Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorycriticalfile management

Debian DSA 172-1 Critical: Tkmail Insecure File Management Risk

It has been discovered that tkmail creates temporary files insecurely.Exploiting this an attacker with local access can easily create andoverwrite files as another user.. -------------------------------------------------------------------------- Debian Security Advisory DSA 172-1 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Martin Schulze October 8th, 2002 Debian -- Debian security FAQ -------------------------------------------------------------------------- Package : tkmail Vulnerability : insecure temporary files Problem-Type : local Debian-specific: no It has been discovered that tkmail creates temporary files insecurely. Exploiting this an attacker with local access can easily create and overwrite files as another user. This problem has been fixed in version 4.0beta9-8.1 for the current stable distribution (woody), in version 4.0beta9-4.1 for the old stable distribution (potato) and in version 4.0beta9-9 for the unstable distribution (sid). We recommend that you upgrade your tkmail packages. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 2.2 alias potato --------------------------------- Source archives: Size/MD5 checksum: 568 61426095674836c7e1f5a9cea9261222 Size/MD5 checksum: 93134 872788cd23d7a3e12fc64a164d57d1da Size/MD5 checksum: 264219 eade4a27565d159080cbaa0b73d27ae0 Alpha architecture: Size/MD5 checksum: 225608 6c0e39cad8ef8a9e59ac5dfc8dbc9865 ARM architecture: Size/MD5 checksum: 208538 0f3717e650b5289b8221e819d623a505 IntelIA-32 architecture: Size/MD5 checksum: 206376 f7ab8ba0b5c0f569f40063a32cbe91ed Motorola 680x0 architecture: Size/MD5 checksum: 202328 5a8a574098345feffd39a6ed398d728e PowerPC architecture: Size/MD5 checksum: 210386 f5be4d907367adc70d2646922514198d Sun Sparc architecture: Size/MD5 checksum: 212170 8a65743306d20b564f0b087ea95f63fc Debian GNU/Linux 3.0 alias woody -------------------------------- Source archives: Size/MD5 checksum: 578 0a2951b292fd265cd59eec8cb632a3b8 Size/MD5 checksum: 61394 9ea83f1086ebe432430264a1fa206b9a Size/MD5 checksum: 264219 eade4a27565d159080cbaa0b73d27ae0 Alpha architecture: Size/MD5 checksum: 223450 c052579b2cee968909bc10dfc8cc4d1e ARM architecture: Size/MD5 checksum: 208496 21cf07e457a653a92e42679f1fda203e Intel IA-32 architecture: Size/MD5 checksum: 206350 55f58c223e5fd47b5eaac3912c2caab9 Intel IA-64 architecture: Size/MD5 checksum: 241806 ea5e1917cf0d8242aa58d30a4135966b HP Precision architecture: Size/MD5 checksum: 216926 5fd662cd9ad0e1ae70824654aa7042e8 Motorola 680x0 architecture: Size/MD5 checksum: 201662 0609e9e8b1ac84bee25a671e839efbed Big endian MIPS architecture: Size/MD5 checksum: 215310 2909e42fd4f2895297f901f4f9b494c6 Little endian MIPS architecture: Size/MD5 checksum: 215572 ebf8d34e8840e72ca29144dbd9d92818 PowerPC architecture: Size/MD5 checksum: 211486 17187753cf81810e7af9c1bd5b2b868b IBM S/390 architecture: Size/MD5 checksum: 208348 eaffa6d4831efd74ff97bb805ddeeb57 Sun Sparc architecture: Size/MD5 checksum: 215600 3eec99aff80c9e1ae8a5513c5ce25077 These files will probably be moved into the stable distribution on its next revision. --------------------------------------------------------------------------------- For apt-get: deb Debian -- Security Information stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . Debian Advisory DSA 172-1 highlights critical insecure file handling in tkmail, risking local user file breaches.. tkmail Security, Insecure File Handling, Debian Advisory. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 08, 2002 Critical Debian
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hat Linuxperl

