Alerts This Week
Warning Icon 1 914
Alerts This Week
Warning Icon 1 914

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE libyang Important Buffer Overflow Advisory 2026-2381-1

Calendar White Jun 12, 2026
Important
Opensuse Large Esm H900
openSUSE

openSUSE HPLIP Severe Code Execution Denial of Service 2026-2380-1

Calendar White Jun 12, 2026
Critical
Suse Large Esm H900
SuSE

openSUSE HPLIP Critical Escalation DoS Advisory SUSE-2026-2380-1

Calendar White Jun 12, 2026
Critical
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.2 python-Pygments Low Denial of Service CVE-2026-4539

Calendar White Jun 12, 2026
Low
Ubuntu Large Esm H900
Ubuntu

Ubuntu 16.04 LTS GStreamer Base Plugins Critical DoS CVE-2026-2921

Calendar White Jun 12, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 12 Linux Base Update Brings Important Security Fix DLA-4628-1

Calendar White Jun 12, 2026
Informational
Debianlts Large Esm H800
Debian LTS

Debian 12 Kernel-Wedge Update for Linux 6.12 DLA-4627-1

Calendar White Jun 12, 2026
Informational
Opensuse Large Esm H900
openSUSE

openSUSE NetworkManager-libreswan Important Security Update CVE-2024-9050

Calendar White Jun 12, 2026
Important
Opensuse Large Esm H900
openSUSE

openSUSE Rclone Critical Security Update CVE-2026-25680 CVE-2026-25681

Calendar White Jun 12, 2026
Critical
Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":555,"type":"x","order":1,"pct":78.72,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.26,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.82,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.2,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag%201security advisoryFedorasecurity fix

Fedora 23: cyrus-imapd Security Update - Buffer Overflows and Fixes

Update to 2.4.18, rhbz#1267871 and rhbz#1267878. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-e7712d6c32 2015-11-17 14:29:33.238135 -------------------------------------------------------------------------------- Name : cyrus-imapd Product : Fedora 23 Version : 2.4.18 Release : 1.fc23 URL : http://www.cyrusimap.org/ Summary : A high-performance mail server with IMAP, POP3, NNTP and SIEVE support Description : The cyrus-imapd package contains the core of the Cyrus IMAP server. It is a scaleable enterprise mail system designed for use from small to large enterprise environments using standards-based internet mail technologies. A full Cyrus IMAP implementation allows a seamless mail and bulletin board environment to be set up across multiple servers. It differs from other IMAP server implementations in that it is run on "sealed" servers, where users are not normally permitted to log in and have no system account on the server. The mailbox database is stored in parts of the file system that are private to the Cyrus IMAP server. All user access to mail is through software using the IMAP, POP3 or KPOP protocols. It also includes support for virtual domains, NNTP, mailbox annotations, and much more. The private mailbox database design gives the server large advantages in efficiency, scalability and administratability. Multiple concurrent read/write connections to the same mailbox are permitted. The server supports access control lists on mailboxes and storage quotas on mailbox hierarchies. The Cyrus IMAP server supports the IMAP4rev1 protocol described in RFC 3501. IMAP4rev1 has been approved as a proposed standard. It supports any authentication mechanism available from the SASL library, imaps/pop3s/nntps (IMAP/POP3/NNTP encrypted using SSL and TLSv1) can be used for security. The server supports single instance store where possible when an email message is addressed to multiple recipients, SIEVE providesserver side email filtering. -------------------------------------------------------------------------------- Update Information: Update to 2.4.18, rhbz#1267871 and rhbz#1267878 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1267869 - CVE-2015-8076 cyrus-imapd: Out of bounds heap read in index_urlfetch https://bugzilla.redhat.com/show_bug.cgi?id=1267869 [ 2 ] Bug #1267875 - cyrus-imapd: Multiple potential buffer overflows https://bugzilla.redhat.com/show_bug.cgi?id=1267875 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update cyrus-imapd' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . The Cyrus IMAP server has been identified with several vulnerabilities related to buffer overflow and heap read access. Users are encouraged to upgrade to version 2.4.18 for mitigation.. Fedora Security Update, cyrus-imapd Fix, Mail Server Update, Security Enhancements. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Nov 17, 2015 Important Fedora
87
Ls Advisories Debian Esm H240
Price Tag%201security advisorycriticaldebian

