Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -2 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorySuSEDoS

SUSE kubevirt Important Security Update 2026-20610-1 CVE-2024-45310 DoS Bug

An update that solves eight vulnerabilities and has one fix can now be installed.. # Security update for kubevirt Announcement ID: SUSE-SU-2026:20610-1 Release Date: 2026-02-27T08:49:48Z Rating: important References: * bsc#1241772 * bsc#1253181 * bsc#1253185 * bsc#1253186 * bsc#1253189 * bsc#1253194 * bsc#1253748 * bsc#1257128 * bsc#1257422 Cross-References: * CVE-2024-45310 * CVE-2025-22872 * CVE-2025-64324 * CVE-2025-64432 * CVE-2025-64433 * CVE-2025-64434 * CVE-2025-64435 * CVE-2025-64437 CVSS scores: * CVE-2024-45310 ( SUSE ): 3.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N * CVE-2024-45310 ( NVD ): 3.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N * CVE-2024-45310 ( NVD ): 3.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N * CVE-2025-22872 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L * CVE-2025-22872 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L * CVE-2025-22872 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L * CVE-2025-64324 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-64324 ( SUSE ): 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2025-64324 ( NVD ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-64324 ( NVD ): 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2025-64432 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-64432 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-64432 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-64432 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-64433 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2025-64433 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2025-64433 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2025-64434 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-64434 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2025-64434 ( NVD ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2025-64434 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-64435 ( SUSE ): 6.0 CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-64435 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2025-64435 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-64437 ( SUSE ): 1.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-64437 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L * CVE-2025-64437 ( NVD ): 5.0 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP Applications 16.0 An update that solves eight vulnerabilities and has one fix can now be installed. ## Description: This update for kubevirt fixes the following issues: Update to version 1.7.0 (bsc#1257128). Security issues fixed: * CVE-2025-64435: logic flaw in the virt-controller can lead to incorrect status updates and potentially causing a DoS (bsc#1253189). * CVE-2024-45310: kubevirt vendored github.com/opencontainers/runc/libcontainer/utils: runc can be tricked into creating empty files/directories on host (bsc#1257422). * CVE-2025-22872: incorrectly interpreted tags can cause content to be placed wrong scope during DOM construction (bsc#1241772). * CVE-2025-64432: fail to correctly validate certain fields in the client TLS certificate may allow an attacker to bypass existing RBAC controls (bsc#1253181). * CVE-2025-64433: improper symlink handling can allow to read arbitrary files (bsc#1253185). * CVE-2025-64434: compromising virt-handler instance can lead to impersonate virt-api and execute privileged operations (bsc#1253186). * CVE-2025-64437: mishandling of symlinks can lead to compromising the CIA (bsc#1253194). * CVE-2025-64324: a logic bug that allows an attacker to read and write arbitrary files owned by more privileged users (bsc#1253748). Other updates and bugfixes: * Upstream now uses stateless firmware for CoCo VMs. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-319=1 * SUSE Linux Enterprise Server for SAP Applications 16.0 zypper in -t patch SUSE-SLES-16.0-319=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (x86_64) * kubevirt-virtctl-1.7.0-160000.1.1 * kubevirt-virtctl-debuginfo-1.7.0-160000.1.1 * SUSE Linux Enterprise Server for SAP Applications 16.0 (x86_64) * kubevirt-virtctl-1.7.0-160000.1.1 * kubevirt-virtctl-debuginfo-1.7.0-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2024-45310.html * https://www.suse.com/security/cve/CVE-2025-22872.html * https://www.suse.com/security/cve/CVE-2025-64324.html * https://www.suse.com/security/cve/CVE-2025-64432.html * https://www.suse.com/security/cve/CVE-2025-64433.html * https://www.suse.com/security/cve/CVE-2025-64434.html * https://www.suse.com/security/cve/CVE-2025-64435.html * https://www.suse.com/security/cve/CVE-2025-64437.html * https://bugzilla.suse.com/show_bug.cgi?id=1241772 * https://bugzilla.suse.com/show_bug.cgi?id=1253181 * https://bugzilla.suse.com/show_bug.cgi?id=1253185 * https://bugzilla.suse.com/show_bug.cgi?id=1253186 * https://bugzilla.suse.com/show_bug.cgi?id=1253189 *https://bugzilla.suse.com/show_bug.cgi?id=1253194 * https://bugzilla.suse.com/show_bug.cgi?id=1253748 * https://bugzilla.suse.com/show_bug.cgi?id=1257128 * https://bugzilla.suse.com/show_bug.cgi?id=1257422 . An important SUSE update solves eight vulnerabilities in kubevirt with security patches and fixes. Get details on the update.. SUSE Security Update,kubevirt patch,DoS vulnerability,security patch 2026. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 05, 2026 Important SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorycross site scriptingsecurity patch

