Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 1 articles for you...
100
security advisorymoderate severitypatchesSUSE: 2023:4254-1 moderate: postgres security update advisory
The container suse/postgres was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/postgres ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:4254-1 Container Tags : suse/postgres:16 , suse/postgres:16-2.13 , suse/postgres:16.1 , suse/postgres:16.1-2.13 , suse/postgres:latest Container Release : 2.13 Severity : moderate Type : security References : 1201384 1218014 CVE-2023-50495 ----------------------------------------------------------------- The container suse/postgres was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4891-1 Released: Mon Dec 18 16:31:49 2023 Summary: Security update for ncurses Type: security Severity: moderate References: 1201384,1218014,CVE-2023-50495 This update for ncurses fixes the following issues: - CVE-2023-50495: Fixed a segmentation fault via _nc_wrap_entry() (bsc#1218014) - Modify reset command to avoid altering clocal if the terminal uses a modem (bsc#1201384) The following package changes have been done: - libncurses6-6.1-150000.5.20.1 updated - terminfo-base-6.1-150000.5.20.1 updated - ncurses-utils-6.1-150000.5.20.1 updated - container:sles15-image-15.0.0-36.5.67 updated . SUSE Container Advisory for suse/postgres includes patches for moderate security issues and enhancements.. SUSE Container Update,SUSE/Postgres Security Update,Moderate Security Advisory. . LinuxSecurity.com Team
Dec 22, 2023
SuSE
100
security advisorymoderate severitysecurity patchesSUSE: 2023:4248-1 moderate: bci/golang NCurses Security Update
The container bci/golang was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/golang ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:4248-1 Container Tags : bci/golang:1.21 , bci/golang:1.21-1.4.67 , bci/golang:latest , bci/golang:stable , bci/golang:stable-1.4.67 Container Release : 4.67 Severity : moderate Type : security References : 1201384 1218014 CVE-2023-50495 ----------------------------------------------------------------- The container bci/golang was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4891-1 Released: Mon Dec 18 16:31:49 2023 Summary: Security update for ncurses Type: security Severity: moderate References: 1201384,1218014,CVE-2023-50495 This update for ncurses fixes the following issues: - CVE-2023-50495: Fixed a segmentation fault via _nc_wrap_entry() (bsc#1218014) - Modify reset command to avoid altering clocal if the terminal uses a modem (bsc#1201384) The following package changes have been done: - libncurses6-6.1-150000.5.20.1 updated - terminfo-base-6.1-150000.5.20.1 updated - ncurses-utils-6.1-150000.5.20.1 updated - container:sles15-image-15.0.0-36.5.67 updated . Critical update notice for SUSE container regarding bci/golang categorized with moderate urgency, emphasizing necessary security patches and upgrades required.. SUSE Container Update, bci/golang Security, ncurses Update, Container Patches. . LinuxSecurity.com Team
Dec 22, 2023
SuSE
100
security advisorymoderate severitysecurity patchSUSE: 2023:4300-3 important: bci/python3 security upgrade
The container bci/dotnet-sdk was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/dotnet-sdk ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:4195-1 Container Tags : bci/dotnet-sdk:7.0 , bci/dotnet-sdk:7.0-19.24 , bci/dotnet-sdk:7.0.14 , bci/dotnet-sdk:7.0.14-19.24 , bci/dotnet-sdk:latest Container Release : 19.24 Severity : moderate Type : security References : 1201384 1218014 CVE-2023-50495 ----------------------------------------------------------------- The container bci/dotnet-sdk was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4891-1 Released: Mon Dec 18 16:31:49 2023 Summary: Security update for ncurses Type: security Severity: moderate References: 1201384,1218014,CVE-2023-50495 This update for ncurses fixes the following issues: - CVE-2023-50495: Fixed a segmentation fault via _nc_wrap_entry() (bsc#1218014) - Modify reset command to avoid altering clocal if the terminal uses a modem (bsc#1201384) The following package changes have been done: - libncurses6-6.1-150000.5.20.1 updated - terminfo-base-6.1-150000.5.20.1 updated - ncurses-utils-6.1-150000.5.20.1 updated - container:sles15-image-15.0.0-36.5.67 updated . Important vulnerability patches for bci/dotnet-sdk and ncurses have been released to safeguard your systems from potential risks.. bci Dotnet-Sdk Update, SUSE Container Advisory, Ncurses Security Patch. . Severity: Important. LinuxSecurity.com Team
