Stay Vigilant with Timely Linux Security Advisories

security advisoryfedoravulnerability

Fedora 42: migrate 4.19.0 Critical CVE Fix RHSA-2025-57302ba8ea

Update to 4.19.0 Address CVEs by rebuilding with Go 1.24.10. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-57302ba8ea 2025-11-29 17:02:16.261386+00:00 -------------------------------------------------------------------------------- Name : migrate Product : Fedora 42 Version : 4.19.0 Release : 1.fc42 URL : https://github.com/golang-migrate/migrate Summary : Go database migrations library and program Description : Go database migrations library and program. This package is built with the following databases backends: * cassandra * cockroachdb * mongodb * mysql * postgres * redshift * sqlite3 * sqlite This package is built with the following source backends: * github * gitlab * go-bindata * godoc-vfs * gcs * iofs * pkger * s3 -------------------------------------------------------------------------------- Update Information: Update to 4.19.0 Address CVEs by rebuilding with Go 1.24.10 -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 21 2025 Link Dupont - 4.19.0-1 - Update to version 4.19.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2360648 - CVE-2025-22872 migrate: Incorrect Neutralization of Input During Web Page Generation in x/net in golang.org/x/net [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2360648 [ 2 ] Bug #2408067 - CVE-2025-58189 migrate: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2408067 [ 3 ] Bug #2409536 - CVE-2025-61723 migrate: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2409536 [ 4 ] Bug #2410487 - CVE-2025-58185 migrate: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2410487 [ 5 ] Bug #2411385 - CVE-2025-58188 migrate: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2411385 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-57302ba8ea' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Upgrade to Fedora 42, migrating to kernel 4.19.0 to resolve vital security vulnerabilities related to Go and enhance overall system integrity. Fedora 42 migrate CVE Go security update. . Severity: Critical. LinuxSecurity.com Team

Nov 29, 2025 •Critical Fedora

security advisoryfedoraupdate

Fedora 43: migrate Update FEDORA-2025-427af3b610 CVE-2025-58189 Critical

Update to 4.19.0 Address CVEs by rebuilding with Go 1.25.4. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-427af3b610 2025-11-29 16:43:28.332703+00:00 -------------------------------------------------------------------------------- Name : migrate Product : Fedora 43 Version : 4.19.0 Release : 1.fc43 URL : https://github.com/golang-migrate/migrate Summary : Go database migrations library and program Description : Go database migrations library and program. This package is built with the following databases backends: * cassandra * cockroachdb * mongodb * mysql * postgres * redshift * sqlite3 * sqlite This package is built with the following source backends: * github * gitlab * go-bindata * godoc-vfs * gcs * iofs * pkger * s3 -------------------------------------------------------------------------------- Update Information: Update to 4.19.0 Address CVEs by rebuilding with Go 1.25.4 -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 21 2025 Link Dupont - 4.19.0-1 - Update to version 4.19.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2408323 - CVE-2025-58189 migrate: go crypto/tls ALPN negotiation error contains attacker controlled information [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2408323 [ 2 ] Bug #2409796 - CVE-2025-61723 migrate: Quadratic complexity when parsing some invalid inputs in encoding/pem [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2409796 [ 3 ] Bug #2410746 - CVE-2025-58185 migrate: Parsing DER payload can cause memory exhaustion in encoding/asn1 [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2410746 [ 4 ] Bug #2411642 - CVE-2025-58188 migrate: Panic when validating certificates with DSA public keys in crypto/x509 [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2411642 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-427af3b610' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Update for Fedora 43 addresses CVEs by rebuilding migrate with Go 1.25.4 for enhanced database migrations.. Fedora Update Go Migration CVE Fix. . Severity: Critical. LinuxSecurity.com Team

