Alerts This Week
Warning Icon 1 541
Alerts This Week
Warning Icon 1 541

Stay Secure with the Latest Linux Advisories

Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H800
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorymoderatedenial of service

Ubuntu 10.04 LTS: 1059-1 Moderate: Dovecot Mailbox Access Issues

It was discovered that the ACL plugin in Dovecot would incorrectly propagate ACLs to new mailboxes. A remote authenticated user could possibly read new mailboxes that were created with the wrong ACL. (CVE-2010-3304) [More...]. ==========================================================Ubuntu Security Notice USN-1059-1 February 07, 2011 dovecot vulnerabilities CVE-2010-3304, CVE-2010-3706, CVE-2010-3707, CVE-2010-3779, CVE-2010-3780 ========================================================== A security issue affects the following Ubuntu releases: Ubuntu 10.04 LTS Ubuntu 10.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 10.04 LTS: dovecot-common 1:1.2.9-1ubuntu6.3 Ubuntu 10.10: dovecot-common 1:1.2.12-1ubuntu8.1 In general, a standard system update will make all the necessary changes. Details follow: It was discovered that the ACL plugin in Dovecot would incorrectly propagate ACLs to new mailboxes. A remote authenticated user could possibly read new mailboxes that were created with the wrong ACL. (CVE-2010-3304) It was discovered that the ACL plugin in Dovecot would incorrectly merge ACLs in certain circumstances. A remote authenticated user could possibly bypass intended access restrictions and gain access to mailboxes. (CVE-2010-3706, CVE-2010-3707) It was discovered that the ACL plugin in Dovecot would incorrectly grant the admin permission to owners of certain mailboxes. A remote authenticated user could possibly bypass intended access restrictions and gain access to mailboxes. (CVE-2010-3779) It was discovered that Dovecot incorrecly handled the simultaneous disconnect of a large number of sessions. A remote authenticated user could use this flaw to cause Dovecot to crash, resulting in a denial of service. (CVE-2010-3780) Updated packages for Ubuntu 10.04 LTS: Source archives: Size/MD5: 1418658 e63585f0ff54bca7e0bf13cfc231b71f Size/MD5: 2318 fec51e228070f787fb056143796db75c Size/MD5: 2889394 036ff97fb248dae3bd4b796a0644634f Architecture independent packages: Size/MD5: 517504 dbca36979cd97e82d8aa5a97e677ae09 amd64 architecture (Athlon64, Opteron, EM64T Xeon): Size/MD5: 5512258 e5d7ae5b2c55b255804a0f3996edb3fe Size/MD5: 14963328 1ccfc078b3230a780306bde804bfaba3 Size/MD5: 659902 1581f01ffeb79f2660cd36ff5bd71ffc Size/MD5: 1200744 aa69e75cf135728602d79ba246573527 Size/MD5: 1093072 6eee0eeb2518e04cb1a2144f7f17d3d4 i386 architecture (x86 compatible Intel/AMD): Size/MD5: 5216218 25ec6a29054490f2c375afff3c32da4c Size/MD5: 14832598 ff39bdbfadc6db0fe3f065e41ee814fd Size/MD5: 659420 b17a74bc656c284905f56c0a57ce4967 Size/MD5: 1165324 