Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 18 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoraupdate information

Fedora 41: ffmpeg 2025-ab5fe60520 Security Advisory Updates

Latest maintenance release from 7.1 branch. Changelog: https://github.com/FFmpeg/FFmpeg/blob/n7.1.1/Changelog . Contains backported fix for CVE-2025-22921.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-ab5fe60520 2025-03-13 01:09:59.782815+00:00 -------------------------------------------------------------------------------- Name : ffmpeg Product : Fedora 41 Version : 7.1.1 Release : 1.fc41 URL : https://ffmpeg.org/ Summary : A complete solution to record, convert and stream audio and video Description : FFmpeg is a leading multimedia framework, able to decode, encode, transcode, mux, demux, stream, filter and play pretty much anything that humans and machines have created. It supports the most obscure ancient formats up to the cutting edge. No matter if they were designed by some standards committee, the community or a corporation. This build of ffmpeg is limited in the number of codecs supported. -------------------------------------------------------------------------------- Update Information: Latest maintenance release from 7.1 branch. Changelog: https://github.com/FFmpeg/FFmpeg/blob/n7.1.1/Changelog . Contains backported fix for CVE-2025-22921. -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 6 2025 Dominik Mierzejewski - 7.1.1-1 - Update to 7.1.1 (resolves rhbz#2349351) - Enable LC3 codec via liblc3 - Backport fix for CVE-2025-22921 (resolves rhbz#2346558) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2346558 - CVE-2025-22921 ffmpeg: Segmentation Violation in FFmpeg [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2346558 [ 2 ] Bug #2346566 - CVE-2025-25468 ffmpeg: Memory Leak in FFmpeg libavutil/mem.c [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2346566 [ 3 ] Bug #2349351 - ffmpeg-7.1.1 isavailable https://bugzilla.redhat.com/show_bug.cgi?id=2349351 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-ab5fe60520' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Fedora 41 releases critical ffmpeg update fixing segmentation violation CVE-2025-22921. Enhance your multimedia security!. latest, maintenance, release, branch, changelog, https, //github, com/ffmpeg/ffmpeg/blob/n7. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 13, 2025 Critical Fedora
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisoryupdateDebian

Debian 10 Buster: DLA-3337-1 Critical: MariaDB 10.3 Performance Issue

A new MariaDB minor maintenance release 10.3.38 has been released. It includes fix for a major performance/memory consumption issue (MDEV-29988). For further details, see the MariaDB 10.3 release notes: . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3337-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Otto Kekäläinen February 23, 2023 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : mariadb-10.3 Version : 1:10.3.38-0+deb10u1 Debian Bug : 1008629 A new MariaDB minor maintenance release 10.3.38 has been released. It includes fix for a major performance/memory consumption issue (MDEV-29988). For further details, see the MariaDB 10.3 release notes: https://mariadb.com/docs/release-notes/community-server/old-releases/release-notes-mariadb-10-3-series/mariadb-10-3-37-release-notes https://mariadb.com/docs/release-notes/community-server/old-releases/release-notes-mariadb-10-3-series/mariadb-10-3-38-release-notes For Debian 10 buster, this problem has been fixed in version 1:10.3.38-0+deb10u1. We recommend that you upgrade your mariadb-10.3 packages. For the detailed security status of mariadb-10.3 please refer to its security tracker page at: https://security-tracker.debian.org/tracker Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Transition to MariaDB version 10.3.38 to benefit from the performance boosts and security improvements mentioned in the Debian advisory DLA-3337-1.. MariaDB Update, Debian Security, Memory Fix, Performance Enhancements. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 23, 2023 Critical Debian LTS
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorybuffer overflowFedora

