Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Security Notice 2026-2328-1 Significant Updates on Four Xen Risks

Calendar White Jun 10, 2026
Important
Suse Large Esm H900
SuSE

openSUSE 2026-2328-1 Xen Important Buffer Overflow Patch

Calendar White Jun 10, 2026
Important
Opensuse Large Esm H900
openSUSE

openSUSE Leap 15.6 Important Xen Denial of Service Fix SUSE-SU-2026-2329-1

Calendar White Jun 10, 2026
Important
Suse Large Esm H800
SuSE

openSUSE Important xen Patch for Multiple Threats SUSE-2026-2329-1

Calendar White Jun 10, 2026
Important
Suse Large Esm H900
SuSE

SUSE MariaDB Critical Security Fix 12 Vulnerabilities 2026-2330-1

Calendar White Jun 10, 2026
Critical
Ubuntu Large Esm H900
Ubuntu

Ubuntu 22.04 LTS Exim4 Moderate Regression CVE-2023-42117

Calendar White Jun 10, 2026
Important
Suse Large Esm H800
SuSE

SUSE StrongSwan Important Double-Free CVE-2026-47895 Advisory 2026-2312-1

Calendar White Jun 10, 2026
Important
Suse Large Esm H900
SuSE

SUSE vim Important Command Injection Buffer Overflow Update 2026-2313-1

Calendar White Jun 10, 2026
Important
Suse Large Esm H900
SuSE

openSUSE Important libsoup HTTP Request Smuggling Vulnerability 2026-2314-1

Calendar White Jun 10, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":552,"type":"x","order":1,"pct":78.63,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.27,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.84,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.25,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -8 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorysecurity issuesecurity fix