Dec 19, 2023
•Important
SuSE
100
security advisorysoftware patchmoderate severitySUSE: 2023:5147-2 moderate: bci/dotnet-aspnet segmentation fault fix
The container bci/dotnet-aspnet was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/dotnet-aspnet ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:4193-1 Container Tags : bci/dotnet-aspnet:7.0 , bci/dotnet-aspnet:7.0-18.25 , bci/dotnet-aspnet:7.0.14 , bci/dotnet-aspnet:7.0.14-18.25 , bci/dotnet-aspnet:latest Container Release : 18.25 Severity : moderate Type : security References : 1201384 1218014 CVE-2023-50495 ----------------------------------------------------------------- The container bci/dotnet-aspnet was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4891-1 Released: Mon Dec 18 16:31:49 2023 Summary: Security update for ncurses Type: security Severity: moderate References: 1201384,1218014,CVE-2023-50495 This update for ncurses fixes the following issues: - CVE-2023-50495: Fixed a segmentation fault via _nc_wrap_entry() (bsc#1218014) - Modify reset command to avoid altering clocal if the terminal uses a modem (bsc#1201384) The following package changes have been done: - libncurses6-6.1-150000.5.20.1 updated - terminfo-base-6.1-150000.5.20.1 updated - ncurses-utils-6.1-150000.5.20.1 updated - container:sles15-image-15.0.0-36.5.67 updated . The latest patch for the Red Hat container ubi8/dotnet-aspnet resolves concerns regarding a gcc memory access violation.. bci/dotnet-aspnet Update, Security Patch, Container Advisory, ncurses Fixes, Software Security Update. . LinuxSecurity.com Team
Dec 19, 2023
SuSE
98
security advisorymoderatememory corruptionRed Hat: RHSA-2023:5249-01 Moderate: Ncurses Memory Corruption
An update for ncurses is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Moderate: ncurses security update Advisory ID: RHSA-2023:5249-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:5249 Issue date: 2023-09-19 CVE Names: CVE-2023-29491 ===================================================================== 1. Summary: An update for ncurses is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The ncurses (new curses) library routines are a terminal-independent method of updating character screens with reasonable optimization. The ncurses packages contain support utilities including a terminfo compiler tic, a decompiler infocmp, clear, tput, tset, and a termcap conversion tool captoinfo. Security Fix(es): * ncurses: Local users can trigger security-relevant memory corruption via malformed data (CVE-2023-29491) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, referto: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2191704 - CVE-2023-29491 ncurses: Local users can trigger security-relevant memory corruption via malformed data 6. Package List: Red Hat Enterprise Linux BaseOS (v.8): Source: ncurses-6.1-9.20180224.el8_8.1.src.rpm aarch64: ncurses-6.1-9.20180224.el8_8.1.aarch64.rpm ncurses-c++-libs-6.1-9.20180224.el8_8.1.aarch64.rpm ncurses-c++-libs-debuginfo-6.1-9.20180224.el8_8.1.aarch64.rpm ncurses-compat-libs-6.1-9.20180224.el8_8.1.aarch64.rpm ncurses-compat-libs-debuginfo-6.1-9.20180224.el8_8.1.aarch64.rpm ncurses-debuginfo-6.1-9.20180224.el8_8.1.aarch64.rpm ncurses-debugsource-6.1-9.20180224.el8_8.1.aarch64.rpm ncurses-devel-6.1-9.20180224.el8_8.1.aarch64.rpm ncurses-libs-6.1-9.20180224.el8_8.1.aarch64.rpm ncurses-libs-debuginfo-6.1-9.20180224.el8_8.1.aarch64.rpm noarch: ncurses-base-6.1-9.20180224.el8_8.1.noarch.rpm ncurses-term-6.1-9.20180224.el8_8.1.noarch.rpm ppc64le: ncurses-6.1-9.20180224.el8_8.1.ppc64le.rpm ncurses-c++-libs-6.1-9.20180224.el8_8.1.ppc64le.rpm ncurses-c++-libs-debuginfo-6.1-9.20180224.el8_8.1.ppc64le.rpm