SUSE Linux 15-SP2: SUSE-SU-2022:0182-2 Important: Webkit2gtk3 Logic Flaws

An update that fixes 43 vulnerabilities is now available. . SUSE Security Update: Security update for webkit2gtk3 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:0182-2 Rating: important References: #1194019 Cross-References: CVE-2019-8766 CVE-2019-8782 CVE-2019-8808 CVE-2019-8815 CVE-2020-13753 CVE-2020-27918 CVE-2020-29623 CVE-2020-3902 CVE-2020-9802 CVE-2020-9803 CVE-2020-9805 CVE-2020-9947 CVE-2020-9948 CVE-2020-9951 CVE-2020-9952 CVE-2021-1765 CVE-2021-1788 CVE-2021-1817 CVE-2021-1820 CVE-2021-1825 CVE-2021-1826 CVE-2021-1844 CVE-2021-1871 CVE-2021-30661 CVE-2021-30666 CVE-2021-30682 CVE-2021-30761 CVE-2021-30762 CVE-2021-30809 CVE-2021-30818 CVE-2021-30823 CVE-2021-30836 CVE-2021-30846 CVE-2021-30848 CVE-2021-30849 CVE-2021-30851 CVE-2021-30858 CVE-2021-30884 CVE-2021-30887 CVE-2021-30888 CVE-2021-30889 CVE-2021-30890 CVE-2021-30897 CVSS scores: CVE-2019-8766 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-8766 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-8782 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-8782 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-8808 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-8808 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-8815 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-8815 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-13753 (NVD) : 10CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H CVE-2020-13753 (SUSE): 6.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L CVE-2020-27918 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-27918 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-29623 (NVD) : 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVE-2020-29623 (SUSE): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVE-2020-3902 (NVD) : 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2020-3902 (SUSE): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2020-9802 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-9802 (SUSE): 6.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L CVE-2020-9803 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-9803 (SUSE): 6.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L CVE-2020-9805 (NVD) : 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L CVE-2020-9805 (SUSE): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L CVE-2020-9947 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-9947 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-9948 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-9951 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-9951 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-9952 (NVD) : 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L CVE-2020-9952 (SUSE): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2021-1765 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2021-1765 (SUSE): 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2021-1788 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-1788 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-1844 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-1844 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-1871 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-1871 (SUSE): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-30809 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30809 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30818 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30818 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30823 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVE-2021-30823 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVE-2021-30836 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVE-2021-30836 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVE-2021-30846 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30846 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30848 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30848 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30849 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30849 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30851 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30851 (SUSE): 7.8CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30858 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30858 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30884 (NVD) : 4.7 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N CVE-2021-30884 (SUSE): 4.7 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N CVE-2021-30887 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2021-30887 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2021-30888 (NVD) : 7.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N CVE-2021-30888 (SUSE): 7.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N CVE-2021-30889 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30889 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30890 (NVD) : 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2021-30890 (SUSE): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2021-30897 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVE-2021-30897 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N Affected Products: SUSE Linux Enterprise Realtime Extension 15-SP2 ______________________________________________________________________________ An update that fixes 43 vulnerabilities is now available. Description: This update for webkit2gtk3 fixes the following issues: - Update to version 2.34.3 (bsc#1194019). - CVE-2021-30887: Fixed logic issue allowing unexpectedly unenforced Content Security Policy when processing maliciously crafted web content. - CVE-2021-30890: Fixed logic issue allowing universal cross site scripting when processing maliciously crafted web content. Patch Instructions: To install this SUSE Security Update use the SUSErecommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Realtime Extension 15-SP2: zypper in -t patch SUSE-SLE-Product-RT-15-SP2-2022-182=1 Package List: - SUSE Linux Enterprise Realtime Extension 15-SP2 (x86_64): libjavascriptcoregtk-4_0-18-2.34.3-23.3 libjavascriptcoregtk-4_0-18-debuginfo-2.34.3-23.3 libwebkit2gtk-4_0-37-2.34.3-23.3 libwebkit2gtk-4_0-37-debuginfo-2.34.3-23.3 typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3 typelib-1_0-WebKit2-4_0-2.34.3-23.3 typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-debuginfo-2.34.3-23.3 webkit2gtk3-debugsource-2.34.3-23.3 webkit2gtk3-devel-2.34.3-23.3 - SUSE Linux Enterprise Realtime Extension 15-SP2 (noarch): libwebkit2gtk3-lang-2.34.3-23.3 References: https://www.suse.com/security/cve/CVE-2019-8766.html https://www.suse.com/security/cve/CVE-2019-8782.html https://www.suse.com/security/cve/CVE-2019-8808.html https://www.suse.com/security/cve/CVE-2019-8815.html https://www.suse.com/security/cve/CVE-2020-13753.html https://www.suse.com/security/cve/CVE-2020-27918.html https://www.suse.com/security/cve/CVE-2020-29623.html https://www.suse.com/security/cve/CVE-2020-3902.html https://www.suse.com/security/cve/CVE-2020-9802.html https://www.suse.com/security/cve/CVE-2020-9803.html https://www.suse.com/security/cve/CVE-2020-9805.html https://www.suse.com/security/cve/CVE-2020-9947.html https://www.suse.com/security/cve/CVE-2020-9948.html https://www.suse.com/security/cve/CVE-2020-9951.html https://www.suse.com/security/cve/CVE-2020-9952.html https://www.suse.com/security/cve/CVE-2021-1765.html https://www.suse.com/security/cve/CVE-2021-1788.html https://www.suse.com/security/cve/CVE-2021-1817.html https://www.suse.com/security/cve/CVE-2021-1820.html https://www.suse.com/security/cve/CVE-2021-1825.html https://www.suse.com/security/cve/CVE-2021-1826.html https://www.suse.com/security/cve/CVE-2021-1844.html https://www.suse.com/security/cve/CVE-2021-1871.html https://www.suse.com/security/cve/CVE-2021-30661.html https://www.suse.com/security/cve/CVE-2021-30666.html https://www.suse.com/security/cve/CVE-2021-30682.html https://www.suse.com/security/cve/CVE-2021-30761.html https://www.suse.com/security/cve/CVE-2021-30762.html https://www.suse.com/security/cve/CVE-2021-30809.html https://www.suse.com/security/cve/CVE-2021-30818.html https://www.suse.com/security/cve/CVE-2021-30823.html https://www.suse.com/security/cve/CVE-2021-30836.html https://www.suse.com/security/cve/CVE-2021-30846.html https://www.suse.com/security/cve/CVE-2021-30848.html https://www.suse.com/security/cve/CVE-2021-30849.html https://www.suse.com/security/cve/CVE-2021-30851.html https://www.suse.com/security/cve/CVE-2021-30858.html https://www.suse.com/security/cve/CVE-2021-30884.html https://www.suse.com/security/cve/CVE-2021-30887.html https://www.suse.com/security/cve/CVE-2021-30888.html https://www.suse.com/security/cve/CVE-2021-30889.html https://www.suse.com/security/cve/CVE-2021-30890.html https://www.suse.com/security/cve/CVE-2021-30897.html https://bugzilla.suse.com/1194019 . An upgrade for webkit2gtk3 fixes 42 bugs, including critical security vulnerabilities. Ensure your system is protected by applying this update.. SUSE Linux, webkit2gtk3 Update, security Patch, Cross Site Scripting, Logic Flaw Fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 17, 2022 Important SuSE
Banner 1 1028x280 1708121660 1771599717
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryupdatepatch

