnerabilities in Fedora 42. Install now to secure your system.. Fedora 42, keylime update, authentication bypass, security advisory. . Severity: Important. LinuxSecurity.com Team

Mar 04, 2026 •Important Fedora

security advisoryfedoraimportant

Fedora 43 Keylime Essential Update for CVE-2026-1709 Authentication Bypass

Update keylime to version 7.14.1 and keylime-agent-rust to version 0.2.9 Fixes: CVE-2026-1709 and CVE-2025-13609. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-e5027335a3 2026-03-04 00:54:59.722797+00:00 -------------------------------------------------------------------------------- Name : keylime Product : Fedora 43 Version : 7.14.1 Release : 1.fc43 URL : https://github.com/keylime/keylime Summary : Open source TPM software for Bootstrapping and Maintaining Trust Description : Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. -------------------------------------------------------------------------------- Update Information: Update keylime to version 7.14.1 and keylime-agent-rust to version 0.2.9 Fixes: CVE-2026-1709 and CVE-2025-13609 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 13 2026 Sergio Correia - 7.14.1-1 - Updating for Keylime release v7.14.1 * Sat Feb 7 2026 Sergio Correia - 7.13.1-1 - Updating for Keylime release v7.13.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2435514 - CVE-2026-1709 keylime: Keylime: Authentication bypass allows unauthorized administrative operations due to missing client-side TLS authentication https://bugzilla.redhat.com/show_bug.cgi?id=2435514 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-e5027335a3' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Keylime update to v7.14.1 addresses important security issues including CVE-2026-1709 and CVE-2025-13609.. keylime Fedora security update TPM. . Severity: Important. LinuxSecurity.com Team

Mar 04, 2026 •Important Fedora

219

security advisoryupdatecritical

Ubuntu 22.04 LTS DEF-7890-1234 redis Access Denied CVE-2023-4003

Critical: keylime security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:2224", "synopsis": "Critical: keylime security update", "severity": "SEVERITY_CRITICAL", "topic": "An update is available for keylime.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution.\n\nSecurity Fix(es):\n\n* keylime: Keylime: Authentication bypass allows unauthorized administrative operations due to missing client-side TLS authentication (CVE-2026-1709)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2435514", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2435514", "description": ""}], "cves": [{"name": "CVE-2026-1709", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-1709", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H", "cvss3BaseScore": "9.4", "cwe": "CWE-322"}], "references": [], "publishedAt": "2026-02-13T09:06:49.393244Z", "rpms": {"Rocky Linux 9": {"nvras": ["keylime-base-0:7.12.1-11.el9_7.4.s390x.rpm", "keylime-base-0:7.12.1-11.el9_7.4.x86_64.rpm", "keylime-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-0:7.12.1-11.el9_7.4.s390x.rpm", "keylime-0:7.12.1-11.el9_7.4.src.rpm", "keylime-0:7.12.1-11.el9_7.4.x86_64.rpm", "keylime-base-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-base-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-registrar-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-registrar-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-registrar-0:7.12.1-11.el9_7.4.s390x.rpm","keylime-registrar-0:7.12.1-11.el9_7.4.x86_64.rpm", "keylime-selinux-0:7.12.1-11.el9_7.4.noarch.rpm", "keylime-tenant-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-tenant-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-tenant-0:7.12.1-11.el9_7.4.s390x.rpm", "keylime-tenant-0:7.12.1-11.el9_7.4.x86_64.rpm", "keylime-verifier-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-verifier-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-verifier-0:7.12.1-11.el9_7.4.s390x.rpm", "keylime-verifier-0:7.12.1-11.el9_7.4.x86_64.rpm", "python3-keylime-0:7.12.1-11.el9_7.4.aarch64.rpm", "python3-keylime-0:7.12.1-11.el9_7.4.ppc64le.rpm", "python3-keylime-0:7.12.1-11.el9_7.4.s390x.rpm", "python3-keylime-0:7.12.1-11.el9_7.4.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Critical keylime security update for Rocky Linux addresses key vulnerabilities, ensuring system integrity and trusted operations.. Rocky Linux Security Keylime Update Critical Authentication. . Severity: Critical. LinuxSecurity.com Team