Debian: DSA-2105-1 Critical: FreeType Multiple Buffer Overflows DoS

Several vulnerabilities have been discovered in the FreeType font library. The Common Vulnerabilities and Exposures project identifies the following problems: . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2105-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Giuseppe Iuculano September 07, 2010 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Package : freetype Vulnerability : several Problem type : local(remote) Debian-specific: no CVE Id(s) : CVE-2010-1797 CVE-2010-2541 CVE-2010-2805 CVE-2010-2806 CVE-2010-2807 CVE-2010-2808 CVE-2010-3053 Several vulnerabilities have been discovered in the FreeType font library. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2010-1797 Multiple stack-based buffer overflows in the cff_decoder_parse_charstrings function in the CFF Type2 CharStrings interpreter in cff/cffgload.c in FreeType allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted CFF opcodes in embedded fonts in a PDF document, as demonstrated by JailbreakMe. CVE-2010-2541 Buffer overflow in ftmulti.c in the ftmulti demo program in FreeType allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file. CVE-2010-2805 The FT_Stream_EnterFrame function in base/ftstream.c in FreeType does not properly validate certain position values, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file CVE-2010-2806 Array index error in the t42_parse_sfnts function in type42/t42parse.c in FreeType allows remote attackers to cause a denial of service (application crash) or possiblyexecute arbitrary code via negative size values for certain strings in FontType42 font files, leading to a heap-based buffer overflow. CVE-2010-2807 FreeType uses incorrect integer data types during bounds checking, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file. CVE-2010-2808 Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Adobe Type 1 Mac Font File (aka LWFN) font. CVE-2010-3053 bdf/bdflib.c in FreeType allows remote attackers to cause a denial of service (application crash) via a crafted BDF font file, related to an attempted modification of a value in a static string. For the stable distribution (lenny), these problems have been fixed in version 2.3.7-2+lenny3 For the unstable distribution (sid) and the testing distribution (squeeze), these problems have been fixed in version 2.4.2-1 We recommend that you upgrade your freetype package. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 5.0 alias lenny - -------------------------------- Debian (stable) - --------------- Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: Size/MD5 checksum: 39230 95a3841e7258573ca2d3e0075b8e7f73 Size/MD5 checksum: 1567540 c1a9f44fde316470176fd6d66af3a0e8 Size/MD5 checksum: 12192a2bf3d4568d92e2a48ebcda38140e73 alpha architecture (DEC Alpha) Size/MD5 checksum: 775278 2f2ca060588fc33b6d7baae02201dbd2 Size/MD5 checksum: 412188 ad9537e93ed3fb61f9348470940f3ce5 Size/MD5 checksum: 296592 e689b1c4b6bd7779e44d1cd641be9622 Size/MD5 checksum: 253786 287a98ca57139d4dee8041eba2881e3b amd64 architecture (AMD x86_64 (AMD64)) Size/MD5 checksum: 713260 f1d4002e7b6d185ff9f46bc25d67c4c9 Size/MD5 checksum: 223170 cb00f76d826be115243faa9dfd0b8a91 Size/MD5 checksum: 269796 