Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 4 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydenial of serviceremote attack

Debian LTS: DLA-2858-1 Critical Libzip Denial Of Service Update

An issue has been found in libzip, a library for reading, creating, and modifying zip archives. Crafted ZIP archives could allow remote attackers to cause denial of . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2858-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Thorsten Alteholz December 28, 2021 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : libzip Version : 1.1.2-1.1+deb9u1 CVE ID : CVE-2017-14107 An issue has been found in libzip, a library for reading, creating, and modifying zip archives. Crafted ZIP archives could allow remote attackers to cause denial of service due to memorey allocation failure by mishandling EOCD records. For Debian 9 stretch, this problem has been fixed in version 1.1.2-1.1+deb9u1. We recommend that you upgrade your libzip packages. For the detailed security status of libzip please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/libzip Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Enhance libzip library to mitigate denial of service risk identified in specially constructed ZIP files.. Debian LTS, libzip, security update, denial of service, remote access. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 27, 2021 Critical Debian LTS
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoracritical

Fedora 30: 2019-94fb5d75e6 Critical: Libzip AES Encryption Bug

**Version 1.5.2** * Fix bug in AES encryption affecting certain file sizes * Keep file permissions when modifying zip archives * Support systems with small stack size. * Add nullability annotations.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-94fb5d75e6 2019-03-29 19:07:28.731711 --------------------------------------------------------------------------------Name : libzip Product : Fedora 30 Version : 1.5.2 Release : 1.fc30 URL : https://libzip.org/ Summary : C library for reading, creating, and modifying zip archives Description : libzip is a C library for reading, creating, and modifying zip archives. Files can be added from data buffers, files, or compressed data copied directly from other zip archives. Changes made without closing the archive can be reverted. The API is documented by man pages. --------------------------------------------------------------------------------Update Information: **Version 1.5.2** * Fix bug in AES encryption affecting certain file sizes * Keep file permissions when modifying zip archives * Support systems with small stack size. * Add nullability annotations. --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-94fb5d75e6' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct:https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . A recent Fedora security patch addresses vulnerabilities in libzip, enhancing AES encryption support and resolving file permission issues related to zip file handling.. libzip Security,Fedora Updates,AES Encryption Bug,File Permissions,C Library. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 29, 2019 Critical Fedora
Banner 3 1028x280 1708121785 1771599793
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateencryption

Fedora 29: FEDORA-2019-615e060d4e Critical: libzip AES Fix

**Version 1.5.2** * Fix bug in AES encryption affecting certain file sizes * Keep file permissions when modifying zip archives * Support systems with small stack size. * Add nullability annotations.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-615e060d4e 2019-03-21 21:46:40.166824 --------------------------------------------------------------------------------Name : libzip Product : Fedora 29 Version : 1.5.2 Release : 1.fc29 URL : https://libzip.org/ Summary : C library for reading, creating, and modifying zip archives Description : libzip is a C library for reading, creating, and modifying zip archives. Files can be added from data buffers, files, or compressed data copied directly from other zip archives. Changes made without closing the archive can be reverted. The API is documented by man pages. --------------------------------------------------------------------------------Update Information: **Version 1.5.2** * Fix bug in AES encryption affecting certain file sizes * Keep file permissions when modifying zip archives * Support systems with small stack size. * Add nullability annotations. --------------------------------------------------------------------------------ChangeLog: * Tue Mar 12 2019 Remi Collet - 1.5.2-1 - update to 1.5.2 - add all explicit cmake options to ensure openssl is used even in local build with other lilbraries available --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-615e060d4e' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Enhance your security with the latest Fedora libzip update, which resolves AES encryption and permission issues. Detailed implementation instructions are included. libzip security update, Fedora 29 libzip, AES encryption fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 21, 2019 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoraupdate information