Nov 29, 2025 •Critical Fedora

security advisoryfedoracritical

Fedora 36 FEDORA-2022-ea8f4e232d Critical Golang Consul Migration Fix

Rebuild to mitigate CVE-2022-{1705,32148,30631,30633,28131,30635,30632,30630,1962} in golang --- See https://groups.google.com/g/golang-dev/c/frczlF8OFQ0/m/4lrZh5BHDgAJ for more information about the specific vulnerabilities.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-ea8f4e232d 2022-07-30 01:52:05.591840 --------------------------------------------------------------------------------Name : golang-github-hashicorp-consul-migrate Product : Fedora 36 Version : 0.1.0 Release : 10.20190602git678fb10.fc36 URL : https://github.com/hashicorp/consul-migrate Summary : Consul server data migrator Description : Consul-migrate is a Go package and CLI utility to perform a very specific data migration for Consul servers nodes. Between Consul versions 0.5.0 and 0.5.1, the backend for storing Raft data was changed from LMDB to BoltDB. To support seamless upgrades, this library is embedded in Consul version 0.5.1 to perform the upgrade automatically. --------------------------------------------------------------------------------Update Information: Rebuild to mitigate CVE-2022-{1705,32148,30631,30633,28131,30635,30632,30630,1962} in golang ---See https://groups.google.com/g/golang-dev/c/frczlF8OFQ0/m/4lrZh5BHDgAJ for more information about the specific vulnerabilities. --------------------------------------------------------------------------------ChangeLog: * Tue Jul 19 2022 Maxwell G - 0.1.0-10 - Rebuild for CVE-2022-{1705,32148,30631,30633,28131,30635,30632,30630,1962} in golang --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-ea8f4e232d' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. Moredetails on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Security notice regarding the recent revisions for various CVEs affecting golang-github-hashicorp-consul-migrate on Fedora 36. Essential for safeguarding systems.. golang Security, Consul Migration, Fedora Update, CVE Mitigation. . Severity: Critical. LinuxSecurity.com Team

Jul 29, 2022 •Critical Fedora

security advisoryFedoramigration

Fedora 36: 2022-08ae2dd481 Critical: CoreDNS CVE-2022-27191 Fix

Rebuild for CVE-2022-27191 ---- Fix FTBFS Close: rhbz#2045471. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-08ae2dd481 2022-05-07 04:08:14.315797 --------------------------------------------------------------------------------Name : golang-github-coredns-corefile-migration Product : Fedora 36 Version : 1.0.11 Release : 5.fc36 URL : https://github.com/coredns/corefile-migration Summary : Library and tools for migrating the CoreDNS corefile Description : Library and tools for migrating the CoreDNS corefile. --------------------------------------------------------------------------------Update Information: Rebuild for CVE-2022-27191 ---- Fix FTBFS Close: rhbz#2045471 --------------------------------------------------------------------------------ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati - 1.0.11-5 - Rebuilt for CVE-2022-27191 --------------------------------------------------------------------------------References: [ 1 ] Bug #2045471 - golang-github-appc-goaci: FTBFS in Fedora rawhide/f36 https://bugzilla.redhat.com/show_bug.cgi?id=2045471 [ 2 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-08ae2dd481' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Fedora has issued a key update for golang-github-coredns-corefile-migration, fixing security flaw CVE-2022-27191 that risks DNS operations.. Coredns Update, Golang Migration, FTBFS Fix, Fedora 36 Advisory. . Severity: Critical. LinuxSecurity.com Team

May 07, 2022 •Critical Fedora

security advisoryupdatecritical

Fedora 35: FEDORA-2022-3a63897745 Critical: CoreDNS Corefile Issue

Rebuild for CVE-2022-27191. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-3a63897745 2022-04-28 05:50:06.248389 --------------------------------------------------------------------------------Name : golang-github-coredns-corefile-migration Product : Fedora 35 Version : 1.0.11 Release : 5.fc35 URL : https://github.com/coredns/corefile-migration Summary : Library and tools for migrating the CoreDNS corefile Description : Library and tools for migrating the CoreDNS corefile. --------------------------------------------------------------------------------Update Information: Rebuild for CVE-2022-27191 --------------------------------------------------------------------------------ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati - 1.0.11-5 - Rebuilt for CVE-2022-27191 * Thu Jan 20 2022 Fedora Release Engineering - 1.0.11-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild --------------------------------------------------------------------------------References: [ 1 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-3a63897745' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe sendan email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Enhancement for Fedora 35 targets key problems in CoreDNS corefile transition in light of CVE-2022-27191 security flaw.. CoreDNS Migration,Fedora Upgrade,Critical Security Advisory. . Severity: Critical. LinuxSecurity.com Team

