Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 523
Alerts This Week
Warning Icon 1 523

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 45 articles for you...
89

Fedora 44 ClamAV Critical Malware Fix Advisory 2026-69c55ea36c

Fixes for multiple CVEs https://github.com/Cisco- Talos/clamav/releases/tag/clamav-1.4.5. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-69c55ea36c 2026-07-05 01:07:02.694261+00:00 -------------------------------------------------------------------------------- Name : clamav Product : Fedora 44 Version : 1.4.5 Release : 1.fc44 URL : https://www.clamav.net/ Summary : End-user tools for the Clam Antivirus scanner Description : Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use with your own software. The virus database is based on the virus database from OpenAntiVirus, but contains additional signatures (including signatures for popular polymorphic viruses, too) and is KEPT UP TO DATE. -------------------------------------------------------------------------------- Update Information: Fixes for multiple CVEs https://github.com/Cisco- Talos/clamav/releases/tag/clamav-1.4.5 -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 2 2026 Gwyn Ciesla - 1.4.5-1 - Update to 1.4.5 * Fri Jun 12 2026 Yaakov Selkowitz - 1.4.4-2 - Rebuilt for openssl 4.0 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-69c55ea36c' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPGkeys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Fixes multiple security issues in clamav for Fedora 44. Always keep your antivirus updated to prevent malware risks.. Fedora Clamav Update, Clam Antivirus Security, Fedora Software Update, AntiVirus Fixes, Security Vulnerability Patching. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jul 04, 2026 Critical Fedora
202

openSUSE Leap 15.3 Podman Important Update SUSE-SU-2026-1931-1

An update that can now be installed.. # Security update for podman Announcement ID: SUSE-SU-2026:1931-1 Release Date: 2026-05-18T07:30:59Z Rating: important References: Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Server 15 SP3 An update that can now be installed. ## Description: This update for podman rebuilds it against the current go security release. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2026-1931=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2026-1931=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * podman-debuginfo-4.9.5-150300.9.73.1 * podman-remote-4.9.5-150300.9.73.1 * podman-4.9.5-150300.9.73.1 * podman-remote-debuginfo-4.9.5-150300.9.73.1 * podmansh-4.9.5-150300.9.73.1 * openSUSE Leap 15.3 (noarch) * podman-docker-4.9.5-150300.9.73.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * podman-debuginfo-4.9.5-150300.9.73.1 * podman-4.9.5-150300.9.73.1 . Important security update for podman in openSUSE Leap 15.3 enhances security measures against threats.. SUSE Podman Patch Update Security. . Severity: Important. LinuxSecurity.com Team

Calendar%202 May 18, 2026 Important OpenSUSE
100

SUSE Linux 16 Kernel Important Security Fixes 2026-21100-1

An update that solves five vulnerabilities can now be installed.. # Security update for the Linux Kernel (Live Patch 3 for SUSE Linux Enterprise 16) Announcement ID: SUSE-SU-2026:21100-1 Release Date: 2026-04-13T03:16:46Z Rating: important References: * bsc#1256780 * bsc#1257238 * bsc#1258051 * bsc#1258183 * bsc#1258784 Cross-References: * CVE-2025-71120 * CVE-2026-22999 * CVE-2026-23074 * CVE-2026-23111 * CVE-2026-23209 CVSS scores: * CVE-2025-71120 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-71120 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71120 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-22999 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-22999 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-22999 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23074 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23074 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23074 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23074 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23111 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23111 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23111 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23111 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE LinuxMicro 6.2 An update that solves five vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.12.0-160000.8.1 fixes various security issues The following security issues were fixed: * CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256780). * CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257238). * CVE-2026-23074: net/sched: Enforce that teql can only be used as root qdisc (bsc#1258051). * CVE-2026-23111: netfilter: nf_tables: fix inverted genmask check in nft_map_catchall_activate() (bsc#1258183). * CVE-2026-23209: macvlan: fix error recovery in macvlan_common_newlink() (bsc#1258784). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.2 zypper in -t patch SUSE-SL-Micro-6.2-534=1 ## Package List: * SUSE Linux Micro 6.2 (ppc64le s390x x86_64) * kernel-livepatch-SLE16_Update_3-debugsource-4-160000.1.1 * kernel-livepatch-6_12_0-160000_8-default-4-160000.1.1 * kernel-livepatch-6_12_0-160000_8-default-debuginfo-4-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-71120.html * https://www.suse.com/security/cve/CVE-2026-22999.html * https://www.suse.com/security/cve/CVE-2026-23074.html * https://www.suse.com/security/cve/CVE-2026-23111.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://bugzilla.suse.com/show_bug.cgi?id=1256780 * https://bugzilla.suse.com/show_bug.cgi?id=1257238 * https://bugzilla.suse.com/show_bug.cgi?id=1258051 * https://bugzilla.suse.com/show_bug.cgi?id=1258183 * https://bugzilla.suse.com/show_bug.cgi?id=1258784 . An important update for SUSE Linux Kernel fixes security issues. Install to maintain system integrity and security.. SUSE Linux KernelUpdate, Security Patch, Kernel Vulnerabilities. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Apr 16, 2026 Important SuSE
219

