Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 3 articles for you...
100
security advisorymoderateSuSESUSE 2026-1843-1 Log4j Moderate Vulnerability With Four Key Fixes
An update that solves four vulnerabilities can now be installed.. # Security update for log4j Announcement ID: SUSE-SU-2026:1843-1 Release Date: 2026-05-13T15:24:58Z Rating: moderate References: * bsc#1262050 * bsc#1262091 * bsc#1262092 * bsc#1262093 Cross-References: * CVE-2026-34477 * CVE-2026-34479 * CVE-2026-34480 * CVE-2026-34481 CVSS scores: * CVE-2026-34477 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N * CVE-2026-34477 ( NVD ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-34477 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-34479 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34479 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-34479 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-34480 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2026-34480 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-34480 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-34481 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34481 ( NVD ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-34481 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: * Basesystem Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSELinux Enterprise Server for SAP Applications 15 SP7 An update that solves four vulnerabilities can now be installed. ## Description: This update for log4j fixes the following issues: * CVE-2026-34477: TLS connections vulnerable to interception due to incomplete hostname verification configuration checks (bsc#1262050). * CVE-2026-34479: silent log event loss due to improper XML escaping in `Log4j1XmlLayout` (bsc#1262091). * CVE-2026-34480: silent log event loss due to improper XML escaping in `XmlLayout` (bsc#1262092). * CVE-2026-34481: silent log event loss due to improper serialization of non- finite floating-point values in `JsonTemplateLayout` (bsc#1262093). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1843=1 ## Package List: * Basesystem Module 15-SP7 (noarch) * log4j-jcl-2.20.0-150200.4.33.1 * log4j-javadoc-2.20.0-150200.4.33.1 * log4j-slf4j-2.20.0-150200.4.33.1 * log4j-2.20.0-150200.4.33.1 ## References: * https://www.suse.com/security/cve/CVE-2026-34477.html * https://www.suse.com/security/cve/CVE-2026-34479.html * https://www.suse.com/security/cve/CVE-2026-34480.html * https://www.suse.com/security/cve/CVE-2026-34481.html * https://bugzilla.suse.com/show_bug.cgi?id=1262050 * https://bugzilla.suse.com/show_bug.cgi?id=1262091 * https://bugzilla.suse.com/show_bug.cgi?id=1262092 * https://bugzilla.suse.com/show_bug.cgi?id=1262093 . An update for log4j addresses multiple vulnerabilities. Crucial for maintaining system integrity and security.. SUSE update log4j moderate interceptions logging. . LinuxSecurity.com Team
May 13, 2026
SuSE
100
security advisorymoderateSuSESUSE: rabbitmq-server Moderate Logging Escalation Risk 2025:3809-1
* bsc#1245105 * bsc#1246091 Cross-References: * CVE-2025-50200 . # Security update for rabbitmq-server Announcement ID: SUSE-SU-2025:3809-1 Release Date: 2025-10-27T13:11:35Z Rating: moderate References: * bsc#1245105 * bsc#1246091 Cross-References: * CVE-2025-50200 CVSS scores: * CVE-2025-50200 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-50200 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2025-50200 ( NVD ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-50200 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.3 * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * Server Applications Module 15-SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for rabbitmq-server fixes the following issues: * CVE-2025-50200: prevented logging of Basic Auth header from HTTP requests (bsc#1245105) * fixed a bad logrotate configuration that allowed escalation from rabbitmq to root, /var/log/rabbitmq ownership is now 750 (bsc#1246091) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Server Applications Module 15-SP7 zypper in -t patchSUSE-SLE-Module-Server-Applications-15-SP7-2025-3809=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-3809=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-3809=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-3809=1 ## Package List: * Server Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * rabbitmq-server-plugins-3.8.11-150300.3.22.2 * erlang-rabbitmq-client-3.8.11-150300.3.22.2 * rabbitmq-server-3.8.11-150300.3.22.2 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * rabbitmq-server-plugins-3.8.11-150300.3.22.2 * erlang-rabbitmq-client-3.8.11-150300.3.22.2 * rabbitmq-server-3.8.11-150300.3.22.2 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * rabbitmq-server-plugins-3.8.11-150300.3.22.2 * erlang-rabbitmq-client-3.8.11-150300.3.22.2 * rabbitmq-server-3.8.11-150300.3.22.2 * Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * rabbitmq-server-plugins-3.8.11-150300.3.22.2 * erlang-rabbitmq-client-3.8.11-150300.3.22.2 * rabbitmq-server-3.8.11-150300.3.22.2 ## References: * https://www.suse.com/security/cve/CVE-2025-50200.html * https://bugzilla.suse.com/show_bug.cgi?id=1245105 * https://bugzilla.suse.com/show_bug.cgi?id=1246091 . Security update for rabbitmq-server addresses logging issues and escalation risks in SUSE distributions. Update now!. SUSE Linux rabbitmq-server security update. . LinuxSecurity.com Team
Oct 27, 2025
SuSE
197
security advisorysecurity updateDebianDebian: DLA-4188-1 critical: python-tornado DoS risk report
Tornado is a scalable, non-blocking Python web framework and asynchronous networking library. CVE-2025-47287 . ------------------------------------------------------------------------- Debian LTS Advisory DLA-4188-1
May 29, 2025
•Critical
Debian LTS
98
security advisoryred hatbug fixRedHat: RHSA-2022:5908-01 Moderate: Openshift Logging DoS Issue
Openshift Logging Bug Fix Release (5.3.10) Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Openshift Logging Bug Fix and security update Release (5.3.10) Advisory ID: RHSA-2022:5908-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2022:5908 Issue date: 2022-08-04 CVE Names: CVE-2021-38561 CVE-2021-40528 CVE-2022-1271 CVE-2022-1621 CVE-2022-1629 CVE-2022-21540 CVE-2022-21541 CVE-2022-22576 CVE-2022-25313 CVE-2022-25314 CVE-2022-27774 CVE-2022-27776 CVE-2022-27782 CVE-2022-29824 CVE-2022-34169 ==================================================================== 1. Summary: Openshift Logging Bug Fix Release (5.3.10) Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: Openshift Logging Bug Fix Release (5.3.10) Security Fix(es): * golang: out-of-bounds read in golang.org/x/text/language leads to DoS (CVE-2021-38561) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: For OpenShift Container Platform 4.9 see the following documentation, which will be updated shortly, for detailed release notes: https://docs.redhat.com/en/documentation/openshift_container_platform/4.9/html/logging/release-notes For Red HatOpenShift Logging 5.3, see the following instructions to apply this update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.9/html/logging/cluster-logging-upgrading 4. Bugs fixed (https://bugzilla.redhat.com/): 2100495 - CVE-2021-38561 golang: out-of-bounds read in golang.org/x/text/language leads to DoS 5. References: https://access.redhat.com/security/cve/CVE-2021-38561 https://access.redhat.com/security/cve/CVE-2021-40528 https://access.redhat.com/security/cve/CVE-2022-1271 https://access.redhat.com/security/cve/CVE-2022-1621 https://access.redhat.com/security/cve/CVE-2022-1629 https://access.redhat.com/security/cve/CVE-2022-21540 https://access.redhat.com/security/cve/CVE-2022-21541 https://access.redhat.com/security/cve/CVE-2022-22576 https://access.redhat.com/security/cve/CVE-2022-25313 https://access.redhat.com/security/cve/CVE-2022-25314 https://access.redhat.com/security/cve/CVE-2022-27774 https://access.redhat.com/security/cve/CVE-2022-27776 https://access.redhat.com/security/cve/CVE-2022-27782 https://access.redhat.com/security/cve/CVE-2022-29824 https://access.redhat.com/security/cve/CVE-2022-34169 https://access.redhat.com/security/updates/classification#moderate 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYuwKd9zjgjWX9erEAQgexxAAmIzleGnLdCBu+yeCdCPsxjElzuAtfH8+ HhAEjuIYf2vyZqIB+Pa8ghittm/s1HSv1nPAfsJBLcOY2szNZLZ/T5hwKqIDQ4M2 b36IYTskfz0BZ0C7tha6pQF6ihc/EgVa1CfDgyQEzosDoUVZRyLUEZBh7TrD9Y8O mcDhUSDBFVPN3II1U40qANMi+KlkW47YjcVCR+erfG8yscoqFoD9QTmuV/JzoioL tBsL3CQTAjs7+bwuF8Jyh3bb4fQxjtLeh+U4D6p0Inn9soPsHTOBe5/zU5wHJtRe v1IW1zYgblBPUqD6n5RUzSTKmreQX+aOJLZNuY8PfFOtcMLOcYJyoz1LRFNf0Hym 68NLNGJ0DGISmRVGBemXiwusYGtWvHgzbQWzpdXA4s2z5skjIZ8O9+iTZng9AlX3 YsGcvMKfnCrhfFSbGYWPBZwlm0hRE/++Tfw1i110pEPdfqspH5ZvtBhrQux3COn7 xJmK6bZVUz2MEhH02NfwdFaP8Gjd4FoRGOIqxdBrvj8TOnJIKd7npOEXS5ovgetp NtwkwPlt8tAB/ZQU1X4DIa84IDrEdiL88ys3KxdCtKYO3fY0Hx7DOVQqeGEdAcQ8 HSZnALjLRyjYJ7vRE2aIUqHPW9Rh9je8vsb54UR8w/ofuYawR1evMie2OT4PSFWP YR+hkO1lWmo=j+Pi -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 04, 2022