Apr 28, 2022 •Critical Fedora

security advisoryRed Hatlow severity

Red Hat: RHSA-2020:2332-01 Low: End Of Life Notification for Satellite 5

This is the notification of the End Of Life (EOL) for the following versions of Red Hat Satellite 5: * Red Hat Satellite 5.8 on Red Hat Enterprise Linux 6 2. Relevant releases/architectures:. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Low: Red Hat Satellite 5 - End Of Life Notice Advisory ID: RHSA-2020:2332-01 Product: Red Hat Satellite Advisory URL: https://access.redhat.com/errata/RHSA-2020:2332 Issue date: 2020-05-28 ==================================================================== 1. Summary: This is the notification of the End Of Life (EOL) for the following versions of Red Hat Satellite 5: * Red Hat Satellite 5.8 on Red Hat Enterprise Linux 6 2. Relevant releases/architectures: Red Hat Satellite 5.8 (RHEL v.6) - noarch 3. Description: After May 31, 2020, as per the life-cycle support policy for Red Hat Satellite, Red Hat will discontinue technical support services as well as software maintenance services for all Red Hat Satellite and Proxy versions 5.8 or older on Red Hat Enterprise Linux 6. The listed versions will exit the existing Limited Maintenance Release phase. This means that new bug fixes, security updates, and product enhancements will no longer be provided for the following product versions: * Red Hat Satellite 5.8 on Red Hat Enterprise Linux 6 Details of the Satellite support policy can be found at: https://access.redhat.com/support/policy/updates/satellite/ How to proceed: * If you have a Technical Account Manager, contact that person immediately to discuss upgrade plans. Otherwise, contact Red Hat support for assistance at: https://www.redhat.com/en/services/support * Red Hat Consulting can be engaged to assist with a smooth migration, see https://www.redhat.com/en/services/consulting. * Alternatively, Red Hat Consulting can be engaged to assist with a smooth migration to Satellite 6,see lite-6-datasheet More information on Red Hat Consulting for Satellite can be found in the PDF document linked to in the References section. * Red Hat Knowledgebase and other content, such as whitepapers, reference architectures, and so on, found in the Red Hat Customer Portal. * All Red Hat Satellite documentation. Details of the Red Hat Satellite life-cycle can be found at: https://access.redhat.com/support/policy/updates/satellite/ 4. Solution: Before applying this update, ensure that all the previously-released errata relevant to your system have been applied. For details on how to apply this update, refer to the following knowledgebase article: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1837351 - Satellite 5.8 end of life - final warning 6. Package List: Red Hat Satellite 5.8 (RHEL v.6): Source: spacewalk-certs-tools-2.5.0-6.el6sat.src.rpm noarch: spacewalk-certs-tools-2.5.0-6.el6sat.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/updates/classification/#low 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBXs+4adzjgjWX9erEAQj6gQ/+MA+Mjhc5GsGs7FUce/x/+RdUVVukJE1m 36Ji59AX0NttVizz0FwFXe5H/qqoFXSd3GD1IoIwZO4kKB9b6DidM3yOHXHeLx+5 Qgj9kDpPaRzEPxVKtn+ZSk/dOoFAkGqnpYWp26cwjvC5FnleCkYN4ZgnWgOfElkH U/e7RZatyrGT07tGxdWZ+d0QP7PiAO8OAPr9TxnWDFvtGebMwofw4/u3J1uRE9jN kP+RBhZyJHbGbZK/P3ZUkeFRmOWL7bzfhzggNvA7v2rAiMnidmmVh2D4YwOQhezI sJjXBZVjLJ6IwnfD91u0zJz/pWmYzE6iSoFUAJ1KXgsrQyu1OxOl50/j37BF32z/ KHJHQt+YHOxMbVG0nRWYLHTAcNRAvK/VdPB2xW/jcSuhMhHeiuAzn+kDO+MBUqxD yAqRQntJIjiwouT3loG/syDQ7QfTxiZdKelud95GkhRYLOrHN+2UIGR3jOiJ35Ca 1X6brd4ueaQ6N1Fl1F2Fdh/+YUYlXjYyjEZxbQlgaWonzvCU4egh/GRGC1bQS2B/ z8l5DjIMX36PD1Wz/OK2EXv5n7kbQVSwQI0jZVvkomfRqiHPd1Qpb4F5N+/zUt+x MJcfzbXQihr/vLivFFwLnLNhcvcF6KxMR/QrFfG2fL1wdwgdNuYEO6Eo8fzP0UDD lx4AwszAphs=OStg -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Red Hat Satellite 5.8 has officially reached its end of life, which will affect ongoing support and updates. An upgrade is essential to ensure continuity of services.. Red Hat Satellite 5, End Of Life, Security Advisory. . Severity: Low. LinuxSecurity.com Team