Ubuntu 22.04 Firefox Key Security Update RLSB-2023-7682

Important: thunderbird security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:6342", "synopsis": "Important: thunderbird security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for thunderbird.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nSecurity Fix(es):\n\n* firefox: thunderbird: Use-after-free in the JavaScript Engine component (CVE-2026-4701)\n\n* firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149 (CVE-2026-4721)\n\n* firefox: thunderbird: Privilege escalation in the Netmonitor component (CVE-2026-4717)\n\n* firefox: thunderbird: Sandbox escape due to use-after-free in the Disability Access APIs component (CVE-2026-4688)\n\n* firefox: thunderbird: Incorrect boundary conditions in the Graphics: Canvas2D component (CVE-2026-4706)\n\n* firefox: thunderbird: Incorrect boundary conditions in the Audio/Video: Web Codecs component (CVE-2026-4695)\n\n* firefox: thunderbird: Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component (CVE-2026-4689)\n\n* firefox: thunderbird: JIT miscompilation in the JavaScript Engine: JIT component (CVE-2026-4698)\n\n* firefox: thunderbird: Incorrect boundary conditions, uninitialized memory in the JavaScript Engine component (CVE-2026-4716)\n\n* firefox: thunderbird: Race condition, use-after-free in the Graphics: WebRender component (CVE-2026-4684)\n\n* firefox: thunderbird: Undefined behavior in the WebRTC: Signaling component (CVE-2026-4705)\n\n* firefox: thunderbird: Uninitialized memory in the Graphics: Canvas2D component (CVE-2026-4715)\n\n* firefox: thunderbird: Incorrect boundary conditions in the Graphics: Canvas2D component (CVE-2026-4685)\n\n* firefox: thunderbird:Incorrect boundary conditions in the Audio/Video component (CVE-2026-4714)\n\n* firefox: thunderbird: Incorrect boundary conditions in the Audio/Video: GMP component (CVE-2026-4709)\n\n* firefox: thunderbird: Incorrect boundary conditions in the Audio/Video component (CVE-2026-4710)\n\n* firefox: thunderbird: Information disclosure in the Widget: Cocoa component (CVE-2026-4712)\n\n* firefox: thunderbird: Incorrect boundary conditions in the Audio/Video: Web Codecs component (CVE-2026-4697)\n\n* firefox: thunderbird: Incorrect boundary conditions in the Graphics component (CVE-2026-4713)\n\n* firefox: thunderbird: Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component (CVE-2026-4690)\n\n* firefox: thunderbird: Use-after-free in the Widget: Cocoa component (CVE-2026-4711)\n\n* firefox: thunderbird: Incorrect boundary conditions in the Graphics: Canvas2D component (CVE-2026-4686)\n\n* firefox: thunderbird: Incorrect boundary conditions in the Graphics component (CVE-2026-4708)\n\n* firefox: thunderbird: Use-after-free in the CSS Parsing and Computation component (CVE-2026-4691)\n\n* firefox: thunderbird: Incorrect boundary conditions in the Layout: Text and Fonts component (CVE-2026-4699)\n\n* firefox: thunderbird: Use-after-free in the Layout: Text and Fonts component (CVE-2026-4696)\n\n* firefox: thunderbird: Incorrect boundary conditions in the Audio/Video: Playback component (CVE-2026-4693)\n\n* firefox: thunderbird: Undefined behavior in the WebRTC: Signaling component (CVE-2026-4718)\n\n* firefox: thunderbird: JIT miscompilation in the JavaScript Engine component (CVE-2026-4702)\n\n* firefox: thunderbird: Incorrect boundary conditions in the Graphics: Text component (CVE-2026-4719)\n\n* firefox: thunderbird: Incorrect boundary conditions, integer overflow in the Graphics component (CVE-2026-4694)\n\n* firefox: thunderbird: Sandbox escape in the Responsive Design Mode component (CVE-2026-4692)\n\n* firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.9,Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149 (CVE-2026-4720)\n\n* firefox: thunderbird: Mitigation bypass in the Networking: HTTP component (CVE-2026-4700)\n\n* firefox: thunderbird: Incorrect boundary conditions in the Graphics: Canvas2D component (CVE-2026-4707)\n\n* firefox: thunderbird: Denial-of-service in the WebRTC: Signaling component (CVE-2026-4704)\n\n* firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component (CVE-2026-4687)\n\n* thunderbird: Out of bounds read in IMAP parsing (CVE-2026-4371)\n\n* thunderbird: Spoofing issue in Thunderbird (CVE-2026-3889)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2450733", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450733", "description": ""}, {"ticket": "2450741", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450741", "description": ""}, {"ticket": "2450744", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450744", "description": ""}, {"ticket": "2450752", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450752", "description": ""}, {"ticket": "2450747", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450747", "description": ""}, {"ticket": "2450738", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450738", "description": ""}, {"ticket": "2450710", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450710", "description": ""}, {"ticket": "2450755", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450755", "description": ""}, {"ticket": "2450725", "sourceBy": "Red