Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 524
Alerts This Week
Warning Icon 1 524

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 1,455 articles for you...
202

openSUSE Kernel Important Update Six Issues Fixed 2026-3002-1

An update that solves six vulnerabilities can now be installed.. # Security update for the Linux Kernel (Live Patch 27 for SUSE Linux Enterprise 15 SP6) Announcement ID: SUSE-SU-2026:3002-1 Release Date: 2026-07-15T06:05:21Z Rating: important References: * bsc#1267698 * bsc#1267723 * bsc#1267893 * bsc#1268662 * bsc#1269023 * bsc#1269495 Cross-References: * CVE-2026-46120 * CVE-2026-46173 * CVE-2026-46227 * CVE-2026-52909 * CVE-2026-52943 * CVE-2026-53362 CVSS scores: * CVE-2026-46120 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46173 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46173 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46173 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46227 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46227 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46227 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46227 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52909 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-52909 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-52909 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52943 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-52943 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52943 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52943 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-53362 ( SUSE ): 9.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-53362 ( SUSE ): 8.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.115 fixes various security issues The following security issues were fixed: * CVE-2026-46120: ip6_gre: Use cached t-> net in ip6erspan_changelink() (bsc#1267893). * CVE-2026-46173: exit: prevent preemption of oopsing TASK_DEAD task (bsc#1267723). * CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL (bsc#1267698). * CVE-2026-52909: ip6_vti: set netns_immutable on the fallback device (bsc#1268662). * CVE-2026-52943: net: skbuff: fix missing zerocopy reference in pskb_carve helpers (bsc#1269023). * CVE-2026-53362: ipv6: account for fraggap on the paged allocation path (bsc#1269495). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2026-3002=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-3002=1 ## Package List: * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_23_115-default-2-150600.2.2 * kernel-livepatch-SLE15-SP6_Update_27-debugsource-2-150600.2.2 * kernel-livepatch-6_4_0-150600_23_115-default-debuginfo-2-150600.2.2 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_23_115-default-2-150600.2.2 * kernel-livepatch-SLE15-SP6_Update_27-debugsource-2-150600.2.2 * kernel-livepatch-6_4_0-150600_23_115-default-debuginfo-2-150600.2.2 ## References: *https://www.suse.com/security/cve/CVE-2026-46120.html * https://www.suse.com/security/cve/CVE-2026-46173.html * https://www.suse.com/security/cve/CVE-2026-46227.html * https://www.suse.com/security/cve/CVE-2026-52909.html * https://www.suse.com/security/cve/CVE-2026-52943.html * https://www.suse.com/security/cve/CVE-2026-53362.html * https://bugzilla.suse.com/show_bug.cgi?id=1267698 * https://bugzilla.suse.com/show_bug.cgi?id=1267723 * https://bugzilla.suse.com/show_bug.cgi?id=1267893 * https://bugzilla.suse.com/show_bug.cgi?id=1268662 * https://bugzilla.suse.com/show_bug.cgi?id=1269023 * https://bugzilla.suse.com/show_bug.cgi?id=1269495 . An important security advisory addressing six vulnerabilities affecting the openSUSE Kernel. Update recommended for protection.. Linux Kernel Security, OpenSUSE Patching, Vulnerability Management. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jul 15, 2026 Important OpenSUSE
219