Red Hat Enterprise Linux 8 RHSA-2023:4536-01 Nodejs:18 Security Update

An update for the nodejs:18 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Moderate: nodejs:18 security, bug fix, and enhancement update Advisory ID: RHSA-2023:4536-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:4536 Issue date: 2023-08-08 CVE Names: CVE-2023-30581 CVE-2023-30588 CVE-2023-30589 CVE-2023-30590 ===================================================================== 1. Summary: An update for the nodejs:18 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The package has been upgraded to a later upstream version: nodejs (18.16.1). (BZ#2223630, BZ#2223631, BZ#2223632, BZ#2223633, BZ#2223635, BZ#2223642) Security Fix(es): * nodejs: mainModule.proto bypass experimental policy mechanism (CVE-2023-30581) * nodejs: process interuption due to invalid Public Key information in x509 certificates (CVE-2023-30588) * nodejs: HTTP Request Smuggling via Empty headers separated by CR (CVE-2023-30589) * nodejs: DiffieHellman do not generate keys after setting a private key (CVE-2023-30590) For more details about the securityissue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * nodejs:18/nodejs: Don't assume FIPS is disabled by default [rhel-8] (BZ#2223639) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2219824 - CVE-2023-30581 nodejs: mainModule.proto bypass experimental policy mechanism 2219838 - CVE-2023-30588 nodejs: process interuption due to invalid Public Key information in x509 certificates 2219841 - CVE-2023-30589 nodejs: HTTP Request Smuggling via Empty headers separated by CR 2219842 - CVE-2023-30590 nodejs: DiffieHellman do not generate keys after setting a private key 2223630 - nodejs:18/nodejs: Rebase to the latest Nodejs 18 release [rhel-8] [rhel-8.8.0.z] 2223642 - nodejs:18/nodejs: Remove /usr/etc/npmrc softlink. [rhel-8] [rhel-8.8.0.z] 6. Package List: Red Hat Enterprise Linux AppStream (v.8): Source: nodejs-18.16.1-1.module+el8.8.0+19438+94e84959.src.rpm nodejs-nodemon-2.0.20-2.module+el8.8.0+18432+27f188ac.src.rpm nodejs-packaging-2021.06-4.module+el8.7.0+15582+19c314fa.src.rpm aarch64: nodejs-18.16.1-1.module+el8.8.0+19438+94e84959.aarch64.rpm nodejs-debuginfo-18.16.1-1.module+el8.8.0+19438+94e84959.aarch64.rpm nodejs-debugsource-18.16.1-1.module+el8.8.0+19438+94e84959.aarch64.rpm nodejs-devel-18.16.1-1.module+el8.8.0+19438+94e84959.aarch64.rpm nodejs-full-i18n-18.16.1-1.module+el8.8.0+19438+94e84959.aarch64.rpm npm-9.5.1-1.18.16.1.1.module+el8.8.0+19438+94e84959.aarch64.rpm noarch: nodejs-docs-18.16.1-1.module+el8.8.0+19438+94e84959.noarch.rpm nodejs-nodemon-2.0.20-2.module+el8.8.0+18432+27f188ac.noarch.rpm nodejs-packaging-2021.06-4.module+el8.7.0+15582+19c314fa.noarch.rpm nodejs-packaging-bundler-2021.06-4.module+el8.7.0+15582+19c314fa.noarch.rpm ppc64le: nodejs-18.16.1-1.module+el8.8.0+19438+94e84959.ppc64le.rpm nodejs-debuginfo-18.16.1-1.module+el8.8.0+19438+94e84959.ppc64le.rpm nodejs-debugsource-18.16.1-1.module+el8.8.0+19438+94e84959.ppc64le.rpm nodejs-devel-18.16.1-1.module+el8.8.0+19438+94e84959.ppc64le.rpm nodejs-full-i18n-18.16.1-1.module+el8.8.0+19438+94e84959.ppc64le.rpm npm-9.5.1-1.18.16.1.1.module+el8.8.0+19438+94e84959.ppc64le.rpm s390x: nodejs-18.16.1-1.module+el8.8.0+19438+94e84959.s390x.rpm nodejs-debuginfo-18.16.1-1.module+el8.8.0+19438+94e84959.s390x.rpm nodejs-debugsource-18.16.1-1.module+el8.8.0+19438+94e84959.s390x.rpm nodejs-devel-18.16.1-1.module+el8.8.0+19438+94e84959.s390x.rpm nodejs-full-i18n-18.16.1-1.module+el8.8.0+19438+94e84959.s390x.rpm npm-9.5.1-1.18.16.1.1.module+el8.8.0+19438+94e84959.s390x.rpm x86_64: nodejs-18.16.1-1.module+el8.8.0+19438+94e84959.x86_64.rpm nodejs-debuginfo-18.16.1-1.module+el8.8.0+19438+94e84959.x86_64.rpm nodejs-debugsource-18.16.1-1.module+el8.8.0+19438+94e84959.x86_64.rpm nodejs-devel-18.16.1-1.module+el8.8.0+19438+94e84959.x86_64.rpm nodejs-full-i18n-18.16.1-1.module+el8.8.0+19438+94e84959.x86_64.rpm npm-9.5.1-1.18.16.1.1.module+el8.8.0+19438+94e84959.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2023-30581 https://access.redhat.com/security/cve/CVE-2023-30588 https://access.redhat.com/security/cve/CVE-2023-30589 https://access.redhat.com/security/cve/CVE-2023-30590 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJk0lAnAAoJENzjgjWX9erE+YcP/A0F2EnhphBzods/CSKlKem6 6bfnz24Oux9G40rK+jrU3CYljB6Qq+WwfkkQvONYrFtM8zR5Aszfna8prw3DGeAo F/Mgeu6lkLmvLLDIfQZ/5eHVai/xIwOTxQx9ptR61xMeRDv3gPx2QYA41hFIGEjI qiBEVvU+twFfGqtF9Nc8/VECEr6VvflZDb6JqcJLhRq1Z+XAjC8octbT7xZGedfu yLOohpbnx3/uioLeyKLg/BeUzxKYrjus9JU8tGHpw/tY9Sjk4IusUwOumkl0fzfK vyUmEkpIFhWF+fqzADU49ofEhLVMMwQ/hCym6h/FoZ1huURXZvPu8JU3YjVrgUB6 5Qxv5befHzaxvbEeq2uhcb/mOz23br4Vnm1GLeI3IrXX9dEgNENmxv6pqmuoHQnW QB7pjcL0V0Agqv9o4xzG+RYQ74bCcK8HgAzzmKY6JQis0wglNrm20+zq/8qitdCW HTBXsROktQCEBpTYLiW65s49jWxmCKO2ddTbgX/xRDe96Uh7C68C308dZnMEhJLK iERTMpk16v213ALLHTxlc3dET2rDpZ1IW3JvWooAkdypfgnnScqZ/SCBBKTj13vf uOchGet065eJauwixjoqCoI0zYlMPe3qf6ljSURNLaW5x0WO6rYeBW888aUNPTJC lVNLPMoRzqNOFSQPS+Gg =pehV -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . A new version rolled out for nodejs:18 on CentOS Stream includes important improvements and key vulnerability resolutions.. nodejs update, Red Hat security, Linux patch, security enhancements. . LinuxSecurity.com Team

Calendar 2 Aug 08, 2023 Red Hat
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":552,"type":"x","order":1,"pct":78.63,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.27,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.84,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.25,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here