May 28, 2020 •Low Red Hat

security advisoryRed Hat Enterprise Linuxnotification

Red Hat: RHSA-2015:2525-01 Low: RHEL 6.5 EUS Support Ends

This is the final notification for the retirement of Red Hat Enterprise Linux 6.5 Extended Update Support (EUS). This notification applies only to those customers subscribed to the Extended Update Support (EUS) channel for Red Hat Enterprise Linux 6.5.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Low: Red Hat Enterprise Linux 6.5 Extended Update Support Retirement Notice Advisory ID: RHSA-2015:2525-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2015:2525.html Issue date: 2015-12-01 ==================================================================== 1. Summary: This is the final notification for the retirement of Red Hat Enterprise Linux 6.5 Extended Update Support (EUS). This notification applies only to those customers subscribed to the Extended Update Support (EUS) channel for Red Hat Enterprise Linux 6.5. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server EUS (v. 6.5) - i386, ppc64, s390x, x86_64 3. Description: In accordance with the Red Hat Enterprise Linux Errata Support Policy, Extended Update Support for Red Hat Enterprise Linux 6.5 was retired on November 30, 2015, and support will no longer be provided. Accordingly, Red Hat will no longer provide updated packages, including Critical impact security patches or urgent priority bug fixes, for Red Hat Enterprise Linux 6.5 EUS after November 30, 2015. In addition, technical support through Red Hat's Global Support Services will be limited as described under "non-current minor releases" in the Knowledge Base article located at https://access.redhat.com/articles/64664 after this date. We encourage customers to migrate from Red Hat Enterprise Linux 6.5 to a more recent version of Red Hat Enterprise Linux. As a benefit of the Red Hat subscription model, customers can use their active subscriptions to entitle any system on anycurrently supported Red Hat Enterprise Linux release. Details of the Red Hat Enterprise Linux life cycle can be found here: https://access.redhat.com/support/policy/updates/errata/ 4. Solution: This erratum contains an updated redhat-release-server package that provides a copy of this retirement notice in the "/usr/share/doc/" directory. 5. Package List: Red Hat Enterprise Linux Server EUS (v. 6.5): Source: redhat-release-server-6Server-6.5.0.3.el6_5.2.src.rpm i386: redhat-release-server-6Server-6.5.0.3.el6_5.2.i686.rpm ppc64: redhat-release-server-6Server-6.5.0.3.el6_5.2.ppc64.rpm s390x: redhat-release-server-6Server-6.5.0.3.el6_5.2.s390x.rpm x86_64: redhat-release-server-6Server-6.5.0.3.el6_5.2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 6. References: https://access.redhat.com/security/updates/classification/#low https://access.redhat.com/articles/64664 https://access.redhat.com/support/policy/updates/errata/ 7. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFWXZ+zXlSAg2UNWIIRAhj4AJ9rb4K5yCOp+klVU4B07ONNsmNkNQCgnNFd qCa17abfboX7Ujd12f06Y/w=i9QN -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Final notification on the retirement of Red Hat Enterprise Linux 6.5 Extended Update Support dated December 1, 2015.. Red Hat Enterprise Linux,EUS Notification,Security Advisory,Support Notice. . Severity: Low. LinuxSecurity.com Team

Dec 01, 2015 •Low Red Hat

security advisorysoftware updatedebian

Debian: DSA-3314-1 Moderate: Typo3 4.5 End Of Life Notice

Upstream security support for Typo3 4.5.x ended three months ago and the same now applies to the Debian packages as well. Newer versions of Typo3 are no longer packaged in Debian, so the . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3314-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff July 23, 2015 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : typo3-src Upstream security support for Typo3 4.5.x ended three months ago and the same now applies to the Debian packages as well. Newer versions of Typo3 are no longer packaged in Debian, so the recommended alternative is to migrate to a custom installation of Typo3 6.2.x (the current long term branch). If you cannot migrate for some reason, commercial support for 4.5 is still available. Please see https://typo3.org/article/announcing-typo3-45-lts-regular-end-of-life-eol/ for additional information. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Support for Typo3 4.5.x has concluded; upgrade to Typo3 6.2.x or explore commercial alternatives for Debian.. Typo3 Security, Debian Software Support, Open Source Migration. . LinuxSecurity.com Team

Jul 23, 2015 Debian

Community Poll

More Polls

Stay Secure with the Latest Linux Advisories

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

Fedora 42: migrate 4.19.0 Critical CVE Fix RHSA-2025-57302ba8ea

Fedora 43: migrate Update FEDORA-2025-427af3b610 CVE-2025-58189 Critical

Fedora 36 FEDORA-2022-ea8f4e232d Critical Golang Consul Migration Fix

Fedora 36: 2022-08ae2dd481 Critical: CoreDNS CVE-2022-27191 Fix

Fedora 35: FEDORA-2022-3a63897745 Critical: CoreDNS Corefile Issue

Red Hat: RHSA-2020:2332-01 Low: End Of Life Notification for Satellite 5

Red Hat: RHSA-2015:2525-01 Low: RHEL 6.5 EUS Support Ends

Debian: DSA-3314-1 Moderate: Typo3 4.5 End Of Life Notice

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!