Hat", "sourceLink":"https://bugzilla.redhat.com/show_bug.cgi?id=2450725", "description": ""}, {"ticket": "2450739", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450739", "description": ""}, {"ticket": "2450726", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450726", "description": ""}, {"ticket": "2450714", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450714", "description": ""}, {"ticket": "2450727", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450727", "description": ""}, {"ticket": "2450723", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450723", "description": ""}, {"ticket": "2450724", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450724", "description": ""}, {"ticket": "2451006", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2451006", "description": ""}, {"ticket": "2450734", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450734", "description": ""}, {"ticket": "2450748", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450748", "description": ""}, {"ticket": "2450757", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450757", "description": ""}, {"ticket": "2450730", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450730", "description": ""}, {"ticket": "2450713", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450713", "description": ""}, {"ticket": "2450711", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450711", "description": ""}, {"ticket": "2450719", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450719", "description": ""}, {"ticket": "2451001", "sourceBy": "Red Hat", "sourceLink":"https://bugzilla.redhat.com/show_bug.cgi?id=2451001", "description": ""}, {"ticket": "2450729", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450729", "description": ""}, {"ticket": "2450722", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450722", "description": ""}, {"ticket": "2450720", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450720", "description": ""}, {"ticket": "2450712", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450712", "description": ""}, {"ticket": "2450718", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450718", "description": ""}, {"ticket": "2450751", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450751", "description": ""}, {"ticket": "2450735", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450735", "description": ""}, {"ticket": "2450721", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450721", "description": ""}, {"ticket": "2450715", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450715", "description": ""}, {"ticket": "2450732", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450732", "description": ""}, {"ticket": "2450742", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450742", "description": ""}, {"ticket": "2450746", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450746", "description": ""}, {"ticket": "2450756", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450756", "description": ""}, {"ticket": "2450740", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2450740", "description": ""}, {"ticket": "2450728", "sourceBy": "Red Hat", "sourceLink":"https://bugzilla.redhat.com/show_bug.cgi?id=2450728", "description": ""}], "cves": [{"name": "CVE-2026-3889", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-3889", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", "cvss3BaseScore": "5.4", "cwe": "CWE-20"}, {"name": "CVE-2026-4371", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4371", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H", "cvss3BaseScore": "8.2", "cwe": "CWE-130"}, {"name": "CVE-2026-4684", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4684", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-364"}, {"name": "CVE-2026-4685", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4685", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-787"}, {"name": "CVE-2026-4686", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4686", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-787"}, {"name": "CVE-2026-4687", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4687", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-501"}, {"name": "CVE-2026-4688", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4688", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-825"}, {"name": "CVE-2026-4689", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4689", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-190"}, {"name": "CVE-2026-4690", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4690", "cvss3ScoringVector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-190"}, {"name": "CVE-2026-4691", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4691", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-825"}, {"name": "CVE-2026-4692", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4692", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-653"}, {"name": "CVE-2026-4693", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4693", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-823"}, {"name": "CVE-2026-4694", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4694", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-190"}, {"name": "CVE-2026-4695", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4695", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-131"}, {"name": "CVE-2026-4696", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