Rocky Linux 9 Capstone Low Memory Corruption Update RLSA-2026-39309

Low: capstone security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:39309", "synopsis": "Low: capstone security update", "severity": "SEVERITY_LOW", "topic": "An update is available for capstone.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Capstone is a disassembly framework with the target of becoming the ultimate disasm engine for binary analysis and reversing in the security community.\n\nSecurity Fix(es):\n\n* capstone: Capstone: Memory corruption via unchecked vsnprintf return (CVE-2025-68114)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2423416", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2423416", "description": ""}], "cves": [{"name": "CVE-2025-68114", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-68114", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.3", "cwe": "CWE-787"}], "references": [], "publishedAt": "2026-07-15T12:03:43.176942Z", "rpms": {"Rocky Linux 9": {"nvras": ["capstone-0:4.0.2-13.el9_8.aarch64.rpm", "capstone-0:4.0.2-13.el9_8.ppc64le.rpm", "capstone-0:4.0.2-13.el9_8.s390x.rpm", "capstone-0:4.0.2-13.el9_8.src.rpm", "capstone-0:4.0.2-13.el9_8.x86_64.rpm", "capstone-debuginfo-0:4.0.2-13.el9_8.aarch64.rpm", "capstone-debuginfo-0:4.0.2-13.el9_8.ppc64le.rpm", "capstone-debuginfo-0:4.0.2-13.el9_8.s390x.rpm", "capstone-debuginfo-0:4.0.2-13.el9_8.x86_64.rpm", "capstone-debugsource-0:4.0.2-13.el9_8.aarch64.rpm", "capstone-debugsource-0:4.0.2-13.el9_8.ppc64le.rpm", "capstone-debugsource-0:4.0.2-13.el9_8.s390x.rpm","capstone-debugsource-0:4.0.2-13.el9_8.x86_64.rpm", "capstone-devel-0:4.0.2-13.el9_8.aarch64.rpm", "capstone-devel-0:4.0.2-13.el9_8.ppc64le.rpm", "capstone-devel-0:4.0.2-13.el9_8.s390x.rpm", "capstone-devel-0:4.0.2-13.el9_8.x86_64.rpm", "capstone-java-0:4.0.2-13.el9_8.noarch.rpm", "python3-capstone-0:4.0.2-13.el9_8.aarch64.rpm", "python3-capstone-0:4.0.2-13.el9_8.ppc64le.rpm", "python3-capstone-0:4.0.2-13.el9_8.s390x.rpm", "python3-capstone-0:4.0.2-13.el9_8.x86_64.rpm", "python3-capstone-debuginfo-0:4.0.2-13.el9_8.aarch64.rpm", "python3-capstone-debuginfo-0:4.0.2-13.el9_8.ppc64le.rpm", "python3-capstone-debuginfo-0:4.0.2-13.el9_8.s390x.rpm", "python3-capstone-debuginfo-0:4.0.2-13.el9_8.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. A low severity capstone update is available for Rocky Linux 9 that addresses memory corruption issues effectively.. Rocky Linux capstone update security memory corruption. . Severity: Low. LinuxSecurity.com Team