Fedora 37 libmodsecurity Update: 2022-90453044f3 critical buffer overflow

Update to maintenance release 3.0.8. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-90453044f3 2022-11-10 22:04:44.630774 --------------------------------------------------------------------------------Name : libmodsecurity Product : Fedora 37 Version : 3.0.8 Release : 1.fc37 URL : https://modsecurity.org/ Summary : A library that loads/interprets rules written in the ModSecurity SecRules Description : Libmodsecurity is one component of the ModSecurity v3 project. The library codebase serves as an interface to ModSecurity Connectors taking in web traffic and applying traditional ModSecurity processing. In general, it provides the capability to load/interpret rules written in the ModSecurity SecRules format and apply them to HTTP content provided by your application via Connectors. --------------------------------------------------------------------------------Update Information: Update to maintenance release 3.0.8 --------------------------------------------------------------------------------ChangeLog: * Sat Oct 15 2022 Othman Madjoudj - 3.0.8-1 - Update to maintenance release 3.0.8 * Thu Jul 21 2022 Fedora Release Engineering - 3.0.4-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild --------------------------------------------------------------------------------References: [ 1 ] Bug #2021301 - CVE-2021-35368 libmodsecurity: request body bypass via a trailing pathname [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2021301 [ 2 ] Bug #2113484 - libmodsecurity: FTBFS in Fedora rawhide/f37 https://bugzilla.redhat.com/show_bug.cgi?id=2113484 [ 3 ] Bug #2129200 - is libmodsecurity pkg still being maintained? https://bugzilla.redhat.com/show_bug.cgi?id=2129200 [ 4 ] Bug #2129515 - Non-responsive maintainer check for athmane https://bugzilla.redhat.com/show_bug.cgi?id=2129515 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-90453044f3' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . The recent libmodsecurity enhancement in Fedora 37 addresses severe vulnerabilities and improves overall efficiency in safeguarding web applications.. Fedora 37 update, libmodsecurity security, ModSecurity enhancements. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 10, 2022 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoraupdate information

Fedora 36: FEDORA-2022-3efca55d7a Moderate: WordPress 6.0.2 Update

[WordPress 6.0.2 Security and Maintenance Release](https://wordpress.org/news/2022/08/wordpress-6-0-2-security-and-maintenance-release/. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-3efca55d7a 2022-09-16 01:39:40.397226 --------------------------------------------------------------------------------Name : wordpress Product : Fedora 36 Version : 6.0.2 Release : 1.fc36 URL : https://wordpress.org/ Summary : Blog tool and publishing platform Description : Wordpress is an online publishing / weblog package that makes it very easy, almost trivial, to get information out to people on the web. Important information in /usr/share/doc/wordpress/README.fedora --------------------------------------------------------------------------------Update Information: [WordPress 6.0.2 Security and Maintenance Release](https://wordpress.org/news/2022/08/wordpress-6-0-2-security-and-maintenance-release/ --------------------------------------------------------------------------------ChangeLog: * Thu Sep 8 2022 Remi Collet - 6.0.2-1 - WordPress 6.0.2 Security and Maintenance Release --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-3efca55d7a' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct:https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . The latest Fedora release for WordPress version 6.0.2 enhances both security and maintenance utilities. Discover crucial updates and details.. WordPress Security Update,Fedora Release,Software Maintenance. . LinuxSecurity.com Team

Calendar 2 Sep 15, 2022 Fedora
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryhigh severitysoftware update