4696", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-825"}, {"name": "CVE-2026-4697", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4697", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-787"}, {"name": "CVE-2026-4698", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4698", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-733"}, {"name": "CVE-2026-4699", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4699", "cvss3ScoringVector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-787"}, {"name": "CVE-2026-4700", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4700", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-444"}, {"name": "CVE-2026-4701", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4701", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss3BaseScore": "6.1", "cwe": "CWE-825"}, {"name": "CVE-2026-4702", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4702", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss3BaseScore": "6.1", "cwe": "CWE-733"}, {"name": "CVE-2026-4704", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4704", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-770"}, {"name": "CVE-2026-4705", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4705", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "cvss3BaseScore": "6.5", "cwe": "CWE-475"}, {"name": "CVE-2026-4706", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4706", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss3BaseScore": "6.1", "cwe": "CWE-787"}, {"name": "CVE-2026-4707", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4707", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss3BaseScore": "6.1", "cwe": "CWE-823"}, {"name": "CVE-2026-4708", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4708", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss3BaseScore": "6.1", "cwe": "CWE-787"}, {"name": "CVE-2026-4709", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4709", "cvss3ScoringVector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss3BaseScore": "6.1", "cwe": "CWE-787"}, {"name": "CVE-2026-4710", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4710", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss3BaseScore": "6.1", "cwe": "CWE-787"}, {"name": "CVE-2026-4711", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4711", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss3BaseScore": "6.1", "cwe": "CWE-825"}, {"name": "CVE-2026-4712", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4712", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "cvss3BaseScore": "6.5", "cwe": "CWE-359"}, {"name": "CVE-2026-4713", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4713", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss3BaseScore": "6.1", "cwe": "CWE-787"}, {"name": "CVE-2026-4714", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4714", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "cvss3BaseScore": "6.5", "cwe": "CWE-125"}, {"name": "CVE-2026-4715", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4715", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "cvss3BaseScore": "6.5", "cwe": "CWE-824"}, {"name": "CVE-2026-4716", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4716", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss3BaseScore": "6.1", "cwe": "CWE-824"}, {"name": "CVE-2026-4717", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4717", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss3BaseScore": "6.1", "cwe": "CWE-266"}, {"name": "CVE-2026-4718", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4718", "cvss3ScoringVector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N", "cvss3BaseScore": "3.4", "cwe": "CWE-475"}, {"name": "CVE-2026-4719", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4719", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N", "cvss3BaseScore": "3.4", "cwe": "CWE-805"}, {"name": "CVE-2026-4720", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4720", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-120"}, {"name": "CVE-2026-4721", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-4721", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-825"}], "references": [], "publishedAt": "2026-04-09T12:07:05.484110Z", "rpms": {"Rocky Linux 10": {"nvras": ["thunderbird-0:140.9.0-1.el10_1.s390x.rpm", "thunderbird-debugsource-0:140.9.0-1.el10_1.s390x.rpm", "thunderbird-debuginfo-0:140.9.0-1.el10_1.s390x.rpm", "thunderbird-0:140.9.0-1.el10_1.src.rpm", "thunderbird-debuginfo-0:140.9.0-1.el10_1.aarch64.rpm", "thunderbird-debugsource-0:140.9.0-1.el10_1.ppc64le.rpm", "thunderbird-0:140.9.0-1.el10_1.ppc64le.rpm", "thunderbird-debuginfo-0:140.9.0-1.el10_1.ppc64le.rpm", "thunderbird-debugsource-0:140.9.0-1.el10_1.aarch64.rpm", "thunderbird-debugsource-0:140.9.0-1.el10_1.x86_64.rpm", "thunderbird-debuginfo-0:140.9.0-1.el10_1.x86_64.rpm", "thunderbird-0:140.9.0-1.el10_1.aarch64.rpm", "thunderbird-0:140.9.0-1.el10_1.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Explore the critical Thunderbird security update for Rocky Linux, addressing key vulnerabilities and recommended actions.. thunderbird security update, rocky linux vulnerability, linux email client fix. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Apr 09, 2026 Important Rocky Linux
219