Fedora 28: libzip Security Update - AES Encryption Issues Fixed

**Version 1.5.2** * Fix bug in AES encryption affecting certain file sizes * Keep file permissions when modifying zip archives * Support systems with small stack size. * Add nullability annotations.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-0b73bd3e5d 2019-03-21 21:08:05.034420 --------------------------------------------------------------------------------Name : libzip Product : Fedora 28 Version : 1.5.2 Release : 1.fc28 URL : https://libzip.org/ Summary : C library for reading, creating, and modifying zip archives Description : libzip is a C library for reading, creating, and modifying zip archives. Files can be added from data buffers, files, or compressed data copied directly from other zip archives. Changes made without closing the archive can be reverted. The API is documented by man pages. --------------------------------------------------------------------------------Update Information: **Version 1.5.2** * Fix bug in AES encryption affecting certain file sizes * Keep file permissions when modifying zip archives * Support systems with small stack size. * Add nullability annotations. --------------------------------------------------------------------------------ChangeLog: * Tue Mar 12 2019 Remi Collet - 1.5.2-1 - update to 1.5.2 - add all explicit cmake options to ensure openssl is used even in local build with other lilbraries available --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-0b73bd3e5d' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Libzip security update in Fedora addresses AES encryption issues and file permissions. Learn more about the enhancements.. Fedora Security Update, Libzip Encryption Issue, Library Upgrade. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 21, 2019 Critical Fedora
Banner 3 1028x280 1708121785 1771599793
198
Ls Advisories Archlinux Esm H240
Price Tag 1security advisoryhigh severityarbitrary code execution

Arch Linux 201711-13 High Severity: libzip Arbitrary Code Execution

The package libzip before version 1.3.0-1 is vulnerable to arbitrary code execution. . Arch Linux Security Advisory ASA-201711-13 ========================================= Severity: High Date : 2017-11-07 CVE-ID : CVE-2017-12858 Package : libzip Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-390 Summary ====== The package libzip before version 1.3.0-1 is vulnerable to arbitrary code execution. Resolution ========= Upgrade to 1.3.0-1. # pacman -Syu "libzip> =1.3.0-1" The problem has been fixed upstream in version 1.3.0. Workaround ========= None. Description ========== Double free vulnerability in the _zip_dirent_read function in zip_dirent.c in libzip allows attackers to execute arbitrary code via a crafted zip file. Impact ===== A remote attacker can execute arbitrary code on the affected host by tricking the user or an application using libzip into opening a crafted zip file. References ========= https://github.com/nih-at/libzip/commit/2217022b7d1142738656d891e00b3d2d9179b796 https://security.archlinux.org/CVE-2017-12858 . Arch Linux Notification regarding critical arbitrary code execution vulnerability found in libzip versions earlier than 1.3.0-1; immediate upgrade advised.. libzip update, arch linux security, code execution threat. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Nov 08, 2017 Important ArchLinux
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysoftware updateFedora

Fedora 27: mingw-libzip Security Update For Memory Allocation Issue

Update to version 1.3.0, see https://libzip.org/news/ for details. ---- This update backports security fix for CVE-2017-14107.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-d5487d0f80 2017-09-30 05:57:53.234970 --------------------------------------------------------------------------------Name : mingw-libzip Product : Fedora 27 Version : 1.3.0 Release : 1.fc27 URL : https://libzip.org/ Summary : C library for reading, creating, and modifying zip archives Description : libzip is a C library for reading, creating, and modifying zip archives. Files can be added from data buffers, files, or compressed data copied directly from other zip archives. Changes made without closing the archive can be reverted. The API is documented by man pages. --------------------------------------------------------------------------------Update Information: Update to version 1.3.0, see https://libzip.org/news/ for details. ----This update backports security fix for CVE-2017-14107. --------------------------------------------------------------------------------References: [ 1 ] Bug #1489000 - CVE-2017-14107 libzip: Memory allocation failure in _zip_cdir_grow function https://bugzilla.redhat.com/show_bug.cgi?id=1489000 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade mingw-libzip' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . This patch addresses a vulnerability concerning memory management issues in libzip for Fedora 27. Please update immediately.. Fedora 27, libzip Security Fix, Memory Allocation Issue. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 30, 2017 Critical Fedora
Banner 3 1028x280 1708121785 1771599793
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalsoftware update