90896ac034e6f8330941ccdcbbb89706 Size/MD5: 1064182 208bf8c365d586b448a4dd9b1f35348c armel architecture (ARM Architecture): Size/MD5: 4884006 b25ca8e16b8b3cc6b35668ccc61acee4 Size/MD5: 15029038 cfeb4beeab0436c51610548891daeb3b Size/MD5: 659290 a76eba105ff7737ea253ea4e47630df9 Size/MD5: 1117728 0a9ac5eed3e7ee4cedbbce7fb4d00f4e Size/MD5: 1022380 4b2ef79d7af993f14f1fe4f98763ef8a powerpc architecture (Apple Macintosh G3/G4/G5): Size/MD5: 5569840 8684510a8a22672e6d392b00bc8509b2 Size/MD5: 15366966 e99997cb326c9803f63ab53211c3fe1f Size/MD5: 656482 59256f0c930f644d6b0adc995daa8a9a Size/MD5: 1219628 66118e59a5ed500f754b00c2b4a645f0 Size/MD5: 1107240 76e505910a9d9120b27228b6f46483ea sparc architecture (Sun SPARC/UltraSPARC): Size/MD5: 5315260 91239166c042cb1776f53aec4942bd9c Size/MD5: 14201530 400e1594cc8dc50607a6e30bc2409910 Size/MD5: 656468 d61d6e6bde0d48346018a432badee15e Size/MD5: 1189960 8c93283a7425f5ffb2cba844edf6db56 Size/MD5: 1081132 ca8c6c4944e22f23fcdde4b55374e41d Updated packages for Ubuntu 10.10: Source archives: Size/MD5: 1538312 e1d8c3fe8f56021c4c12d8c334412f0b Size/MD5: 2347 8ede599bb24182293c4d6151c3f5c34a Size/MD5: 2882517 cc8e5c53cd0943ce0b5e1087356ad4ea Architecture independent packages: Size/MD5: 522198 b5ee6b912defe13e6899cba856c03836 Size/MD5: 525996 063bf23bee428827de152998fce3855f amd64 architecture (Athlon64, Opteron, EM64T Xeon): Size/MD5: 5561644 edb933283a0b70dd78c9be26b6d23dbb Size/MD5: 15315074 0db6f32bbdc1cfd4f61ebb3ede83bf67 Size/MD5: 664354 359aff3615bb4c929a23e3f7d34b0817 Size/MD5: 1202962 01e84db943a506d3e449ec7198be115c Size/MD5: 1096030 409378f2fd83bf1db66383bd30f80c4d i386 architecture (x86 compatible Intel/AMD): Size/MD5: 5246496 17d4a818b64e265f244a0110d027a33d Size/MD5: 15173598 dbadcbf9c428b908f074f29b9687fb1f Size/MD5: 664386 c8b2ffd0f0ae892fd792d71b11f29658 Size/MD5: 1166874 2d6b53c0113f91db83d0497d878fccb4 Size/MD5: 1065500 17fddc68c95dbfdce3d74812a707eca3 armel architecture (ARM Architecture): Size/MD5: 5262734 38a9be4a1b9a2cedaa9c9eb3c16c79b5 Size/MD5: 15518084 b8c34a059e680d8e6277bfd413dd95b3 Size/MD5: 667334 a37e1a557224328422e4bbe989f831e3 Size/MD5: 1169838 945c88bfb26e32c828bccc72f4fe0ad3 Size/MD5: 1069910 444e4fde0cabe6ec435c539fdb7fd87b powerpc architecture (Apple Macintosh G3/G4/G5): Size/MD5: 5615034 3462d60a1c4d7b2510ca5721a0ea6726 Size/MD5: 15747518 a38d8e6c790a1c2beb528a0b8c7a92ce Size/MD5: 664372 9e5f5e9164c8537092faeab594f21083 Size/MD5: 1220492 88d7ed99069a33560387e93f8e3d3b29 Size/MD5: 1109338 63407bf75988c92d4279229280591ce6 . Both Ubuntu versions 10.04 LTS and10.10 are susceptible to vulnerabilities in Dovecot that can compromise mailbox integrity and administrative access.. Dovecot Access Control, Ubuntu Mailbox Security, ACL Plugin Issues. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 07, 2011 Important Ubuntu
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorybug fixRed Hat Enterprise Linux

