Alerts This Week
Warning Icon 1 540
Alerts This Week
Warning Icon 1 540

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedorakernel

Fedora 42 Kernel Update 6.19.14-106 Security Enhancements 2026-db3618772b

The 6.19.14-106 kernel build contains additional mitigations for new code paths in fragnesia, and a couple of other security updates without fancy names or CVEs assigned yet.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-db3618772b 2026-05-19 18:21:15.523108+00:00 -------------------------------------------------------------------------------- Name : kernel Product : Fedora 42 Version : 6.19.14 Release : 106.fc42 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package -------------------------------------------------------------------------------- Update Information: The 6.19.14-106 kernel build contains additional mitigations for new code paths in fragnesia, and a couple of other security updates without fancy names or CVEs assigned yet. -------------------------------------------------------------------------------- ChangeLog: * Mon May 18 2026 Justin M. Forbes [6.19.14-106] - Revert "redhat/kernel.spec.template: Fix indentation of uki-virt generation code" (Justin M. Forbes) - Revert "redhat/kernel.spec.template: Simplify uki-virt signing" (Justin M. Forbes) - Revert "redhat/kernel.spec.template: Add kernel-uki-dtbloader sub-package" (Justin M. Forbes) - Revert "redhat/kernel.spec.template: Make -uki-dtbloader provide kernel-core-uname-r" (Justin M. Forbes) * Mon May 18 2026 Justin M. Forbes [6.19.14-6] - net/sched: fix pedit partial COW leading to page cache corruption (Rajat Gupta) - net: skbuff: propagate shared-frag marker through frag-transfer helpers (Hyunwoo Kim) - Revert fragnesia v4 in favor of v5 (Justin M. Forbes) - net/sched: act_pedit: extend the writable skb range per key (Zhang Cen) -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-db3618772b' at the command line. Formore information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Fedora 42 kernel update adds mitigations and security improvements for fragnesia with several related changes.. Fedora Kernel Update, Security Improvements, Fragnesia Mitigations, Linux Kernel Enhancements, System Security Updates. . Severity: Informational. LinuxSecurity.com Team

Calendar 2 May 19, 2026 Informational Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity issuefedora

Fedora 43 Kernel 7.0.9-102 Security Fixes for Fragnesia 2026-88a1fb9418

The 7.0.9-102/202 stable kernel builds contain additional mitigations for new code paths in fragnesia, and a couple of other security updates without fancy names or CVEs assigned yet. The 7.0.9 stable kernel update contains a number of important fixes across the tree.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-88a1fb9418 2026-05-19 16:00:44.522731+00:00 -------------------------------------------------------------------------------- Name : kernel Product : Fedora 43 Version : 7.0.9 Release : 102.fc43 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package -------------------------------------------------------------------------------- Update Information: The 7.0.9-102/202 stable kernel builds contain additional mitigations for new code paths in fragnesia, and a couple of other security updates without fancy names or CVEs assigned yet. The 7.0.9 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog: * Mon May 18 2026 Justin M. Forbes [7.0.9-0] - net/sched: fix pedit partial COW leading to page cache corruption (Rajat Gupta) - net: skbuff: propagate shared-frag marker through frag-transfer helpers (Hyunwoo Kim) - Revert fragnesia for so I can replace it with the newer one (Justin M. Forbes) - net/sched: act_pedit: extend the writable skb range per key (Zhang Cen) * Sun May 17 2026 Justin M. Forbes [7.0.9-0] - Turn on XFS_ONLINE_REPAIR for Fedora (Justin M. Forbes) - Enable SND_DESIGNWARE for Fedora x86 (Justin M. Forbes) - Enable HID_SENSOR_PROX for Fedora x86 (Justin M. Forbes) - drm/i915/dp_tunnel: Don't update tunnel state during system resume (Imre Deak) - Linux v7.0.9 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2478149 - xfs metadata repairfacility is not available https://bugzilla.redhat.com/show_bug.cgi?id=2478149 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-88a1fb9418' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Fedora 43 kernel 7.0.9-102 contains mitigations and security updates for system stability and security improvement.. Fedora enhancements security mitigations updates. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 19, 2026 Important Fedora
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoralow severity

