Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentoocode execution

ArchLinux GLSA-201202-04: Mozilla Firefox Denial of Service Issue

Blam doesn't properly handle environment variables, potentially allowing a local attacker to execute arbitrary code.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200801-14 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Blam: User-assisted execution of arbitrary code Date: January 27, 2008 Bugs: #199841 ID: 200801-14 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Blam doesn't properly handle environment variables, potentially allowing a local attacker to execute arbitrary code. Background ========= Blam is an RSS and Atom feed reader for GNOME written in C#. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-news/blam < 1.8.4 > = 1.8.4 Description ========== The "/usr/bin/blam" script sets the "LD_LIBRARY_PATH" environment variable incorrectly, which might result in the current working directory (.) being included when searching for dynamically linked libraries of the Mono Runtime application. Impact ===== A local attacker could entice a user to run Blam in a directory containing a specially crafted library file which could result in the execution of arbitrary code with the privileges of the user running Blam. Workaround ========= Do not run Blam from an untrusted working directory. Resolution ========= All Blam users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =net-news/blam-1.8.4" References ========= [ 1 ] CVE-2005-4790 https://www.cve.org/CVERecord?id=CVE-2005-4790 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200801-14 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2008 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . Dive into Gentoo GLSA 200801-14 which highlights a vulnerability in Blam that could lead to user-triggered code execution. Protect your system now.. Blam Security Flaw, Gentoo Advisory, Code Execution Risk, User-Assisted Execution. . LinuxSecurity.com Team

Calendar 2 Jan 27, 2008 Gentoo
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hatcritical

Red Hat 5-7: RHSA-2000:114-04 Critical Ghostscript Access Issue

ghostscript makes use of mktemp instead of mkstemp to create temp files;and also uses improper LD_RUN_PATH values. ` --------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: ghostscript uses mktemp instead of mkstemp, and uses an improper LD_RUN_PATH Advisory ID: RHSA-2000:114-04 Issue date: 2000-11-22 Updated on: 2000-11-26 Product: Red Hat Linux Keywords: ghostscript mktemp LD_RUN_PATH Cross references: N/A --------------------------------------------------------------------- 1. Topic: ghostscript makes use of mktemp instead of mkstemp to create temp files; and also uses improper LD_RUN_PATH values, causing it to search for libraries in the current directory. 2000-11-27: Added packages for Red Hat Linux 7 for Alpha 2. Relevant releases/architectures: Red Hat Linux 5.0 - i386, alpha, sparc Red Hat Linux 5.1 - i386, alpha, sparc Red Hat Linux 5.2 - i386, alpha, sparc Red Hat Linux 6.0 - i386, alpha, sparc Red Hat Linux 6.1 - i386, alpha, sparc Red Hat Linux 6.2 - i386, alpha, sparc Red Hat Linux 7.0 - i386, alpha 3. Problem description: ghostscript makes use of mktemp to create temp files, which is an insecure and predictable apporoach, it is now patched to use mkstemp, which avoid the race condition on the name. It also uses improper LD_RUN_PATH values, causing ghostscript to search for libraries to load in current directorys. 4. Solution: For each RPM for your particular architecture, run: rpm -Fvh [filename] where filename is the name of the RPM. 5. Bug IDs fixed ( for more info): 20924 - gs reads libraries from current directory 6. RPMs required: Red Hat Linux 5.2: alpha: sparc: i386: sources: Red Hat Linux 6.2: alpha: sparc: i386: sources: Red Hat Linux 7.0: alpha: i386: sources: 7. Verification: MD5 sum PackageName -------------------------------------------------------------------------- d44d8436655d25ca53d0c4a87c5c7c77 5.2/SRPMS/ghostscript-4.03-2.src.rpm 1c8363a912a6f538312b3e457664d0eb 5.2/alpha/ghostscript-4.03-2.alpha.rpm e11e7ec51f8e6051e50c5a93738f49ed 5.2/i386/ghostscript-4.03-2.i386.rpm d3550b9fa695207b1405ce12a848eae2 5.2/sparc/ghostscript-4.03-2.sparc.rpm e8c166031f02c9659f41a7e83ff4c97e 6.2/SRPMS/ghostscript-5.50-8_6.x.src.rpm 2e2944851c391f4ef50394d6b0c4a76a 6.2/alpha/ghostscript-5.50-8_6.x.alpha.rpm 9a4b61ddea7d18722198b772d6164619 6.2/i386/ghostscript-5.50-8_6.x.i386.rpm fba7b417faaf19629642325ec6f34b84 6.2/sparc/ghostscript-5.50-8_6.x.sparc.rpm 6ad7beeb79d23f32ad320a659f5591d6 7.0/SRPMS/ghostscript-5.50-8.src.rpm bd8b80bada77d59ee28aa72f6e5674e4 7.0/alpha/ghostscript-5.50-8.alpha.rpm 0d5f4448d5245721b1e2762f360791f2 7.0/i386/ghostscript-5.50-8.i386.rpm These packages are GPG signed by Red Hat, Inc. for security. Our key is available at: You can verify each package with the following command: rpm --checksig If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command: rpm --checksig --nogpg 8. References: N/A Copyright(c) 2000 Red Hat, Inc. `. The latest alert from Ubuntu underscores critical security flaws in imagemagick, originating from its use of tempnam instead of tmpfile, which jeopardizes the reliability of temporary files.. ghostscript, Red Hat Advisory, library security, temporary file issue. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 28, 2000 Critical Red Hat
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here