Fedora 27: 2017-7bd193c0ed Critical: Libzip Double Free Security Update

**Version 1.3.0** It contains fixes for two possible security problems. The problems were identified by Brian 'geeknik' Carpenter and Agostino Sarubbo using AFL. The changes are: * Support bzip2 compressed zip archives * Improve file progress callback code * Fix zip_fdopen() * CVE-2017-12858: Fix double free(). * CVE-2017-14107: Improve EOCD64 parsing.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-7bd193c0ed 2017-09-30 05:57:53.205860 --------------------------------------------------------------------------------Name : libzip Product : Fedora 27 Version : 1.3.0 Release : 1.fc27 URL : https://libzip.org/ Summary : C library for reading, creating, and modifying zip archives Description : libzip is a C library for reading, creating, and modifying zip archives. Files can be added from data buffers, files, or compressed data copied directly from other zip archives. Changes made without closing the archive can be reverted. The API is documented by man pages. --------------------------------------------------------------------------------Update Information: **Version 1.3.0** It contains fixes for two possible security problems. The problems were identified by Brian 'geeknik' Carpenter and Agostino Sarubbo using AFL. The changes are: * Support bzip2 compressed zip archives * Improve file progress callback code * Fix zip_fdopen() * CVE-2017-12858: Fix double free(). * CVE-2017-14107: Improve EOCD64 parsing. --------------------------------------------------------------------------------References: [ 1 ] Bug #1484515 - CVE-2017-12858 libzip: Double free in _zip_dirent_read function in zip_dirent.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1484515 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade libzip' at the command line. For moreinformation, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Fedora 27 has released a libzip security patch that tackles serious vulnerabilities associated with double free errors and EOCD64 parsing issues.. libzip,Fedora Security,double free fix,EOCD64 parsing,security patch. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 30, 2017 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalFedora

Fedora 26: Libzip Update Critical Security Issues Resolved

**Version 1.3.0** It contains fixes for two possible security problems. The problems were identified by Brian 'geeknik' Carpenter and Agostino Sarubbo using AFL. The changes are: * Support bzip2 compressed zip archives * Improve file progress callback code * Fix zip_fdopen() * CVE-2017-12858: Fix double free(). * CVE-2017-14107: Improve EOCD64 parsing.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-840db88351 2017-09-06 13:04:04.357194 --------------------------------------------------------------------------------Name : libzip Product : Fedora 26 Version : 1.3.0 Release : 1.fc26 URL : https://libzip.org/ Summary : C library for reading, creating, and modifying zip archives Description : libzip is a C library for reading, creating, and modifying zip archives. Files can be added from data buffers, files, or compressed data copied directly from other zip archives. Changes made without closing the archive can be reverted. The API is documented by man pages. --------------------------------------------------------------------------------Update Information: **Version 1.3.0** It contains fixes for two possible security problems. The problems were identified by Brian 'geeknik' Carpenter and Agostino Sarubbo using AFL. The changes are: * Support bzip2 compressed zip archives * Improve file progress callback code * Fix zip_fdopen() * CVE-2017-12858: Fix double free(). * CVE-2017-14107: Improve EOCD64 parsing. --------------------------------------------------------------------------------References: [ 1 ] Bug #1484515 - CVE-2017-12858 libzip: Double free in _zip_dirent_read function in zip_dirent.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1484515 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade libzip' at the command line. For moreinformation, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Keep informed about essential updates for libzip in Fedora 26 that tackle significant vulnerabilities and enhance protection. Discover further details!. Fedora Libzip Update, Critical Security Issues, Archive Security Fixes. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 06, 2017 Critical Fedora
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here