Calendar%202 Jul 15, 2026 Low Rocky Linux
100

SUSE ALSA Moderate Memory Corruption Announced for Advisory 2026-2885-1

An update that solves one vulnerability can now be installed.. # Security update for alsa Announcement ID: SUSE-SU-2026:2885-1 Release Date: 2026-07-13T10:02:46Z Rating: moderate References: * bsc#1268853 Cross-References: * CVE-2026-56109 CVSS scores: * CVE-2026-56109 ( SUSE ): 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-56109 ( NVD ): 7.0 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-56109 ( NVD ): 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 An update that solves one vulnerability can now be installed. ## Description: This update for alsa fixes the following issue * CVE-2026-56109: crafted ALSA configuration text with nested blocks can cause a double-free and memory corruption (bsc#1268853). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2885=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2885=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2885=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2885=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2885=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * libasound2-1.2.6.1-150400.3.3.1 * alsa-debugsource-1.2.6.1-150400.3.3.1 * libasound2-debuginfo-1.2.6.1-150400.3.3.1 * SUSE Linux EnterpriseMicro 5.4 (aarch64 s390x x86_64) * libasound2-1.2.6.1-150400.3.3.1 * alsa-debugsource-1.2.6.1-150400.3.3.1 * libasound2-debuginfo-1.2.6.1-150400.3.3.1 * openSUSE Leap 15.4 (aarch64 i586 ppc64le s390x x86_64) * alsa-debugsource-1.2.6.1-150400.3.3.1 * libasound2-1.2.6.1-150400.3.3.1 * libasound2-debuginfo-1.2.6.1-150400.3.3.1 * alsa-1.2.6.1-150400.3.3.1 * alsa-devel-1.2.6.1-150400.3.3.1 * openSUSE Leap 15.4 (x86_64) * libasound2-32bit-debuginfo-1.2.6.1-150400.3.3.1 * libatopology2-32bit-debuginfo-1.2.6.1-150400.3.3.1 * alsa-topology-devel-32bit-1.2.6.1-150400.3.3.1 * alsa-devel-32bit-1.2.6.1-150400.3.3.1 * libatopology2-32bit-1.2.6.1-150400.3.3.1 * libasound2-32bit-1.2.6.1-150400.3.3.1 * openSUSE Leap 15.4 (aarch64 i586 ppc64le x86_64) * libatopology2-debuginfo-1.2.6.1-150400.3.3.1 * alsa-topology-devel-1.2.6.1-150400.3.3.1 * libatopology2-1.2.6.1-150400.3.3.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libasound2-64bit-1.2.6.1-150400.3.3.1 * libatopology2-64bit-1.2.6.1-150400.3.3.1 * libatopology2-64bit-debuginfo-1.2.6.1-150400.3.3.1 * alsa-devel-64bit-1.2.6.1-150400.3.3.1 * alsa-topology-devel-64bit-1.2.6.1-150400.3.3.1 * libasound2-64bit-debuginfo-1.2.6.1-150400.3.3.1 * openSUSE Leap 15.4 (noarch) * alsa-docs-1.2.6.1-150400.3.3.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * alsa-debugsource-1.2.6.1-150400.3.3.1 * libasound2-1.2.6.1-150400.3.3.1 * libasound2-debuginfo-1.2.6.1-150400.3.3.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * alsa-debugsource-1.2.6.1-150400.3.3.1 * libasound2-1.2.6.1-150400.3.3.1 * libasound2-debuginfo-1.2.6.1-150400.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-56109.html * https://bugzilla.suse.com/show_bug.cgi?id=1268853 . A security patch addressing moderate issues in ALSA for SUSE systems, detailing installation procedures and vulnerability impact.. ALSA Security Patch,SUSE Update,MemoryCorruption Fix. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jul 13, 2026 moderate SuSE
202

openSUSE alsa Moderate Memory Corruption Vulnerability 2026-2885-1

An update that solves one vulnerability can now be installed.. # Security update for alsa Announcement ID: SUSE-SU-2026:2885-1 Release Date: 2026-07-13T10:02:46Z Rating: moderate References: * bsc#1268853 Cross-References: * CVE-2026-56109 CVSS scores: * CVE-2026-56109 ( SUSE ): 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-56109 ( NVD ): 7.0 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-56109 ( NVD ): 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 An update that solves one vulnerability can now be installed. ## Description: This update for alsa fixes the following issue * CVE-2026-56109: crafted ALSA configuration text with nested blocks can cause a double-free and memory corruption (bsc#1268853). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2885=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2885=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2885=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2885=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2885=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * libasound2-1.2.6.1-150400.3.3.1 * alsa-debugsource-1.2.6.1-150400.3.3.1 * libasound2-debuginfo-1.2.6.1-150400.3.3.1 * SUSE Linux EnterpriseMicro 5.4 (aarch64 s390x x86_64) * libasound2-1.2.6.1-150400.3.3.1 * alsa-debugsource-1.2.6.1-150400.3.3.1 * libasound2-debuginfo-1.2.6.1-150400.3.3.1 * openSUSE Leap 15.4 (aarch64 i586 ppc64le s390x x86_64) * alsa-debugsource-1.2.6.1-150400.3.3.1 * libasound2-1.2.6.1-150400.3.3.1 * libasound2-debuginfo-1.2.6.1-150400.3.3.1 * alsa-1.2.6.1-150400.3.3.1 * alsa-devel-1.2.6.1-150400.3.3.1 * openSUSE Leap 15.4 (x86_64) * libasound2-32bit-debuginfo-1.2.6.1-150400.3.3.1 * libatopology2-32bit-debuginfo-1.2.6.1-150400.3.3.1 * alsa-topology-devel-32bit-1.2.6.1-150400.3.3.1 * alsa-devel-32bit-1.2.6.1-150400.3.3.1 * libatopology2-32bit-1.2.6.1-150400.3.3.1 * libasound2-32bit-1.2.6.1-150400.3.3.1 * openSUSE Leap 15.4 (aarch64 i586 ppc64le x86_64) * libatopology2-debuginfo-1.2.6.1-150400.3.3.1 * alsa-topology-devel-1.2.6.1-150400.3.3.1 * libatopology2-1.2.6.1-150400.3.3.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libasound2-64bit-1.2.6.1-150400.3.3.1 * libatopology2-64bit-1.2.6.1-150400.3.3.1 * libatopology2-64bit-debuginfo-1.2.6.1-150400.3.3.1 * alsa-devel-64bit-1.2.6.1-150400.3.3.1 * alsa-topology-devel-64bit-1.2.6.1-150400.3.3.1 * libasound2-64bit-debuginfo-1.2.6.1-150400.3.3.1 * openSUSE Leap 15.4 (noarch) * alsa-docs-1.2.6.1-150400.3.3.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * alsa-debugsource-1.2.6.1-150400.3.3.1 * libasound2-1.2.6.1-150400.3.3.1 * libasound2-debuginfo-1.2.6.1-150400.3.3.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * alsa-debugsource-1.2.6.1-150400.3.3.1 * libasound2-1.2.6.1-150400.3.3.1 * libasound2-debuginfo-1.2.6.1-150400.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-56109.html * https://bugzilla.suse.com/show_bug.cgi?id=1268853 . A security update for alsa addresses a moderate severity issue with potential memory corruption. Update recommended for openSUSE users.. openSUSE alsa update, moderatesecurity advisory, memory corruption fix. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jul 13, 2026 moderate OpenSUSE
197