Fedora 37: FEDORA-2022-bca2c95559 High Severity: MediaWiki Update

MediaWiki 1.38.2 This is a security and maintenance release of the MediaWiki 1.38 branch. Changes since MediaWiki 1.38.1 Localisation updates. (T309426) Repair language selector for SVGs. (T310013) Fix default value for $wgShowEXIF and $wgUsePathInfo. (T308471) SECURITY: Escape welcomeuser message passed to showSuccessPage(). (T308473) SECURITY: Escape. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-bca2c95559 2022-09-12 17:36:48.820008 --------------------------------------------------------------------------------Name : mediawiki Product : Fedora 37 Version : 1.38.2 Release : 1.fc37 URL : https://www.mediawiki.org/wiki/MediaWiki Summary : A wiki engine Description : MediaWiki is the software used for Wikipedia and the other Wikimedia Foundation websites. Compared to other wikis, it has an excellent range of features and support for high-traffic websites using multiple servers This package supports wiki farms. Read the instructions for creating wiki instances under /usr/share/doc/mediawiki/README.RPM. Remember to remove the config dir after completing the configuration. --------------------------------------------------------------------------------Update Information: MediaWiki 1.38.2 This is a security and maintenance release of the MediaWiki 1.38 branch. Changes since MediaWiki 1.38.1 Localisation updates. (T309426) Repair language selector for SVGs. (T310013) Fix default value for $wgShowEXIF and $wgUsePathInfo. (T308471) SECURITY: Escape welcomeuser message passed to showSuccessPage(). (T308473) SECURITY: Escape contributions-title msg for use within page title. (T311272) Call parent constructor of AddSite maintenance script first. MediaWiki: Don't eagerly initialize action name. (T311384, CVE-2022-27776) Updated guzzlehttp/guzzle from 7.4.1 to 7.4.5. (T289926) Avoid passing null to trim() in SkinTemplate. (T289879) Addressdeprecations for PHP 8.1. (T311473) rollbackEdits: Pass user identity to RollbackPage. Upgrade wikimedia/remex-html from 3.0.1 to 3.0.2. (T311551) ShellboxClientFactory::getUrl(): Check if $this-> key is null. (T311552) ChangesListSpecialPage: Don't pass null to FormatJson::decode(). (T311569) FileBackend::isStoragePath() Handle being passed null. (T311544) Pass int to ApiUsageException::newWithMessage()'s $httpCode param. (T311678) SpecialEditWatchlist: Prevent passing null to strtolower(). (T311554) ChangeTags: Return early in formatSummaryRow() if $tags === null. Upgrade wikimedia/common-passwords from 0.3.0 to 0.4.0. --------------------------------------------------------------------------------ChangeLog: * Thu Sep 1 2022 Michael Cronenworth - 1.38.2-1 - Update to 1.38.2 - --------------------------------------------------------------------------------References: [ 1 ] Bug #2101639 - MediaWiki 1.37.2 pulls in version of dependency (Parsoid 0.14.0) broken with PHP 8.1 https://bugzilla.redhat.com/show_bug.cgi?id=2101639 [ 2 ] Bug #2102955 - mediawiki-1.38.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2102955 [ 3 ] Bug #2112771 - CVE-2022-34911 mediawiki: Cross-site Scripting [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2112771 [ 4 ] Bug #2112773 - CVE-2022-34912 mediawiki: Username not escaped in the contributions-title message [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2112773 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-bca2c95559' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Update MediaWiki to version 1.38.2 on Fedora 37 to improve security and optimize performance in light of the latest maintenance update.. MediaWiki Update, Fedora 37 Security, High-Severity Fixes, Maintenance Release. . LinuxSecurity.com Team

Calendar 2 Sep 12, 2022 Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoracross-site scripting