SUSE: 2022:0182-1 Important: Webkit2gtk3 Logic Flaws Fixed

An update that fixes 43 vulnerabilities is now available. . SUSE Security Update: Security update for webkit2gtk3 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:0182-1 Rating: important References: #1194019 Cross-References: CVE-2019-8766 CVE-2019-8782 CVE-2019-8808 CVE-2019-8815 CVE-2020-13753 CVE-2020-27918 CVE-2020-29623 CVE-2020-3902 CVE-2020-9802 CVE-2020-9803 CVE-2020-9805 CVE-2020-9947 CVE-2020-9948 CVE-2020-9951 CVE-2020-9952 CVE-2021-1765 CVE-2021-1788 CVE-2021-1817 CVE-2021-1820 CVE-2021-1825 CVE-2021-1826 CVE-2021-1844 CVE-2021-1871 CVE-2021-30661 CVE-2021-30666 CVE-2021-30682 CVE-2021-30761 CVE-2021-30762 CVE-2021-30809 CVE-2021-30818 CVE-2021-30823 CVE-2021-30836 CVE-2021-30846 CVE-2021-30848 CVE-2021-30849 CVE-2021-30851 CVE-2021-30858 CVE-2021-30884 CVE-2021-30887 CVE-2021-30888 CVE-2021-30889 CVE-2021-30890 CVE-2021-30897 CVSS scores: CVE-2019-8766 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-8766 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-8782 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-8782 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-8808 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-8808 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-8815 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-8815 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-13753 (NVD) : 10CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H CVE-2020-13753 (SUSE): 6.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L CVE-2020-27918 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-27918 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-29623 (NVD) : 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVE-2020-29623 (SUSE): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVE-2020-3902 (NVD) : 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2020-3902 (SUSE): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2020-9802 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-9802 (SUSE): 6.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L CVE-2020-9803 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-9803 (SUSE): 6.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L CVE-2020-9805 (NVD) : 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L CVE-2020-9805 (SUSE): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L CVE-2020-9947 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-9947 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-9948 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-9951 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-9951 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-9952 (NVD) : 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L CVE-2020-9952 (SUSE): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2021-1765 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2021-1765 (SUSE): 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2021-1788 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-1788 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-1844 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-1844 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-1871 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-1871 (SUSE): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-30809 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30809 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30818 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30818 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30823 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVE-2021-30823 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVE-2021-30836 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVE-2021-30836 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVE-2021-30846 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30846 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30848 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30848 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30849 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30849 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30851 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30851 (SUSE): 7.8CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30858 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30858 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30884 (NVD) : 4.7 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N CVE-2021-30884 (SUSE): 4.7 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N CVE-2021-30887 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2021-30887 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2021-30888 (NVD) : 7.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N CVE-2021-30888 (SUSE): 7.