Debian LTS DLA-4681-1 p7zip Memory Corruption Fix CVE-2026-48092

Multiple memory corruption vulnerabilities were discovered in p7zip, a now unmaintained fork of 7-Zip, which itself is a file archiver handling multiple formats. To address these security vulnerabilities, whose fixes are unfortunately not isolated, this update again replaces p7zip with a. Debian LTS Advisory DLA-4681-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Sylvain Beucler July 13, 2026 https://wiki.debian.org/LTS Package : p7zip Version : 16.02+really26.01+dfsg-0+deb11u1 CVE ID : CVE-2026-48092 CVE-2026-48095 CVE-2026-48101 CVE-2026-48102 CVE-2026-48103 CVE-2026-48104 CVE-2026-48111 CVE-2026-48112 Multiple memory corruption vulnerabilities were discovered in p7zip, a now unmaintained fork of 7-Zip, which itself is a file archiver handling multiple formats. To address these security vulnerabilities, whose fixes are unfortunately not isolated, this update again replaces p7zip with a recent 7-Zip (now v26.01), slightly modified to make it reasonably compatible with p7zip. CVE-2026-48092 SquashFS Fragment Offset Overflow CVE-2026-48095 Heap Buffer Write Overflow CVE-2026-48101 UEFI Capsule uninitialized heap memory disclosure CVE-2026-48102 UDF Field OOB Read CVE-2026-48103 WIM SecurityId OOB read CVE-2026-48104 SquashFS BlockToNode uninitialized heap read CVE-2026-48111 UEFI DEPEX OOB Read CVE-2026-48112 Ar SYMDEF OOB Read For Debian 11 bullseye, these problems have been fixed in version 16.02+really26.01+dfsg-0+deb11u1. We recommend that you upgrade your p7zip packages. For the detailed security status of p7zip please refer to its security tracker page at: https://security-tracker.debian.org/tracker/p7zip Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Multiple memory corruption issues in p7ziphave been resolved with this update. Upgrade your packages to ensure security.. p7zip memory issues, file archiving security, Debian LTS security. . LinuxSecurity.com Team