Fedora 36: 2022-09-09 MediaWiki Security Advisory - Critical Fixes

MediaWiki 1.37.4 This is a maintenance release of the MediaWiki 1.37 branch. Changes since MediaWiki 1.37.3 Localisation updates. (T311568) UploadBase::setTempFile() handle $tempPath being passed as null. (T311559) SpecialListFiles: user parameter isn't always present. (T311561) ImageListPager: Don't call htmlspecialchars() on null. (T311920). --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-f83aec6d57 2022-09-09 11:21:56.289494 --------------------------------------------------------------------------------Name : mediawiki Product : Fedora 36 Version : 1.37.4 Release : 1.fc36 URL : https://www.mediawiki.org/wiki/MediaWiki Summary : A wiki engine Description : MediaWiki is the software used for Wikipedia and the other Wikimedia Foundation websites. Compared to other wikis, it has an excellent range of features and support for high-traffic websites using multiple servers This package supports wiki farms. Read the instructions for creating wiki instances under /usr/share/doc/mediawiki/README.RPM. Remember to remove the config dir after completing the configuration. --------------------------------------------------------------------------------Update Information: MediaWiki 1.37.4 This is a maintenance release of the MediaWiki 1.37 branch. Changes since MediaWiki 1.37.3 Localisation updates. (T311568) UploadBase::setTempFile() handle $tempPath being passed as null. (T311559) SpecialListFiles: user parameter isn't always present. (T311561) ImageListPager: Don't call htmlspecialchars() on null. (T311920) SpecialBlockList: Prevent passing null to trim(). (T311921) SpecialUserrights: Don't pass null to str_replace. (T311570) SpecialWithoutInterwiki: Don't pass null through to Title::capitalize(). (T311574, T311576) SpecialLinkSearch: Don't pass null through to the parser. (T312059) Update guzzlehttp/guzzle to 7.4.5 in vendor. (T296435,T297669) cache: Add four fields to LinkCache::getSelectFields. MediaWiki 1.37.3 This is a security and maintenance release of the MediaWiki 1.37 branch. Changes since MediaWiki 1.37.2 Localisation updates. (T289879) Type hints for ArrayAccess and JsonSerializable. (T304783) TemplateParser: avoid warnings when called by NoLocalSettings. Rebuilt vendor with composer 2.3.3. Fix old_name in UserLogoutComplete hook. (T289879) Address some deprecations for PHP 8.1. (T193565) UserGroupManager: Fix dbDomain in addUserToGroup() deferred update. (T309114) LocalFile::prerenderThumbnails: Limit the number of thumbnail jobs triggered. (T307982) Updated wikimedia/parsoid from v0.14.0 to v0.14.1. (T308471) SECURITY: Escape welcomeuser message passed to showSuccessPage(). (T308473) SECURITY: Escape contributions-title msg for use within page title. (T311272) Call parent constructor of AddSite maintenance script first. MediaWiki: Don't eagerly initialize action name. Updated wikimedia/shellbox from v2.0.0 to v2.1.1. (T311384, CVE-2022-27776) Updated guzzlehttp/guzzle from 7.2.0 to 7.4.5. (T289926) Avoid passing null to trim() in SkinTemplate. (T311473) rollbackEdits: Pass user identity to RollbackPage. (T307282) Avoid passing null to strcasecmp(), for PHP 8.1. (T311551) ShellboxClientFactory::getUrl(): Check if $this-> key is null. (T311552) ChangesListSpecialPage: Don't pass null to FormatJson::decode(). (T311569) FileBackend::isStoragePath() Handle being passed null. (T311544) Pass int to ApiUsageException::newWithMessage()'s $httpCode param. (T311678) SpecialEditWatchlist: Prevent passing null to strtolower(). (T281741) ChangeTags: Fix adding CSS classes for hidden tags. (T296642) changetags: Fix management of a '0' tag. (T311554) ChangeTags: Return early in formatSummaryRow() if $tags === null. (T303033) Handle null in ChangeTags::modifyDisplayQuery. Updated wikimedia/common-passwords from 0.3.0 to0.4.0. --------------------------------------------------------------------------------ChangeLog: * Thu Sep 1 2022 Michael Cronenworth - 1.37.4-1 - Update to 1.37.4 - --------------------------------------------------------------------------------References: [ 1 ] Bug #2101639 - MediaWiki 1.37.2 pulls in version of dependency (Parsoid 0.14.0) broken with PHP 8.1 https://bugzilla.redhat.com/show_bug.cgi?id=2101639 [ 2 ] Bug #2102955 - mediawiki-1.38.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2102955 [ 3 ] Bug #2112771 - CVE-2022-34911 mediawiki: Cross-site Scripting [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2112771 [ 4 ] Bug #2112773 - CVE-2022-34912 mediawiki: Username not escaped in the contributions-title message [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2112773 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-f83aec6d57' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Debian Alert for WordPress 5.8.3 encompasses enhancements and bug fixesfocused on performance and safety.. MediaWiki Update,Fedora Security,Software Maintenance,Release Notifications. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 09, 2022 Critical Fedora
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity issuecritical