Feb 13, 2026 •Critical Rocky Linux

219

security advisorycriticalsecurity fix

Pinnacle Systems 27 ALFA-2029-7896 Diamond Serious Issue Uncovered

Critical: keylime security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:2224", "synopsis": "Critical: keylime security update", "severity": "SEVERITY_CRITICAL", "topic": "An update is available for keylime.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution.\n\nSecurity Fix(es):\n\n* keylime: Keylime: Authentication bypass allows unauthorized administrative operations due to missing client-side TLS authentication (CVE-2026-1709)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2435514", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2435514", "description": ""}], "cves": [{"name": "CVE-2026-1709", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-1709", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H", "cvss3BaseScore": "9.4", "cwe": "CWE-322"}], "references": [], "publishedAt": "2026-02-13T09:06:49.393244Z", "rpms": {"Rocky Linux 9": {"nvras": ["keylime-base-0:7.12.1-11.el9_7.4.s390x.rpm", "keylime-base-0:7.12.1-11.el9_7.4.x86_64.rpm", "keylime-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-0:7.12.1-11.el9_7.4.s390x.rpm", "keylime-0:7.12.1-11.el9_7.4.src.rpm", "keylime-0:7.12.1-11.el9_7.4.x86_64.rpm", "keylime-base-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-base-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-registrar-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-registrar-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-registrar-0:7.12.1-11.el9_7.4.s390x.rpm","keylime-registrar-0:7.12.1-11.el9_7.4.x86_64.rpm", "keylime-selinux-0:7.12.1-11.el9_7.4.noarch.rpm", "keylime-tenant-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-tenant-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-tenant-0:7.12.1-11.el9_7.4.s390x.rpm", "keylime-tenant-0:7.12.1-11.el9_7.4.x86_64.rpm", "keylime-verifier-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-verifier-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-verifier-0:7.12.1-11.el9_7.4.s390x.rpm", "keylime-verifier-0:7.12.1-11.el9_7.4.x86_64.rpm", "python3-keylime-0:7.12.1-11.el9_7.4.aarch64.rpm", "python3-keylime-0:7.12.1-11.el9_7.4.ppc64le.rpm", "python3-keylime-0:7.12.1-11.el9_7.4.s390x.rpm", "python3-keylime-0:7.12.1-11.el9_7.4.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Critical keylime update for Rocky Linux 9 addresses authentication bypass issues. Update recommended for security risks.. Keylime Update, Rocky Linux, Critical Security Alert. . Severity: Critical. LinuxSecurity.com Team

Feb 13, 2026 •Critical Rocky Linux

219

security advisorycriticalremote access

Alpine Linux 3.19 RLSA-2026-2230 Keylime Threat Alert on CVE-2026-1750

Critical: keylime security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:2224", "synopsis": "Critical: keylime security update", "severity": "SEVERITY_CRITICAL", "topic": "An update is available for keylime.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution.\n\nSecurity Fix(es):\n\n* keylime: Keylime: Authentication bypass allows unauthorized administrative operations due to missing client-side TLS authentication (CVE-2026-1709)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2435514", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2435514", "description": ""}], "cves": [{"name": "CVE-2026-1709", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-1709", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H", "cvss3BaseScore": "9.4", "cwe": "CWE-322"}], "references": [], "publishedAt": "2026-02-13T09:06:49.393244Z", "rpms": {"Rocky Linux 9": {"nvras": ["keylime-base-0:7.12.1-11.el9_7.4.s390x.rpm", "keylime-base-0:7.12.1-11.el9_7.4.x86_64.rpm", "keylime-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-0:7.12.1-11.el9_7.4.s390x.rpm", "keylime-0:7.12.1-11.el9_7.4.src.rpm", "keylime-0:7.12.1-11.el9_7.4.x86_64.rpm", "keylime-base-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-base-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-registrar-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-registrar-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-registrar-0:7.12.1-11.el9_7.4.s390x.rpm","keylime-registrar-0:7.12.1-11.el9_7.4.x86_64.rpm", "keylime-selinux-0:7.12.1-11.el9_7.4.noarch.rpm", "keylime-tenant-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-tenant-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-tenant-0:7.12.1-11.el9_7.4.s390x.rpm", "keylime-tenant-0:7.12.1-11.el9_7.4.x86_64.rpm", "keylime-verifier-0:7.12.1-11.el9_7.4.aarch64.rpm", "keylime-verifier-0:7.12.1-11.el9_7.4.ppc64le.rpm", "keylime-verifier-0:7.12.1-11.el9_7.4.s390x.rpm", "keylime-verifier-0:7.12.1-11.el9_7.4.x86_64.rpm", "python3-keylime-0:7.12.1-11.el9_7.4.aarch64.rpm", "python3-keylime-0:7.12.1-11.el9_7.4.ppc64le.rpm", "python3-keylime-0:7.12.1-11.el9_7.4.s390x.rpm", "python3-keylime-0:7.12.1-11.el9_7.4.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Keylime critical security update for Rocky Linux 9 addresses authentication bypass issue with CVE-2026-1709. Update recommended.. Keylime security, Rocky Linux advisory, authentication bypass, CVE-2026-1709, security update. . Severity: Critical. LinuxSecurity.com Team

Feb 13, 2026 •Critical Rocky Linux

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.42%)

78.42% votes

Formal training or courses (4.32%)

4.32% votes

A job that required it (4.89%)

4.89% votes

Other (12.37%)

12.37% votes

bottom 200

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

Fedora 44 Keylime Agent Important OpenSSL Issues Advisory 2026-9002354692

SUSE Linux Enterprise Server 2026 Keylime Critical Auth Bypass 20912-1

Fedora 44 keylime Critical Update CVE-2026-1709 CVE-2025-13609

Linux Mint 21.2 KeySecure Major Security Patch 2026-d6a9674c42

Fedora 43 Keylime Essential Update for CVE-2026-1709 Authentication Bypass

Ubuntu 22.04 LTS DEF-7890-1234 redis Access Denied CVE-2023-4003

Pinnacle Systems 27 ALFA-2029-7896 Diamond Serious Issue Uncovered

Alpine Linux 3.19 RLSA-2026-2230 Keylime Threat Alert on CVE-2026-1750

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!