Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 1 articles for you...
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderatethreat

openSUSE Tumbleweed Nano Moderate Security Issues Advisory 2026-10851-1

An update that solves 2 vulnerabilities can now be installed.. # nano-9.0-2.1 on GA media Announcement ID: openSUSE-SU-2026:10851-1 Rating: moderate Cross-References: * CVE-2026-6842 * CVE-2026-6843 Affected Products: * openSUSE Tumbleweed An update that solves 2 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the nano-9.0-2.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * nano 9.0-2.1 * nano-lang 9.0-2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-6842.html * https://www.suse.com/security/cve/CVE-2026-6843.html . Update for openSUSE Tumbleweed that addresses two moderate security issues in nano-9.0-2.1.. openSUSE Tumbleweed update, nano security fix, moderate vulnerabilities, package update. . Severity: moderate. LinuxSecurity.com Team

Calendar 2 May 25, 2026 moderate OpenSUSE
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorydenial of servicefedora

Fedora 44 Nano Important Format String DoS Fix FEDORA-2026-3111ffa11a

fix CVE-2026-6842 and CVE-29026-6843 Resolves: CVE-2026-6842 Resolves: CVE-2026-6843 Resolves: rhbz#2455127 Resolves: rhbz#2455314. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-3111ffa11a 2026-05-03 00:48:41.051402+00:00 -------------------------------------------------------------------------------- Name : nano Product : Fedora 44 Version : 8.7.1 Release : 2.fc44 URL : https://www.nano-editor.org Summary : A small text editor Description : GNU nano is a small and friendly text editor. -------------------------------------------------------------------------------- Update Information: fix CVE-2026-6842 and CVE-29026-6843 Resolves: CVE-2026-6842 Resolves: CVE-2026-6843 Resolves: rhbz#2455127 Resolves: rhbz#2455314 -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 30 2026 Luk\u0161 Zaoral - 8.7.1-2 - fix CVE-2026-6842 and CVE-29026-6843 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2455127 - [Security] Format String Vulnerability in nano's statusline() via errormessage Buffer https://bugzilla.redhat.com/show_bug.cgi?id=2455127 [ 2 ] Bug #2460502 - CVE-2026-6842 nano: nano: Local attacker can inject malicious .desktop launcher due to insecure directory permissions [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2460502 [ 3 ] Bug #2460503 - CVE-2026-6843 nano: nano: Format string vulnerability leads to Denial of Service [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2460503 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-3111ffa11a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages aresigned with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Update for Fedora 44 addressing CVE-2026-6842 and CVE-2026-6843 vulnerabilities in nano editor available now.. Fedora Update, CVE-2026-6842, CVE-2026-6843, Nano Editor Security, Format String Vulnerability. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 03, 2026 Important Fedora
Banner 3 1028x280 1708121785 1771599793
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorysecurity issuesoftware update

Ubuntu 14.04 LTS: USN-7064-2 moderate: nano privilege escalation

nano could be made to give users administrator privileges.. ========================================================================== Ubuntu Security Notice USN-7064-2 October 29, 2024 nano vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 14.04 LTS Summary: nano could be made to give users administrator privileges. Software Description: - nano: small, friendly text editor inspired by Pico Details: USN-7064-1 fixed a vulnerability in nano. This update provides the corresponding update for Ubuntu 14.04 LTS. Original advisory details: It was discovered that nano allowed a possible privilege escalation through an insecure temporary file. If nano was killed while editing, the permissions granted to the emergency save file could be used by an attacker to escalate privileges using a malicious symlink. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 LTS nano 2.2.6-1ubuntu1+esm1 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7064-2 https://ubuntu.com/security/notices/USN-7064-1 CVE-2024-5742 . The Ubuntu Security Notice USN-7064-2 addresses a security flaw in nano that could allow for privilege escalation. For further information, click here.. Ubuntu Security, nano Update, Privilege Escalation, Security Notice, System Update. . LinuxSecurity.com Team

Calendar 2 Oct 29, 2024 Ubuntu
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorysecurity issuesoftware update

Ubuntu 24.04 LTS Security Advisory USN-7064-1: nano privilege escalation

nano could be made to give users administrator privileges.. ========================================================================== Ubuntu Security Notice USN-7064-1 October 15, 2024 nano vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: nano could be made to give users administrator privileges. Software Description: - nano: small, friendly text editor inspired by Pico Details: It was discovered that nano allowed a possible privilege escalation through an insecure temporary file. If nano was killed while editing, the permissions granted to the emergency save file could be used by an attacker to escalate privileges using a malicious symlink. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.04 LTS nano 7.2-2ubuntu0.1 Ubuntu 22.04 LTS nano 6.2-1ubuntu0.1 Ubuntu 20.04 LTS nano 4.8-1ubuntu1.1 Ubuntu 18.04 LTS nano 2.9.3-2ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 16.04 LTS nano 2.5.3-2ubuntu2+esm1 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7064-1 CVE-2024-5742 Package Information: https://launchpad.net/ubuntu/+source/nano/7.2-2ubuntu0.1 https://launchpad.net/ubuntu/+source/nano/6.2-1ubuntu0.1 https://launchpad.net/ubuntu/+source/nano/4.8-1ubuntu1.1 . Ubuntu has released security patches addressing a critical privilege escalation flaw in nano across various LTS versions. Prompt action is crucial for your system's protection. nano update, Ubuntu security patch, privilege escalation, system updates. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 15, 2024 Critical Ubuntu
Banner 3 1028x280 1708121785 1771599793
217
Ls Advisories Oracle Esm H240
Price Tag 1security advisoryupdatenano