Calendar%202 Jul 13, 2026 Debian LTS
100

SUSE GraphicsMagick Important Memory Corruption Vuln 2026-2820-1

An update that solves one vulnerability can now be installed.. # Security update for GraphicsMagick Announcement ID: SUSE-SU-2026:2820-1 Release Date: 2026-07-09T18:01:15Z Rating: important References: * bsc#1269891 Cross-References: * CVE-2026-13606 CVSS scores: * CVE-2026-13606 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves one vulnerability can now be installed. ## Description: This update for GraphicsMagick fixes the following issue * CVE-2026-13606: crafted Photo CD (PCD) file can cause memory corruption (bsc#1269891). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2820=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2820=1 ## Package List: * openSUSE Leap 15.6 (aarch64 i586 ppc64le s390x x86_64) * GraphicsMagick-debuginfo-1.3.42-150600.3.33.1 * GraphicsMagick-devel-1.3.42-150600.3.33.1 * libGraphicsMagick-Q16-3-1.3.42-150600.3.33.1 * libGraphicsMagick++-Q16-12-debuginfo-1.3.42-150600.3.33.1 * perl-GraphicsMagick-debuginfo-1.3.42-150600.3.33.1 * GraphicsMagick-1.3.42-150600.3.33.1 * libGraphicsMagick-Q16-3-debuginfo-1.3.42-150600.3.33.1 * libGraphicsMagick++-devel-1.3.42-150600.3.33.1 * perl-GraphicsMagick-1.3.42-150600.3.33.1 * libGraphicsMagickWand-Q16-2-debuginfo-1.3.42-150600.3.33.1 * libGraphicsMagick3-config-1.3.42-150600.3.33.1 * libGraphicsMagick++-Q16-12-1.3.42-150600.3.33.1 * libGraphicsMagickWand-Q16-2-1.3.42-150600.3.33.1 *GraphicsMagick-debugsource-1.3.42-150600.3.33.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * GraphicsMagick-debuginfo-1.3.42-150600.3.33.1 * GraphicsMagick-devel-1.3.42-150600.3.33.1 * libGraphicsMagick-Q16-3-1.3.42-150600.3.33.1 * libGraphicsMagick++-Q16-12-debuginfo-1.3.42-150600.3.33.1 * libGraphicsMagickWand-Q16-2-1.3.42-150600.3.33.1 * perl-GraphicsMagick-debuginfo-1.3.42-150600.3.33.1 * GraphicsMagick-1.3.42-150600.3.33.1 * libGraphicsMagick-Q16-3-debuginfo-1.3.42-150600.3.33.1 * libGraphicsMagick++-devel-1.3.42-150600.3.33.1 * perl-GraphicsMagick-1.3.42-150600.3.33.1 * libGraphicsMagickWand-Q16-2-debuginfo-1.3.42-150600.3.33.1 * libGraphicsMagick++-Q16-12-1.3.42-150600.3.33.1 * libGraphicsMagick3-config-1.3.42-150600.3.33.1 * GraphicsMagick-debugsource-1.3.42-150600.3.33.1 ## References: * https://www.suse.com/security/cve/CVE-2026-13606.html * https://bugzilla.suse.com/show_bug.cgi?id=1269891 . Important security update for GraphicsMagick addresses memory corruption issues and is recommended for installation.. GraphicsMagick Security Patch, SUSE Important Update, Memory Corruption Fix. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jul 10, 2026 Important SuSE
202

