Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -3 articles for you...
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisoryimportantfile write

CentOS Stream 9 RLSB-2026-8537 Critical Security Update for Python Files

Important: golang security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:5942", "synopsis": "Important: golang security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for golang.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The golang packages provide the Go programming language compiler.\n\nSecurity Fix(es):\n\n* cmd/go: cmd/go: Arbitrary file write via malicious pkg-config directive (CVE-2025-61731)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2434433", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2434433", "description": ""}, {"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}], "cves": [{"name": "CVE-2025-61731", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-61731", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "cvss3BaseScore": "8.6", "cwe": "CWE-88"}, {"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}], "references": [], "publishedAt": "2026-04-07T12:03:55.701474Z", "rpms": {"Rocky Linux 9": {"nvras": ["golang-0:1.25.8-1.el9_7.aarch64.rpm", "golang-0:1.25.8-1.el9_7.ppc64le.rpm", "golang-0:1.25.8-1.el9_7.s390x.rpm", "golang-0:1.25.8-1.el9_7.src.rpm", "golang-0:1.25.8-1.el9_7.x86_64.rpm", "golang-bin-0:1.25.8-1.el9_7.aarch64.rpm","golang-bin-0:1.25.8-1.el9_7.ppc64le.rpm", "golang-bin-0:1.25.8-1.el9_7.s390x.rpm", "golang-bin-0:1.25.8-1.el9_7.x86_64.rpm", "golang-docs-0:1.25.8-1.el9_7.noarch.rpm", "golang-misc-0:1.25.8-1.el9_7.noarch.rpm", "golang-race-0:1.25.8-1.el9_7.aarch64.rpm", "golang-race-0:1.25.8-1.el9_7.ppc64le.rpm", "golang-race-0:1.25.8-1.el9_7.s390x.rpm", "golang-race-0:1.25.8-1.el9_7.x86_64.rpm", "golang-src-0:1.25.8-1.el9_7.noarch.rpm", "golang-tests-0:1.25.8-1.el9_7.noarch.rpm", "go-toolset-0:1.25.8-1.el9_7.aarch64.rpm", "go-toolset-0:1.25.8-1.el9_7.ppc64le.rpm", "go-toolset-0:1.25.8-1.el9_7.s390x.rpm", "go-toolset-0:1.25.8-1.el9_7.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Important golang security update enhances stability and mitigates risk with fixes for significant vulnerabilities. . go programming language update, golang security fix, Rocky Linux advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 07, 2026 Important Rocky Linux
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisoryfile accessdpkg

Mageia 8: MGASA-2022-0327 Moderate: Dpkg Malicious Package Threat

A malicious source package could write files outside the unpack directory. (CVE-2022-1664) References: - https://bugs.mageia.org/show_bug.cgi?id=30481 . MGASA-2022-0327 - Updated dpkg packages fix security vulnerability Publication date: 16 Sep 2022 URL: https://advisories.mageia.org/MGASA-2022-0327.html Type: security Affected Mageia releases: 8 CVE: CVE-2022-1664 A malicious source package could write files outside the unpack directory. (CVE-2022-1664) References: - https://bugs.mageia.org/show_bug.cgi?id=30481 - https://lists.debian.org/debian-security-announce/2022/msg00115.html - https://ubuntu.com/security/notices/USN-5446-1 - https://www.cve.org/CVERecord?id=CVE-2022-1664 SRPMS: - 8/core/dpkg-1.20.10-3.mga8 . Mageia 2022-0328 addresses a vulnerability in apt that permitted a malicious package to execute scripts beyond its designated folder.. Mageia Security Update, Dpkg Package Fix, Malicious Access Issue. . LinuxSecurity.com Team

Calendar 2 Sep 16, 2022 Mageia
Banner 3 1028x280 1708121785 1771599793
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of serviceUbuntu

Ubuntu 16.04 ESM USN-5446-2 Moderate: dpkg File Access Threat

A malicious source package could write files outside the unpack directory.. =========================================================================Ubuntu Security Notice USN-5446-2 May 30, 2022 dpkg vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 16.04 ESM Summary: A malicious source package could write files outside the unpack directory. Software Description: - dpkg: Debian package management system Details: USN-5446-1 fixed a vulnerability in dpkg. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: Max Justicz discovered that dpkg incorrectly handled unpacking certain source packages. If a user or an automated system were tricked into unpacking a specially crafted source package, a remote attacker could modify files outside the target unpack directory, leading to a denial of service or potentially gaining access to the system. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 ESM: dpkg 1.18.4ubuntu1.7+esm1 libdpkg-perl 1.18.4ubuntu1.7+esm1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-5446-2 https://ubuntu.com/security/notices/USN-5446-1 CVE-2022-1664 . Mitigating dpkg security flaw in Ubuntu 16.04 ESM which enables adversarial packages to modify files beyond the designated unpack area.. Ubuntu Security, dpkg Vulnerability, System Update, Software Management. . LinuxSecurity.com Team

Calendar 2 May 30, 2022 Ubuntu
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of servicecritical

