Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydebianruby

Debian: DSA-4721-1 Moderate: ruby2.5 Object Creation and Data Exposure

Several vulnerabilities have been discovered in the interpreter for the Ruby language. CVE-2020-10663 . - ------------------------------------------------------------------------- Debian Security Advisory DSA-4721-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Salvatore Bonaccorso July 08, 2020 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : ruby2.5 CVE ID : CVE-2020-10663 CVE-2020-10933 Several vulnerabilities have been discovered in the interpreter for the Ruby language. CVE-2020-10663 Jeremy Evans reported an unsafe object creation vulnerability in the json gem bundled with Ruby. When parsing certain JSON documents, the json gem can be coerced into creating arbitrary objects in the target system. CVE-2020-10933 Samuel Williams reported a flaw in the socket library which may lead to exposure of possibly sensitive data from the interpreter. For the stable distribution (buster), these problems have been fixed in version 2.5.5-3+deb10u2. We recommend that you upgrade your ruby2.5 packages. For the detailed security status of ruby2.5 please refer to its security tracker page at: Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Debian Security Advisory DSA-4722-1 outlines vulnerabilities in Python 3.6, highlighting memory corruption and potential information leaks.. Debian Security Advisory,Ruby Security Fix,Object Creation Flaw,Data Exposure Prevention. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jul 08, 2020 Important Debian
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisoryupdatemageia

Mageia: 2020-0186 Moderate: Ruby-Json Unsafe Object Creation Threat

Updated ruby-json packages fix security vulnerability: In ruby-json before 2.3.0, there is an unsafe object creation vulnerability. When parsing certain JSON documents, the json gem can be coerced into creating arbitrary objects in the target system (CVE-2020-10663). . MGASA-2020-0186 - Updated ruby-json packages fix security vulnerability Publication date: 05 May 2020 URL: https://advisories.mageia.org/MGASA-2020-0186.html Type: security Affected Mageia releases: 7 CVE: CVE-2020-10663 Updated ruby-json packages fix security vulnerability: In ruby-json before 2.3.0, there is an unsafe object creation vulnerability. When parsing certain JSON documents, the json gem can be coerced into creating arbitrary objects in the target system (CVE-2020-10663). References: - https://bugs.mageia.org/show_bug.cgi?id=26408 - https://www.ruby-lang.org/en/news/2020/03/19/json-dos-cve-2020-10663/ - https://lists.debian.org/debian-lts-announce/2020/04/msg00023.html - https://www.cve.org/CVERecord?id=CVE-2020-10663 SRPMS: - 7/core/ruby-json-2.1.0-3.1.mga7 . The security notice MGASA-2020-0186 from Mageia targets vulnerabilities found in ruby-json, reinforcing the overall security of the system.. ruby-json security, Mageia update, json vulnerability, safety patch, security fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 05, 2020 Important Mageia
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 31: 2020-26df92331a Moderate: rubygem-json Object Creation Issue

A security flaw was found on rubygem-json prior to 2.3.0 which was now assigned as CVE-2020-10663. This new rpm contains backport fixes for this issue.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-26df92331a 2020-05-03 04:53:06.676591 --------------------------------------------------------------------------------Name : rubygem-json Product : Fedora 31 Version : 2.2.0 Release : 202.fc31 URL : Summary : A JSON implementation in Ruby Description : This is a implementation of the JSON specification according to RFC 4627 in Ruby. You can think of it as a low fat alternative to XML, if you want to store data to disk or transmit it over a network rather than use a verbose markup language. --------------------------------------------------------------------------------Update Information: A security flaw was found on rubygem-json prior to 2.3.0 which was now assigned as CVE-2020-10663. This new rpm contains backport fixes for this issue. --------------------------------------------------------------------------------ChangeLog: * Sat Apr 25 2020 Mamoru TASAKA - 2.2.0-202 - Backport fix for CVE-2020-10663 from 2.3.0 (bug 1827500) --------------------------------------------------------------------------------References: [ 1 ] Bug #1827501 - CVE-2020-10663 rubygem-json: Unsafe Object Creation Vulnerability in JSON [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1827501 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-26df92331a' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . An issue in rubygem-json on Fedora 31 has been resolved with this release. Significant vulnerability related to object instantiation has been patched.. Fedora Update, rubygem-json, CVE-2020-10663, security fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 03, 2020 Important Fedora
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderateruby

openSUSE Leap 15.1: openSUSE-SU-2020:0586-1 Moderate: Ruby Socket Issues

An update that fixes two vulnerabilities is now available.. openSUSE Security Update: Security update for ruby2.5 ______________________________________________________________________________ Announcement ID: openSUSE-SU-2020:0586-1 Rating: moderate References: #1167244 #1168938 Cross-References: CVE-2020-10663 CVE-2020-10933 Affected Products: openSUSE Leap 15.1 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for ruby2.5 to version 2.5.8 fixes the following issues: - CVE-2020-10663: Unsafe Object Creation Vulnerability in JSON (bsc#1167244). - CVE-2020-10933: Heap exposure vulnerability in the socket library (bsc#1168938). This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.1: zypper in -t patch openSUSE-2020-586=1 Package List: - openSUSE Leap 15.1 (x86_64): libruby2_5-2_5-2.5.8-lp151.4.9.1 libruby2_5-2_5-debuginfo-2.5.8-lp151.4.9.1 ruby2.5-2.5.8-lp151.4.9.1 ruby2.5-debuginfo-2.5.8-lp151.4.9.1 ruby2.5-debugsource-2.5.8-lp151.4.9.1 ruby2.5-devel-2.5.8-lp151.4.9.1 ruby2.5-devel-extra-2.5.8-lp151.4.9.1 ruby2.5-doc-2.5.8-lp151.4.9.1 ruby2.5-stdlib-2.5.8-lp151.4.9.1 ruby2.5-stdlib-debuginfo-2.5.8-lp151.4.9.1 - openSUSE Leap 15.1 (noarch): ruby2.5-doc-ri-2.5.8-lp151.4.9.1 References: https://www.suse.com/security/cve/CVE-2020-10663.html https://www.suse.com/security/cve/CVE-2020-10933.html https://bugzilla.suse.com/1167244 https://bugzilla.suse.com/1168938 -- . The latest release for ruby2.5 tackles two critical vulnerabilities: insecure object instantiationand memory leak issues affecting openSUSE systems.. openSUSE Ruby Update, Modest Security Fixes, Software Patch Details. . LinuxSecurity.com Team

Calendar 2 May 01, 2020 OpenSUSE
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here