Alerts This Week
Warning Icon 1 566
Alerts This Week
Warning Icon 1 566

Stay Secure with the Latest Linux Advisories

Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H800
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 15 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorycriticalsoftware update

Debian 9 Stretch: DLA-2851-1 Critical: libextractor Malformed File Issue

Invalid read for malformed DVI files was fixed in GNU libextractor, a library that extracts meta-data from files of arbitrary type. For Debian 9 stretch, this problem has been fixed in version . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2851-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Adrian Bunk December 26, 2021 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : libextractor Version : 1:1.3-4+deb9u4 CVE ID : CVE-2019-15531 Debian Bug : 935553 Invalid read for malformed DVI files was fixed in GNU libextractor, a library that extracts meta-data from files of arbitrary type. For Debian 9 stretch, this problem has been fixed in version 1:1.3-4+deb9u4. We recommend that you upgrade your libextractor packages. For the detailed security status of libextractor please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/libextractor Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Tackling vulnerabilities in libextractor for Debian 9 stretch. Update suggested for enhanced protection and performance.. libextractor, Debian LTS, security update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 26, 2021 Critical Debian LTS
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of servicecritical

Ubuntu 16.04 LTS: USN-4641-1 Critical: Libextractor Denial Of Service

Several security issues were fixed in libextractor.. =========================================================================Ubuntu Security Notice USN-4641-1 November 23, 2020 libextractor vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 16.04 LTS Summary: Several security issues were fixed in libextractor. Software Description: - libextractor: library used to extract metadata from files Details: It was discovered that Libextractor incorrectly handled zero sample rate. An attacker could possibly use this issue to cause a denial of service. (CVE-2017-15266) It was discovered that Libextractor incorrectly handled certain FLAC metadata. An attacker could possibly use this issue to cause a denial of service. (CVE-2017-15267) It was discovered that Libextractor incorrectly handled certain specially crafted files. An attacker could possibly use this issue to cause a denial of service. (CVE-2017-15600, CVE-2018-16430, CVE-2018-20430) It was discovered that Libextractor incorrectly handled certain inputs. An attacker could possibly use this issue to cause a denial of service. (CVE-2017-15601) It was discovered that Libextractor incorrectly handled integers. An attacker could possibly use this issue to cause a denial of service. (CVE-2017-15602) It was discovered that Libextractore incorrectly handled certain crafted files. An attacker could possibly use this issue to cause a denial of service. (CVE-2017-15922) It was discovered tha Libextractor incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service. (CVE-2017-17440) It was discovered that Libextractor incorrectly handled certain malformed files. An attacker could possibly use this issue to cause a denial of service. (CVE-2018-14346) It was discovered that Libextractor incorrectly handled malformed files. An attacker could possiblyuse this issue to cause a denial of service. (CVE-2018-14347) It was discovered that Libextractor incorrectly handled metadata. An attacker could possibly use this issue to cause a denial of service. (CVE-2018-20431) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 LTS: extract 1:1.3-4+deb9u3build0.16.04.1 libextractor-dev 1:1.3-4+deb9u3build0.16.04.1 libextractor3 1:1.3-4+deb9u3build0.16.04.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-4641-1 CVE-2017-15266, CVE-2017-15267, CVE-2017-15600, CVE-2017-15601, CVE-2017-15602, CVE-2017-15922, CVE-2017-17440, CVE-2018-14346, CVE-2018-14347, CVE-2018-16430, CVE-2018-20430, CVE-2018-20431 Package Information: https://launchpad.net/ubuntu/+source/libextractor/1:1.3-4+deb9u3build0.16.04.1 . Unveil crucial information regarding the libextractor security flaws impacting Ubuntu 16.04 LTS and associated complications.. libextractor issues, ubuntu security notice, denial of service, metadata extraction vulnerabilities. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 23, 2020 Critical Ubuntu
Banner 1 1028x280 1708121660 1771599717
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorybuffer overflowsoftware update

