Alerts This Week
Warning Icon 1 535
Alerts This Week
Warning Icon 1 535

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderateRed Hat Enterprise Linux

Red Hat Enterprise Linux 6: Moderate Risk: Local Flaw in python-jinja2

Updated python-jinja2 packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Moderate [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Moderate: python-jinja2 security update Advisory ID: RHSA-2014:0747-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2014:0747.html Issue date: 2014-06-11 CVE Names: CVE-2014-1402 ==================================================================== 1. Summary: Updated python-jinja2 packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 3. Description: Jinja2 is a template engine written in pure Python. It provides a Django-inspired, non-XML syntax but supports inline expressions and an optional sandboxed environment. It was discovered that Jinja2 did not properly handle bytecode cache files stored in the system's temporary directory. A local attacker could use this flaw to alter the output of an application using Jinja2 and FileSystemBytecodeCache, and potentially execute arbitrary code with the privileges of that application. (CVE-2014-1402) All python-jinja2 users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. For the update to take effect, all applications usingpython-jinja2 must be restarted. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1051421 - CVE-2014-1402 python-jinja2: FileSystemBytecodeCache insecure cache temporary file use 6. Package List: Red Hat Enterprise Linux Desktop Optional (v. 6): Source: python-jinja2-2.2.1-2.el6_5.src.rpm i386: python-jinja2-2.2.1-2.el6_5.i686.rpm python-jinja2-debuginfo-2.2.1-2.el6_5.i686.rpm x86_64: python-jinja2-2.2.1-2.el6_5.x86_64.rpm python-jinja2-debuginfo-2.2.1-2.el6_5.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v. 6): Source: python-jinja2-2.2.1-2.el6_5.src.rpm x86_64: python-jinja2-2.2.1-2.el6_5.x86_64.rpm python-jinja2-debuginfo-2.2.1-2.el6_5.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 6): Source: python-jinja2-2.2.1-2.el6_5.src.rpm i386: python-jinja2-2.2.1-2.el6_5.i686.rpm python-jinja2-debuginfo-2.2.1-2.el6_5.i686.rpm ppc64: python-jinja2-2.2.1-2.el6_5.ppc64.rpm python-jinja2-debuginfo-2.2.1-2.el6_5.ppc64.rpm s390x: python-jinja2-2.2.1-2.el6_5.s390x.rpm python-jinja2-debuginfo-2.2.1-2.el6_5.s390x.rpm x86_64: python-jinja2-2.2.1-2.el6_5.x86_64.rpm python-jinja2-debuginfo-2.2.1-2.el6_5.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): Source: python-jinja2-2.2.1-2.el6_5.src.rpm i386: python-jinja2-2.2.1-2.el6_5.i686.rpm python-jinja2-debuginfo-2.2.1-2.el6_5.i686.rpm x86_64: python-jinja2-2.2.1-2.el6_5.x86_64.rpm python-jinja2-debuginfo-2.2.1-2.el6_5.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7.References: https://access.redhat.com/security/cve/CVE-2014-1402 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2014 Red Hat, Inc. . Upgraded python-jinja2 libraries to address a significant security vulnerability on Red Hat Enterprise Linux 6. Update suggested.. RedHat, PythonJinja2, LocalAttackRisk. . LinuxSecurity.com Team

Calendar 2 Jun 11, 2014 Red Hat
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatesecurity update

Red Hat Enterprise Linux 5: RHSA-2009:1619-01 Moderate Dstat Local Risk

An updated dstat package that fixes one security issue is now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: dstat security update Advisory ID: RHSA-2009:1619-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2009:1619.html Issue date: 2009-11-30 CVE Names: CVE-2009-3894 ==================================================================== 1. Summary: An updated dstat package that fixes one security issue is now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5 server) - noarch Red Hat Enterprise Linux Desktop (v. 5 client) - noarch 3. Description: Dstat is a versatile replacement for the vmstat, iostat, and netstat tools. Dstat can be used for performance tuning tests, benchmarks, and troubleshooting. Robert Buchholz of the Gentoo Security Team reported a flaw in the Python module search path used in dstat. If a local attacker could trick a local user into running dstat from a directory containing a Python script that is named like an importable module, they could execute arbitrary code with the privileges of the user running dstat. (CVE-2009-3894) All dstat users should upgrade to this updated package, which contains a backported patch to correct this issue. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at 5. Bugs fixed (http://bugzilla.redhat.com/): 538459 - CVE-2009-3894 dstatinsecure module search path 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: noarch: dstat-0.6.6-3.el5_4.1.noarch.rpm Red Hat Enterprise Linux (v. 5 server): Source: noarch: dstat-0.6.6-3.el5_4.1.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://www.cve.org/CVERecord?id=CVE-2009-3894 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2009 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFLE+gYXlSAg2UNWIIRAr8iAJ4sJyTH6JKXhhVQ6BmqZQB614VWcgCdEbd0 pdjTrNWrUgFaLQWp0EhGX1U=FRhK -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . The recent update to the dstat package for Red Hat Enterprise Linux 5 has resolved a moderate security vulnerability that could be exploited through local means.. Red Hat dstat Update,System Security Update,Local Attack Risk. . LinuxSecurity.com Team