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N CVE-2021-30889 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30889 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30890 (NVD) : 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2021-30890 (SUSE): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2021-30897 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N Affected Products: SUSE Manager Server 4.1 SUSE Manager Retail Branch Server 4.1 SUSE Manager Proxy 4.1 SUSE Linux Enterprise Server for SAP 15-SP2 SUSE Linux Enterprise Server 15-SP2-LTSS SUSE Linux Enterprise Server 15-SP2-BCL SUSE Linux Enterprise Module for Desktop Applications 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS SUSE Enterprise Storage 7 ______________________________________________________________________________ An updatethat fixes 43 vulnerabilities is now available. Description: This update for webkit2gtk3 fixes the following issues: - Update to version 2.34.3 (bsc#1194019). - CVE-2021-30887: Fixed logic issue allowing unexpectedly unenforced Content Security Policy when processing maliciously crafted web content. - CVE-2021-30890: Fixed logic issue allowing universal cross site scripting when processing maliciously crafted web content. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Manager Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-182=1 - SUSE Manager Retail Branch Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-182=1 - SUSE Manager Proxy 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-182=1 - SUSE Linux Enterprise Server for SAP 15-SP2: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2022-182=1 - SUSE Linux Enterprise Server 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-182=1 - SUSE Linux Enterprise Server 15-SP2-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-BCL-2022-182=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP3: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP3-2022-182=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-182=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-182=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-182=1 - SUSE Enterprise Storage 7: zypper in -t patch SUSE-Storage-7-2022-182=1 Package List: -SUSE Manager Server 4.1 (ppc64le s390x x86_64): libjavascriptcoregtk-4_0-18-2.34.3-23.3 libjavascriptcoregtk-4_0-18-debuginfo-2.34.3-23.3 libwebkit2gtk-4_0-37-2.34.3-23.3 libwebkit2gtk-4_0-37-debuginfo-2.34.3-23.3 typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3 typelib-1_0-WebKit2-4_0-2.34.3-23.3 typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-debuginfo-2.34.3-23.3 webkit2gtk3-debugsource-2.34.3-23.3 webkit2gtk3-devel-2.34.3-23.3 - SUSE Manager Server 4.1 (noarch): libwebkit2gtk3-lang-2.34.3-23.3 - SUSE Manager Retail Branch Server 4.1 (x86_64): libjavascriptcoregtk-4_0-18-2.34.3-23.3 libjavascriptcoregtk-4_0-18-debuginfo-2.34.3-23.3 libwebkit2gtk-4_0-37-2.34.3-23.3 libwebkit2gtk-4_0-37-debuginfo-2.34.3-23.3 typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3 typelib-1_0-WebKit2-4_0-2.34.3-23.3 typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-debuginfo-2.34.3-23.3 webkit2gtk3-debugsource-2.34.3-23.3 webkit2gtk3-devel-2.34.3-23.3 - SUSE Manager Retail Branch Server 4.1 (noarch): libwebkit2gtk3-lang-2.34.3-23.3 - SUSE Manager Proxy 4.1 (noarch): libwebkit2gtk3-lang-2.34.3-23.3 - SUSE Manager Proxy 4.1 (x86_64): libjavascriptcoregtk-4_0-18-2.34.3-23.3 libjavascriptcoregtk-4_0-18-debuginfo-2.34.3-23.3 libwebkit2gtk-4_0-37-2.34.3-23.3 libwebkit2gtk-4_0-37-debuginfo-2.34.3-23.3 typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3 typelib-1_0-WebKit2-4_0-2.34.3-23.3 typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-debuginfo-2.34.3-23.3 webkit2gtk3-debugsource-2.34.3-23.3 webkit2gtk3-devel-2.34.3-23.3 - SUSE Linux Enterprise Server for SAP 15-SP2 (ppc64le x86_64): libjavascriptcoregtk-4_0-18-2.34.3-23.3 libjavascriptcoregtk-4_0-18-debuginfo-2.34.3-23.3 libwebkit2gtk-4_0-37-2.34.3-23.3 libwebkit2gtk-4_0-37-debuginfo-2.34.3-23.3 typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3 typelib-1_0-WebKit2-4_0-2.34.3-23.3 typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-debuginfo-2.34.3-23.3 webkit2gtk3-debugsource-2.34.3-23.3 webkit2gtk3-devel-2.34.3-23.3 - SUSE Linux Enterprise Server for SAP 15-SP2 (noarch): libwebkit2gtk3-lang-2.34.3-23.3 - SUSE Linux Enterprise Server 15-SP2-LTSS (aarch64 ppc64le s390x x86_64): libjavascriptcoregtk-4_0-18-2.34.3-23.3 libjavascriptcoregtk-4_0-18-debuginfo-2.34.3-23.3 libwebkit2gtk-4_0-37-2.34.3-23.3 libwebkit2gtk-4_0-37-debuginfo-2.34.3-23.3 typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3 typelib-1_0-WebKit2-4_0-2.34.3-23.3 typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-debuginfo-2.34.3-23.3 webkit2gtk3-debugsource-2.34.3-23.3 webkit2gtk3-devel-2.34.3-23.3 - SUSE Linux Enterprise Server 15-SP2-LTSS (noarch): libwebkit2gtk3-lang-2.34.3-23.3 - SUSE Linux Enterprise Server 15-SP2-BCL (noarch): libwebkit2gtk3-lang-2.34.3-23.3 - SUSE Linux Enterprise Server 15-SP2-BCL (x86_64): libjavascriptcoregtk-4_0-18-2.34.3-23.3 libjavascriptcoregtk-4_0-18-debuginfo-2.34.3-23.3 libwebkit2gtk-4_0-37-2.34.3-23.3 libwebkit2gtk-4_0-37-debuginfo-2.34.3-23.3 typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3 typelib-1_0-WebKit2-4_0-2.34.3-23.3 typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-debuginfo-2.34.3-23.3 webkit2gtk3-debugsource-2.34.3-23.3 webkit2gtk3-devel-2.34.3-23.3 - SUSE