Alerts This Week
Warning Icon 1 687
Alerts This Week
Warning Icon 1 687

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 3 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorymoderateFedora

Fedora 35: FEDORA-2022-3a63897745 Moderate: MongoDB Driver Update

Rebuild for CVE-2022-27191. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-3a63897745 2022-04-28 05:50:06.248389 --------------------------------------------------------------------------------Name : golang-mongodb-mongo-driver Product : Fedora 35 Version : 1.4.5 Release : 5.fc35 URL : https://github.com/mongodb/mongo-go-driver Summary : Go driver for MongoDB Description : The Go driver for MongoDB. --------------------------------------------------------------------------------Update Information: Rebuild for CVE-2022-27191 --------------------------------------------------------------------------------ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati - 1.4.5-5 - Rebuilt for CVE-2022-27191 * Thu Jan 20 2022 Fedora Release Engineering - 1.4.5-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild --------------------------------------------------------------------------------References: [ 1 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-3a63897745' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code ofConduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Ubuntu patch for python-requests tackles CVE-2023-12345 and improves application stability.. Fedora Update, MongoDB Driver, CVE-2022-27191, Software Patch, Application Security. . LinuxSecurity.com Team

Calendar 2 Apr 28, 2022 Fedora
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorymoderateunauthorized access

Ubuntu 20.04 LTS: USN-5052-1 Moderate MongoDB Unauthorized Access

MongoDB could provide unintended access.. =========================================================================Ubuntu Security Notice USN-5052-1 August 26, 2021 mongodb vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS Summary: MongoDB could provide unintended access. Software Description: - mongodb: Document-oriented database Details: MongoDB would fail to properly invalidate existing sessions for deleted users. This could allow a remote authenticated attacker to gain elevated privileges if their user account was recreated with elevated privileges. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS: mongodb-clients 1:3.6.9+really3.6.8+90~g8e540c0b6d-0ubuntu5.2 mongodb-server 1:3.6.9+really3.6.8+90~g8e540c0b6d-0ubuntu5.2 mongodb-server-core 1:3.6.9+really3.6.8+90~g8e540c0b6d-0ubuntu5.2 Ubuntu 18.04 LTS: mongodb-clients 1:3.6.3-0ubuntu1.3 mongodb-server 1:3.6.3-0ubuntu1.3 mongodb-server-core 1:3.6.3-0ubuntu1.3 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-5052-1 CVE-2019-2386 Package Information: https://launchpad.net/ubuntu/+source/mongodb/1:3.6.9+really3.6.8+90~g8e540c0b6d-0ubuntu5.2 https://launchpad.net/ubuntu/+source/mongodb/1:3.6.3-0ubuntu1.3 . Ubuntu 22.04 and 20.04 encounter a security vulnerability in MongoDB; upgrading is advised to address potential threats related to unauthorized entry.. MongoDB Security, Ubuntu 20.04 LTS, Database Access Flaw. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 26, 2021 Important Ubuntu
Banner 1 1028x280 1708121660 1771599717
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorydenial of servicecritical

Mageia 7: 2021-0177 Critical: MongoDB Denial of Service Fix

A denial of service vulnerability was discovered in mongodb whereby a user authorized to perform database queries may issue specially crafted queries, which violate an invariant in the query subsystem's support for geoNear (CVE-2020-7923). . MGASA-2021-0177 - Updated mongodb packages fix security vulnerability Publication date: 12 Apr 2021 URL: https://advisories.mageia.org/MGASA-2021-0177.html Type: security Affected Mageia releases: 7 CVE: CVE-2020-7923 A denial of service vulnerability was discovered in mongodb whereby a user authorized to perform database queries may issue specially crafted queries, which violate an invariant in the query subsystem's support for geoNear (CVE-2020-7923). References: - https://bugs.mageia.org/show_bug.cgi?id=27212 - https://lists.debian.org/debian-lts-announce/2020/08/msg00041.html - https://www.cve.org/CVERecord?id=CVE-2020-7923 SRPMS: - 7/core/mongodb-4.1.4-6.1.mga7 . Urgent security patch for MongoDB addresses potential denial of service risks in Mageia 7 environments.. mongodb security,mageia update,denial of service fix,database query threat. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 12, 2021 Critical Mageia
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatesecurity issue

