Alerts This Week
Warning Icon 1 687
Alerts This Week
Warning Icon 1 687

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 4 articles for you...
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorycriticalsoftware update

Mageia 9 MGASA-2024-0370 critical: opendmarc null pointer dereference

Fix null pointer dereference in opendmarc_policy.c. (CVE-2024-25768) References: - https://bugs.mageia.org/show_bug.cgi?id=33756 . MGASA-2024-0370 - Updated opendmarc packages fix security vulnerability Publication date: 22 Nov 2024 URL: https://advisories.mageia.org/MGASA-2024-0370.html Type: security Affected Mageia releases: 9 CVE: CVE-2024-25768 Fix null pointer dereference in opendmarc_policy.c. (CVE-2024-25768) References: - https://bugs.mageia.org/show_bug.cgi?id=33756 - https://github.com/trusteddomainproject/OpenDMARC/issues/256 - https://www.cve.org/CVERecord?id=CVE-2024-25768 SRPMS: - 9/core/opendmarc-1.4.2-2.1.mga9 . MGASA-2024-0456 involves crucial updates to postfix, correcting significant vulnerabilities linked to an input validation flaw.. opendmarc, security advisory, Mageia updates, null pointer dereference, software security. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 22, 2024 Critical Mageia
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalFedora

Fedora 40: 2024-044dcdff8e critical: opendmarc CVE-2024-25768 fix

Fix for CVE-2024-25768 - Closes rhbz#2266175 rhbz#2266174 Convert to %autorelease and %autochangelog Simplify spec Remove checks on if systemd is present Remove checks on old Fedora releases. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-044dcdff8e 2024-11-11 05:08:19.329099 -------------------------------------------------------------------------------- Name : opendmarc Product : Fedora 40 Version : 1.4.2 Release : 21.fc40 URL : http://www.trusteddomain.org/opendmarc.html Summary : A DMARC milter and library Description : OpenDMARC (Domain-based Message Authentication, Reporting & Conformance) provides an open source library that implements the DMARC verification service plus a milter-based filter application that can plug in to any milter-aware MTA, including sendmail, Postfix, or any other MTA that supports the milter protocol. The DMARC sender authentication system is still a draft standard, working towards RFC status. The database schema required for some functions is provided in /usr/share/opendmarc/db. The rddmarc tools are provided in /usr/share/opendmarc/contrib/rddmarc. -------------------------------------------------------------------------------- Update Information: Fix for CVE-2024-25768 - Closes rhbz#2266175 rhbz#2266174 Convert to %autorelease and %autochangelog Simplify spec Remove checks on if systemd is present Remove checks on old Fedora releases Remove checks on EL7 or older Use %make macros Other misc changes -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 30 2024 Mikel Olasagasti Uranga - 1.4.2-21 - Fix for CVE-2024-25768 - Closes rhbz#2266175 rhbz#2266174 * Tue Oct 29 2024 Mikel Olasagasti Uranga - 1.4.2-15 - Simplify spec - Remove checks on if systemd is present - Remove checks on old Fedora releases - Remove checks on EL7 or older - Use make macros * Thu Jul 18 2024Fedora Release Engineering - 1.4.2-14 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-044dcdff8e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Announcement regarding opendmarc for CVE-2024-25768 on Fedora 40, featuring numerous enhancements and streamlining.. opendmarc security, Fedora 40 updates, CVE-2024-25768, milter updates. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 11, 2024 Critical Fedora
Banner 2 1028x280 1708121730 1 1771599631
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 41: opendmarc Security Fix for CVE-2024-25768 - Moderate Threat