Rocky Linux 9: RLSA-2025:19105 Kernel Moderate Security Update

Moderate: kernel security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2025:19105", "synopsis": "Moderate: kernel security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for kernel.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* kernel: vsock/virtio: Validate length in packet header before skb_put() (CVE-2025-39718)\n\n* kernel: NFS: Fix filehandle bounds checking in nfs_fh_to_dentry() (CVE-2025-39730)\n\n* kernel: ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control (CVE-2025-39751)\n\n* kernel: fs/smb: Fix inconsistent refcnt update (CVE-2025-39819)\n\n* kernel: pstore/ram: Check start of empty przs during init (CVE-2023-53331)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2393507", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2393507", "description": ""}, {"ticket": "2393731", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2393731", "description": ""}, {"ticket": "2394624", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2394624", "description": ""}, {"ticket": "2395806", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2395806", "description": ""}, {"ticket": "2395880", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2395880", "description": ""}], "cves": [{"name": "CVE-2023-53331", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-53331", "cvss3ScoringVector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.0", "cwe": "CWE-129"}, {"name": "CVE-2025-39718", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-39718", "cvss3ScoringVector": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", "cvss3BaseScore": "7.6", "cwe": "CWE-787"}, {"name": "CVE-2025-39730", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-39730", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-125"}, {"name": "CVE-2025-39751", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-39751", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.0", "cwe": "CWE-120"}, {"name": "CVE-2025-39819", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-39819", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "5.5", "cwe": null}], "references": [], "publishedAt": "2025-11-06T09:06:00.631395Z", "rpms": {"Rocky Linux 9": {"nvras": ["kernel-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-0:5.14.0-570.58.1.el9_6.src.rpm", "kernel-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-64k-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-64k-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-64k-debug-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-64k-debug-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-64k-debug-debuginfo-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-64k-debug-devel-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-64k-debug-devel-matched-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-64k-debuginfo-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-64k-debug-modules-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-64k-debug-modules-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-64k-debug-modules-extra-0:5.14.0-570.58.1.el9_6.aarch64.rpm","kernel-64k-devel-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-64k-devel-matched-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-64k-modules-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-64k-modules-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-64k-modules-extra-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-abi-stablelists-0:5.14.0-570.58.1.el9_6.noarch.rpm", "kernel-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-core-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-core-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-core-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-debug-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-debug-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-debug-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-debug-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-debug-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-debug-core-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-debug-core-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-debug-core-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-debug-debuginfo-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-debug-debuginfo-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-debug-debuginfo-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-debug-debuginfo-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-debug-devel-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-debug-devel-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-debug-devel-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-debug-devel-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-debug-devel-matched-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-debug-devel-matched-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-debug-devel-matched-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-debug-devel-matched-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-debuginfo-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-debuginfo-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-debuginfo-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-debuginfo-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-debug-modules-0:5.14.0-570.58.1.el9_6.aarch64.rpm","kernel-debug-modules-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-debug-modules-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-debug-modules-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-debug-modules-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-debug-modules-core-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-debug-modules-core-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-debug-modules-core-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-debug-modules-extra-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-debug-modules-extra-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-debug-modules-extra-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-debug-modules-extra-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-debug-uki-virt-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-devel-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-devel-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-devel-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-devel-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-devel-matched-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-devel-matched-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-devel-matched-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-devel-matched-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-doc-0:5.14.0-570.58.1.el9_6.noarch.rpm", "kernel-modules-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-modules-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-modules-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-modules-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