Red Hat
89
security advisorycriticalFedoraFedora: 2021-99ca984f32 Critical: pki-core Admin Credential Log Risk
[Bug 1967401](https://bugzilla.redhat.com/show_bug.cgi?id=1967401) - [CVE-2021-3551](https://access.redhat.com/security/cve/CVE-2021-3551) pki-core: pki-server: Dogtag installer "pkispawn" logs admin credentials into a world- readable log file. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-99ca984f32 2021-06-18 01:09:26.355167 --------------------------------------------------------------------------------Name : pki-core Product : Fedora 33 Version : 10.10.6 Release : 1.fc33 URL : https://www.dogtagpki.org Summary : Dogtag PKI Core Package Description : Dogtag PKI is an enterprise software system designed to manage enterprise Public Key Infrastructure deployments. PKI consists of the following components: * Automatic Certificate Management Environment (ACME) Responder * Certificate Authority (CA) * Key Recovery Authority (KRA) * Online Certificate Status Protocol (OCSP) Manager * Token Key Service (TKS) * Token Processing Service (TPS) --------------------------------------------------------------------------------Update Information: [Bug 1967401](https://bugzilla.redhat.com/show_bug.cgi?id=1967401) -[CVE-2021-3551](https://access.redhat.com/security/cve/CVE-2021-3551) pki-core: pki-server: Dogtag installer "pkispawn" logs admin credentials into a world-readable log file --------------------------------------------------------------------------------ChangeLog: * Wed Jun 9 2021 Dogtag PKI Team - 10.10.6-1 - Rebase to PKI 10.10.6 - CVE-2021-3551 Fix pkispawn logging admin credentials --------------------------------------------------------------------------------References: [ 1 ] Bug #1967401 - CVE-2021-3551 pki-core: pki-server: Dogtag installer "pkispawn" logs admin credentials into a world-readable log file [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1967401 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-99ca984f32' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Jun 17, 2021
•Critical
Fedora
89
security advisorydenial of serviceupdateFedora 31: FEDORA-2019-c64e1612f5 Critical FreeIPA Security Update
FreeIPA 4.8.3 is a security update release that includes fixes for two issues: * CVE-2019-10195: Don't log passwords embedded in commands in calls using batch A flaw was found in the way that FreeIPA's batch processing API logged operations. This included passing user passwords in clear text on FreeIPA masters. Batch processing of commands with passwords as arguments or options is. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-c64e1612f5 2019-12-05 01:39:12.689096 --------------------------------------------------------------------------------Name : freeipa Product : Fedora 31 Version : 4.8.3 Release : 1.fc31 URL : https://www.freeipa.org/ Summary : The Identity, Policy and Audit system Description : IPA is an integrated solution to provide centrally managed Identity (users, hosts, services), Authentication (SSO, 2FA), and Authorization (host access control, SELinux user roles, services). The solution provides features for further integration with Linux based clients (SUDO, automount) and integration with Active Directory based infrastructures (Trusts). --------------------------------------------------------------------------------Update Information: FreeIPA 4.8.3 is a security update release that includes fixes for two issues: * CVE-2019-10195: Don't log passwords embedded in commands in calls using batch A flaw was found in the way that FreeIPA's batch processing API logged operations. This included passing user passwords in clear text on FreeIPA masters. Batch processing of commands with passwords as arguments or options is not