Linux Enterprise Module for DesktopApplications 15-SP3 (aarch64 ppc64le s390x x86_64): typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3 typelib-1_0-WebKit2-4_0-2.34.3-23.3 typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3 webkit2gtk3-debugsource-2.34.3-23.3 webkit2gtk3-devel-2.34.3-23.3 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): libjavascriptcoregtk-4_0-18-2.34.3-23.3 libjavascriptcoregtk-4_0-18-debuginfo-2.34.3-23.3 libwebkit2gtk-4_0-37-2.34.3-23.3 libwebkit2gtk-4_0-37-debuginfo-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-debuginfo-2.34.3-23.3 webkit2gtk3-debugsource-2.34.3-23.3 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (noarch): libwebkit2gtk3-lang-2.34.3-23.3 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (aarch64 x86_64): libjavascriptcoregtk-4_0-18-2.34.3-23.3 libjavascriptcoregtk-4_0-18-debuginfo-2.34.3-23.3 libwebkit2gtk-4_0-37-2.34.3-23.3 libwebkit2gtk-4_0-37-debuginfo-2.34.3-23.3 typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3 typelib-1_0-WebKit2-4_0-2.34.3-23.3 typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-debuginfo-2.34.3-23.3 webkit2gtk3-debugsource-2.34.3-23.3 webkit2gtk3-devel-2.34.3-23.3 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (noarch): libwebkit2gtk3-lang-2.34.3-23.3 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (aarch64 x86_64): libjavascriptcoregtk-4_0-18-2.34.3-23.3 libjavascriptcoregtk-4_0-18-debuginfo-2.34.3-23.3 libwebkit2gtk-4_0-37-2.34.3-23.3 libwebkit2gtk-4_0-37-debuginfo-2.34.3-23.3 typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3 typelib-1_0-WebKit2-4_0-2.34.3-23.3 typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-debuginfo-2.34.3-23.3 webkit2gtk3-debugsource-2.34.3-23.3 webkit2gtk3-devel-2.34.3-23.3 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (noarch): libwebkit2gtk3-lang-2.34.3-23.3 - SUSE Enterprise Storage 7 (aarch64 x86_64): libjavascriptcoregtk-4_0-18-2.34.3-23.3 libjavascriptcoregtk-4_0-18-debuginfo-2.34.3-23.3 libwebkit2gtk-4_0-37-2.34.3-23.3 libwebkit2gtk-4_0-37-debuginfo-2.34.3-23.3 typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3 typelib-1_0-WebKit2-4_0-2.34.3-23.3 typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-2.34.3-23.3 webkit2gtk-4_0-injected-bundles-debuginfo-2.34.3-23.3 webkit2gtk3-debugsource-2.34.3-23.3 webkit2gtk3-devel-2.34.3-23.3 - SUSE Enterprise Storage 7 (noarch): libwebkit2gtk3-lang-2.34.3-23.3 References: https://www.suse.com/security/cve/CVE-2019-8766.html https://www.suse.com/security/cve/CVE-2019-8782.html https://www.suse.com/security/cve/CVE-2019-8808.html https://www.suse.com/security/cve/CVE-2019-8815.html https://www.suse.com/security/cve/CVE-2020-13753.html https://www.suse.com/security/cve/CVE-2020-27918.html https://www.suse.com/security/cve/CVE-2020-29623.html https://www.suse.com/security/cve/CVE-2020-3902.html https://www.suse.com/security/cve/CVE-2020-9802.html https://www.suse.com/security/cve/CVE-2020-9803.html https://www.suse.com/security/cve/CVE-2020-9805.html https://www.suse.com/security/cve/CVE-2020-9947.html https://www.suse.com/security/cve/CVE-2020-9948.html https://www.suse.com/security/cve/CVE-2020-9951.html https://www.suse.com/security/cve/CVE-2020-9952.html https://www.suse.com/security/cve/CVE-2021-1765.html https://www.suse.com/security/cve/CVE-2021-1788.html https://www.suse.com/security/cve/CVE-2021-1817.html https://www.suse.com/security/cve/CVE-2021-1820.html https://www.suse.com/security/cve/CVE-2021-1825.html https://www.suse.com/security/cve/CVE-2021-1826.html https://www.suse.com/security/cve/CVE-2021-1844.html https://www.suse.com/security/cve/CVE-2021-1871.html https://www.suse.com/security/cve/CVE-2021-30661.html https://www.suse.com/security/cve/CVE-2021-30666.html https://www.suse.com/security/cve/CVE-2021-30682.html https://www.suse.com/security/cve/CVE-2021-30761.html https://www.suse.com/security/cve/CVE-2021-30762.html https://www.suse.com/security/cve/CVE-2021-30809.html https://www.suse.com/security/cve/CVE-2021-30818.html https://www.suse.com/security/cve/CVE-2021-30823.html https://www.suse.com/security/cve/CVE-2021-30836.html https://www.suse.com/security/cve/CVE-2021-30846.html https://www.suse.com/security/cve/CVE-2021-30848.html https://www.suse.com/security/cve/CVE-2021-30849.html https://www.suse.com/security/cve/CVE-2021-30851.html https://www.suse.com/security/cve/CVE-2021-30858.html https://www.suse.com/security/cve/CVE-2021-30884.html https://www.suse.com/security/cve/CVE-2021-30887.html https://www.suse.com/security/cve/CVE-2021-30888.html https://www.suse.com/security/cve/CVE-2021-30889.html https://www.suse.com/security/cve/CVE-2021-30890.html https://www.suse.com/security/cve/CVE-2021-30897.html https://bugzilla.suse.com/1194019 . Ubuntu has released patches addressing 50 significant vulnerabilities in the libxml2 library. It is crucial to apply these updates promptly to maintain system security.. SUSE Webkit2gtk3 Patch, Software Update, Security Fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 25, 2022 Important SuSE
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorycode executionmageia