40762e686138c27ac92b20174e67012e Size/MD5 checksum: 385848 0294d7e3e1d6b37532f98344a9849cde arm architecture (ARM) Size/MD5 checksum: 686154 fbe32c7124ba2ce093b31f46736e002b Size/MD5 checksum: 357158 0d793d543a33cfa192098234c925d639 Size/MD5 checksum: 242196 1cfc9f7dc6a7cd0843aa234bab35b69e Size/MD5 checksum: 205120 39ab4dfbc19c8a63affc493e0b5aaf2d armel architecture (ARM EABI) Size/MD5 checksum: 684568 325686fbc2fba7687da424ada57b9419 Size/MD5 checksum: 209992 69f6a68fb90658ec74dfd7cc7cc0b766 Size/MD5 checksum: 236564 a48afca5c6798d16b140b3362dfac0ca Size/MD5 checksum: 353814 76960109910d6de2f74ec0e345f00854 i386 architecture (Intel ia32) Size/MD5 checksum: 254452 a34af74eda0feb2b763cfc6f5b8330c1 Size/MD5 checksum: 371586 ec294ffffeb9ddec389e3e988d880534 Size/MD5 checksum: 198558 3283ad058d37eed8bca46df743c6a915 Size/MD5 checksum: 684624 014d335b35ed41022adb628796a0c122 ia64 architecture (Intel ia64) Size/MD5 checksum: 332160 2dbb364f09414e4b0e0f59d9e91d1edc Size/MD5 checksum: 876692 2f6d3421d6c8424523388347c5640666 Size/MD5 checksum: 531496 5dd7755f63271f597b64c3f513e8e7f1 Size/MD5 checksum: 415934 ea2ba16157b3504d8b9c8f251b69b16f mips architecture (MIPS (Big Endian)) Size/MD5 checksum: 717022 9ee8c246af10f4bf7cdf5cdc54010dd6 Size/MD5 checksum: 213212 3641ad81738e8935c5df2b648383c8e0 Size/MD5 checksum: 36901818559e273ffcea5614e71ab32b95ef47 Size/MD5 checksum: 253924 1be1e224f27a780beb6799d55fa74663 mipsel architecture (MIPS (Little Endian)) Size/MD5 checksum: 369772 6181d98166fe1f004fb033f2665ce4af Size/MD5 checksum: 214802 6edbec67ff79e96921d1fe4bf57b0fce Size/MD5 checksum: 712502 4a99ccc68b1913f88901c5e0686fea4f Size/MD5 checksum: 254212 e30825a94175fd78a561b8365392cbad powerpc architecture (PowerPC) Size/MD5 checksum: 262804 d35ced8ba625f39dc7a04e3e61e0d49d Size/MD5 checksum: 233882 6e294c19dd0109ee80fe6cd401b6a185 Size/MD5 checksum: 378612 c96a180e7132c543396486b14107cdad Size/MD5 checksum: 708212 9602a7786b2ebffd1d75d443901574c5 s390 architecture (IBM S/390) Size/MD5 checksum: 225190 393c9515f7cd89bcd8b0c38d6d6dd7ac Size/MD5 checksum: 384160 4e20bc56e5fc65fb08529d8765d28850 Size/MD5 checksum: 698798 f589b6b8882d998bb7b89fa1dfa40b3a Size/MD5 checksum: 268272 7b6511b9ad657aa165e906a4fcbfee11 sparc architecture (Sun SPARC/UltraSPARC) Size/MD5 checksum: 200078 29c1833cbde5b4da5c2e35aaf856ab58 Size/MD5 checksum: 235424 e64a8fc3b744253b22161e31fbb6e92a Size/MD5 checksum: 352544 a7f480889460b104bbab16fd8d8da2d5 Size/MD5 checksum: 676520 6d0f57a5bd6457a9b9b85271c7001531 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb https://www.debian.org/security/ stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . Urgent security notice for freetype package on Debian, highlighting several vulnerabilities in font processing that require immediate attention.. Freetype Vulnerabilities, Debian Security, Buffer Overflow, DoS Threat. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Sep 07, 2010 Critical Debian
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":555,"type":"x","order":1,"pct":78.72,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.26,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.82,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.2,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here