Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 47 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorydenial of servicefedora

Fedora 43 krb5 Critical NegoEx DoS Issues Fixed 2026-684396998a

Fix NegoEx parsing vulnerabilities (CVE-2026-40355, CVE-2026-40356) Add upstream patches to build against openssl 4.0 Make configure.ac work with autoconf 2.73. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-684396998a 2026-05-06 16:45:18.195724+00:00 -------------------------------------------------------------------------------- Name : krb5 Product : Fedora 43 Version : 1.22.2 Release : 4.fc43 URL : https://web.mit.edu/kerberos/www/ Summary : The Kerberos network authentication system Description : Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of sending passwords over the network in unencrypted form. -------------------------------------------------------------------------------- Update Information: Fix NegoEx parsing vulnerabilities (CVE-2026-40355, CVE-2026-40356) Add upstream patches to build against openssl 4.0 Make configure.ac work with autoconf 2.73 -------------------------------------------------------------------------------- ChangeLog: * Tue Apr 28 2026 Julien Rische - 1.22.2-4 - Fix NegoEx parsing vulnerabilities (CVE-2026-40355, CVE-2026-40356) - resolves: rhbz#2463398 - resolves: rhbz#2463395 - Add upstream patches to build against openssl 4.0 - Make configure.ac work with autoconf 2.73 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2463395 - CVE-2026-40356 krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2463395 [ 2 ] Bug #2463398 - CVE-2026-40355 krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2463398 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-684396998a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Fix critical NegoEx parsing issues in Fedora 43's krb5 with essential updates for better security.. krb5 update, Fedora 43 security, denial of service, openssl patches. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 06, 2026 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedorakerberos

Fedora 41: 2025-42a13f896e critical: kerberos encryption update

Disallowing use of the arcfour-hmac(-md5) encryption type for session keys Add support for the PKINIT paChecksum2 sequence, required for Active Directory interoperability on Windows Server 2025 Fix generation of RADIUS Message-Authenticator in FIPS mode. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-42a13f896e 2025-06-10 02:58:46.832310+00:00 -------------------------------------------------------------------------------- Name : krb5 Product : Fedora 41 Version : 1.21.3 Release : 5.fc41 URL : https://web.mit.edu/kerberos/www/ Summary : The Kerberos network authentication system Description : Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of sending passwords over the network in unencrypted form. -------------------------------------------------------------------------------- Update Information: Disallowing use of the arcfour-hmac(-md5) encryption type for session keys Add support for the PKINIT paChecksum2 sequence, required for Active Directory interoperability on Windows Server 2025 Fix generation of RADIUS Message-Authenticator in FIPS mode -------------------------------------------------------------------------------- ChangeLog: * Fri Jun 6 2025 Julien Rische - 1.21.3-5 - Do not block HMAC-MD4/5 in FIPS mode Resolves: rhbz#2370259 - PKINIT: implement paChecksum2 from MS-PKCA v20230920 Resolves: rhbz#2357215 - Disallow RC4 HMAC-MD5 session keys by default (CVE-2025-3576) Resolves: rhbz#2359673 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2357215 - PKINIT: implement paChecksum2 from MS-PKCA v20230920 [fedora] https://bugzilla.redhat.com/show_bug.cgi?id=2357215 [ 2 ] Bug #2359673 - CVE-2025-3576 krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5Collisions [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2359673 [ 3 ] Bug #2370259 - Do not block HMAC-MD4/5 in FIPS mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2370259 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-42a13f896e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Fedora 41 upgrade: blocks weak encryption protocols and improves integration with Active Directory.. Fedora Security Update, Kerberos Authentication, Active Directory Integration, Encryption Updates. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 10, 2025 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity updatefedora