-modules-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-modules-core-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-modules-core-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-modules-core-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-modules-extra-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-modules-extra-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-modules-extra-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-modules-extra-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-0:5.14.0-570.58.1.el9_6.x86_64.rpm","kernel-rt-64k-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-64k-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-64k-debug-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-64k-debug-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-64k-debug-debuginfo-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-64k-debug-devel-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-64k-debuginfo-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-64k-debug-modules-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-64k-debug-modules-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-64k-debug-modules-extra-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-64k-devel-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-64k-modules-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-64k-modules-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-64k-modules-extra-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-core-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-debug-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-debug-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-debug-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-debug-core-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-debug-debuginfo-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-debug-debuginfo-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-debug-devel-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-debug-devel-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-debuginfo-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-debuginfo-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-debug-kvm-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-debug-modules-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-debug-modules-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-debug-modules-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-debug-modules-core-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-debug-modules-extra-0:5.14.0-570.58.1.el9_6.aarch64.rpm","kernel-rt-debug-modules-extra-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-devel-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-devel-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-kvm-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-modules-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-modules-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-modules-core-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-modules-core-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-rt-modules-extra-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-rt-modules-extra-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-tools-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-tools-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-tools-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-tools-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-tools-debuginfo-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-tools-debuginfo-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-tools-debuginfo-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-tools-debuginfo-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-tools-libs-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-tools-libs-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-tools-libs-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-tools-libs-devel-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "kernel-tools-libs-devel-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "kernel-tools-libs-devel-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-uki-virt-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-uki-virt-addons-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "kernel-zfcpdump-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-zfcpdump-core-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-zfcpdump-debuginfo-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-zfcpdump-devel-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-zfcpdump-devel-matched-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-zfcpdump-modules-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-zfcpdump-modules-core-0:5.14.0-570.58.1.el9_6.s390x.rpm", "kernel-zfcpdump-modules-extra-0:5.14.0-570.58.1.el9_6.s390x.rpm","libperf-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "libperf-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "libperf-0:5.14.0-570.58.1.el9_6.s390x.rpm", "libperf-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "libperf-debuginfo-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "libperf-debuginfo-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "libperf-debuginfo-0:5.14.0-570.58.1.el9_6.s390x.rpm", "libperf-debuginfo-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "perf-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "perf-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "perf-0:5.14.0-570.58.1.el9_6.s390x.rpm", "perf-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "perf-debuginfo-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "perf-debuginfo-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "perf-debuginfo-0:5.14.0-570.58.1.el9_6.s390x.rpm", "perf-debuginfo-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "python3-perf-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "python3-perf-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "python3-perf-0:5.14.0-570.58.1.el9_6.s390x.rpm", "python3-perf-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "python3-perf-debuginfo-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "python3-perf-debuginfo-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "python3-perf-debuginfo-0:5.14.0-570.58.1.el9_6.s390x.rpm", "python3-perf-debuginfo-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "rtla-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "rtla-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "rtla-0:5.14.0-570.58.1.el9_6.s390x.rpm", "rtla-0:5.14.0-570.58.1.el9_6.x86_64.rpm", "rv-0:5.14.0-570.58.1.el9_6.aarch64.rpm", "rv-0:5.14.0-570.58.1.el9_6.ppc64le.rpm", "rv-0:5.14.0-570.58.1.el9_6.s390x.rpm", "rv-0:5.14.0-570.58.1.el9_6.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Kernel security updates for Rocky Linux 9 address multiple vulnerabilities to enhance system integrity and performance.. Rocky Linux kernel security update, moderate vulnerabilities, Linux kernel patches. . LinuxSecurity.com Team