ncurses-compat-libs-6.1-9.20180224.el8_8.1.ppc64le.rpm ncurses-compat-libs-debuginfo-6.1-9.20180224.el8_8.1.ppc64le.rpm ncurses-debuginfo-6.1-9.20180224.el8_8.1.ppc64le.rpm ncurses-debugsource-6.1-9.20180224.el8_8.1.ppc64le.rpm ncurses-devel-6.1-9.20180224.el8_8.1.ppc64le.rpm ncurses-libs-6.1-9.20180224.el8_8.1.ppc64le.rpm ncurses-libs-debuginfo-6.1-9.20180224.el8_8.1.ppc64le.rpm s390x: ncurses-6.1-9.20180224.el8_8.1.s390x.rpm ncurses-c++-libs-6.1-9.20180224.el8_8.1.s390x.rpm ncurses-c++-libs-debuginfo-6.1-9.20180224.el8_8.1.s390x.rpm ncurses-compat-libs-6.1-9.20180224.el8_8.1.s390x.rpm ncurses-compat-libs-debuginfo-6.1-9.20180224.el8_8.1.s390x.rpm ncurses-debuginfo-6.1-9.20180224.el8_8.1.s390x.rpm ncurses-debugsource-6.1-9.20180224.el8_8.1.s390x.rpm ncurses-devel-6.1-9.20180224.el8_8.1.s390x.rpm ncurses-libs-6.1-9.20180224.el8_8.1.s390x.rpm ncurses-libs-debuginfo-6.1-9.20180224.el8_8.1.s390x.rpm x86_64: ncurses-6.1-9.20180224.el8_8.1.x86_64.rpm ncurses-c++-libs-6.1-9.20180224.el8_8.1.i686.rpm ncurses-c++-libs-6.1-9.20180224.el8_8.1.x86_64.rpm ncurses-c++-libs-debuginfo-6.1-9.20180224.el8_8.1.i686.rpm ncurses-c++-libs-debuginfo-6.1-9.20180224.el8_8.1.x86_64.rpm ncurses-compat-libs-6.1-9.20180224.el8_8.1.i686.rpm ncurses-compat-libs-6.1-9.20180224.el8_8.1.x86_64.rpm ncurses-compat-libs-debuginfo-6.1-9.20180224.el8_8.1.i686.rpm ncurses-compat-libs-debuginfo-6.1-9.20180224.el8_8.1.x86_64.rpm ncurses-debuginfo-6.1-9.20180224.el8_8.1.i686.rpm ncurses-debuginfo-6.1-9.20180224.el8_8.1.x86_64.rpm ncurses-debugsource-6.1-9.20180224.el8_8.1.i686.rpm ncurses-debugsource-6.1-9.20180224.el8_8.1.x86_64.rpm ncurses-devel-6.1-9.20180224.el8_8.1.i686.rpm ncurses-devel-6.1-9.20180224.el8_8.1.x86_64.rpm ncurses-libs-6.1-9.20180224.el8_8.1.i686.rpm ncurses-libs-6.1-9.20180224.el8_8.1.x86_64.rpm ncurses-libs-debuginfo-6.1-9.20180224.el8_8.1.i686.rpm ncurses-libs-debuginfo-6.1-9.20180224.el8_8.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2023-29491 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJlCb3HAAoJENzjgjWX9erErlwP/jS6qBI3ocBB8Uv/iIoDnKeE tw2E35n3OEtT7wY8bI0UmOHo3tigI48CIIjdJT7YJOcTws6uo++punayuVMYWNZi 1spHgq69LfLKybLPdqO9G3TQ2Dhis4Zy7I9h98r/V7UZIiTK6klQVTq/N7s5sbFu QsNIlV8tj5k4Z0vrLLRGw4X4L7N6EqJKff1oZ82A2smqfwTeQqoqL09G3fMujP6c Vk9Tppec1J4SiFwEFIfV7ls9LieUXr2SugBj927KroGqpbcqP8i8nmzbny4MwhKC GsmK4qdTb06cbfAba8QpBtibyQYcT4Wv6TZENlI4PYHJC5x79MQmIOp06PlK+wxg r/m300SCtX4NBDUQoZXHFCuxD+Yr3IKYwPronS9HCw9+ObpN9sOvFmHzDeWF9eaS NqA2KCjchnNuVFqc4gIseh4ZqUduvUof9mU6q/pPg1E23hKq9vR3aGynjMPW4W8B Y2QZFAg45oON6DFMuX7Ask6AKv1WWOnet0/Lx0sV1yX3Ta4YChwGjGZpOV1nyOn5 tpUOGKd67FBNDs6hXOqU8BgFp1HDDW8yXnrU6sOEVpshl0GxTFEYbhnb9CaACovv D4cxd2jdSmdY4nk89wurYExoz49v2f8uaz6nXoWy9m8IQCO8B8U7YHVNS3Gfq/Ow Hu2r1YoWP7u0EFqLAyiU =PXEt -----END PGP SIGNATURE----- -- RHSA-announce mailinglist
Sep 19, 2023
Red Hat
100
security advisoryimportantSUSESUSE: 2023:1604-1 Important Security Update for CDI Operator
The container suse/sles/15.5/cdi-operator was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sles/15.5/cdi-operator ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:1604-1 Container Tags : suse/sles/15.5/cdi-operator:1.55.0 , suse/sles/15.5/cdi-operator:1.55.0-150500.4.4 , suse/sles/15.5/cdi-operator:1.55.0.17.226 Container Release : 17.226 Severity : important Type : security References : 1210434 1211230 1211231 1211232 1211233 CVE-2023-28319 CVE-2023-28320 CVE-2023-28321 CVE-2023-28322 CVE-2023-29491 ----------------------------------------------------------------- The container suse/sles/15.5/cdi-operator was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:2111-1 Released: Fri May 5 14:34:00 2023 Summary: Security update for ncurses Type: security Severity: moderate References: 1210434,CVE-2023-29491 This update for ncurses fixes the following issues: - CVE-2023-29491: Fixed memory corruption issues when processing malformed terminfo data (bsc#1210434). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:2224-1 Released: Wed May 17 09:53:54 2023 Summary: Security update for curl Type: security Severity: important References: 1211230,1211231,1211232,1211233,CVE-2023-28319,CVE-2023-28320,CVE-2023-28321,CVE-2023-28322 This update for curl adds the following feature: Update to version 8.0.1 (jsc#PED-2580) - CVE-2023-28319: use-after-free in SSH sha256 fingerprint check (bsc#1211230). - CVE-2023-28320: siglongjmp race condition (bsc#1211231). - CVE-2023-28321: IDN wildcard matching (bsc#1211232). - CVE-2023-28322: POST-after-PUT confusion (bsc#1211233). The following package changes have been done: - libz1-1.2.13-150500.2.3 updated -libuuid1-2.37.4-150500.7.16 updated - libsmartcols1-2.37.4-150500.7.16 updated - libblkid1-2.37.4-150500.7.16 updated - libgcrypt20-1.9.4-150500.10.19 updated - libgcrypt20-hmac-1.9.4-150500.10.19 updated - libfdisk1-2.37.4-150500.7.16 updated - libncurses6-6.1-150000.5.15.1 updated - terminfo-base-6.1-150000.5.15.1 updated - ncurses-utils-6.1-150000.5.15.1 updated - libopenssl1_1-1.1.1l-150500.15.4 updated - libopenssl1_1-hmac-1.1.1l-150500.15.4 updated - libmount1-2.37.4-150500.7.16 updated - libcurl4-8.0.1-150400.5.23.1 updated - sles-release-15.5-150500.43.4 updated - util-linux-2.37.4-150500.7.16 updated - containerized-data-importer-operator-1.55.0-150500.4.4 updated - container:sles15-image-15.0.0-34.37 updated . Changes in suse/sles/15.5/cdi-manager feature essential security updates for libxml2 and openssl. Keep updated!. SUSE Container, CDI Operator Security, Important Patch, Software Update. . Severity: Important. LinuxSecurity.com Team
May 24, 2023
•Important
SuSE
100
security advisorymoderate severitymemory issueSUSE: 2023:1478-1 Moderate: Bci/Dotnet-Sdk Memory Corruption
The container bci/dotnet-sdk was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/dotnet-sdk ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:1478-1 Container Tags : bci/dotnet-sdk:6.0 , bci/dotnet-sdk:6.0-33.19 , bci/dotnet-sdk:6.0.16 , bci/dotnet-sdk:6.0.16-33.19 Container Release : 33.19 Severity : moderate Type : security References : 1210434 CVE-2023-29491 ----------------------------------------------------------------- The container bci/dotnet-sdk was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:2111-1 Released: Fri May 5 14:34:00 2023 Summary: Security update for ncurses Type: security Severity: moderate References: 1210434,CVE-2023-29491 This update for ncurses fixes the following issues: - CVE-2023-29491: Fixed memory corruption issues when processing malformed terminfo data (bsc#1210434). The following package changes have been done: - libncurses6-6.1-150000.5.15.1 updated - terminfo-base-6.1-150000.5.15.1 updated - ncurses-utils-6.1-150000.5.15.1 updated - container:sles15-image-15.0.0-27.14.58 updated . The latest patch for bci/dotnet-sdk resolves vulnerabilities related to memory misuse, ensuring optimal protection for the system.. Container Advisory, Memory Issues, Dotnet-Sdk Update. . LinuxSecurity.com Team
May 09, 2023
SuSE
100
security advisorymoderate severitysecurity patchSUSE: 2022:1836-1 Moderate: bci/bci-micro Security Update
The container bci/bci-micro was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/bci-micro ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:1836-1 Container Tags : bci/bci-micro:15.3 , bci/bci-micro:15.3.19.16 Container Release : 19.16 Severity : moderate Type : security References : 1198627 CVE-2022-29458 ----------------------------------------------------------------- The container bci/bci-micro was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:2717-1 Released: Tue Aug 9 12:54:16 2022 Summary: Security update for ncurses Type: security Severity: moderate References: 1198627,CVE-2022-29458 This update for ncurses fixes the following issues: - CVE-2022-29458: Fixed segfaulting out-of-bounds read in convert_strings in tinfo/read_entry.c (bsc#1198627). The following package changes have been done: - libncurses6-6.1-150000.5.12.1 updated - terminfo-base-6.1-150000.5.12.1 updated . SUSE Container Update Notice: Critical security enhancement for bci/bci-micro tackling issues of moderate severity.. Container Security, Patch Management, Bci-Micro Advisory. . LinuxSecurity.com Team
Aug 12, 2022
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!