Alerts This Week
Warning Icon 1 684
Alerts This Week
Warning Icon 1 684

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -3 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorysecurity updatebug fix

Debian 11: DLA-3995-1 moderate: libpgjava SQL Injection and Access Issues

Multiple vulnerabilities have been fixed in the PostgreSQL JDBC Driver. CVE-2022-31197 . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3995-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Adrian Bunk December 16, 2024 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : libpgjava Version : 42.2.15-1+deb11u2 CVE ID : CVE-2022-31197 CVE-2022-41946 CVE-2024-1597 Debian Bug : 1016662 Multiple vulnerabilities have been fixed in the PostgreSQL JDBC Driver. CVE-2022-31197 SQL Injection in ResultSet.refreshRow() CVE-2022-41946 temporary files can be read by other users CVE-2024-1597 SQL Injection via line comment generation For Debian 11 bullseye, these problems have been fixed in version 42.2.15-1+deb11u2. We recommend that you upgrade your libpgjava packages. For the detailed security status of libpgjava please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/libpgjava Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Several security flaws in libpgjava have been addressed. Upgrade immediately to protect users from potential SQL injection attacks and unauthorized data breaches.. Debian LTS, libpgjava, PostgreSQL driver, security update, security advisory. . LinuxSecurity.com Team

Calendar 2 Dec 16, 2024 Debian LTS
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydebiansql injection

Debian 10 Buster DLA-3812-1 High: libpgjava SQL Risk Advisory

A possible SQL injection vulnerability was found in libpgjava, the PostgreSQL JDBC Driver. It allows an attacker to inject SQL if using PreferQueryMode=SIMPLE which is not the default mode. In the default mode there is no vulnerability. . ------------------------------------------------------------------------- Debian LTS Advisory DLA-3812-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Markus Koschany May 09, 2024 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : libpgjava Version : 42.2.5-2+deb10u4 CVE ID : CVE-2024-1597 A possible SQL injection vulnerability was found in libpgjava, the PostgreSQL JDBC Driver. It allows an attacker to inject SQL if using PreferQueryMode=SIMPLE which is not the default mode. In the default mode there is no vulnerability. For Debian 10 buster, this problem has been fixed in version 42.2.5-2+deb10u4. We recommend that you upgrade your libpgjava packages. For the detailed security status of libpgjava please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/libpgjava Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Security bulletin DLA-3913-1 regarding possible command injection in libpgjdbc, PostgreSQL JDBC Connector, for Debian Buster.. Debian Security, PostgreSQL Update, Library Patch. . LinuxSecurity.com Team

Calendar 2 May 09, 2024 Debian LTS
Banner 4 1028x280 1708121825 1771600306
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorycriticaldebian

Debian 10 LTS DLA-3218-1 Critical: Libpgjava Temporary File Risk

pgjdbc is an open source postgresql JDBC Driver. In affected versions a prepared statement using either `PreparedStatement.setText(int, InputStream)` or `PreparedStatemet.setBytea(int, InputStream)` will create a temporary file if the InputStream is larger than 2k. This . - ----------------------------------------------------------------------- Debian LTS Advisory DLA-3218-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Utkarsh Gupta December 03, 2022 https://wiki.debian.org/LTS - ----------------------------------------------------------------------- Package : libpgjava Version : 42.2.5-2+deb10u3 CVE ID : CVE-2022-41946 pgjdbc is an open source postgresql JDBC Driver. In affected versions a prepared statement using either `PreparedStatement.setText(int, InputStream)` or `PreparedStatemet.setBytea(int, InputStream)` will create a temporary file if the InputStream is larger than 2k. This will create a temporary file which is readable by other users on Unix like systems, but not MacOS. On Unix like systems, the system's temporary directory is shared between all users on that system. Because of this, when files and directories are written into this directory they are, by default, readable by other users on that same system. For Debian 10 buster, this problem has been fixed in version 42.2.5-2+deb10u3. We recommend that you upgrade your libpgjava packages. For the detailed security status of libpgjava please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/libpgjava Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Enhance libpgjava to resolve a vulnerability in the PostgreSQL JDBC Driver impacting Debian platforms and their users.. Debian Security, libpgjava Update, PostgreSQL Driver, Temporary File Risk. . Severity: Critical.LinuxSecurity.com Team