Red Hat Linux 5/6 RHSA-2000:048-06 Critical: Mailx Local Access Exploit

Updated perl and mailx package are now available which fix a potentialexploit made possible by incorrect assumptions made in suidperl.. ` --------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: Updated mailx and perl packages are now available. Advisory ID: RHSA-2000:048-06 Issue date: 2000-08-07 Updated on: 2000-08-09 Product: Red Hat Linux Keywords: perl suidperl mailx rpm Cross references: RHSA-2000:051 --------------------------------------------------------------------- 1. Topic: Updated perl and mailx package are now available which fix a potential exploit made possible by incorrect assumptions made in suidperl. This advisory contains additional instructions for installing the necessary updates. 2. Relevant releases/architectures: Red Hat Linux 5.0 - i386, alpha, sparc Red Hat Linux 5.1 - i386, alpha, sparc Red Hat Linux 5.2 - i386, alpha, sparc Red Hat Linux 6.0 - i386, alpha, sparc Red Hat Linux 6.1 - i386, alpha, sparc Red Hat Linux 6.2 - i386, alpha, sparc Red Hat Linux 6.2E - i386, alpha, sparc 3. Problem description: Under certain conditions, suidperl will attempt to send mail to the local superuser account using /bin/mail. A properly formatted exploit script can use this facility, along with mailx's tendency to inherit settings from the environment, to gain local root access. This update changes suidperl's behavior to use syslog instead of mail, and restricts the list of variables /bin/mail will read from the environment. 4. Solution: For each RPM for your particular architecture, run: rpm -Fvh [filename] where filename is the name of the RPM. In order to install some of these packages, you may need to have a newer version of RPM installed. Information about obtaining the new version of RPM is included in RHSA-2000:051. 5. Bug IDs fixed ( for more info): 15625 - Root exploit alread posted on bugtraq 15630 - Root exploit in sperl 15641 - suidperl has amajor problem 6. RPMs required: Red Hat Linux 5.0: Red Hat Linux 5.2: sparc: alpha: i386: sources: Red Hat Linux 6.2: sparc: i386: alpha: sources: 7. Verification: MD5 sum Package Name -------------------------------------------------------------------------- c514911db4ce13fc32af5b59233d5dc9 5.2/SRPMS/mailx-8.1.1-16.src.rpm 7440313c13c65142c75e35d32b5807c3 5.2/SRPMS/perl-5.004m7-2.src.rpm 430fca595dd42648239b8ad475032c9c 5.2/alpha/mailx-8.1.1-16.alpha.rpm 876b94f7d4fd4d92142f44de51045591 5.2/alpha/perl-5.004m7-2.alpha.rpm fd9d44b8aeadc36bd871dd8e2d6211c4 5.2/i386/mailx-8.1.1-16.i386.rpm 0a1f47cacb891c03b351211d4fe825ed 5.2/i386/perl-5.004m7-2.i386.rpm 376f28398c607b4af12d06babbd7e098 5.2/sparc/mailx-8.1.1-16.sparc.rpm 24e61c42e5a22dbbc929264a1ddc3869 5.2/sparc/perl-5.004m7-2.sparc.rpm 30d2f82abfba4ac2c770b66c591d528f 6.2/SRPMS/mailx-8.1.1-16.src.rpm 5cfe855e78b1ed7672e4daa738093f2c 6.2/SRPMS/perl-5.00503-11.src.rpm 25497e13b1d30f3dcff365602f78208a 6.2/alpha/mailx-8.1.1-16.alpha.rpm 452714b1ddfd479cb683b21ca54d27a3 6.2/alpha/perl-5.00503-11.alpha.rpm c121c2076bae78f42afcf9f0357549b9 6.2/i386/mailx-8.1.1-16.i386.rpm ff573609cbe0de0fe72838b0139992da 6.2/i386/perl-5.00503-11.i386.rpm 6464e30268ba05a2ca938b38805a9256 6.2/sparc/mailx-8.1.1-16.sparc.rpm fa63980aed3bdd2c9c14dcca6745c56c 6.2/sparc/perl-5.00503-11.sparc.rpm These packages are GPG signed by Red Hat, Inc. for security. Our key is available at: You can verify each package with the following command: rpm --checksig If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command: rpm --checksig --nogpg 8. References: Login Copyright(c) 2000 Red Hat, Inc. `. Latest enhancements to mailx and perl software tackle local privilege elevation issues originating from suidperl defects. Get the necessary updates today!. mailx package update, perl securityfix, local access vulnerability. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Aug 21, 2000 Critical Red Hat
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here