Fedora 40: 2025-61b9344baf important: kernel segmentation fault remedy

Prevent overflow when calculating ulog block size (CVE-2025-24528) Support PKCS11 EC client certs in PKINIT kdb5_util: fix DB entry flags on modification Add ECDH support for PKINIT (RFC5349). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-61b9344baf 2025-02-15 02:22:06.812127+00:00 -------------------------------------------------------------------------------- Name : krb5 Product : Fedora 40 Version : 1.21.3 Release : 3.fc40 URL : https://web.mit.edu/kerberos/www/ Summary : The Kerberos network authentication system Description : Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of sending passwords over the network in unencrypted form. -------------------------------------------------------------------------------- Update Information: Prevent overflow when calculating ulog block size (CVE-2025-24528) Support PKCS11 EC client certs in PKINIT kdb5_util: fix DB entry flags on modification Add ECDH support for PKINIT (RFC5349) -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 11 2025 Julien Rische - 1.21.3-3 - Prevent overflow when calculating ulog block size (CVE-2025-24528) Resolves: rhbz#2342810 - Support PKCS11 EC client certs in PKINIT Resolves: rhbz#2341962 - kdb5_util: fix DB entry flags on modification Resolves: rhbz#2336555 - Add ECDH support for PKINIT (RFC5349) Resolves: rhbz#2214326 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2214326 - [RFE] Add ECDH support for PKINIT (RFC5349) [fedora] https://bugzilla.redhat.com/show_bug.cgi?id=2214326 [ 2 ] Bug #2336555 - kdb5_util: fix DB entry flags on modification [fedora] https://bugzilla.redhat.com/show_bug.cgi?id=2336555 [ 3 ] Bug #2341962 - Support PKCS11 EC clientcerts in PKINIT [fedora] https://bugzilla.redhat.com/show_bug.cgi?id=2341962 [ 4 ] Bug #2342810 - CVE-2025-24528 krb5: overflow when calculating ulog block size [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2342810 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-61b9344baf' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . The update for Fedora's krb5 addresses critical vulnerabilities, including potential memory corruption, significantly bolstering secure authentication protocols.. krb5 security update,Fedora 40 updates,network authentication enhancements,PKINIT support. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 15, 2025 Important Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedorakrb5

Fedora 39: FEDORA-2024-862f5c4156 moderate: krb5 libkrad Security Update

Security: CVE-2024-3596: Fix for BlastRADIUS vulnerability in libkrad (support for Message-Authenticator attribute) Marvin attack: Removal of the "RSA" method for PKINIT Fix of miscellaneous mistakes in the code. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-862f5c4156 2024-11-15 03:21:06.286197 -------------------------------------------------------------------------------- Name : krb5 Product : Fedora 39 Version : 1.21.3 Release : 2.fc39 URL : https://web.mit.edu/kerberos/www/ Summary : The Kerberos network authentication system Description : Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of sending passwords over the network in unencrypted form. -------------------------------------------------------------------------------- Update Information: Security: CVE-2024-3596: Fix for BlastRADIUS vulnerability in libkrad (support for Message-Authenticator attribute) Marvin attack: Removal of the "RSA" method for PKINIT Fix of miscellaneous mistakes in the code Enhancement: Rework of TCP request timeout (disabled by default, global timeout setting added) -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 30 2024 Julien Rische - 1.21.3-2 - libkrad: implement support for Message-Authenticator (CVE-2024-3596) Resolves: rhbz#2304071 - Fix various issues detected by static analysis Resolves: rhbz#2322704 - Remove RSA protocol for PKINIT Resolves: rhbz#2322706 - Make TCP waiting time configurable Resolves: rhbz#2322711 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2304071 - libkrad: implement support for Message-Authenticator (CVE-2024-3596) https://bugzilla.redhat.com/show_bug.cgi?id=2304071 [ 2 ] Bug #2322704 - Fix various issues detected bystatic analysis https://bugzilla.redhat.com/show_bug.cgi?id=2322704 [ 3 ] Bug #2322706 - Remove RSA protocol for PKINIT https://bugzilla.redhat.com/show_bug.cgi?id=2322706 [ 4 ] Bug #2322711 - Make TCP waiting time configurable https://bugzilla.redhat.com/show_bug.cgi?id=2322711 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-862f5c4156' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . Fedora krb5 Revision: Resolution for BlastRADIUS vulnerability and enhancements to libkrad security modules.. krb5 security update, Fedora 39 advisory, libkrad vulnerability fix. . LinuxSecurity.com Team

Calendar 2 Nov 15, 2024 Fedora
Banner 1 1028x280 1708121660 1771599717
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisorysecurity fiximportant

Rocky Linux 8 RLSA-2024:4936 Important: Freeradius Forgery Attack

Important: freeradius:3.0 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2024:4936", "synopsis": "Important: freeradius:3.0 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for freeradius, module.freeradius.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service (RADIUS) server, designed to allow centralized authentication and authorization for a network.\n\nSecurity Fix(es):\n\n* freeradius: forgery attack (CVE-2024-3596)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2263240", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2263240", "description": ""}], "cves": [{"name": "CVE-2024-3596", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2024-3596", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}], "references": [], "publishedAt": "2024-08-01T01:28:22.605677Z", "rpms": {"Rocky Linux 8": {"nvras": ["freeradius-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-0:3.0.20-15.module+el8.10.0+1841+f214069a.src.rpm", "freeradius-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-debugsource-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-debugsource-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-devel-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm","freeradius-devel-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-doc-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-doc-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-krb5-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-krb5-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-krb5-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-krb5-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-ldap-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-ldap-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-ldap-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-ldap-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-mysql-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-mysql-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-mysql-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-mysql-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-perl-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-perl-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-perl-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-perl-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-postgresql-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-postgresql-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-postgresql-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-postgresql-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-rest-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-rest-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-rest-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm","freeradius-rest-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-sqlite-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-sqlite-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-sqlite-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-sqlite-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-unixODBC-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-unixODBC-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-unixODBC-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-unixODBC-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-utils-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-utils-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "freeradius-utils-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "freeradius-utils-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "python3-freeradius-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "python3-freeradius-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm", "python3-freeradius-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.aarch64.rpm", "python3-freeradius-debuginfo-0:3.0.20-15.module+el8.10.0+1841+f214069a.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. An update for FreeRADIUS on Rocky Linux 8 has been released to patch vulnerabilities related to forgery attacks, enhancing system security and integrity. freeradius update, important security fix, Rocky Linux advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 01, 2024 Important Rocky Linux
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryhigh severityfreeradius

