Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Security Notice 2026-2328-1 Significant Updates on Four Xen Risks

Calendar White Jun 10, 2026
Important
Suse Large Esm H900
SuSE

openSUSE 2026-2328-1 Xen Important Buffer Overflow Patch

Calendar White Jun 10, 2026
Important
Opensuse Large Esm H900
openSUSE

openSUSE Leap 15.6 Important Xen Denial of Service Fix SUSE-SU-2026-2329-1

Calendar White Jun 10, 2026
Important
Suse Large Esm H800
SuSE

openSUSE Important xen Patch for Multiple Threats SUSE-2026-2329-1

Calendar White Jun 10, 2026
Important
Suse Large Esm H900
SuSE

SUSE MariaDB Critical Security Fix 12 Vulnerabilities 2026-2330-1

Calendar White Jun 10, 2026
Critical
Ubuntu Large Esm H900
Ubuntu

Ubuntu 22.04 LTS Exim4 Moderate Regression CVE-2023-42117

Calendar White Jun 10, 2026
Important
Suse Large Esm H800
SuSE

SUSE StrongSwan Important Double-Free CVE-2026-47895 Advisory 2026-2312-1

Calendar White Jun 10, 2026
Important
Suse Large Esm H900
SuSE

SUSE vim Important Command Injection Buffer Overflow Update 2026-2313-1

Calendar White Jun 10, 2026
Important
Suse Large Esm H900
SuSE

openSUSE Important libsoup HTTP Request Smuggling Vulnerability 2026-2314-1

Calendar White Jun 10, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":552,"type":"x","order":1,"pct":78.63,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.27,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.84,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.25,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorydenial of serviceinput validation

SUSE Linux Micro: 2025:20080-1 moderate: podman multiple fixes

* bsc#1231208 * bsc#1231230 * bsc#1231499 * bsc#1231698 . # Security update for podman Announcement ID: SUSE-SU-2025:20080-1 Release Date: 2025-02-03T09:06:01Z Rating: moderate References: * bsc#1231208 * bsc#1231230 * bsc#1231499 * bsc#1231698 Cross-References: * CVE-2024-6104 * CVE-2024-9341 * CVE-2024-9407 * CVE-2024-9675 * CVE-2024-9676 CVSS scores: * CVE-2024-6104 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N * CVE-2024-6104 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-9341 ( SUSE ): 5.8 CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:A/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2024-9341 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N * CVE-2024-9341 ( NVD ): 5.4 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N * CVE-2024-9341 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N * CVE-2024-9407 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2024-9407 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:N * CVE-2024-9407 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:L/A:N * CVE-2024-9675 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N * CVE-2024-9675 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2024-9675 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-9676 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-9676 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-9676 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-9676 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves five vulnerabilities can now be installed. ## Description: This update for podman fixes the following issues: * CVE-2024-9676: Fixed a denial of service via a symlink traversal in the containers/storage library (bsc#1231698) *CVE-2024-9341: Fixed FIPS Crypto-Policy Directory Mounting Issue in containers/common Go Library (bsc#1231230) * CVE-2024-9675: Fixed caching of arbitrary directory mount (bsc#1231499) * CVE-2024-9407: Fixed improper input validation in bind-propagation option of Dockerfile RUN --mount instruction (bsc#1231208) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-95=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * podman-4.9.5-2.1 * podman-debuginfo-4.9.5-2.1 * podman-remote-debuginfo-4.9.5-2.1 * podman-remote-4.9.5-2.1 * SUSE Linux Micro 6.0 (noarch) * podman-docker-4.9.5-2.1 ## References: * https://www.suse.com/security/cve/CVE-2024-6104.html * https://www.suse.com/security/cve/CVE-2024-9341.html * https://www.suse.com/security/cve/CVE-2024-9407.html * https://www.suse.com/security/cve/CVE-2024-9675.html * https://www.suse.com/security/cve/CVE-2024-9676.html * https://bugzilla.suse.com/show_bug.cgi?id=1231208 * https://bugzilla.suse.com/show_bug.cgi?id=1231230 * https://bugzilla.suse.com/show_bug.cgi?id=1231499 * https://bugzilla.suse.com/show_bug.cgi?id=1231698 . Significant podman upgrade for SUSE Linux Micro 6.0 tackles multiple concerns including service disruption and input sanitation vulnerabilities. podman security advisory, SUSE Linux update, denial of service patch, Linux container security, input validation issues. . LinuxSecurity.com Team

Calendar 2 Jun 04, 2025 SuSE
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydebianregression fix