openSUSE GraphicsMagick Important Memory Corruption Fix CVE-2026-13606

An update that solves one vulnerability can now be installed.. # Security update for GraphicsMagick Announcement ID: SUSE-SU-2026:2820-1 Release Date: 2026-07-09T18:01:15Z Rating: important References: * bsc#1269891 Cross-References: * CVE-2026-13606 CVSS scores: * CVE-2026-13606 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves one vulnerability can now be installed. ## Description: This update for GraphicsMagick fixes the following issue * CVE-2026-13606: crafted Photo CD (PCD) file can cause memory corruption (bsc#1269891). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2820=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2820=1 ## Package List: * openSUSE Leap 15.6 (aarch64 i586 ppc64le s390x x86_64) * GraphicsMagick-debuginfo-1.3.42-150600.3.33.1 * GraphicsMagick-devel-1.3.42-150600.3.33.1 * libGraphicsMagick-Q16-3-1.3.42-150600.3.33.1 * libGraphicsMagick++-Q16-12-debuginfo-1.3.42-150600.3.33.1 * perl-GraphicsMagick-debuginfo-1.3.42-150600.3.33.1 * GraphicsMagick-1.3.42-150600.3.33.1 * libGraphicsMagick-Q16-3-debuginfo-1.3.42-150600.3.33.1 * libGraphicsMagick++-devel-1.3.42-150600.3.33.1 * perl-GraphicsMagick-1.3.42-150600.3.33.1 * libGraphicsMagickWand-Q16-2-debuginfo-1.3.42-150600.3.33.1 * libGraphicsMagick3-config-1.3.42-150600.3.33.1 * libGraphicsMagick++-Q16-12-1.3.42-150600.3.33.1 * libGraphicsMagickWand-Q16-2-1.3.42-150600.3.33.1 *GraphicsMagick-debugsource-1.3.42-150600.3.33.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * GraphicsMagick-debuginfo-1.3.42-150600.3.33.1 * GraphicsMagick-devel-1.3.42-150600.3.33.1 * libGraphicsMagick-Q16-3-1.3.42-150600.3.33.1 * libGraphicsMagick++-Q16-12-debuginfo-1.3.42-150600.3.33.1 * libGraphicsMagickWand-Q16-2-1.3.42-150600.3.33.1 * perl-GraphicsMagick-debuginfo-1.3.42-150600.3.33.1 * GraphicsMagick-1.3.42-150600.3.33.1 * libGraphicsMagick-Q16-3-debuginfo-1.3.42-150600.3.33.1 * libGraphicsMagick++-devel-1.3.42-150600.3.33.1 * perl-GraphicsMagick-1.3.42-150600.3.33.1 * libGraphicsMagickWand-Q16-2-debuginfo-1.3.42-150600.3.33.1 * libGraphicsMagick++-Q16-12-1.3.42-150600.3.33.1 * libGraphicsMagick3-config-1.3.42-150600.3.33.1 * GraphicsMagick-debugsource-1.3.42-150600.3.33.1 ## References: * https://www.suse.com/security/cve/CVE-2026-13606.html * https://bugzilla.suse.com/show_bug.cgi?id=1269891 . An important security update for GraphicsMagick fixes memory corruption vulnerability. Install the necessary patches now.. GraphicsMagick security update, opensuse memory corruption, important software patch. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jul 10, 2026 Important OpenSUSE
100