Mageia 7: MGASA-2020-0015 Moderate: Libextractor Buffer Over-Read

Updated libextractor packages fix security vulnerability: GNU Libextractor through 1.9 has a heap-based buffer over-read in the function EXTRACTOR_dvi_extract_method in plugins/dvi_extractor.c (CVE-2019-15531). . MGASA-2020-0015 - Updated libextractor packages fix security vulnerability Publication date: 05 Jan 2020 URL: https://advisories.mageia.org/MGASA-2020-0015.html Type: security Affected Mageia releases: 7 CVE: CVE-2019-15531 Updated libextractor packages fix security vulnerability: GNU Libextractor through 1.9 has a heap-based buffer over-read in the function EXTRACTOR_dvi_extract_method in plugins/dvi_extractor.c (CVE-2019-15531). References: - https://bugs.mageia.org/show_bug.cgi?id=25945 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/GRQUHTSNOCKGRKPRXPUJ6FGTVZ2K5POL/ - https://www.cve.org/CVERecord?id=CVE-2019-15531 SRPMS: - 7/core/libextractor-1.9-2.1.mga7 . The revised libextractor software for Mageia addresses a heap-related buffer over-read security flaw recognized as MGASA-2020-0015.. libextractor, Mageia security, buffer over-read, software patch. . LinuxSecurity.com Team

Calendar 2 Jan 05, 2020 Mageia
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorylibextractorbuffer over-read

Fedora 31: libextractor FEDORA-2019-b467cab3c8 Critical: Buffer Over-Read

Patch for CVE-2019-15531. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-b467cab3c8 2019-09-30 00:00:36.231186 --------------------------------------------------------------------------------Name : libextractor Product : Fedora 31 Version : 1.9 Release : 5.fc31 URL : Summary : Simple library for keyword extraction Description : libextractor is a simple library for keyword extraction. libextractor does not support all formats but supports a simple plugging mechanism such that you can quickly add extractors for additional formats, even without recompiling libextractor. libextractor typically ships with a dozen helper-libraries that can be used to obtain keywords from common file-types. libextractor is a part of the GNU project (). --------------------------------------------------------------------------------Update Information: Patch for CVE-2019-15531 --------------------------------------------------------------------------------References: [ 1 ] Bug #1749219 - CVE-2019-15531 libextractor: heap-based buffer over-read in function EXTRACTOR_dvi_extract_method in plugins/dvi_extractor.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1749219 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-b467cab3c8' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribesend an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Patch for libextractor tackling a severe stack-based memory access flaw, safeguarding your environment against potential threats.. libextractor update,Fedora security patch,CVE-2019-15531 fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 29, 2019 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdatecritical

Fedora 29: 2019-5628767261 High: libextractor Buffer Over-Read

Patch for CVE-2019-15531. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-5628767261 2019-09-14 01:53:52.304182 --------------------------------------------------------------------------------Name : libextractor Product : Fedora 29 Version : 1.9 Release : 5.fc29 URL : http://www.gnu.org/software/libextractor/ Summary : Simple library for keyword extraction Description : libextractor is a simple library for keyword extraction. libextractor does not support all formats but supports a simple plugging mechanism such that you can quickly add extractors for additional formats, even without recompiling libextractor. libextractor typically ships with a dozen helper-libraries that can be used to obtain keywords from common file-types. libextractor is a part of the GNU project (http://www.gnu.org/). --------------------------------------------------------------------------------Update Information: Patch for CVE-2019-15531 --------------------------------------------------------------------------------ChangeLog: * Thu Sep 5 2019 Gwyn Ciesla - 1.9-5 - Patch for CVE-2019-15531 * Thu Jul 25 2019 Fedora Release Engineering - 1.9-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Mon Jun 10 2019 Igor Gnatenko - 1.9-3 - Rebuild for RPM 4.15 * Mon Jun 10 2019 Igor Gnatenko - 1.9-2 - Rebuild for RPM 4.15 * Mon Feb 11 2019 Gwyn Ciesla - 1.9-1 - 1.9 * Fri Feb 1 2019 Fedora Release Engineering - 1.7-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Wed Jan 30 2019 Rex Dieter - 1.7-2 - pull in candidate fix for exiv2-0.27 (#1671085) - fix rpath harder - BR: gcc-c++ * Wed Jul 18 2018 Gwyn Ciesla - 1.7-1 - 1.7. * Fri Jul 13 2018 Fedora Release Engineering - 1.6-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild --------------------------------------------------------------------------------References: [ 1 ] Bug #1749219 - CVE-2019-15531 libextractor: heap-based buffer over-read in function EXTRACTOR_dvi_extract_method in plugins/dvi_extractor.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1749219 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-5628767261' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Update issued for libextractor to fix severe buffer over-read flaw in Fedora 29. Discover more details about the patch.. libextractor patch, Fedora update, buffer over-read, security advisory. . LinuxSecurity.com Team