Fedora 40: FEDORA-2024-04ba1ff731 Critical: FreeRADIUS Security Update

Update to upstream release 3.2.5. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-04ba1ff731 2024-07-18 04:16:28.717649 -------------------------------------------------------------------------------- Name : freeradius Product : Fedora 40 Version : 3.2.5 Release : 1.fc40 URL : http://www.freeradius.org/ Summary : High-performance and highly configurable free RADIUS server Description : The FreeRADIUS Server Project is a high performance and highly configurable GPL'd free RADIUS server. The server is similar in some respects to Livingston's 2.0 server. While FreeRADIUS started as a variant of the Cistron RADIUS server, they don't share a lot in common any more. It now has many more features than Cistron or Livingston, and is much more configurable. FreeRADIUS is an Internet authentication daemon, which implements the RADIUS protocol, as defined in RFC 2865 (and others). It allows Network Access Servers (NAS boxes) to perform authentication for dial-up users. There are also RADIUS clients available for Web servers, firewalls, Unix logins, and more. Using RADIUS allows authentication and authorization for a network to be centralized, and minimizes the amount of re-configuration which has to be done when adding or deleting new users. -------------------------------------------------------------------------------- Update Information: Update to upstream release 3.2.5 -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 9 2024 Antonio Torres - 3.2.5-1 - Update to upstream release 3.2.5 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-04ba1ff731' at the command line. For more information, refer to the dnf documentation availableat http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . The transition to FreeRADIUS 3.2.5 on Fedora 40 optimizes network access protocols and mitigates various vulnerabilities.. FreeRADIUS Updates, Fedora 40 Security, Network Authentication Fixes, RADIUS Vulnerabilities, Software Upgrade. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 18, 2024 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysoftware updateFedora

Fedora 40: 2024-bfb8617ba3 Critical: Qt6 NetworkAuth PRNG Threat

Qt 6.7.1 bugfix update.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-bfb8617ba3 2024-05-29 03:35:14.763998 -------------------------------------------------------------------------------- Name : qt6-qtnetworkauth Product : Fedora 40 Version : 6.7.1 Release : 1.fc40 URL : http://www.qt.io Summary : Qt6 - NetworkAuth component Description : Qt6 - NetworkAuth component -------------------------------------------------------------------------------- Update Information: Qt 6.7.1 bugfix update. -------------------------------------------------------------------------------- ChangeLog: * Tue May 21 2024 Jan Grulich - 6.7.1-1 - 6.7.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2282868 - CVE-2024-36048 qt6-qtnetworkauth: qtnetworkauth: badly seeded PRNG may result in guessable values [fedora-39] https://bugzilla.redhat.com/show_bug.cgi?id=2282868 [ 2 ] Bug #2282870 - CVE-2024-36048 qt6-qtnetworkauth: qtnetworkauth: badly seeded PRNG may result in guessable values [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2282870 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-bfb8617ba3' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Fedora 41 patch notes announce gtk3-pygtk with essential improvements and adjustments to bolster user interface stability and performance.. Fedora 40, Qt6 NetworkAuth, PRNG Threats, Security Fixes, Critical Updates. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 29, 2024 Critical Fedora
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisoryhigh severitydebian

Debian 10 Buster DLA-3626-1 High: krb5 Uninitialized Pointer Threat

Potential freeing of an uninitialized pointer in kadm_rpc_xdr.c was fixed in krb5, the MIT implementation of the Kerberos network authentication protocol. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3626-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Adrian Bunk October 22, 2023 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : krb5 Version : 1.17-3+deb10u6 CVE ID : CVE-2023-36054 Debian Bug : 1043431 Potential freeing of an uninitialized pointer in kadm_rpc_xdr.c was fixed in krb5, the MIT implementation of the Kerberos network authentication protocol. For Debian 10 buster, this problem has been fixed in version 1.17-3+deb10u6. We recommend that you upgrade your krb5 packages. For the detailed security status of krb5 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/krb5 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Fedora Secure: FSA-1441-2 verified openssl update tackles memory leak problems to fortify encryption integrity.. Debian LTS, krb5 Patch, Network Security, Authentication Protocol. . LinuxSecurity.com Team

Calendar 2 Oct 22, 2023 Debian LTS
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here