Calendar%202 Nov 06, 2025 Rocky Linux
197

Debian LTS: ublock-origin Security Update Fixes Rendering Issue DLA-4356-1

Ublock-origin is a lightweight and efficient ads, malware and trackers blocker. The new upstream version improves the user experience and ad / malware filter capabilities of this popular browser addon. It also fixes a bug in the Filter lists page which prevented it from rendering normal. . ------------------------------------------------------------------------- Debian LTS Advisory DLA-4356-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Markus Koschany October 31, 2025 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : ublock-origin Version : 1.67.0+dfsg-1~deb11u1 Debian Bug : 1108878 Ublock-origin is a lightweight and efficient ads, malware and trackers blocker. The new upstream version improves the user experience and ad / malware filter capabilities of this popular browser addon. It also fixes a bug in the Filter lists page which prevented it from rendering normal. For Debian 11 bullseye, this problem has been fixed in version 1.67.0+dfsg-1~deb11u1. We recommend that you upgrade your ublock-origin packages. For the detailed security status of ublock-origin please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/ublock-origin Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Ublock-origin security update improves filtering capabilities and fixes rendering bugs in Debian LTS. Upgrade recommended.. Ublock-origin Security Update, Debian LTS, Malicious Content Filter. . Severity: Informational. LinuxSecurity.com Team

Calendar%202 Oct 31, 2025 Informational Debian LTS
100

SUSE: Moderate CVE-2025-9230 Security Flaw in openssl-3-livepatches

* bsc#1250410 Cross-References: * CVE-2025-9230 . # Security update for openssl-3-livepatches Announcement ID: SUSE-SU-2025:20910-1 Release Date: 2025-10-23T13:08:17Z Rating: moderate References: * bsc#1250410 Cross-References: * CVE-2025-9230 CVSS scores: * CVE-2025-9230 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-9230 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-9230 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves one vulnerability can now be installed. ## Description: This update for openssl-3-livepatches fixes the following issues: * Add livepatch for CVE-2025-9230 (bsc#1250410). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-317=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * openssl-3-livepatches-debuginfo-0.2-slfo.1.1_1.1 * openssl-3-livepatches-0.2-slfo.1.1_1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-9230.html * https://bugzilla.suse.com/show_bug.cgi?id=1250410 . Update for openssl-3-livepatches addresses a critical issue in SUSE Linux Micro with a moderate severity rating.. openssl updates, Linux patches, SUSE security, moderate severity. . LinuxSecurity.com Team

Calendar%202 Oct 30, 2025 SuSE
197

Debian: HTTPS Everywhere Critical Malware Risk Advisory DLA-4331-1

The Firefox extension HTTPS Everywhere used to enforce encryption over HTTPS in major web browsers, a feature which has become obsolete because a HTTPS-only mode is built-in nowadays. Consequently HTTPS Everywhere has been removed from Debian in 2023. . ------------------------------------------------------------------------- Debian LTS Advisory DLA-4331-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Markus Koschany October 14, 2025 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : https-everywhere Version : 2025.10.14-0+deb11u1 Debian Bug : 1118030 1118045 The Firefox extension HTTPS Everywhere used to enforce encryption over HTTPS in major web browsers, a feature which has become obsolete because a HTTPS-only mode is built-in nowadays. Consequently HTTPS Everywhere has been removed from Debian in 2023. The extension requires up-to-date https rules which are obtained from the domain https-rulesets.org. This domain is no longer controlled by the original upstream developers and registered by a third party now. Requests are redirected to a known malware site. This poses a severe risk for users of HTTPS Everywhere. As a first step to remedy this problem, version 2025.10.14-0+deb11u1 will completely remove all files associated with HTTPS Everywhere and only install a README file to raise the awareness for this security problem. The Debian packages parl-desktop and progress-linux-desktop will no longer depend on webext-https-everywhere. The source package https-everywhere and the binary package webext-https- everywhere will be removed from Debian in a subsequent step. We recommend to avoid using HTTPS Everywhere and to use web browsers, e.g. Firefox, which support HTTPS only instead. For more information, please refer to Debian bugs #1118030 and #1118045. For Debian 11 bullseye, this problem has been fixed inversion 2025.10.14-0+deb11u1. We recommend that you upgrade your https-everywhere packages. For the detailed security status of https-everywhere please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/https-everywhere Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . HTTPS Everywhere was removed from Debian due to security risks. Upgrade your system to enhance protection.. Debian, HTTPS Everywhere, security risks, encryption, critical updates. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Oct 14, 2025 Critical Debian LTS
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200