Mageia 7 MGASA-2020-0436 Moderate: fsck.f2fs Code Execution Risk

An exploitable code execution vulnerability exists in the file system checking functionality of fsck.f2fs 1.12.0. A specially crafted f2fs file can cause a logic flaw and out-of-bounds heap operations, resulting in code execution. An attacker can provide a malicious file to trigger this vulnerability (CVE-2020-6070). . MGASA-2020-0436 - Updated f2fs-tools packages fix security vulnerability Publication date: 23 Nov 2020 URL: https://advisories.mageia.org/MGASA-2020-0436.html Type: security Affected Mageia releases: 7 CVE: CVE-2020-6070 An exploitable code execution vulnerability exists in the file system checking functionality of fsck.f2fs 1.12.0. A specially crafted f2fs file can cause a logic flaw and out-of-bounds heap operations, resulting in code execution. An attacker can provide a malicious file to trigger this vulnerability (CVE-2020-6070). References: - https://bugs.mageia.org/show_bug.cgi?id=27413 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/3SZ4HMQKNI35NBWJI6XMJBGWPEKZRR72/ - https://www.cve.org/CVERecord?id=CVE-2020-6070 SRPMS: - 7/core/f2fs-tools-1.14.0-1.mga7 . The latest security bulletin from Mageia addresses a critical flaw in code execution within fsck.f2fs version 1.12.0, an issue that has lingered since November 2020.. Mageia Advisory, f2fs-tools Security, Code Execution Vulnerability, fsck.f2fs, Heap Operations. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Nov 23, 2020 Important Mageia
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdatecritical

Fedora 33 2020-a0b24e9377 Critical F2FS Tools Logic Flaw Fix

Update to 1.14.0. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-a0b24e9377 2020-09-28 00:14:30.730644 --------------------------------------------------------------------------------Name : f2fs-tools Product : Fedora 33 Version : 1.14.0 Release : 1.fc33 URL : https://sourceforge.net/projects/f2fs-tools/ Summary : Tools for Flash-Friendly File System (F2FS) Description : NAND flash memory-based storage devices, such as SSD, and SD cards, have been widely being used for ranging from mobile to server systems. Since they are known to have different characteristics from the conventional rotational disks,a file system, an upper layer to the storage device, should adapt to the changes from the sketch. F2FS is a new file system carefully designed for the NAND flash memory-based storage devices. We chose a log structure file system approach, but we tried to adapt it to the new form of storage. Also we remedy some known issues of the very old log structured file system, such as snowball effect of wandering tree and high cleaning overhead. Because a NAND-based storage device shows different characteristics according to its internal geometry or flash memory management scheme aka FTL, we add various parameters not only for configuring on-disk layout, but also for selecting allocation and cleaning algorithms. --------------------------------------------------------------------------------Update Information: Update to 1.14.0 --------------------------------------------------------------------------------ChangeLog: * Thu Sep 24 2020 Peter Robinson - 1.14.0-1 - Update to 1.14.0 --------------------------------------------------------------------------------References: [ 1 ] Bug #1861729 - CVE-2020-6070 f2fs-tools: specially crafted f2fs file can cause a logic flaw and out-of-bounds heap operations, resulting in code execution [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1861729 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-a0b24e9377' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . The recent F2FS-tools enhancement for Fedora 33 addresses a computational inconsistency that could result in possible security vulnerabilities. More information can be found here.. F2FS Tools, Fedora 33 Update, Logic Flaw Fix, Code Execution, Flash-Friendly File System. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 27, 2020 Critical Fedora
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydebianmoderate severity

Debian: DLA-1002-1 Moderate: Smb4k Logic Flaw Local Root Access

Sebastian Krahmer from SUSE discovered that smb4k, a Samba (SMB) share advanced browser, contains a logic flaw in which the mount helper binary does not properly verify the mount command it is being asked to run. . Hash: SHA512 Package : smb4k Version : 1.2.1-2~deb7u1 CVE ID : CVE-2017-8849 Debian Bug : 862505 Sebastian Krahmer from SUSE discovered that smb4k, a Samba (SMB) share advanced browser, contains a logic flaw in which the mount helper binary does not properly verify the mount command it is being asked to run. This allows local users to call any other binary as root. The issue is resolved by backporting version 1.2.1-2 from Debian 9 "Stretch". For Debian 7 "Wheezy", these problems have been fixed in version 1.2.1-2~deb7u1. We recommend that you upgrade your smb4k packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Stay informed about the smb4k patch addressing a logic vulnerability that grants local root permissions. Enhance your security by upgrading.. Debian LTS,smb4k update,security risk,access control flaw,software update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 26, 2017 Important Debian LTS
Banner 1 1028x280 1708121660 1771599717
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorysubversiondebian

Debian: DSA-2118-1 Moderate: Subversion Access Control Bypass

Kamesh Jayachandran and C. Michael Pilat discovered that the mod_dav_svn module of subversion, a version control system, is not properly enforcing access rules which are scope-limited to named repositories. If the SVNPathAuthz option is set to "short_circuit" set this may enable an . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --------------------------------------------------------------------------- Debian Security Advisory DSA-2118-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Nico Golde October 8th, 2010 http://www.debian.org/security/faq - --------------------------------------------------------------------------- Package : subversion Vulnerability : logic flaw Problem type : remote Debian-specific: no Debian bug : none CVE ID : CVE-2010-3315 Kamesh Jayachandran and C. Michael Pilat discovered that the mod_dav_svn module of subversion, a version control system, is not properly enforcing access rules which are scope-limited to named repositories. If the SVNPathAuthz option is set to "short_circuit" set this may enable an unprivileged attacker to bypass intended access restrictions and disclose or modify repository content. As a workaround it is also possible to set SVNPathAuthz to "on" but be advised that this can result in a performance decrease for large repositories. For the stable distribution (lenny), this problem has been fixed in version 1.5.1dfsg1-5. For the testing distribution (squeeze), this problem has been fixed in version 1.6.12dfsg-2. For the unstable distribution (sid), this problem has been fixed in version 1.6.12dfsg-2. We recommend that you upgrade your samba packages. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internaldatabase apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 5.0 alias lenny - -------------------------------- Debian (stable) - --------------- Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: Size/MD5 checksum: 91687 44dd10c3137760240bb56a100ca4cba6 Size/MD5 checksum: 1845 7878e43c2c80e0a6c07b96d797dfde86 Size/MD5 checksum: 6805740 09a95bbc203ec516db796bd40d612403 Architecture independent packages: Size/MD5 checksum: 1937436 69a2e5adf8a482d288e3f29357d10194 Size/MD5 checksum: 181958 000312b36cc4ff900c4479df748c0172 Size/MD5 checksum: 764 6fced63bde9227b8f7671fb33cb2d7b1 alpha architecture (DEC Alpha) Size/MD5 checksum: 533438 7a199374ac5459a5b67e319917037004 Size/MD5 checksum: 1294012 f35e99abaf9514e824baec6be8585fb2 Size/MD5 checksum: 899446 d41aa5920720619965450703f3c8fe49 Size/MD5 checksum: 151234 a153898b355944200fd0187202d49500 Size/MD5 checksum: 1193012 5ea6e2cc6567bfc3d9a96cdb99255a3e Size/MD5 checksum: 1150232 fa24f3c490f6097f028b258c64d8c4f1 Size/MD5 checksum: 1565150 d41477926238b46ae2e15a9c87299ac0 amd64 architecture (AMD x86_64 (AMD64)) Size/MD5 checksum: 1283396 28dcf742f9807ea42333e288b2d8204b Size/MD5 checksum: 285336 8bc405f1733103bdc1f8adc4ee9ccc60 Size/MD5 checksum: 150352 4fd2dacd30026f3ce29dc4cfe0060487 Size/MD5 checksum: 1211864 a26e60f59bff282e1e9475eacb7bcdcc Size/MD5 checksum: 864300 698f5b201980f3a46dc699bab55b83ec Size/MD5 checksum: 1219570 fbdcfa0d608b0a3366aae42c0efea222 Size/MD5 checksum: 1081856 0df403c57d9c7029122c1f3026cf3624 Size/MD5 checksum: 561334 fbea124e749f15b8f2eb0435b9373c2d armel architecture (ARM EABI) Size/MD5 checksum: 1079482 9d876a12091cd7d085c35a75ad923e81 Size/MD5checksum: 755496 fb35757f0a6fb6a407e7896650e88f0d Size/MD5 checksum: 1008056 411b3292372bf1063f939dd81362ebad Size/MD5 checksum: 1265200 b0da7f200016785630e7a5cc2bd232e7 Size/MD5 checksum: 270450 76f0839388b1154945866442a181ce80 Size/MD5 checksum: 1007228 b543718e22e8f03f2f415a352182468e Size/MD5 checksum: 145458 0dbeb3bd0e2c5ed331d5197ff71d0660 Size/MD5 checksum: 486476 f1eb839928409d7d24ce233b54addde6 hppa architecture (HP PA RISC) Size/MD5 checksum: 1027356 2861729258f5f25f0bb164c5c55a27b7 Size/MD5 checksum: 1254650 2125678a8e2385e447cedf96b6e17914 Size/MD5 checksum: 905772 3c4339c885e3bcfaaa1fbcb1d4f341f0 Size/MD5 checksum: 1295962 06d94ae1bb59ca4ace1f883ea7d7418d