Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -2 articles for you...
219
security advisoryimportantrocky linuxRocky Linux 10 RLSA-2026-11516 Nebula Critical Information Safety Warning
Important: yggdrasil security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:11413", "synopsis": "Important: yggdrasil security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for yggdrasil.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "yggdrasil is a system daemon that subscribes to topics on an MQTT broker and routes any data received on the topics to an appropriate child \"worker\" process, exchanging data with its worker processes through a D-Bus message broker.\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}], "cves": [{"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}], "references": [], "publishedAt": "2026-05-01T12:06:42.394267Z", "rpms": {"Rocky Linux 10": {"nvras": ["yggdrasil-debuginfo-0:0.4.8-4.el10_1.aarch64.rpm", "yggdrasil-debugsource-0:0.4.8-4.el10_1.aarch64.rpm", "yggdrasil-debugsource-0:0.4.8-4.el10_1.ppc64le.rpm", "yggdrasil-debugsource-0:0.4.8-4.el10_1.s390x.rpm", "yggdrasil-0:0.4.8-4.el10_1.aarch64.rpm", "yggdrasil-devel-0:0.4.8-4.el10_1.aarch64.rpm", "yggdrasil-debugsource-0:0.4.8-4.el10_1.x86_64.rpm", "yggdrasil-0:0.4.8-4.el10_1.src.rpm", "yggdrasil-devel-0:0.4.8-4.el10_1.x86_64.rpm", "yggdrasil-0:0.4.8-4.el10_1.x86_64.rpm","yggdrasil-devel-0:0.4.8-4.el10_1.ppc64le.rpm", "yggdrasil-debuginfo-0:0.4.8-4.el10_1.x86_64.rpm", "yggdrasil-debuginfo-0:0.4.8-4.el10_1.s390x.rpm", "yggdrasil-0:0.4.8-4.el10_1.ppc64le.rpm", "yggdrasil-0:0.4.8-4.el10_1.s390x.rpm", "yggdrasil-debuginfo-0:0.4.8-4.el10_1.ppc64le.rpm", "yggdrasil-devel-0:0.4.8-4.el10_1.s390x.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Yggdrasil security update addresses important security issue in Rocky Linux 10, ensuring system integrity and safe data exchange.. yggdrasil update, rocky linux security, MQTT broker protection, network parsing errors. . Severity: Important. LinuxSecurity.com Team
May 01, 2026
•Important
Rocky Linux
219
security advisorysecurity issueimportantRocky Linux 9 RLSA-2026-5680 Major Security Update for Go-compression-tools
Important: go-rpm-macros security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:8841", "synopsis": "Important: go-rpm-macros security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for go-rpm-macros.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "This package provides build-stage rpm automation to simplify the creation of Go language (golang) packages. It does not need to be included in the default build root: go-srpm-macros will pull it in for Go packages only.\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}], "cves": [{"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}], "references": [], "publishedAt": "2026-04-21T12:03:54.560238Z", "rpms": {"Rocky Linux 9": {"nvras": ["go-filesystem-0:3.6.0-14.el9_7.aarch64.rpm", "go-filesystem-0:3.6.0-14.el9_7.ppc64le.rpm", "go-filesystem-0:3.6.0-14.el9_7.s390x.rpm", "go-filesystem-0:3.6.0-14.el9_7.x86_64.rpm", "go-rpm-macros-0:3.6.0-14.el9_7.aarch64.rpm", "go-rpm-macros-0:3.6.0-14.el9_7.ppc64le.rpm", "go-rpm-macros-0:3.6.0-14.el9_7.s390x.rpm", "go-rpm-macros-0:3.6.0-14.el9_7.src.rpm", "go-rpm-macros-0:3.6.0-14.el9_7.x86_64.rpm", "go-rpm-macros-debuginfo-0:3.6.0-14.el9_7.aarch64.rpm","go-rpm-macros-debuginfo-0:3.6.0-14.el9_7.ppc64le.rpm", "go-rpm-macros-debuginfo-0:3.6.0-14.el9_7.s390x.rpm", "go-rpm-macros-debuginfo-0:3.6.0-14.el9_7.x86_64.rpm", "go-rpm-macros-debugsource-0:3.6.0-14.el9_7.aarch64.rpm", "go-rpm-macros-debugsource-0:3.6.0-14.el9_7.ppc64le.rpm", "go-rpm-macros-debugsource-0:3.6.0-14.el9_7.s390x.rpm", "go-rpm-macros-debugsource-0:3.6.0-14.el9_7.x86_64.rpm", "go-rpm-templates-0:3.6.0-14.el9_7.noarch.rpm", "go-srpm-macros-0:3.6.0-14.el9_7.noarch.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Critical update for go-rpm-macros addresses an important security issue on Rocky Linux 9, enhancing system protection.. go-rpm-macros update, Rocky Linux advisory, important security fix. . Severity: Important. LinuxSecurity.com Team
