Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 0 articles for you...
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisoryUbuntusensitive information

Ubuntu 18.04 LTS, 16.04 ESM: USN-5257-1 Critical ldns Information Leak

ldns could be made to expose sensitive information if it received a specially crafted input.. =========================================================================Ubuntu Security Notice USN-5257-1 January 31, 2022 ldns vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS - Ubuntu 16.04 ESM Summary: ldns could be made to expose sensitive information if it received a specially crafted input. Software Description: - ldns: ldns library for DNS programming Details: It was discovered that ldns incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive information. (CVE-2020-19860, CVE-2020-19861) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: libldns2 1.7.0-3ubuntu4.1 Ubuntu 16.04 ESM: libldns1 1.6.17-8ubuntu0.1+esm1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-5257-1 CVE-2020-19860, CVE-2020-19861 Package Information: https://launchpad.net/ubuntu/+source/ldns/1.7.0-3ubuntu4.1 . Ubuntu USN-5260-1 alerts users about vulnerabilities in the libx11 package across specific releases and recommends urgent patches.. ldns vulnerabilities, Ubuntu security update, sensitive data exposure. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 31, 2022 Critical Ubuntu
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorymoderateheap overflow

Mageia 8 MGASA-2021-0582 Moderate: ldns Heap Out-Of-Bound Issues

Heap out-of-bound read vulnerability in rr_frm_str_internal function Heap out-of-bound read vulnerability in ldns_nsec3_salt_data function Fixed time memory compare for Openssl 0.9.8 References: . MGASA-2021-0582 - Updated ldns packages fix security vulnerability Publication date: 23 Dec 2021 URL: https://advisories.mageia.org/MGASA-2021-0582.html Type: security Affected Mageia releases: 8 Heap out-of-bound read vulnerability in rr_frm_str_internal function Heap out-of-bound read vulnerability in ldns_nsec3_salt_data function Fixed time memory compare for Openssl 0.9.8 References: - https://bugs.mageia.org/show_bug.cgi?id=29776 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/2X73FZHU3TMEVLPJ6AFGATNWWADHGZW3/ SRPMS: - 8/core/ldns-1.8.1-1.mga8 . Heap buffer overflow issues in ldns libraries addressed in Mageia update rolled out on December 23, 2021.. ldns Security Update, Mageia 8, Heap Overflow, Memory Management. . LinuxSecurity.com Team

Calendar 2 Dec 23, 2021 Mageia
Banner 4 1028x280 1708121825 1771600306
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderatesecurity issue

openSUSE Leap 15.1: openSUSE-SU-2020:0438-1 Moderate: ldns Issues

An update that fixes two vulnerabilities is now available.. openSUSE Security Update: Security update for ldns ______________________________________________________________________________ Announcement ID: openSUSE-SU-2020:0438-1 Rating: moderate References: #1068709 #1068711 Cross-References: CVE-2017-1000231 CVE-2017-1000232 Affected Products: openSUSE Leap 15.1 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for ldns fixes the following issues: - CVE-2017-1000231: Fixed a buffer overflow during token parsing (bsc#1068711). - CVE-2017-1000232: Fixed a double-free vulnerability in str2host.c (bsc#1068709). This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.1: zypper in -t patch openSUSE-2020-438=1 Package List: - openSUSE Leap 15.1 (i586 x86_64): ldns-1.7.0-lp151.4.3.1 ldns-debuginfo-1.7.0-lp151.4.3.1 ldns-debugsource-1.7.0-lp151.4.3.1 ldns-devel-1.7.0-lp151.4.3.1 libldns2-1.7.0-lp151.4.3.1 libldns2-debuginfo-1.7.0-lp151.4.3.1 perl-DNS-LDNS-1.7.0-lp151.4.3.1 perl-DNS-LDNS-debuginfo-1.7.0-lp151.4.3.1 python3-ldns-1.7.0-lp151.4.3.1 python3-ldns-debuginfo-1.7.0-lp151.4.3.1 References: https://www.suse.com/security/cve/CVE-2017-1000231.html https://www.suse.com/security/cve/CVE-2017-1000232.html https://bugzilla.suse.com/1068709 https://bugzilla.suse.com/1068711 -- . The most recent patch for openSUSE Leap 15.1 tackles two moderate-level security vulnerabilities within ldns, alongside guidance for installation procedures.. openSUSE Update, ldns Security Fix, BufferOverflow, Double-Free Issue, openSUSE Vulnerability. . LinuxSecurity.com Team

Calendar 2 Apr 01, 2020 OpenSUSE
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedorasoftware update

Fedora 26: ldns Security Update for Memory Corruption Threats

Fix memory corruption in ldns_rr_new_frm_fp_l (#1511046) Fix memory corruption in ldns_str2rdf_long_str (#1511046). --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-3915878e18 2018-02-27 16:51:55.486369 --------------------------------------------------------------------------------Name : ldns Product : Fedora 26 Version : 1.7.0 Release : 4.fc26 URL : https://www.nlnetlabs.nl/projects/ldns/about/ Summary : Low-level DNS(SEC) library with API Description : ldns is a library with the aim to simplify DNS programming in C. All low-level DNS/DNSSEC operations are supported. We also define a higher level API which allows a programmer to (for instance) create or sign packets. --------------------------------------------------------------------------------Update Information: Fix memory corruption in ldns_rr_new_frm_fp_l (#1511046) Fix memory corruption in ldns_str2rdf_long_str (#1511046) --------------------------------------------------------------------------------References: [ 1 ] Bug #1510993 - CVE-2017-1000232 ldns: Memory corruption in ldns_str2rdf_long_str https://bugzilla.redhat.com/show_bug.cgi?id=1510993 [ 2 ] Bug #1510985 - CVE-2017-1000231 ldns: Memory corruption in ldns_rr_new_frm_fp_l https://bugzilla.redhat.com/show_bug.cgi?id=1510985 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade ldns' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announcemailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Address memory corruption vulnerabilities in ldns for Fedora 26 to improve overall security and system reliability.. Memory Corruption, Fedora Security, LDNS Update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 27, 2018 Important Fedora
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalsoftware update