Debian 10 Buster DLA-3387-2: Udisks2 Regression Fix and Upgrade

A regression was reported that the fix for CVE-2021-3802 broken mounting allow-listed mount option/value pairs, for example errors=remount-ro. For Debian 10 buster, this problem has been fixed in version . ------------------------------------------------------------------------- Debian LTS Advisory DLA-3387-2 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Tobias Frost April 10, 2023 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : udisks2 Version : 2.8.1-4+deb10u2 Debian Bug : 1034124 A regression was reported that the fix for CVE-2021-3802 broken mounting allow-listed mount option/value pairs, for example errors=remount-ro. For Debian 10 buster, this problem has been fixed in version 2.8.1-4+deb10u2. We recommend that you upgrade your udisks2 packages. For the detailed security status of udisks2 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/udisks2 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Discover the resolution for udisks2 mounting issues on Debian LTS. Follow the update steps for smooth operation and reliable support.. Debian LTS,Udisks2,Mounting Issues,Regression Fixes,Security Updates. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 10, 2023 Important Debian LTS
Banner 2 1028x280 1708121730 1 1771599631
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderatesecurity update

SUSE: 2022:3154-1 Moderate: Udisks2 Mounting Issue Fixed

An update that solves one vulnerability and has one errata is now available. . SUSE Security Update: Security update for udisks2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:3154-1 Rating: moderate References: #1098797 #1190606 Cross-References: CVE-2021-3802 CVSS scores: CVE-2021-3802 (NVD) : 4.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H CVE-2021-3802 (SUSE): 4.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H Affected Products: SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Storage 7.1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 openSUSE Leap 15.3 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for udisks2 fixes the following issues: - CVE-2021-3802: Fixed insecure defaults in user-accessible mount helpers (bsc#1190606). - Fixed vulnerability that allowed mounting ext4 devices over existing entries in fstab (bsc#1098797). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-3154=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-3154=1 Package List: -openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): libudisks2-0-2.8.1-150200.3.3.1 libudisks2-0-debuginfo-2.8.1-150200.3.3.1 libudisks2-0-devel-2.8.1-150200.3.3.1 libudisks2-0_bcache-2.8.1-150200.3.3.1 libudisks2-0_bcache-debuginfo-2.8.1-150200.3.3.1 libudisks2-0_btrfs-2.8.1-150200.3.3.1 libudisks2-0_btrfs-debuginfo-2.8.1-150200.3.3.1 libudisks2-0_lsm-2.8.1-150200.3.3.1 libudisks2-0_lsm-debuginfo-2.8.1-150200.3.3.1 libudisks2-0_lvm2-2.8.1-150200.3.3.1 libudisks2-0_lvm2-debuginfo-2.8.1-150200.3.3.1 libudisks2-0_zram-2.8.1-150200.3.3.1 libudisks2-0_zram-debuginfo-2.8.1-150200.3.3.1 typelib-1_0-UDisks-2_0-2.8.1-150200.3.3.1 udisks2-2.8.1-150200.3.3.1 udisks2-debuginfo-2.8.1-150200.3.3.1 udisks2-debugsource-2.8.1-150200.3.3.1 - openSUSE Leap 15.3 (noarch): udisks2-lang-2.8.1-150200.3.3.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): libudisks2-0-2.8.1-150200.3.3.1 libudisks2-0-debuginfo-2.8.1-150200.3.3.1 libudisks2-0-devel-2.8.1-150200.3.3.1 typelib-1_0-UDisks-2_0-2.8.1-150200.3.3.1 udisks2-2.8.1-150200.3.3.1 udisks2-debuginfo-2.8.1-150200.3.3.1 udisks2-debugsource-2.8.1-150200.3.3.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (noarch): udisks2-lang-2.8.1-150200.3.3.1 References: https://www.suse.com/security/cve/CVE-2021-3802.html https://bugzilla.suse.com/1098797 https://bugzilla.suse.com/1190606 . Red Hat provides enhancements addressing a significant vulnerability in lvm2 regarding improper permissions and storage management practices. Update released.. SUSE Linux Security,Udisks2 Patch,Moderate Security Update,Linux Desktop Security. . LinuxSecurity.com Team

Calendar 2 Sep 07, 2022 SuSE
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalsoftware update