Fedora 36: FEDORA-2022-706aac2786 Critical: WordPress 5.9.2 Security Fix

WordPress 5.9.2 Security & Maintenance Release. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-706aac2786 2022-03-26 14:56:28.657674 --------------------------------------------------------------------------------Name : wordpress Product : Fedora 36 Version : 5.9.2 Release : 1.fc36 URL : https://wordpress.org/ Summary : Blog tool and publishing platform Description : Wordpress is an online publishing / weblog package that makes it very easy, almost trivial, to get information out to people on the web. Important information in /usr/share/doc/wordpress/README.fedora --------------------------------------------------------------------------------Update Information: WordPress 5.9.2 Security & Maintenance Release --------------------------------------------------------------------------------ChangeLog: * Fri Mar 11 2022 Remi Collet - 5.9.2-1 - WordPress 5.9.2 Security & Maintenance Release --------------------------------------------------------------------------------References: [ 1 ] Bug #2063661 - CVE-2022-25600 Wordpress: Cross-Site Request Forgery (CSRF) vulnerability in WP Google Map plugin https://bugzilla.redhat.com/show_bug.cgi?id=2063661 [ 2 ] Bug #2063667 - CVE-2022-25601 wordpress: Reflected Cross-Site Scripting (XSS) in Contact Form X WordPress plugin https://bugzilla.redhat.com/show_bug.cgi?id=2063667 [ 3 ] Bug #2064068 - CVE-2021-20083 wordpress: WordPress Core 5.9.0 / 5.9.1 Cross Site Scripting https://bugzilla.redhat.com/show_bug.cgi?id=2064068 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-706aac2786' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora ProjectGPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . The release of WordPress 5.9.2 addresses urgent security vulnerabilities and introduces optimizations specifically tailored for Fedora 36 users.. WordPress Security, Fedora Update, Critical Fix, Maintenance Release. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 26, 2022 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity issueFedora

Fedora 34: 2022-7d46acce7c Critical: OpenVPN Server Mode Fix

This is a maintenance release of OpenVPN 2.5 with a security fix when used in server mode ([CVE-2022-0547]((Link no longer available))). The other changes are available in [Changes.rst](https://github.com/OpenVPN/openvpn/blob/release/2.5/Changes.rst).. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-7d46acce7c 2022-03-24 14:52:08.627434 --------------------------------------------------------------------------------Name : openvpn Product : Fedora 34 Version : 2.5.6 Release : 1.fc34 URL : Summary : A full-featured TLS VPN solution Description : OpenVPN is a robust and highly flexible tunneling application that uses all of the encryption, authentication, and certification features of the OpenSSL library to securely tunnel IP networks over a single UDP or TCP port. It can use the Marcus Franz Xaver Johannes Oberhumers LZO library for compression. --------------------------------------------------------------------------------Update Information: This is a maintenance release of OpenVPN 2.5 with a security fix when used in server mode ([CVE-2022-0547](openvpn/wiki/CVE-2022-0547)). The other changes are available in [Changes.rst](https://github.com/OpenVPN/openvpn/blob/release/2.5/Changes.rst). **NOTE** Please read the CVE description carefully if you use authentication plug-ins with a server configuration. --------------------------------------------------------------------------------ChangeLog: * Wed Mar 16 2022 David Sommerseth - 2.5.6-1 - Update to upstream OpenVPN 2.5.6 - Fixes CVE-2022-0547 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-7d46acce7c' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the FedoraProject GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . This update for OpenVPN version 2.5 resolves a significant bug affecting server functionality on Fedora 34.. OpenVPN Security Fix, Fedora Server Update, OpenVPN 2.5 Release, Critical OpenVPN Advisory. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 24, 2022 Critical Fedora
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here