SUSE gnutls Important DoS Memory Corruption Vulnern 2026-2822-1

An update that solves 12 vulnerabilities can now be installed.. # Security update for gnutls Announcement ID: SUSE-SU-2026:2822-1 Release Date: 2026-07-09T18:07:13Z Rating: important References: * bsc#1257960 * bsc#1263704 * bsc#1263705 * bsc#1263707 * bsc#1263708 * bsc#1263709 * bsc#1263710 * bsc#1263711 * bsc#1263712 * bsc#1263713 * bsc#1263714 * bsc#1263715 Cross-References: * CVE-2025-14831 * CVE-2026-33845 * CVE-2026-33846 * CVE-2026-3833 * CVE-2026-42009 * CVE-2026-42010 * CVE-2026-42011 * CVE-2026-42012 * CVE-2026-42013 * CVE-2026-42014 * CVE-2026-42015 * CVE-2026-5260 CVSS scores: * CVE-2025-14831 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-14831 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-14831 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33845 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-33845 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-33845 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33845 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-33845 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33846 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-33846 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33846 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33846 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-3833 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-3833 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-3833 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-3833 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-42009 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-42009 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42009 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42009 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42010 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-42010 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N * CVE-2026-42010 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N * CVE-2026-42010 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-42010 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N * CVE-2026-42011 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-42011 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-42011 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-42012 ( SUSE ): 5.9 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-42012 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:N * CVE-2026-42012 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N * CVE-2026-42013 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-42013 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N * CVE-2026-42013 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N * CVE-2026-42014 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-42014 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42014 ( NVD ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-42015 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-42015 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H * CVE-2026-42015 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-5260 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-5260 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-5260 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro for Rancher 5.3 An update that solves 12 vulnerabilities can now be installed. ## Description: This update for gnutls fixes the following issues * CVE-2025-14831: excessive resource consumption when verifying specially crafted malicious certificates containing a large number of name constraints and SANs (bsc#1257960). * CVE-2026-3833: incorrectly accepted domain names due to comparison during name constraints processing being case-sensitive (bsc#1263707). * CVE-2026-5260: heap overread when processing extremely short premaster secret as part of an RSA key exchange (bsc#1263715). * CVE-2026-33845: integer overflow and heap overrun when parsing fragments with zero length and non-zero offset during DTLS handshake (bsc#1263704). * CVE-2026-33846: heap overwrite during DTLS handshake fragment reassembly due to missing validations and checks (bsc#1263705). * CVE-2026-42009: undefined behavior resulting in a DoS when handling DTLS packets with duplicate sequence numbers (bsc#1263708). * CVE-2026-42010: authentication bypass when processing a PSK username with a NUL-character (bsc#1263709). * CVE-2026-42011: name constraint bypass leading to acceptance of invalid certificates during certificate validation (bsc#1263710). * CVE-2026-42012: spoofing of legitimate services and sensitive information interception via specially crafted certificates containing URIs or SRV SANs. (bsc#1263711). * CVE-2026-42013: certificate validation bypass when validating certificates with an oversized SAN (bsc#1263712). * CVE-2026-42014: use-after-free when an attacker attempts to change the PIN with a NULL old PIN for a token that lacks a protectedauthentication path (bsc#1263713). * CVE-2026-42015: memory corruption when appending to a PKCS#12 bag that already contains 32 elements (bsc#1263714). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2822=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2822=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * libgnutls30-3.7.3-150400.24.2 * gnutls-3.7.3-150400.24.2 * libgnutls30-hmac-3.7.3-150400.24.2 * libgnutls30-debuginfo-3.7.3-150400.24.2 * gnutls-debuginfo-3.7.3-150400.24.2 * gnutls-debugsource-3.7.3-150400.24.2 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * libgnutls30-3.7.3-150400.24.2 * gnutls-3.7.3-150400.24.2 * libgnutls30-hmac-3.7.3-150400.24.2 * libgnutls30-debuginfo-3.7.3-150400.24.2 * gnutls-debuginfo-3.7.3-150400.24.2 * gnutls-debugsource-3.7.3-150400.24.2 ## References: * https://www.suse.com/security/cve/CVE-2025-14831.html * https://www.suse.com/security/cve/CVE-2026-33845.html * https://www.suse.com/security/cve/CVE-2026-33846.html * https://www.suse.com/security/cve/CVE-2026-3833.html * https://www.suse.com/security/cve/CVE-2026-42009.html * https://www.suse.com/security/cve/CVE-2026-42010.html * https://www.suse.com/security/cve/CVE-2026-42011.html * https://www.suse.com/security/cve/CVE-2026-42012.html * https://www.suse.com/security/cve/CVE-2026-42013.html * https://www.suse.com/security/cve/CVE-2026-42014.html * https://www.suse.com/security/cve/CVE-2026-42015.html * https://www.suse.com/security/cve/CVE-2026-5260.html * https://bugzilla.suse.com/show_bug.cgi?id=1257960 * https://bugzilla.suse.com/show_bug.cgi?id=1263704 *https://bugzilla.suse.com/show_bug.cgi?id=1263705 * https://bugzilla.suse.com/show_bug.cgi?id=1263707 * https://bugzilla.suse.com/show_bug.cgi?id=1263708 * https://bugzilla.suse.com/show_bug.cgi?id=1263709 * https://bugzilla.suse.com/show_bug.cgi?id=1263710 * https://bugzilla.suse.com/show_bug.cgi?id=1263711 * https://bugzilla.suse.com/show_bug.cgi?id=1263712 * https://bugzilla.suse.com/show_bug.cgi?id=1263713 * https://bugzilla.suse.com/show_bug.cgi?id=1263714 * https://bugzilla.suse.com/show_bug.cgi?id=1263715 . Stay updated on important security patches for the gnutls application in SUSE, addressing various vulnerabilities.. SUSE gnutls security patch critical vulnerabilities update. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jul 10, 2026 Important SuSE
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200