Apr 21, 2026
•Important
Rocky Linux
219
security advisorysecurity issueimportantUbuntu Server 22 git-lfs Major Security Patch RLSA-2026-8010 CVE-2026-25824
Important: git-lfs security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:7005", "synopsis": "Important: git-lfs security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for git-lfs.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Git Large File Storage (LFS) replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server.\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}], "cves": [{"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}], "references": [], "publishedAt": "2026-04-10T12:07:15.128312Z", "rpms": {"Rocky Linux 10": {"nvras": ["git-lfs-debugsource-0:3.6.1-8.el10_1.ppc64le.rpm", "git-lfs-0:3.6.1-8.el10_1.s390x.rpm", "git-lfs-0:3.6.1-8.el10_1.x86_64.rpm", "git-lfs-debuginfo-0:3.6.1-8.el10_1.s390x.rpm", "git-lfs-debuginfo-0:3.6.1-8.el10_1.ppc64le.rpm", "git-lfs-debuginfo-0:3.6.1-8.el10_1.aarch64.rpm", "git-lfs-0:3.6.1-8.el10_1.src.rpm", "git-lfs-0:3.6.1-8.el10_1.aarch64.rpm", "git-lfs-0:3.6.1-8.el10_1.ppc64le.rpm", "git-lfs-debugsource-0:3.6.1-8.el10_1.s390x.rpm", "git-lfs-debugsource-0:3.6.1-8.el10_1.aarch64.rpm", "git-lfs-debuginfo-0:3.6.1-8.el10_1.x86_64.rpm","git-lfs-debugsource-0:3.6.1-8.el10_1.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Rocky Linux 10's git-lfs receives an important security update due to improper network parsing affecting user data integrity.. Rocky Linux 10 git-lfs update network security. . Severity: Important. LinuxSecurity.com Team
Apr 10, 2026
•Important
Rocky Linux
219
security advisorysecurity issueimportantRocky Linux 8 RLSA-2026-7013 Grafana Security Patch CVE-2026-25890
Important: grafana security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:7011", "synopsis": "Important: grafana security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for grafana.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. \n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}], "cves": [{"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}], "references": [], "publishedAt": "2026-04-10T12:01:16.786705Z", "rpms": {"Rocky Linux 8": {"nvras": ["grafana-0:9.2.10-29.el8_10.aarch64.rpm", "grafana-0:9.2.10-29.el8_10.src.rpm", "grafana-0:9.2.10-29.el8_10.x86_64.rpm", "grafana-debuginfo-0:9.2.10-29.el8_10.aarch64.rpm", "grafana-debuginfo-0:9.2.10-29.el8_10.x86_64.rpm", "grafana-debugsource-0:9.2.10-29.el8_10.aarch64.rpm", "grafana-debugsource-0:9.2.10-29.el8_10.x86_64.rpm", "grafana-selinux-0:9.2.10-29.el8_10.aarch64.rpm", "grafana-selinux-0:9.2.10-29.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. A critical security update for Grafana on Rocky Linux 8 addresses important vulnerabilities requiring immediate action.. Grafana Security Update, Rocky Linux 8, ImportantSecurity Fix, CVE-2026-25679, Network Parsing Issue. . Severity: Important. LinuxSecurity.com Team
Apr 10, 2026
•Important
Rocky Linux
219
security advisorysecurity updateimportantUbuntu Server 22.04 Release RLSA-2023-4723 Patches CVE-2023-19521 Issue
Important: grafana-pcp security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:6388", "synopsis": "Important: grafana-pcp security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for grafana-pcp.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards.\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}], "cves": [{"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}], "references": [], "publishedAt": "2026-04-09T12:07:05.484110Z", "rpms": {"Rocky Linux 10": {"nvras": ["grafana-pcp-debugsource-0:5.3.0-3.el10_1.ppc64le.rpm", "grafana-pcp-0:5.3.0-3.el10_1.x86_64.rpm", "grafana-pcp-0:5.3.0-3.el10_1.s390x.rpm", "grafana-pcp-0:5.3.0-3.el10_1.aarch64.rpm", "grafana-pcp-debugsource-0:5.3.0-3.el10_1.x86_64.rpm", "grafana-pcp-debuginfo-0:5.3.0-3.el10_1.ppc64le.rpm", "grafana-pcp-0:5.3.0-3.el10_1.ppc64le.rpm", "grafana-pcp-debugsource-0:5.3.0-3.el10_1.s390x.rpm", "grafana-pcp-debugsource-0:5.3.0-3.el10_1.aarch64.rpm", "grafana-pcp-0:5.3.0-3.el10_1.src.rpm", "grafana-pcp-debuginfo-0:5.3.0-3.el10_1.s390x.rpm","grafana-pcp-debuginfo-0:5.3.0-3.el10_1.aarch64.rpm", "grafana-pcp-debuginfo-0:5.3.0-3.el10_1.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. grafana-pcp security update available for Rocky Linux 10 addressing important issues with network parsing vulnerabilities.. grafana-pcp update, Rocky Linux security, important security advisory. . Severity: Important. LinuxSecurity.com Team
