Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorymoderateprivilege escalation

Ubuntu 18.04 LTS USN-4000-1 Moderate: libgssglue Privilege Escalation

Privilege escalation via the GSSAPI_MECH_CONF environment variable with setuidprograms.. =========================================================================Ubuntu Security Notice USN-1612-1 October 15, 2012 libgssglue vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 12.04 LTS - Ubuntu 11.10 - Ubuntu 11.04 - Ubuntu 10.04 LTS Summary: Privilege escalation via the GSSAPI_MECH_CONF environment variable with setuid programs. Software Description: - libgssglue: header files and docs for libgssglue Details: It was discovered that libgssglue incorrectly handled the GSSAPI_MECH_CONF environment variable when running a privileged binary. A local attacker could exploit this to gain root privileges. (CVE-2011-2709) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 LTS: libgssglue1 0.3-4ubuntu0.1 Ubuntu 11.10: libgssglue1 0.3-1ubuntu1.1 Ubuntu 11.04: libgssglue1 0.1-4ubuntu1.1 Ubuntu 10.04 LTS: libgssglue1 0.1-4ubuntu0.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-1612-1 CVE-2011-2709 Package Information: https://launchpad.net/ubuntu/+source/libgssglue/0.3-4ubuntu0.1 https://launchpad.net/ubuntu/+source/libgssglue/0.3-1ubuntu1.1 https://launchpad.net/ubuntu/+source/libgssglue/0.1-4ubuntu1.1 https://launchpad.net/ubuntu/+source/libgssglue/0.1-4ubuntu0.1 . Explore the Ubuntu Security Advisories USN-1612-1 which concerns a vulnerability in libgssglue. This flaw can potentially lead to privilege escalation.. libgssglue,Vulnerability,Ubuntu Security. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 15, 2012 Important Ubuntu
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisoryhigh severitygentoo

Gentoo: GLSA-201209-22 High Severity: libgssglue Privilege Escalation

A vulnerability in libgssglue may allow a local attacker to gain escalated privileges.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201209-22 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: libgssglue: Privilege escalation Date: September 28, 2012 Bugs: #385321 ID: 201209-22 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= A vulnerability in libgssglue may allow a local attacker to gain escalated privileges. Background ========= libgssglue exports a GSSAPI interface which calls other random GSSAPI libraries. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-libs/libgssglue < 0.4 > = 0.4 Description ========== libgssglue does not securely use getenv() when loading a library for a setuid application. Impact ===== A local attacker could gain escalated privileges. Workaround ========= There is no known workaround at this time. Resolution ========= All libgssglue users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =net-libs/libgssglue-0.4" References ========= [ 1 ] CVE-2011-2709 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2709 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/201209-22 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns shouldbe addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org. License ====== Copyright 2012 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . Critical warning issued for Ubuntu regarding libgssglue, potential risk for local privilege escalation identified. Users are urged to apply updates swiftly.. libgssglue Update, Privilege Escalation, Gentoo Security Advisory. . LinuxSecurity.com Team

Calendar 2 Sep 28, 2012 Gentoo
Banner 2 1028x280 1708121730 1 1771599631
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorylocal privilege escalationimportant

SUSE: 2011:0696-2 Critical: libgssglue Security Vulnerability

An update that contains security fixes can now be installed. An update that contains security fixes can now be installed. An update that contains security fixes can now be installed.. SUSE Security Update: libgssglue ______________________________________________________________________________ Announcement ID: SUSE-SU-2011:0696-1 Rating: important References: #694598 Affected Products: SUSE Linux Enterprise Teradata 10 SP3 SUSE Linux Enterprise Software Development Kit 11 SP1 SUSE Linux Enterprise Server 11 SP1 for VMware SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 10 SP4 SUSE Linux Enterprise Server 10 SP3 SUSE Linux Enterprise Desktop 11 SP1 SUSE Linux Enterprise Desktop 10 SP4 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update fixes insecure getenv() usage in libgssglue, which could be used under some circumstances by local attackers do gain root privileges. Indications: Please install this update. Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 11 SP1: zypper in -t patch sdksp1-libgssglue-4620 - SUSE Linux Enterprise Server 11 SP1 for VMware: zypper in -t patch slessp1-libgssglue-4620 - SUSE Linux Enterprise Server 11 SP1: zypper in -t patch slessp1-libgssglue-4620 - SUSE Linux Enterprise Desktop 11 SP1: zypper in -t patch sledsp1-libgssglue-4620 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Teradata 10 SP3 (x86_64): libgssapi-0.6-13.12.1 libgssapi-32bit-0.6-13.12.1 - SUSE Linux Enterprise SoftwareDevelopment Kit 11 SP1 (i586 ia64 ppc64 s390x x86_64): libgssglue-devel-0.1-20.2.1 - SUSE Linux Enterprise Server 11 SP1 for VMware (i586 x86_64): libgssglue1-0.1-20.2.1 - SUSE Linux Enterprise Server 11 SP1 (i586 ia64 ppc64 s390x x86_64): libgssglue1-0.1-20.2.1 - SUSE Linux Enterprise Server 10 SP4 (i586 ia64 ppc s390x x86_64): libgssapi-0.6-13.12.1 - SUSE Linux Enterprise Server 10 SP4 (s390x x86_64): libgssapi-32bit-0.6-13.12.1 - SUSE Linux Enterprise Server 10 SP4 (ia64): libgssapi-x86-0.6-13.12.1 - SUSE Linux Enterprise Server 10 SP4 (ppc): libgssapi-64bit-0.6-13.12.1 - SUSE Linux Enterprise Server 10 SP3 (i586 ia64 ppc s390x x86_64): libgssapi-0.6-13.12.1 - SUSE Linux Enterprise Server 10 SP3 (s390x x86_64): libgssapi-32bit-0.6-13.12.1 - SUSE Linux Enterprise Server 10 SP3 (ia64): libgssapi-x86-0.6-13.12.1 - SUSE Linux Enterprise Server 10 SP3 (ppc): libgssapi-64bit-0.6-13.12.1 - SUSE Linux Enterprise Desktop 11 SP1 (i586 x86_64): libgssglue1-0.1-20.2.1 - SUSE Linux Enterprise Desktop 10 SP4 (i586 x86_64): libgssapi-0.6-13.12.1 - SUSE Linux Enterprise Desktop 10 SP4 (x86_64): libgssapi-32bit-0.6-13.12.1 References: . Essential patch for libgssglue resolving unsafe getenv() implementation on SUSE environments. Prompt application is advised.. libgssglue Security Fix, SUSE Update, Local Privilege Escalation. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 24, 2011 Important SuSE
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here