Fedora Core 3: 2005-282 Critical Autofs Mounting Issues Fixed

Updated package.. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2005-282 2005-04-12 ---------------------------------------------------------------------Product : Fedora Core 3 Name : autofs Version : 4.1.3 Release : 114 Summary : A tool for automatically mounting and unmounting filesystems. Description : autofs is a daemon which automatically mounts filesystems when you use them, and unmounts them later when you are not using them. This can include network filesystems, CD-ROMs, floppies, and so forth. ---------------------------------------------------------------------* Wed Mar 23 2005 Chris Feist - 1:4.1.3-114 - Fixed regression causing any entries after a wildcard in an indirect map to be ignored. (bz #151668). - Fixed regression which caused local hosts to be mount instead of --bind local directories. (bz #146887) * Thu Mar 17 2005 Chris Feist - 1:4.1.3-110 - Fixed one off bug in the submount-variable-propagation patch. (bz #143074) - Fixed a bug in the init script which wouldn't find the -browse option if it was preceded by another option. (fz #113494) * Mon Feb 28 2005 Chris Feist - 1:4.1.3-100 - When using ldap if auto.master doesn't exist we now check for auto_master. Addresses bz #130079 - When using an auto.smb map we now remove the leading ':' from the path which caused mount to fail in the past. Addresses bz #147492 - Autofs now checks /etc/nsswitch.conf to determine in what order files & nis are checked when looking up autofs submount maps which don't specify a maptype. Addresses IT #57612. * Fri Feb 11 2005 Jeff Moyer - 1:4.1.3-97 - Program maps can repeat the last character of output. Fix this. Addresses bz #138606 - Return first entry when there are duplicate keys in a map. Addresses bz #140108. - Propagate custom map variables to submounts. Fixes bz #143074. - Create a sysconfig variable to control whether we sourceonly one master map (the way sun does), or source all maps found (which is the default for backwards compatibility). Addresses bz #143126. - Revised version of the get_best_mount patch. (#146887) This email address is being protected from spambots. You need JavaScript enabled to view it. The previous patch introduced a regression. Non-replicated mounts would not have the white space stripped from the entry and the mount would fail. - Handle comment characters in the middle of the automount line in /etc/nsswitch.conf. Addresses bz #127457. * Wed Feb 2 2005 Chris Feist - 1:4.1.3-93 - Stop automount from pinging hosts if there is only one host (#146887) * Wed Feb 2 2005 Jeff Moyer - 1:4.1.3-89 - Fix potential double free in cache_release. This bug showed up in a multi-map setup. Two calls to cache_release would result in a SIGSEGV, and the automount process would never exit. * Mon Jan 31 2005 Jeff Moyer - 1:4.1.3-86 - Merge in map expiry code. - Merge in patches from devel branch. * Mon Jan 24 2005 Chris Feist - 1:4.3-84 - Fixed documentation so users know that any local mounts override any other weighted mount. * Mon Jan 24 2005 Chris Feist - 1:4.3-79 - Added a variable to determine if we created the directory or not so we don't accidently remove a directory that we didn't create when we stop autofs. (bz #134399) * Sun Dec 12 2004 Chris Feist - 1:4.1.3-68 - Fixed segfault when LDAP_SIZELIMIT_EXCEEDED is called and --ghost is used, addresses bz #137220 & #142576. * Tue Dec 7 2004 Chris Feist - 1:4.1.3-60 - Fixed problem with autofs not finding all mount points in an ldap map. bz #139548 * Fri Nov 19 2004 Jeff Moyer - 1:4.1.3-59 - Pass a socket into clntudp_bufcreate so that we don't use up additional reserved ports. This patch, along with the socket leak fix, addresses bz #128966. - Add a space after "Starting automounter:". Addresses bz #138513 * Mon Nov 15 2004 Jeff Moyer - 1:4.1.3-52 - Make autofs understand -[no]browse. Addresses fz#113494. * Thu Nov 11 2004 Jeff Moyer - 1:4.1.3-49 - Fix the umount loop device function in the init script. * Mon Nov 8 2004 Chris Feist - 1:4.1.3-45 - Added a patch to fix a bug which didn't test all hosts in a replicated map to see which one had the lowest ping. (bz #130467) * Wed Nov 3 2004 Chris Feist - 1:4.1.3-41 - Fixed init script to not look for maps in the current directory (bz #57008) * Fri Oct 29 2004 Chris Feist - 1:4.1.3-38 - Fixed ldap limit search patch to only issue warnings only when ghosting is requested. * Wed Oct 27 2004 Chris Feist - 1:4.1.3-33 - Added a patch to fix the automounter failing on ldap maps when it couldn't get the whole map. (ie. when the search limit was lower than the number of results) * Thu Oct 21 2004 Chris Feist - 1:4.1.3-32 - Fixed the use of +ypmapname so the maps included with +ypmapname are used in the correct order. (In the past the '+' entries were always processed after local entries.) * Thu Oct 21 2004 Chris Feist - 1:4.1.3-31 - Fixed the duplicate map detection code to detect if maps try to mount on top of existing maps. * Wed Oct 20 2004 Chris Feist - 1:4.1.3-29 - Fixed a problem with backwards compatability. Specifying local maps without '/etc/' prepended to them now works. (bz #136038) ---------------------------------------------------------------------This update can be downloaded from: 5f0649368cf0a32284cd195ad3b703c3 SRPMS/autofs-4.1.3-114.src.rpm 95feb7630f64261f46a65482711f7f56 x86_64/autofs-4.1.3-114.x86_64.rpm de433e65453a4db310b5101c8fc4ddbe x86_64/debug/autofs-debuginfo-4.1.3-114.x86_64.rpm 130a34119ce0890b4e61a84fe30691d0 i386/autofs-4.1.3-114.i386.rpm 86d3f5fc5f6715006e531a2169d8fe43 i386/debug/autofs-debuginfo-4.1.3-114.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date'command. --------------------------------------------------------------------- --fedora-announce-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Autofs package update for Fedora Core 3 fixes critical filesystem mounting issues and enhances performance.. autofs Update, Fedora Core Security, Filesystem Management. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 12, 2005 Critical Fedora
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":552,"type":"x","order":1,"pct":78.63,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.27,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.84,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.25,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here