Calendar 2 Sep 13, 2019 Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalFedora

Fedora 30: FEDORA-2019-62b65ed7f6 Critical: Libextractor Buffer Over-Read

Patch for CVE-2019-15531. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-62b65ed7f6 2019-09-14 01:11:50.072998 --------------------------------------------------------------------------------Name : libextractor Product : Fedora 30 Version : 1.9 Release : 5.fc30 URL : http://www.gnu.org/software/libextractor/ Summary : Simple library for keyword extraction Description : libextractor is a simple library for keyword extraction. libextractor does not support all formats but supports a simple plugging mechanism such that you can quickly add extractors for additional formats, even without recompiling libextractor. libextractor typically ships with a dozen helper-libraries that can be used to obtain keywords from common file-types. libextractor is a part of the GNU project (http://www.gnu.org/). --------------------------------------------------------------------------------Update Information: Patch for CVE-2019-15531 --------------------------------------------------------------------------------ChangeLog: * Thu Sep 5 2019 Gwyn Ciesla - 1.9-5 - Patch for CVE-2019-15531 * Thu Jul 25 2019 Fedora Release Engineering - 1.9-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Mon Jun 10 2019 Igor Gnatenko - 1.9-3 - Rebuild for RPM 4.15 * Mon Jun 10 2019 Igor Gnatenko - 1.9-2 - Rebuild for RPM 4.15 --------------------------------------------------------------------------------References: [ 1 ] Bug #1749219 - CVE-2019-15531 libextractor: heap-based buffer over-read in function EXTRACTOR_dvi_extract_method in plugins/dvi_extractor.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1749219 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-62b65ed7f6' at the command line. For more information, referto the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Fedora 30 introduces an updated libextractor with important security enhancements addressing CVE-2019-15531. Users are encouraged to upgrade to protect their systems. libextractor Patch Fedora CVE Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 13, 2019 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorysecurity issuedebian

Debian: DLA-1904-1 Critical: libextractor Heap Overflow

jianglin found an issue in libextractor, a library that extracts meta-data from files of arbitrary type. . Package : libextractor Version : 1:1.3-2+deb8u5 CVE ID : CVE-2019-15531 jianglin found an issue in libextractor, a library that extracts meta-data from files of arbitrary type. A crafted file could result in a heap-buffer-overflow vulnerability in function EXTRACTOR_dvi_extract_method in dvi_extractor.c. For Debian 8 "Jessie", this problem has been fixed in version 1:1.3-2+deb8u5. We recommend that you upgrade your libextractor packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS DLA-1904-1 (END) . Enhance libextractor to address heap-buffer-overflow security flaws. Check the advisory details, relevant information, and available updates.. libextractor Update, Debian LTS Patch, Heap Overflow Security Issue. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Aug 30, 2019 Critical Debian LTS
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisoryupdatememory disclosure

Mageia 6: MGASA-2019-0013 Moderate: Libextractor Memory Disclosure

Several vulnerabilities were discovered in libextractor which may lead to denial of service or memory disclosure if a malformed OLE file is processed (CVE-2018-20430, CVE-2018-20431). References: . MGASA-2019-0013 - Updated libextractor packages fix security vulnerabilities Publication date: 05 Jan 2019 URL: https://advisories.mageia.org/MGASA-2019-0013.html Type: security Affected Mageia releases: 6 CVE: CVE-2018-20430, CVE-2018-20431 Several vulnerabilities were discovered in libextractor which may lead to denial of service or memory disclosure if a malformed OLE file is processed (CVE-2018-20430, CVE-2018-20431). References: - https://bugs.mageia.org/show_bug.cgi?id=24093 - https://lists.debian.org/debian-security-announce/2018/msg00294.html - https://www.cve.org/CVERecord?id=CVE-2018-20430 - https://www.cve.org/CVERecord?id=CVE-2018-20431 SRPMS: - 6/core/libextractor-1.7-1.1.mga6 . Revised libextractor distributions tackle vulnerabilities causing potential denial of service and leakage of memory information.. Mageia, Libextractor Security Update, Denial of Service, Memory Disclosure. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 05, 2019 Important Mageia
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here