performed by default in FreeIPA but is possible by third-party components. An attacker having access to system logs on FreeIPA masters could use this flaw to produce log file content with passwords exposed. The issue was reported by Jamison Bennett from Cloudera * CVE-2019-14867: Make sure to have storage space for tag A flaw was found in the way theinternal function ber_scanf() was used in some components of the IPA server, which parsed kerberos key data. An unauthenticated attacker who could trigger parsing of the krb principal key could cause the IPA server to crash or in some conditions, cause arbitrary code to be executed on the server hosting the IPA server. The issue was reported by Todd Lipcon from Cloudera --------------------------------------------------------------------------------ChangeLog: * Tue Nov 26 2019 Alexander Bokovoy - 4.8.3-1 - New upstream release 4.8.3 - CVE-2019-14867: Denial of service in IPA server due to wrong use of ber_scanf() - CVE-2019-10195: Don't log passwords embedded in commands in calls using batch * Tue Nov 12 2019 Rob Crittenden - 4.8.2-1 - New upstream release 4.8.2 - Replace %{_libdir} macro in BuildRequires (#1746882) - Restore user-nsswitch.conf before calling authselect (#1746557) - ipa service-find does not list cifs service created by ipa-client-samba (#1731433) - Occasional 'whoami.data is undefined' error in FreeIPA web UI (#1699109) - ipa-kra-install fails due to fs.protected_regular=1 (#1698384) * Sun Oct 20 2019 Alexander Bokovoy - 4.8.1-4 - Don't create log files from helper scripts - Fixes: rhbz#1754189 * Tue Oct 8 2019 Christian Heimes - 4.8.1-3 - Fix compatibility issue with preexec_fn in Python 3.8 - Fixes: rhbz#1759290 --------------------------------------------------------------------------------References: [ 1 ] Bug #1777147 - CVE-2019-10195 freeipa: IPA: batch API logging user passwords to /var/log/httpd/error_log [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1777147 [ 2 ] Bug #1777200 - CVE-2019-14867 freeipa: ipa: Denial of service in IPA server due to wrong use of ber_scanf() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1777200 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisoryFEDORA-2019-c64e1612f5' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Dec 04, 2019
•Critical
Fedora
200
security advisorymoderatebug fixScientific Linux SL7: SLSA-2019:2178-1 Moderate udisks2 Format String Issue
udisks: Format string vulnerability in udisks_log in udiskslogging.c (CVE-2018-17336) SL7 x86_64 udisks2-lvm2-2.7.3-9.el7.x86_64.rpm udisks2-2.7.3-9.el7.x86_64.rpm udisks2-lsm-2.7.3-9.el7.x86_64.rpm libudisks2-2.7.3-9.el7.x86_64.rpm libudisks2-2.7.3-9.el7.i686.rpm udisks2-iscsi-2.7.3-9.el7.x86_64.rpm libudisks2-devel-2.7.3-9.el7.i686.rpm libudisks2-devel-2.7. [More...]. Synopsis: Moderate: udisks2 security, bug fix, and enhancement update Advisory ID: SLSA-2019:2178-1 Issue Date: 2019-08-06 CVE Numbers: CVE-2018-17336 -- Security Fix(es): * udisks: Format string vulnerability in udisks_log in udiskslogging.c (CVE-2018-17336) -- SL7 x86_64 udisks2-lvm2-2.7.3-9.el7.x86_64.rpm udisks2-2.7.3-9.el7.x86_64.rpm udisks2-lsm-2.7.3-9.el7.x86_64.rpm libudisks2-2.7.3-9.el7.x86_64.rpm libudisks2-2.7.3-9.el7.i686.rpm udisks2-iscsi-2.7.3-9.el7.x86_64.rpm libudisks2-devel-2.7.3-9.el7.i686.rpm libudisks2-devel-2.7.3-9.el7.x86_64.rpm udisks2-debuginfo-2.7.3-9.el7.i686.rpm udisks2-debuginfo-2.7.3-9.el7.x86_64.rpm - Scientific Linux Development Team . Critical udisks2 security patch for CentOS tackling buffer overflow vulnerability. Advisory ID: CESA-2020:1234-2.. udisks2 update, Scientific Linux security, format string issue, udisks vulnerability. . Severity: Important. LinuxSecurity.com Team
Aug 26, 2019
•Important
Scientific Linux
87
security advisorydebianauthentication flawDebian: DSA-4044-1 Critical: Swauth Clear Text Logging Issue
A vulnerability has been discovered in swauth, an authentication system for Swift, a distributed virtual object store used in Openstack. The authentication token for an user is saved in clear text to the log file, . - ------------------------------------------------------------------------- Debian Security Advisory DSA-4044-1
Nov 21, 2017
•Critical
Debian
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!