Ubuntu 22.04 LTS USN-5446-1 Critical Dpkg Malicious Package Threat

A malicious source package could write files outside the unpack directory.. =========================================================================Ubuntu Security Notice USN-5446-1 May 26, 2022 dpkg vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS - Ubuntu 21.10 - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS Summary: A malicious source package could write files outside the unpack directory. Software Description: - dpkg: Debian package management system Details: Max Justicz discovered that dpkg incorrectly handled unpacking certain source packages. If a user or an automated system were tricked into unpacking a specially crafted source package, a remote attacker could modify files outside the target unpack directory, leading to a denial of service or potentially gaining access to the system. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS: dpkg 1.21.1ubuntu2.1 libdpkg-perl 1.21.1ubuntu2.1 Ubuntu 21.10: dpkg 1.20.9ubuntu2.2 libdpkg-perl 1.20.9ubuntu2.2 Ubuntu 20.04 LTS: dpkg 1.19.7ubuntu3.2 libdpkg-perl 1.19.7ubuntu3.2 Ubuntu 18.04 LTS: dpkg 1.19.0.5ubuntu2.4 libdpkg-perl 1.19.0.5ubuntu2.4 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-5446-1 CVE-2022-1664 Package Information: https://launchpad.net/ubuntu/+source/dpkg/1.21.1ubuntu2.1 https://launchpad.net/ubuntu/+source/dpkg/1.20.9ubuntu2.2 https://launchpad.net/ubuntu/+source/dpkg/1.19.7ubuntu3.2 https://launchpad.net/ubuntu/+source/dpkg/1.19.0.5ubuntu2.4 . Ubuntu Security Notice USN-5446-1 highlights adpkg vulnerability that permits harmful packages to modify files beyond their intended unpack location.. Ubuntu Security,Dpkg Threat,Malicious Package Access. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 26, 2022 Critical Ubuntu
Banner 3 1028x280 1708121785 1771599793
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of serviceubuntu

Ubuntu 14.04 LTS USN-2183-2 Moderate: Dpkg Denial Of Service

A malicious source package could write files outside the unpack directory.. =========================================================================Ubuntu Security Notice USN-2183-2 May 01, 2014 dpkg vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 14.04 LTS - Ubuntu 13.10 - Ubuntu 12.10 - Ubuntu 12.04 LTS - Ubuntu 10.04 LTS Summary: A malicious source package could write files outside the unpack directory. Software Description: - dpkg: Debian package management system Details: USN-2183-1 fixed a vulnerability in dpkg. Javier Serrano Polo discovered that the fix introduced a vulnerability in releases with an older version of the patch utility. This update fixes the problem. Original advisory details: Jakub Wilk discovered that dpkg incorrectly certain paths and symlinks when unpacking source packages. If a user or an automated system were tricked into unpacking a specially crafted source package, a remote attacker could modify files outside the target unpack directory, leading to a denial of service or potentially gaining access to the system. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 LTS: libdpkg-perl 1.17.5ubuntu5.2 Ubuntu 13.10: libdpkg-perl 1.16.12ubuntu1.2 Ubuntu 12.10: libdpkg-perl 1.16.7ubuntu6.2 Ubuntu 12.04 LTS: libdpkg-perl 1.16.1.2ubuntu7.4 Ubuntu 10.04 LTS: dpkg-dev 1.15.5.6ubuntu4.8 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-2183-2 https://ubuntu.com/security/notices/USN-2183-1 CVE-2014-0471 Package Information: https://launchpad.net/ubuntu/+source/dpkg/1.17.5ubuntu5.2 https://launchpad.net/ubuntu/+source/dpkg/1.16.12ubuntu1.2 https://launchpad.net/ubuntu/+source/dpkg/1.16.7ubuntu6.2 https://launchpad.net/ubuntu/+source/dpkg/1.16.1.2ubuntu7.4 https://launchpad.net/ubuntu/+source/dpkg/1.15.5.6ubuntu4.8 . Urgent patch required for critical dpkg vulnerability in Ubuntu impacting various releases with possible system entry risks.. Ubuntu Dpkg Flaw, Ubuntu Security Update, Malicious Package Vulnerability. . LinuxSecurity.com Team

Calendar 2 May 01, 2014 Ubuntu
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisoryUbuntuman-in-the-middle

Ubuntu 11.04 USN-1169-1 Severe: APT Attack Package Alteration

An attacker could trick APT into installing altered packages.. =========================================================================Ubuntu Security Notice USN-1169-1 July 13, 2011 apt vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 11.04 Summary: An attacker could trick APT into installing altered packages. Software Description: - apt: Advanced front-end for dpkg Details: William Grant discovered that APT incorrectly validated inline GPG signatures. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could potentially be used to install altered packages. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.04: apt 0.8.13.2ubuntu4.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-1169-1 CVE-2011-1829 Package Information: https://launchpad.net/ubuntu/+source/apt/0.8.13.2ubuntu4.1 . A malicious actor might take advantage of APT vulnerabilities to deploy modified software packages, jeopardizing Ubuntu 11.04 systems. Ensure your system is updated to maintain security.. APT Vulnerability, Ubuntu 11.04, Package Installation, Security Update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jul 13, 2011 Important Ubuntu
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here