Apr 09, 2026
•Important
Rocky Linux
219
security advisorysecurity issueimportantFedora Linux 38 Monitoring-DataCollector Vital Update RLSA-2027-9337
Important: grafana-pcp security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:6383", "synopsis": "Important: grafana-pcp security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for grafana-pcp.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards.\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2445356", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356", "description": ""}], "cves": [{"name": "CVE-2026-25679", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-25679", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-1286"}], "references": [], "publishedAt": "2026-04-07T12:03:55.701474Z", "rpms": {"Rocky Linux 9": {"nvras": ["grafana-pcp-0:5.1.1-13.el9_7.aarch64.rpm", "grafana-pcp-0:5.1.1-13.el9_7.ppc64le.rpm", "grafana-pcp-0:5.1.1-13.el9_7.s390x.rpm", "grafana-pcp-0:5.1.1-13.el9_7.src.rpm", "grafana-pcp-0:5.1.1-13.el9_7.x86_64.rpm", "grafana-pcp-debuginfo-0:5.1.1-13.el9_7.aarch64.rpm", "grafana-pcp-debuginfo-0:5.1.1-13.el9_7.ppc64le.rpm", "grafana-pcp-debuginfo-0:5.1.1-13.el9_7.s390x.rpm", "grafana-pcp-debuginfo-0:5.1.1-13.el9_7.x86_64.rpm", "grafana-pcp-debugsource-0:5.1.1-13.el9_7.aarch64.rpm", "grafana-pcp-debugsource-0:5.1.1-13.el9_7.ppc64le.rpm","grafana-pcp-debugsource-0:5.1.1-13.el9_7.s390x.rpm", "grafana-pcp-debugsource-0:5.1.1-13.el9_7.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Update available for grafana-pcp in Rocky Linux 9 addressing important security fix for IPv6 host parsing.. grafana-pcp security update, Rocky Linux 9, security fix, important advisory, network vulnerability. . Severity: Important. LinuxSecurity.com Team
Apr 07, 2026
•Important
Rocky Linux
89
security advisorymoderateFedoraFedora 34 perl-Net-Netmask Security Advisory for CVE-2021-29424 Moderate
Security fix for CVE-2021-29424. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-3d96cfe6a3 2021-04-06 14:01:06.707168 --------------------------------------------------------------------------------Name : perl-Net-Netmask Product : Fedora 34 Version : 2.0001 Release : 1.fc34 URL : https://metacpan.org/dist/Net-Netmask Summary : Perl module for manipulating and looking up IP network blocks Description : Net::Netmask parses and understands IPv4 and IPv6 CIDR blocks (see for more information on CIDR blocks). There are also functions to insert a network block into a table and then later look up network blocks by an IP address using that table. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2021-29424 --------------------------------------------------------------------------------ChangeLog: * Tue Mar 30 2021 Jitka Plesnikova - 2.0001-1 - 2.0001 bump - Package tests --------------------------------------------------------------------------------References: [ 1 ] Bug #1944352 - perl-Net-Netmask-2.0001 is available https://bugzilla.redhat.com/show_bug.cgi?id=1944352 [ 2 ] Bug #1944875 - CVE-2021-29424 perl-Net-Netmask: incorrectly parses an IP address with leading zeros in IP octets [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1944875 [ 3 ] Bug #1944876 - CVE-2021-29424 perl-Net-Netmask: incorrectly parses an IP address with leading zeros in IP octets [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1944876 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-3d96cfe6a3' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packagesare signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Apr 06, 2021
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!