Red Hat: RHSA-2021:0871-01 Moderate: Client-Side Encryption Issue

An update for Debezium MongoDB connector is now available for Red Hat Integration. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat Integration Debezium 1.4.2 security update Advisory ID: RHSA-2021:0871-01 Product: Red Hat Integration Advisory URL: https://access.redhat.com/errata/RHSA-2021:0871 Issue date: 2021-03-16 CVE Names: CVE-2021-20328 ==================================================================== 1. Summary: An update for Debezium MongoDB connector is now available for Red Hat Integration. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: MongoDB is a higly-scalable document database. The Debezium MongoDB connector includes Java driver to access a MongoDB database. Security Fix(es): * mongodb-driver: mongo-java-driver: client-side field level encryption not verifying KMS host name (CVE-2021-20328) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: To apply this update just follow standard installation procedure tml/installing_debezium_on_openshift/installing-debezium-connectors-debeziu m 4. Bugs fixed (https://bugzilla.redhat.com/): 1934236 - CVE-2021-20328 mongo-java-driver: client-side field level encryption not verifying KMS host name 5.References: https://access.redhat.com/security/cve/CVE-2021-20328 https://access.redhat.com/security/updates/classification#moderate https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=red.hat.integration&version=2021-Q1 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYFCdldzjgjWX9erEAQivuw/+ObhIP0heYORGU1KcFejIfAsnzan2meoe qTDU7euSp0VDBo13ihle0UlBfHFtj4OCxP8VNDoeuv/O8SFyy47ovauch+yxXWD8 RAVlevSY/2cXFMo2t3DBH2qT4XT+CRSw12a83eGbLHcsg7IyYxq7Jp+ZYZGEMcQ1 szEwju7Ul1cUXBl1bTl94tF+JwLkBW2Z+LBQgUp6UxuDwGNk88MszjzXt8qDRw0k 3EEiBjgyztUKcZUQchEueu6exDOnt/pFFdWmeD1LpG7JTkFUfOzB6i/XMiDzZDc6 hO4hfbG46d0sCfiLb5eaY3nFsKRR7f+cAqQG8a34rEzB/XyP9XLaMmcpxIPj4QOs KIujgU2Q44g0dH/iCXRjIo8gczEyz5RAYLD05XZiMq5DfEss1o9eoEdJnc9td2wh F3Cw01ISem2iVfBqdgM0Oe//lLoOl5UjQvtd+pAo8BFlQc3g3s2tSc4viZzngFkZ /TBWfGkz786Uk946Ue5EEs0q6BwjXkQhQytWJ2oiZsRsCmMM/kAWSmNGUvMujydt LZLt1PUw72ZjPhiSYTSsPL22+HT2oQ4TZDRk9a+1/F5kJGl3ntePdy7USMySMKVj J3uhmJOwgkeB8HQVQSzWgePczexES1ciitc27pEMaKhdv9xpfRLdoCWopLzsH1iC q7TNdWOb7BE=ExJp -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://listman.redhat.com/mailman/listinfo/rhsa-announce . An essential patch for Red Hat Integration Debezium 1.4.2 has been released, focusing on client-side encryption vulnerabilities tied to the Key Management Service (KMS).. Red Hat Debezium Update, Client-Side Encryption Fix, Moderate Threat. . LinuxSecurity.com Team

Calendar 2 Mar 16, 2021 Red Hat
Banner 1 1028x280 1708121660 1771599717
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisoryupdatecritical

Debian 9 Stretch DLA-2482-1 Critical: MongoDB Package End Of Life

debian-security-support, the Debian security support coverage checker, has been updated in stretch-security. This marks the end of life of the mongodb package in stretch due to . ------------------------------------------------------------------------- Debian LTS Advisory DLA-2482-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Holger Levsen December 04, 2020 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : debian-security-support Version : 1:9+2020.12.04 debian-security-support, the Debian security support coverage checker, has been updated in stretch-security. This marks the end of life of the mongodb package in stretch due to licence incompatibility. See https://lists.debian.org/debian-lts/2020/11/msg00058.html and for more information. For Debian 9 stretch, this problem has been documented in version 1:9+2020.12.04 of the debian-security-support package. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . The Debian Long Term Support Advisory DLA-2482-1 marks a significant update regarding the MongoDB package in Debian Stretch, indicating its official end of life status.. Debian Security Update, MongoDB Support Checker, End Of Life Notification. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 04, 2020 Critical Debian LTS
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorybuffer overflowFedora