Calendar 2 Dec 03, 2022 Critical Debian LTS
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisoryupdatedebian

Debian 10 Buster: DLA-3140-1 Critical: Libpgjava SQL Injection Fix

It was discovered that there was a potential SQL injection vulnerability in libpgjava, a Java library for connecting to PostgreSQL databases. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3140-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Chris Lamb October 07, 2022 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : libpgjava Version : 42.2.5-2+deb10u2 CVE ID : CVE-2022-31197 Debian Bug : #1016662 It was discovered that there was a potential SQL injection vulnerability in libpgjava, a Java library for connecting to PostgreSQL databases. A malicious user could have crafted a schema that caused an application to execute commands as a privileged user due to the lack of escaping of column names in some operations. For Debian 10 buster, this problem has been fixed in version 42.2.5-2+deb10u2. We recommend that you upgrade your libpgjava packages. For the detailed security status of libpgjava please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/libpgjava Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . A critical patch resolving a possible SQL injection vulnerability in libpgjava for Debian LTS. Updating is advised to enhance security.. libpgjava security, sql injection patch, debian update, database security. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 07, 2022 Critical Debian LTS
Banner 4 1028x280 1708121825 1771600306
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorycriticalcode execution

Debian DSA-5202-1 Urgent: OpenSSL TLS Protocol Vulnerabilities and Risks

Several security vulnerabilities have been found in libpgjava, the official PostgreSQL JDBC Driver. CVE-2020-13692 . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5196-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Markus Koschany July 31, 2022 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : libpgjava CVE ID : CVE-2020-13692 CVE-2022-21724 CVE-2022-26520 Debian Bug : 962828 Several security vulnerabilities have been found in libpgjava, the official PostgreSQL JDBC Driver. CVE-2020-13692 An XML External Entity (XXE) weakness was found in PostgreSQL JDBC. CVE-2022-21724 The JDBC driver did not verify if certain classes implemented the expected interface before instantiating the class. This can lead to code execution loaded via arbitrary classes. CVE-2022-26520 An attacker (who controls the jdbc URL or properties) can call java.util.logging.FileHandler to write to arbitrary files through the loggerFile and loggerLevel connection properties. For the oldstable distribution (buster), these problems have been fixed in version 42.2.5-2+deb10u1. For the stable distribution (bullseye), these problems have been fixed in version 42.2.15-1+deb11u1. We recommend that you upgrade your libpgjava packages. For the detailed security status of libpgjava please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/libpgjava Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Critical security flaws found in the libpgjava PostgreSQL JDBC Driver necessitate prompt upgrades to ensure safety andperformance.. Debian Security, libpgjava Update, PostgreSQL JDBC, Security Patch, Threat Mitigation. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 31, 2022 Critical Debian
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisoryupdatecritical

Debian 9 Stretch: DLA-3018-1 Critical: libpgjava JDBC Driver Code Risk

It was found that libpgjava, the official PostgreSQL JDBC Driver, would be vulnerable if an attacker controlled jdbc url or properties. The JDBC driver did not verify if certain classes implemented the expected interface before instantiating the class. This can lead to code execution loaded via arbitrary . -------------------------------------------------------------------------Debian LTS Advisory DLA-3018-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Markus Koschany May 20, 2022 https://wiki.debian.org/LTS -------------------------------------------------------------------------Package : libpgjava Version : 9.4.1212-1+deb9u1 CVE ID : CVE-2022-21724 It was found that libpgjava, the official PostgreSQL JDBC Driver, would be vulnerable if an attacker controlled jdbc url or properties. The JDBC driver did not verify if certain classes implemented the expected interface before instantiating the class. This can lead to code execution loaded via arbitrary classes. For Debian 9 stretch, this problem has been fixed in version 9.4.1212-1+deb9u1. We recommend that you upgrade your libpgjava packages. For the detailed security status of libpgjava please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/libpgjava Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . The Debian LTS Security Update for libpgjava remedies significant vulnerabilities related to potential code execution stemming from unvalidated JDBC configurations.. libpgjava security update, JDBC driver risk, Debian LTS advisory. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 20, 2022 Critical Debian LTS
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here