Oracle Linux 8 ELSA-2024-6986: nano Low Severity Update and Fixes

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2024-6986 http://linux.oracle.com/errata/ELSA-2024-6986.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: nano-2.9.8-3.el8_10.x86_64.rpm aarch64: nano-2.9.8-3.el8_10.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//nano-2.9.8-3.el8_10.src.rpm Related CVEs: CVE-2024-5742 Description of changes: [2.9.8-3] - fix incomplete backport of the fix for the emergency file replacement vulnerability (RHEL-35236) [2.9.8-2] - fix emergency file replacement vulnerability (RHEL-35236) _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Oracle Linux Security Notice ELSA-2024-6987: Security updates for nano utilities in release 8. New RPM packages have been made available.. Oracle Linux, security updates, low severity, Linux packages, nano. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Sep 27, 2024 Low Oracle
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisoryupdateprivilege escalation

openSUSE: 2024:0157-2 Important: nano Privilege Escalation Fix

An update that fixes one vulnerability is now available. . openSUSE Security Update: Security update for nano ______________________________________________________________________________ Announcement ID: openSUSE-SU-2024:0157-2 Rating: important References: #1226099 Cross-References: CVE-2024-5742 CVSS scores: CVE-2024-5742 (SUSE): 6.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Backports SLE-15-SP6 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for nano fixes the following issues: - CVE-2024-5742: Avoid privilege escalations via symlink attacks on emergency save file (boo#1226099) Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP6: zypper in -t patch openSUSE-2024-157=1 Package List: - openSUSE Backports SLE-15-SP6 (aarch64 i586 ppc64le s390x x86_64): nano-7.2-bp156.3.3.1 nano-debuginfo-7.2-bp156.3.3.1 nano-debugsource-7.2-bp156.3.3.1 - openSUSE Backports SLE-15-SP6 (noarch): nano-lang-7.2-bp156.3.3.1 References: https://www.suse.com/security/cve/CVE-2024-5742.html https://bugzilla.suse.com/1226099 . openSUSE Security Bulletin regarding vim, noted by Announcement ID openSUSE-SU-2024:0162-1, includes critical patches and enhancements.. openSUSE Security, nano Update, Privilege Escalation Fix, Security Patch. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 23, 2024 Important OpenSUSE
Banner 3 1028x280 1708121785 1771599793
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydebiansymlink attack

Debian 10 Buster DLA-3831-1 Fixes Critical Symlink Attack in Nano

A symlink attack with emergency file saving has been fixed in the text editor nano. For Debian 10 buster, this problem has been fixed in version . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3831-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Adrian Bunk June 17, 2024 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : nano Version : 3.2-3+deb10u1 CVE ID : CVE-2024-5742 A symlink attack with emergency file saving has been fixed in the text editor nano. For Debian 10 buster, this problem has been fixed in version 3.2-3+deb10u1. We recommend that you upgrade your nano packages. For the detailed security status of nano please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/nano Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Update to the secure version of the nano text editing tool in Debian to address a severe symlink vulnerability identified on June 17, 2024.. Debian LTS,nano security,symlink attack resolution. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 17, 2024 Critical Debian LTS
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisoryprivilege escalationsymlink attack

openSUSE: 2024:0157-1 Important: Nano Privilege Escalation Fix

An update that fixes one vulnerability is now available. . openSUSE Security Update: Security update for nano ______________________________________________________________________________ Announcement ID: openSUSE-SU-2024:0157-1 Rating: important References: #1226099 Cross-References: CVE-2024-5742 CVSS scores: CVE-2024-5742 (SUSE): 6.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Backports SLE-15-SP5 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for nano fixes the following issues: - CVE-2024-5742: Avoid privilege escalations via symlink attacks on emergency save file (boo#1226099) Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP5: zypper in -t patch openSUSE-2024-157=1 Package List: - openSUSE Backports SLE-15-SP5 (aarch64 i586 ppc64le s390x x86_64): nano-7.2-bp155.2.3.1 - openSUSE Backports SLE-15-SP5 (noarch): nano-lang-7.2-bp155.2.3.1 References: https://www.suse.com/security/cve/CVE-2024-5742.html https://bugzilla.suse.com/1226099 . Update patch available for openSUSE correcting vulnerability CVE-2024-5742 in nano. Relevant for Backports SLE-15-SP5.. openSUSE Security Patch, nano Privilege Escalation, Vulnerability Fix, Security Advisory Update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 11, 2024 Important OpenSUSE
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here