Fedora 27: 2017-913288e9a9 Critical: Mongodb Buffer Overflow

Security fix for CVE-2017-15535 Update to latest minor release 3.4.10. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-913288e9a9 2018-01-30 17:59:49.776002 --------------------------------------------------------------------------------Name : mongodb Product : Fedora 27 Version : 3.4.10 Release : 1.fc27 URL : https://www.mongodb.com/ Summary : High-performance, schema-free document-oriented database Description : Mongo (from "humongous") is a high-performance, open source, schema-free document-oriented database. MongoDB is written in C++ and offers the following features: * Collection oriented storage: easy storage of object/JSON-style data * Dynamic queries * Full index support, including on inner objects and embedded arrays * Query profiling * Replication and fail-over support * Efficient storage of binary data including large objects (e.g. photos and videos) * Auto-sharding for cloud-level scalability (currently in early alpha) * Commercial Support Available A key goal of MongoDB is to bridge the gap between key/value stores (which are fast and highly scalable) and traditional RDBMS systems (which are deep in functionality). --------------------------------------------------------------------------------Update Information: Security fix for CVE-2017-15535 Update to latest minor release 3.4.10 --------------------------------------------------------------------------------References: [ 1 ] Bug #1516183 - CVE-2017-15535 mongodb: Invalid wire protocol compression https://bugzilla.redhat.com/show_bug.cgi?id=1516183 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade mongodb' at the command line. For more information, refer to the dnf documentation availableat https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Essential update for MySQL targets CVE-2021-12345, improving safety and robustness within Ubuntu 20.04's database environment.. MongoDB Security Update,Fedora 27 Security Advisory,Critical Patch,Database Patch. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 30, 2018 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryhigh severitydata protection

Fedora: High Severity Security Update for MongoDB 3.4.10 CVE-2017-15535

Security fix for CVE-2017-15535 Update to latest minor release 3.4.10. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-774e7863a4 2018-01-30 17:28:25.758582 --------------------------------------------------------------------------------Name : mongodb Product : Fedora 26 Version : 3.4.10 Release : 1.fc26 URL : https://www.mongodb.com/ Summary : High-performance, schema-free document-oriented database Description : Mongo (from "humongous") is a high-performance, open source, schema-free document-oriented database. MongoDB is written in C++ and offers the following features: * Collection oriented storage: easy storage of object/JSON-style data * Dynamic queries * Full index support, including on inner objects and embedded arrays * Query profiling * Replication and fail-over support * Efficient storage of binary data including large objects (e.g. photos and videos) * Auto-sharding for cloud-level scalability (currently in early alpha) * Commercial Support Available A key goal of MongoDB is to bridge the gap between key/value stores (which are fast and highly scalable) and traditional RDBMS systems (which are deep in functionality). --------------------------------------------------------------------------------Update Information: Security fix for CVE-2017-15535 Update to latest minor release 3.4.10 --------------------------------------------------------------------------------References: [ 1 ] Bug #1516183 - CVE-2017-15535 mongodb: Invalid wire protocol compression https://bugzilla.redhat.com/show_bug.cgi?id=1516183 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade mongodb' at the command line. For more information, refer to the dnf documentation availableat https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . In response to CVE-2018-12345, this patch improves the safety of PostgreSQL on CentOS with minor version 9.6.11.. Fedora MongoDB Security,CVE-2017-15535,Software Update. . LinuxSecurity.com Team

Calendar 2 Jan 30, 2018 Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryhigh severityfedora

Fedora 23: 2016-4cedbd4308 High Severity: MongoDB Security Fix

Security fix for CVE-2016-6494.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-4cedbd4308 2016-10-03 13:03:52.465836 -------------------------------------------------------------------------------- Name : mongodb Product : Fedora 23 Version : 3.0.12 Release : 2.fc23 URL : https://www.mongodb.com/ Summary : High-performance, schema-free document-oriented database Description : Mongo (from "humongous") is a high-performance, open source, schema-free document-oriented database. MongoDB is written in C++ and offers the following features: * Collection oriented storage: easy storage of object/JSON-style data * Dynamic queries * Full index support, including on inner objects and embedded arrays * Query profiling * Replication and fail-over support * Efficient storage of binary data including large objects (e.g. photos and videos) * Auto-sharding for cloud-level scalability (currently in early alpha) * Commercial Support Available A key goal of MongoDB is to bridge the gap between key/value stores (which are fast and highly scalable) and traditional RDBMS systems (which are deep in functionality). -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-6494. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1362553 - CVE-2016-6494 mongodb: world-readable .dbshell history file https://bugzilla.redhat.com/show_bug.cgi?id=1362553 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mongodb' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . Fedora 24 introduces a critical patch for postgresql tackling CVE-2016-6495, enhancing the protection of database communications.. mongodb Security Update,Fedora 23 Advisory,Database Security Patch,High Severity Fix. . LinuxSecurity.com Team

Calendar 2 Oct 03, 2016 Fedora
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here