Size/MD5 checksum: 156242 cd8bd3ea65add9a291924753cff55b20 Size/MD5 checksum: 588142 ec7dfe6df0dfe58c82cf74a32a7ca667 Size/MD5 checksum: 1291430 b2b91b912030d496c93af1118b83a17e i386 architecture (Intel ia32) Size/MD5 checksum: 1074718 0d5f86bc8b50868ed99fd22de2299c14 Size/MD5 checksum: 282014 c5396f219d33502ee0ba6cfd1524d93a Size/MD5 checksum: 1032258 fea5736294397cbe8cae51171525d268 Size/MD5 checksum: 796404 11e2a23a29bf55d8a5cd7f590bbdf36c Size/MD5 checksum: 1271350 bdfae53cb17918c53fe2c4bbc42d8f75 Size/MD5 checksum: 145800 8ec9eecc3aa2c0465ae46fee45e05f99 Size/MD5 checksum: 477000 8a147188a35241faeac5ab6888489f1a Size/MD5 checksum: 1021338 08f8a6a05a8d7471a32bcab7cf162a83 ia64 architecture (Intel ia64) Size/MD5 checksum: 1413864 84c77d2aabb03897b7410f05f26a57a9 Size/MD5 checksum: 1461180 94667513edaadb3d78a88ed03591008e Size/MD5 checksum: 175784 9c7df1e0e7724919269cc1da319555b3 Size/MD5 checksum: 1622990 2127f6e7b7151c8f47761a18ba08a2dd Size/MD5 checksum: 722714 18ed5dc94721ab1595daab3c02e0de23 Size/MD5 checksum: 1150024 f34b0db4e7ebf919666db0f57b8d5591 Size/MD5 checksum: 303334 0a079f6612ee1b4ac7a583b9ef67fee4 Size/MD5checksum: 1346014 c7857b73866f98eeef2022c9ac57e6ed mips architecture (MIPS (Big Endian)) Size/MD5 checksum: 977188 7b7d51612243195e5156598fc02329b1 Size/MD5 checksum: 143056 a444d612b30599bbd91ceafebed33c0a Size/MD5 checksum: 1291450 813a471bd646f4ce4c80b18fe3fe7897 Size/MD5 checksum: 780626 17b703bf018936efd90c130fc75c8804 Size/MD5 checksum: 726576 54599e99dbd1d9d2781f84c091451cf0 Size/MD5 checksum: 431282 a7d5de9575b192b910ae2b8f6da596b7 Size/MD5 checksum: 1278244 5e9e1f6136a7edbbfc537e5308bfb2b5 mipsel architecture (MIPS (Little Endian)) Size/MD5 checksum: 778638 521e2fe9cbf6b61f097060eeae5c0e42 Size/MD5 checksum: 143196 419015f1cd73779a504e1541af596d89 Size/MD5 checksum: 950776 117b465365cd0c4ad63ec7711b12c026 Size/MD5 checksum: 424336 96946525ffedbe47daae09b1700d7dec Size/MD5 checksum: 1276544 359830f00320d396749aecca8ea366e5 Size/MD5 checksum: 720216 1874c5f527f99b1c014a41e2d11c6453 Size/MD5 checksum: 1287646 f20ea0befa3d37159bd942e872714c37 powerpc architecture (PowerPC) Size/MD5 checksum: 1309342 3fc631a35f69d912998e341127cacf8d Size/MD5 checksum: 1129310 f27b7820ede925740d8c9766800a6749 Size/MD5 checksum: 293052 7b5cea363816832c40d9deb8d0cf4ebe Size/MD5 checksum: 1211154 a06326b622c439df7358155a2416a379 Size/MD5 checksum: 891340 728cc7a7fba53cb468f39b751fa1eebd Size/MD5 checksum: 539724 b30c1d6b126660abc633dc43073cacfe Size/MD5 checksum: 156110 9be01af660ef7402f4275cc21c37608c Size/MD5 checksum: 1120060 d6591d088fe879f5094c84e8b839d8b0 s390 architecture (IBM S/390) Size/MD5 checksum: 1147140 546e0538fa3b7ecb96e53ccce638a290 Size/MD5 checksum: 525536 7b8ef26f1cdba48838a1bee9a4a347cc Size/MD5 checksum: 1295362 586d80be57e1568a54db74f9486eeca3 Size/MD5 checksum: 283310 50e24ceb2aa44e5404d09f6ae5ba4618 Size/MD5 checksum: 153672 adea0d2ad7c264b70641a036c32790e7 Size/MD5 checksum: 8509323d87c9a80e8e67bd98d222bcaa5983a1 Size/MD5 checksum: 867490 02ce0a908b9b354b7bcf740004bee6cb Size/MD5 checksum: 1167094 4e42c8d4951648a2427f691ce574edaa sparc architecture (Sun SPARC/UltraSPARC) Size/MD5 checksum: 1083012 1f7d508a4fecdbb5d27cf8881425f115 Size/MD5 checksum: 145080 4c22a42819c8cfa53b7cd52b81fa9174 Size/MD5 checksum: 491828 332f1d25029aa4cefc30bf831a6f3b79 Size/MD5 checksum: 277138 e2b536c3016240307f80980d2d7e2a14 Size/MD5 checksum: 1274640 becab26e59f0736703e7dc20320c8d10 Size/MD5 checksum: 742790 bd00aad310f314101f6c28467dcc14f8 Size/MD5 checksum: 1017700 5ff6c6e4035e9c1c83c23cd39da46560 Size/MD5 checksum: 1072676 8b24094ba1a0af57eec6d4e61ad23313 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb https://www.debian.org/security/ stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . A security flaw in Samba involves mitigation strategies and validation protocols for maintaining safe operations.. Debian Subversion Fix, Authentication Bypass, Security Advisory. . LinuxSecurity.com Team

Calendar 2 Oct 08, 2010 Debian
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here