Fedora 27: ldns Security Update FEDORA-2017-ffa8601413 Critical Exploit

Fix memory corruption in ldns_str2rdf_long_str, ldns_rr_new_frm_fp_l (#1511046). --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-ffa8601413 2017-11-21 20:38:55.506347 --------------------------------------------------------------------------------Name : ldns Product : Fedora 27 Version : 1.7.0 Release : 9.fc27 URL : https://www.nlnetlabs.nl/projects/ldns/about/ Summary : Low-level DNS(SEC) library with API Description : ldns is a library with the aim to simplify DNS programming in C. All low-level DNS/DNSSEC operations are supported. We also define a higher level API which allows a programmer to (for instance) create or sign packets. --------------------------------------------------------------------------------Update Information: Fix memory corruption in ldns_str2rdf_long_str, ldns_rr_new_frm_fp_l (#1511046) --------------------------------------------------------------------------------References: [ 1 ] Bug #1510985 - ldns: Memory corruption in ldns_rr_new_frm_fp_l https://bugzilla.redhat.com/show_bug.cgi?id=1510985 [ 2 ] Bug #1510993 - ldns: Memory corruption in ldns_str2rdf_long_str https://bugzilla.redhat.com/show_bug.cgi?id=1510993 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade ldns' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email This email address is being protected from spambots. You need JavaScript enabled to view it. . Addresses vulnerabilities related to memory corruption in ldns on Fedora 27, improving overall software security and reliability.. ldns Security Update,Fedora Security Advisory,memory corruption fix,DNS programming library. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 21, 2017 Critical Fedora
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorycriticaldebian

Debian Wheezy: DLA-2034-3 Severe: Ldns Memory Corruption Vulnerability

A security vulnerability has been discovered in ldns, a library and collection of utilities for DNS programming. . Package : ldns Version : 1.6.13-1+deb7u2 CVE ID : CVE-2017-1000231 Debian Bug : 882015 A security vulnerability has been discovered in ldns, a library and collection of utilities for DNS programming. CVE-2017-1000231 The generic parser contained a double-free vulnerability which resulted in an application crash with unspecified impacts and attack vectors. For Debian 7 "Wheezy", these problems have been fixed in version 1.6.13-1+deb7u2. We recommend that you upgrade your ldns packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Enhance ldns to resolve a double-free flaw, maintaining reliability and safeguarding Debian 7 Wheezy installations.. Debian LTS, ldns security, double-free issue, dns programming, upgrade recommendation. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 21, 2017 Critical Debian LTS
Banner 4 1028x280 1708121825 1771600306
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorybuffer overflowremote exploit

Debian: DSA-2353-1 Critical: Ldns Buffer Overflow Remote Exploit

David Wheeler discovered a buffer overflow in ldns's code to parse RR records, which could lead to the execution of arbitrary code. For the oldstable distribution (lenny), this problem has been fixed in . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2353-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Moritz Muehlenhoff November 24, 2011 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : ldns Vulnerability : buffer overflow Problem type : remote Debian-specific: no CVE ID : CVE-2011-3581 Debian Bug : David Wheeler discovered a buffer overflow in ldns's code to parse RR records, which could lead to the execution of arbitrary code. For the oldstable distribution (lenny), this problem has been fixed in version 1.4.0-1+lenny2. For the stable distribution (squeeze), this problem has been fixed in version 1.6.6-2+squeeze1. For the unstable distribution (sid), this problem has been fixed in version 1.6.11-1. We recommend that you upgrade your ldns packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: http://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . A serious security flaw in ldns may enable unauthorized code execution. It is imperative to update your ldns packages immediately to reduce vulnerabilities.. Debian Security, Buffer Overflow, ldns Update, Remote Exploit. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 24, 2011 Critical Debian
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorybuffer overflowsecurity fix

openSUSE 11.4: 2011:1161-1 Important: LDNS Heap Overflow

An update that fixes one vulnerability is now available.. openSUSE Security Update: ldns (CVE-2011-3581) ______________________________________________________________________________ Announcement ID: openSUSE-SU-2011:1161-1 Rating: important References: #720277 Cross-References: CVE-2011-3581 Affected Products: openSUSE 11.4 openSUSE 11.3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: A boundary error in ldns_rr_new_frm_str_internal() could lead to a heap-based buffer overfow when processing RR records (CVE-2011-3581). Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.4: zypper in -t patch ldns-5289 - openSUSE 11.3: zypper in -t patch ldns-5289 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.4 (i586 x86_64): libldns-devel-1.5.1-10.11.1 libldns1-1.5.1-10.11.1 - openSUSE 11.3 (i586 x86_64): libldns-devel-1.5.1-7.3.1 libldns1-1.5.1-7.3.1 References: https://www.suse.com/security/cve/CVE-2011-3581.html -- . Critical openSUSE patch addresses memory overflow vulnerability in ldns. Significant upgrade released for editions 11.3 and 11.4.. openSUSE Update, Buffer Overflow, LDNS Security Fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 20, 2011 Important OpenSUSE
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here