Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorycriticalencryption

Mageia 7 MGASA-2021-0067 Critical: KMail Attack Vector and Fix

In KDE KMail, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended receiver. If the receiver replies to this (benign looking) email, they unknowingly leak the . MGASA-2021-0067 - Updated messagelib packages fix a security vulnerability Publication date: 04 Feb 2021 URL: https://advisories.mageia.org/MGASA-2021-0067.html Type: security Affected Mageia releases: 7 CVE: CVE-2019-10732 In KDE KMail, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended receiver. If the receiver replies to this (benign looking) email, they unknowingly leak the plaintext of the encrypted message part(s) back to the attacker (CVE-2019-10732). References: - https://bugs.mageia.org/show_bug.cgi?id=28260 - - https://www.cve.org/CVERecord?id=CVE-2019-10732 SRPMS: - 7/core/messagelib-19.04.0-1.1.mga7 . Recent updates to the messagelib packages aim to fix a security vulnerability linked to encoded emails in the Mageia environment. Learn more about this exploit's nature. Mageia Email Threat, KDE KMail Security Fix, Email Encryption Issues. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 04, 2021 Critical Mageia
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorycriticalcode execution

Ubuntu 6.06 LTS USN-352-1 Critical: Thunderbirds Malicious Email Exploit

Various flaws have been reported that allow an attacker to execute arbitrary code with user privileges by tricking the user into opening a malicious email containing JavaScript. Please note that JavaScript is disabled by default for emails, and it is not recommended to enable it. The following CVEIDs have been addressed: CVE-2006-4253, CVE-2006-4565, CVE-2006-4566, CVE-2006-4571, CVE-2006-4340, CVE-2006-4567, CVE-2006-4570 . =========================================================== Ubuntu Security Notice USN-352-1 September 25, 2006 mozilla-thunderbird vulnerabilities CVE-2006-4253, CVE-2006-4340, CVE-2006-4565, CVE-2006-4566, CVE-2006-4567, CVE-2006-4570, CVE-2006-4571 ========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: mozilla-thunderbird 1.5.0.7-0ubuntu0.6.06 After a standard system upgrade you need to restart Thunderbird to effect the necessary changes. Details follow: Various flaws have been reported that allow an attacker to execute arbitrary code with user privileges by tricking the user into opening a malicious email containing JavaScript. Please note that JavaScript is disabled by default for emails, and it is not recommended to enable it. (CVE-2006-4253, CVE-2006-4565, CVE-2006-4566, CVE-2006-4571) The NSS library did not sufficiently check the padding of PKCS #1 v1.5 signatures if the exponent of the public key is 3 (which is widely used for CAs). This could be exploited to forge valid signatures without the need of the secret key. (CVE-2006-4340) Jon Oberheide reported a way how a remote attacker could trick users into downloading arbitrary extensions with circumventing the normal SSL certificate check. The attacker would have to be in aposition to spoof the victim's DNS, causing them to connect to sites of the attacker's choosing rather than the sites intended by the victim. If they gained that control and the victim accepted the attacker's cert for the Mozilla update site, then the next update check could be hijacked and redirected to the attacker's site without detection. (CVE-2006-4567) Georgi Guninski discovered that even with JavaScript disabled, a malicous email could still execute JavaScript when the message is viewed, replied to, or forwarded by putting the script in a remote XBL file loaded by the message. (CVE-2006-4570) Updated packages for Ubuntu 6.06 LTS: Source archives: Size/MD5: 454846 64c786b0c2886ff4a1cbb24fe4b76886 Size/MD5: 962 2560649686a20166450e44098142e80b amd64 architecture (Athlon64, Opteron, EM64T Xeon) Size/MD5: 3528618 27f6a9eec39470b434459d291cb1fbe7 Size/MD5: 193760 86704efd60c8268803fc81d9b75e4342 Size/MD5: 59010 12f13e9662d7073cb7983acb4d7f42df Size/MD5: 11984618 4b1a19fe4c27ed9cd753674c0201e3d7 i386 architecture (x86 compatible Intel/AMD) Size/MD5: 3520394 ebda5194f4385d2349bbd8b43bc519e0 Size/MD5: 187130 cd3ff598ead2861320571a96aefb0eda Size/MD5: 54524 647bb673f71dadb2db6f8d7d1371f1ff Size/MD5: 10282888 0e6e3b82d902623916747a4048e23c46 powerpc architecture (Apple Macintosh G3/G4/G5) Size/MD5: 3525354 cf51bead4b7313430956751fbb878d94 Size/MD5: 190474 713a352b045073a5ed9e0f2d1c125ebf Size/MD5: 58132 e188bfb0240ab1ffe1eedb45ab8f7a65 Size/MD5: 11553840 cef4451a346cd1b7a8467952d37fb783 sparc architecture (Sun SPARC/UltraSPARC) Size/MD5: 3521948 3d7b32c04d4423753e1bd6dfa2e8cb1d Size/MD5: 187916 346c9adfe5d44a87bd4efdec5a216f2f Size/MD5: 56012 549260b3328eb704f19299f36c1f177e Size/MD5: 10753714 1e9426592ede9bd2c5364e5b6c2bb5da .Guidance reveals serious vulnerabilities in Thunderbird. Harmful messages may run commands. Prompt software updates suggested.. Thunderbird Risks, Ubuntu Alerts, Email Security, Code Execution, Cyber Threats. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 06, 2020 Critical Ubuntu
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here