Red Hat Enterprise Linux 3 RHSA-2007:0431-01 Low: Mailbox Issue

An updated shadow-utils package that fixes a security issue and several bugs is now available.A flaw was found in the useradd tool in shadow-utils. A new user's mailbox, when created, could have random permissions for a short period. This could allow a local attacker to read or modify the mailbox. This update has been rated as having low security impact by the Red Hat Security Response Team.. - --------------------------------------------------------------------- Red Hat Security Advisory Synopsis: Low: shadow-utils security and bug fix update Advisory ID: RHSA-2007:0431-01 Advisory URL: https://access.redhat.com/errata/RHSA-2007:0431.html Issue date: 2007-06-07 Updated on: 2007-06-11 Product: Red Hat Enterprise Linux Keywords: mailbox race condition CVE Names: CVE-2006-1174 - ---------------------------------------------------------------------1. Summary: An updated shadow-utils package that fixes a security issue and several bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64 3. Problem description: The shadow-utils package includes the necessary programs for converting UNIX password files to the shadow password format, as well as programs for managing user and group accounts. A flaw was found in the useradd tool in shadow-utils. A new user's mailbox, when created, could have random permissions for a short period. This could allow a local attacker to read or modify the mailbox. (CVE-2006-1174) This update also fixes the following bugs: * shadow-utils debuginfo package was empty. * chage.1 and chage -l gave incorrect information aboutsp_inact. All users of shadow-utils are advised to upgrade to this updated package, which contains backported patches to resolve these issues. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command: up2date For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system: https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/10/ 5. Bug IDs fixed (http://bugzilla.redhat.com/): 176949 - shadow-utils-debuginfo is empty 216635 - chage does not show the Account Expires if its shadow field is 0. 229194 - CVE-2006-1174 shadow-utils mailbox creation race condition 6. RPMs required: Red Hat Enterprise Linux AS version 3: SRPMS: 966d844be451d09e732289fcf217af85 shadow-utils-4.0.3-29.RHEL3.src.rpm i386: 70b7cf4df9bd1bee11c1f290ae3a1bbe shadow-utils-4.0.3-29.RHEL3.i386.rpm 2878f009ae2277881d44c4f05fec1671 shadow-utils-debuginfo-4.0.3-29.RHEL3.i386.rpm ia64: 83ccf4e549535ebe265043c2ebdd6a40 shadow-utils-4.0.3-29.RHEL3.ia64.rpm 5f83cb4808a46b52282e1acbce406a70 shadow-utils-debuginfo-4.0.3-29.RHEL3.ia64.rpm ppc: c686de929e196cd87b203e1ab85bbd01 shadow-utils-4.0.3-29.RHEL3.ppc.rpm 1a7206beb87ea524d7fafa5f69a7beff shadow-utils-debuginfo-4.0.3-29.RHEL3.ppc.rpm s390: 7badcd687970e0393547cac663e4d5b8 shadow-utils-4.0.3-29.RHEL3.s390.rpm a24128e6b4f152c0cdbeec5d671b6578 shadow-utils-debuginfo-4.0.3-29.RHEL3.s390.rpm s390x: cdd3cc34271e7b59c0374f03a46e8715 shadow-utils-4.0.3-29.RHEL3.s390x.rpm 107d87178483ddb3c93342dfb7ba5120 shadow-utils-debuginfo-4.0.3-29.RHEL3.s390x.rpm x86_64: e6661e59bc80a8bb3f49566183a082a0 shadow-utils-4.0.3-29.RHEL3.x86_64.rpm a380a8d6aabd84211c8b5850299a3ea1 shadow-utils-debuginfo-4.0.3-29.RHEL3.x86_64.rpm RedHat Desktop version 3: SRPMS: 966d844be451d09e732289fcf217af85 shadow-utils-4.0.3-29.RHEL3.src.rpm i386: 70b7cf4df9bd1bee11c1f290ae3a1bbe shadow-utils-4.0.3-29.RHEL3.i386.rpm 2878f009ae2277881d44c4f05fec1671 shadow-utils-debuginfo-4.0.3-29.RHEL3.i386.rpm x86_64: e6661e59bc80a8bb3f49566183a082a0 shadow-utils-4.0.3-29.RHEL3.x86_64.rpm a380a8d6aabd84211c8b5850299a3ea1 shadow-utils-debuginfo-4.0.3-29.RHEL3.x86_64.rpm Red Hat Enterprise Linux ES version 3: SRPMS: 966d844be451d09e732289fcf217af85 shadow-utils-4.0.3-29.RHEL3.src.rpm i386: 70b7cf4df9bd1bee11c1f290ae3a1bbe shadow-utils-4.0.3-29.RHEL3.i386.rpm 2878f009ae2277881d44c4f05fec1671 shadow-utils-debuginfo-4.0.3-29.RHEL3.i386.rpm ia64: 83ccf4e549535ebe265043c2ebdd6a40 shadow-utils-4.0.3-29.RHEL3.ia64.rpm 5f83cb4808a46b52282e1acbce406a70 shadow-utils-debuginfo-4.0.3-29.RHEL3.ia64.rpm x86_64: e6661e59bc80a8bb3f49566183a082a0 shadow-utils-4.0.3-29.RHEL3.x86_64.rpm a380a8d6aabd84211c8b5850299a3ea1 shadow-utils-debuginfo-4.0.3-29.RHEL3.x86_64.rpm Red Hat Enterprise Linux WS version 3: SRPMS: 966d844be451d09e732289fcf217af85 shadow-utils-4.0.3-29.RHEL3.src.rpm i386: 70b7cf4df9bd1bee11c1f290ae3a1bbe shadow-utils-4.0.3-29.RHEL3.i386.rpm 2878f009ae2277881d44c4f05fec1671 shadow-utils-debuginfo-4.0.3-29.RHEL3.i386.rpm ia64: 83ccf4e549535ebe265043c2ebdd6a40 shadow-utils-4.0.3-29.RHEL3.ia64.rpm 5f83cb4808a46b52282e1acbce406a70 shadow-utils-debuginfo-4.0.3-29.RHEL3.ia64.rpm x86_64: e6661e59bc80a8bb3f49566183a082a0 shadow-utils-4.0.3-29.RHEL3.x86_64.rpm a380a8d6aabd84211c8b5850299a3ea1 shadow-utils-debuginfo-4.0.3-29.RHEL3.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://www.cve.org/CVERecord?id=CVE-2006-1174 https://access.redhat.com/security/updates/classification#low 8. Contact: The Red Hat security contact is . Morecontact details at https://access.redhat.com/security/team/contact/ Copyright 2007 Red Hat, Inc. . A new release for shadow-utils rectifies vulnerabilities and issues in Red Hat Enterprise Linux, classified as low severity.. shadow-utils update, mailbox permissions, bug fixes. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Jun 11, 2007 Low Red Hat
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here