Fedora 41: fastd Security Fix for LOW Severity UDP Amplification

This release contains a number of small improvements and bugfixes, including mitigations for the LOW severity vulnerability CVE-2025-24356. Bugfixes Add mitigations for fast-reconnect amplification attacks When receiving a data packet from an unknown IP address/port combination, fastd. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-b895b18cfe 2025-02-04 01:14:03.352890+00:00 -------------------------------------------------------------------------------- Name : fastd Product : Fedora 41 Version : 23 Release : 1.fc41 URL : https://github.com/neocturne/fastd Summary : Fast and secure tunneling daemon Description : fastd is a secure tunneling daemon with some unique features: - Very small binary (about 100KB on OpenWRT in the default configuration, including all dependencies besides libc) - Exchangable crypto methods - Transport over UDP for simple usage behind NAT - Can run in 1:1 and 1:n scenarios - There are no server and client roles defined by the protocol, this is just defined by the usage. - Only one instance of the daemon is needed on each host to create a full mesh If no full mesh is established, a routing protocol is necessary to enable hosts that are not connected directly to reach each other -------------------------------------------------------------------------------- Update Information: This release contains a number of small improvements and bugfixes, including mitigations for the LOW severity vulnerability CVE-2025-24356. Bugfixes Add mitigations for fast-reconnect amplification attacks When receiving a data packet from an unknown IP address/port combination, fastd will assume that one of its connected peers has moved to a new address (for example due to internet lines with dynamic IP, or roaming between WWAN and a local internet connection) and initiate a reconnect by sending a handshake packet. This “fast reconnect” avoids having to wait for a session timeout(up to ~90s) until a new connection is established. Even a 1-byte UDP packet just containing the fastd packet type header can trigger a much larger handshake packet (~150 bytes of UDP payload). With fastd v22, this number is doubled, because two handshakes are sent (one in a pre-v22-compatible format and one in a new L2TP-style format). Including IPv4 and UDP headers, the resulting amplification factor is roughly 12-13. By sending data packets with a spoofed source address to fastd instances reachable on the internet, this amplification of UDP traffic might be used to facilitate a Distributed Denial of Service attack. fastd has always implemented rate limiting for handshakes to unknown IP addresses and ports to 1 handshake per 15s to avoid this kind of attack, however the rate is limited per-port and not per-address, thus still allowing handshakes to be sent to all 65535 UDP ports of the same IP address unlimited. The issue has been mitigated in fastd v23 by a number of changes: Rate-limiting has been changed changed to be applied per-address instead of per- port Only one handshake instead of two handshakes is sent for fast-reconnect (by determining from the format of the data packet whether a pre-v22 or L2TP-style handshake should be used) Require at least a full method header instead of just a single byte for a data packet to be considered valid. This does not have an effect on instances that enable the null method (regardless of null being actually in use), as a single- byte UDP packet is a valid null keepalive, but for all other methods the amplification factor is slightly reduced. Only fastd instances that allow connections from arbitrary IP addresses are vulnerable. Instances in a “client” role that configure their peers using the remote config option (which includes the common deployment as part of the Gluon wireless mesh firmware) will not respond to unexpected data packets with a handshake and are therefore unaffected. CVE-2025-24356 has been assigned to this issue. The severity ofthis vulnerability is considered LOW. A GitHub security advisory can be found under GHSA-pggg-vpfv-4rcv. Fix config loading to fail on offload l2tp no; when L2TP offloading is unsupported by the fastd build or the kernel Fix assembly Salsa20(/12) implementations accidentally generating the Linux- specific .note.GNU-stack ELF section on non-Linux systems This is unlikely to have caused any issues, as other systems should just ignore the unknown section. Status socket: - Fix interface name information with L2TP offloading - Add per- peer MTU information Documentation: - Fix incorrect “persist interface” examples - Improve explanation of float option Build: - Fix build on macOS (again) - Fix build with Meson 0.49 (the minimum version marked as supported by fastd) Other changes Add support for Indirect Branch Tracking and Shadow Stacks on x86 The assembly Salsa20(/12) implementations have been marked compatible with IBT and SHSTK, which are part of Intel CET (Control-flow Enforcement Technology) and can be enabled using the -fcf-protection GCC option. The file COPYRIGHT has been renamed to LICENSE The vendored version of libmnl that is used with libmnl_builtin=true has been updated to 1.0.5 -------------------------------------------------------------------------------- ChangeLog: * Sun Jan 26 2025 Felix Kaechele - 23-1 - update to 23 * Thu Jan 16 2025 Fedora Release Engineering - 22-17 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2342133 - fastd-23 is available https://bugzilla.redhat.com/show_bug.cgi?id=2342133 [ 2 ] Bug #2342338 - CVE-2025-24356 fastd: UDP traffic amplification via fastd's fast reconnect feature [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2342338 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisoryFEDORA-2025-b895b18cfe' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- . Debian releases patches for systemd enhancing defense mechanisms against minor escalation vulnerabilities and addressing various bugs.. UDP Amplification, Fastd Security, Fastd Updates, Fedora Security Advisory, Network Bugfixes. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Feb 04, 2025 Low Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here