Calendar 2 Nov 30, 2009 Red Hat
Banner 1 1028x280 1708121660 1771599717
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydebianmoderate severity

Debian 3.0: DSA 596-2 Moderate: Sudo Input Sanitization Flaw

Liam Helmer noticed that sudo, a program that provides limited super user privileges to specific users, does not clean the environment sufficiently. Bash functions and the CDPATH variable are still passed through to the program running as privileged user, leaving possibilities to overload system routines.. -------------------------------------------------------------------------- Debian Security Advisory DSA 596-2 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Martin Schulze November 24th, 2004 Debian -- Debian security FAQ -------------------------------------------------------------------------- Package : sudo Vulnerability : missing input sanitising Problem-Type : local Debian-specific: no CVE ID : CAN-2004-1051 Debian Bug : 281665 This update removes the debug output which was left over in the update from DSA 596-1. For completeness below is the original advisory text: Liam Helmer noticed that sudo, a program that provides limited super user privileges to specific users, does not clean the environment sufficiently. Bash functions and the CDPATH variable are still passed through to the program running as privileged user, leaving possibilities to overload system routines. These vulnerabilities can only be exploited by users who have been granted limited super user privileges. For the stable distribution (woody) these problems have been fixed in version 1.6.6-1.3. For the unstable distribution (sid) these problems have been fixed in version 1.6.8p3. We recommend that you upgrade your sudo package. Upgrade Instructions -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automatedupdate by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.0 alias woody -------------------------------- Source archives: Size/MD5 checksum: 587 7e0e281b341966fba3cc20466b1e154e Size/MD5 checksum: 12267 f3d0958f06ddf2fd1be7514b4ad6e562 Size/MD5 checksum: 333074 4da4bf6cf31634cc7a17ec3b69fdc333 Alpha architecture: Size/MD5 checksum: 151454 170391b07188d41496c2f59f5dca39c6 ARM architecture: Size/MD5 checksum: 141446 5b10c35c58bd29124c38a4468319cf32 Intel IA-32 architecture: Size/MD5 checksum: 135090 35bccb8d3e98c2744c3b59de7354903b Intel IA-64 architecture: Size/MD5 checksum: 172448 22393a9f963d07de325714d61fdeb3b1 HP Precision architecture: Size/MD5 checksum: 147522 2d8554ba955b14400c09bba843a9abf1 Motorola 680x0 architecture: Size/MD5 checksum: 132668 4ad7676118bb6362978d79ce44eef297 Big endian MIPS architecture: Size/MD5 checksum: 144396 4f272d539a01d91310c9a8600878f0ca Little endian MIPS architecture: Size/MD5 checksum: 144246 5655087c2674e4fbd58c701b4c06ec7b PowerPC architecture: Size/MD5 checksum: 140580 e296b3686cb6dee29ba30bb212a09d43 IBM S/390 architecture: Size/MD5 checksum: 140218 727a318f9a365baa2b6aed43e382f72e Sun Sparc architecture: Size/MD5 checksum: 143022 38a86a386e6cf03dc83222397e30b90f These files will probably be moved into the stable distribution on its next update. --------------------------------------------------------------------------------- For apt-get: deb Debian -- Security Information stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . The Debian advisory DSA 596-2 highlights a vulnerability in sudo that may be exploitedlocally; it is advised to apply the necessary updates.. Debian Security,Sudo Input Issues,Privileged Access Risk. . LinuxSecurity.com Team

Calendar 2 Nov 24, 2004 Debian
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here