Alerts This Week
Warning Icon 1 537
Alerts This Week
Warning Icon 1 537

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hatremote code execution

Red Hat JBoss Data Grid 7.1.1 RHSA-2017:3244-01 Critical Code Exec Risk

Red Hat JBoss Data Grid 7.1.1 is now available for download from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: Red Hat JBoss Data Grid 7.1.1 security update Advisory ID: RHSA-2017:3244-01 Product: Red Hat JBoss Data Grid Advisory URL: https://access.redhat.com/errata/RHSA-2017:3244 Issue date: 2017-11-16 CVE Names: CVE-2016-0750 CVE-2017-5645 CVE-2017-12629 ==================================================================== 1. Summary: Red Hat JBoss Data Grid 7.1.1 is now available for download from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: Red Hat JBoss Data Grid is a distributed in-memory data grid, based on Infinispan. This release of Red Hat JBoss Data Grid 7.1.1 serves as a replacement for Red Hat JBoss Data Grid 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes linked to in the References. Security Fix(es): * It was found that Apache Lucene would accept an object from an unauthenticated user that could be manipulated through subsequent post requests. An attacker could use this flaw to assemble an object that could permit execution of arbitrary code if the server enabled Apache Solr's Config API. (CVE-2017-12629) * It was found that when using remote logging with log4j socket server the log4j server would deserialize any log event received via TCP or UDP. An attacker could use this flaw to send a specially crafted log event that, during deserialization,would execute arbitrary code in the context of the logger application. (CVE-2017-5645) * The hotrod java client in infinispan automatically deserializes bytearray message contents in certain events. A malicious user could exploit this flaw by injecting a specially-crafted serialized object to attain remote code execution or conduct other attacks. (CVE-2016-0750) For more information regarding CVE-2017-12629, see the article linked in the references section. Red Hat would like to thank Sebastian Olsson (TrueSec) for reporting CVE-2016-0750. 3. Solution: The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Data Grid installation (including databases, configuration files, and so on). 4. Bugs fixed (https://bugzilla.redhat.com/): 1300443 - CVE-2016-0750 hotrod client: unchecked deserialization in marshaller util 1443635 - CVE-2017-5645 log4j: Socket receiver deserialization vulnerability 1501529 - CVE-2017-12629 Solr: Code execution via entity expansion 5. References: https://access.redhat.com/security/cve/CVE-2016-0750 https://access.redhat.com/security/cve/CVE-2017-5645 https://access.redhat.com/security/cve/CVE-2017-12629 https://access.redhat.com/security/vulnerabilities/CVE-2017-12629 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=data.grid&downloadType=distributions&version=7.1.1 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2017 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFaDexmXlSAg2UNWIIRAhoOAKCQNZO73b4cdN8EIKNv+ON1SwomPACfSCDR XYLivDMeuJC1UEgHLdZy+DE=ut90 -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Oracle WebLogic Server 14.1.1 security patch issued with significant updates addressing critical vulnerabilities.. Red Hat,JBoss DataGrid,security update,remote code execution,Apache Solr. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Nov 16, 2017 Important Red Hat
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorycritical issuedebian

Debian 2.1 Slink Critical: smtp-refuser Logging Flaw Fixed

This bug was experienced in May 1999 but wasn't reported on this channel yet. Former versions of the smtp-refuser package came with unchecked logging facility to /tmp/log. This allowed deleting arbitrary, root-owned files by any user who has write access to /tmp. This bug was experienced in May 1999 but wasn't reported on this channel yet. Former versions of the smtp-refuser package came with unchecked logging facility to /tmp/log. This allowed deleting arbitrary, root-owned files by any user who has write access to /tmp. We recommend you upgrade your smtp-refuser package. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Debian GNU/Linux 2.1 alias slink -------------------------------- Source archives: MD5 checksum: 282eb6e299e48bf47c773c88dc45f140 MD5 checksum: 5059fcc13077f7e959f417af8d403dda Alpha architecture: MD5 checksum: 2d7c4c8ba5226942af1d505eb06dca02 Intel ia32 architecture: MD5 checksum: 45a32aece01c4c3a5a329d6c857da94b Motorola 680x0 architecture: MD5 checksum: f8f733dc4dd8971b891fc4bfa00412b8 Sun Sparc architecture: MD5 checksum: c60a3b0bdf77baace00c9d670a174a01 Debian GNU/Linux unstable alias potato -------------------------------------- Source archives: mtp-refuser_1.0.1.dsc MD5 checksum: 282eb6e299e48bf47c773c88dc45f140 l/smtp-refuser_1.0.1.tar.gz MD5 checksum: 5059fcc13077f7e959f417af8d403dda Alpha architecture: MD5 checksum: d8ee4cba999534c1a488a7a11f2791da ARM architecture: MD5 checksum: 92ffab6117f2075614aeaaf2e180ff59 Intel ia32 architecture: MD5 checksum: 45a32aece01c4c3a5a329d6c857da94b Motorola 680x0 architecture: MD5 checksum: 43cf12edcdc1a7eeb6e317e218da8ba5 PowerPC architecture: MD5 checksum: 42a651ed5647c0495b9f77386df6e124 Sun Sparc architecture: MD5 checksum: ecda66ea8d37ae48acbc0f4fbcc0de14 -- Debian GNU/Linux . Security Managers . This email address is being protected from spambots. You need JavaScript enabled to view it. This email address is being protected from spambots. You need JavaScript enabled to view it. Christian Hudon . Wichert Akkerman . Martin Schulze . . . This bug was experienced in May 1999 but wasn't reported on this channel yet. Former versions of the. experienced, wasn't, reported, channel, former, versions. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 13, 1999 Critical Debian
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here