Fix for CVE-2024-25768 - Closes rhbz#2266175 rhbz#2266174 Convert to %autorelease and %autochangelog Simplify spec Remove checks on if systemd is present Remove checks on old Fedora releases. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-513cf04db3 2024-11-11 02:18:50.551505 -------------------------------------------------------------------------------- Name : opendmarc Product : Fedora 41 Version : 1.4.2 Release : 21.fc41 URL : http://www.trusteddomain.org/opendmarc.html Summary : A DMARC milter and library Description : OpenDMARC (Domain-based Message Authentication, Reporting & Conformance) provides an open source library that implements the DMARC verification service plus a milter-based filter application that can plug in to any milter-aware MTA, including sendmail, Postfix, or any other MTA that supports the milter protocol. The DMARC sender authentication system is still a draft standard, working towards RFC status. The database schema required for some functions is provided in /usr/share/opendmarc/db. The rddmarc tools are provided in /usr/share/opendmarc/contrib/rddmarc. -------------------------------------------------------------------------------- Update Information: Fix for CVE-2024-25768 - Closes rhbz#2266175 rhbz#2266174 Convert to %autorelease and %autochangelog Simplify spec Remove checks on if systemd is present Remove checks on old Fedora releases Remove checks on EL7 or older Use %make macros Other misc changes -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 30 2024 Mikel Olasagasti Uranga - 1.4.2-21 - Fix for CVE-2024-25768 - Closes rhbz#2266175 rhbz#2266174 * Tue Oct 29 2024 Mikel Olasagasti Uranga - 1.4.2-15 - Simplify spec - Remove checks on if systemd is present - Remove checks on old Fedora releases - Remove checks on EL7 or older - Use makemacros -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-513cf04db3' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . Fedora Update Alert FEDORA-2024-6a7f01e4c2 communicates opendmarc resolution for CVE-2024-11567 along with broader system enhancements.. Fedora, opendmarc, security update, CVE-2024-25768. . LinuxSecurity.com Team

Calendar 2 Nov 11, 2024 Fedora
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydebianemail filter

Debian 10 Buster DLA-3550-1 Moderate: Opendmarc Script Hang Issue

It was discovered that there was an issue in the opendmarc DMARC email filter system. A call to "db_stop" was missing from the post-installation script which meant that, under some configurations, the script would hang indefinitely. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3550-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Chris Lamb August 30, 2023 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : opendmarc Version : 1.3.2-6+deb10u4 Debian Bug : 965284 It was discovered that there was an issue in the opendmarc DMARC email filter system. A call to "db_stop" was missing from the post-installation script which meant that, under some configurations, the script would hang indefinitely. This problem had been previously addressed in Debian bug #965284 within Debian "unstable"; this update merely cherry-picks this update for Debian LTS. For Debian 10 buster, this problem has been fixed in version 1.3.2-6+deb10u4. We recommend that you upgrade your opendmarc packages. For the detailed security status of opendmarc please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/opendmarc Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Ubuntu Security Notice USN-5042-1 relates to openssl vulnerability affecting secure communications, potentially allowing data exposure.. Opendmarc Security Update, Debian LTS, Email Filter Issues, Script Upgrade Recommendations. . LinuxSecurity.com Team

Calendar 2 Aug 30, 2023 Debian LTS
Banner 2 1028x280 1708121730 1 1771599631
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorycriticaldebian

Debian Buster DLA-3546-1 Critical: Opendmarc Email Authentication Issue

It was discovered that there was an issue in the opendmarc DMARC email filter system. A vulnerability allowed attackers to inject authentication results to provide false information about the domain that originated an email message. This was caused by incorrect . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3546-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Chris Lamb August 28, 2023 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : opendmarc Version : 1.3.2-6+deb10u3 CVE ID : CVE-2020-12272 Debian Bug : 977767 It was discovered that there was an issue in the opendmarc DMARC email filter system. A vulnerability allowed attackers to inject authentication results to provide false information about the domain that originated an email message. This was caused by incorrect parsing and interpretation of SPF/DKIM authentication results. For Debian 10 buster, this problem has been fixed in version 1.3.2-6+deb10u3. We recommend that you upgrade your opendmarc packages. For the detailed security status of opendmarc please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/opendmarc Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . This advisory highlights a critical opendmarc update to fix an email authentication vulnerability in Debian LTS, essential for maintaining system security. Opendmarc Update, Email Security, Debian LTS Advisory, DMARC Protection. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Aug 28, 2023 Critical Debian LTS
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalFedora

Fedora 34: FEDORA-2021-433e7d72ce Critical: opendmarc Authentication Update

Upgrade to 1.4.1 bugfix release.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-433e7d72ce 2021-05-31 01:04:19.558515 --------------------------------------------------------------------------------Name : opendmarc Product : Fedora 34 Version : 1.4.1 Release : 1.fc34 URL : http://www.trusteddomain.org/opendmarc.html Summary : A Domain-based Message Authentication, Reporting & Conformance (DMARC) milter and library Description : OpenDMARC (Domain-based Message Authentication, Reporting & Conformance) provides an open source library that implements the DMARC verification service plus a milter-based filter application that can plug in to any milter-aware MTA, including sendmail, Postfix, or any other MTA that supports the milter protocol. The DMARC sender authentication system is still a draft standard, working towards RFC status. The database schema required for some functions is provided in /usr/share/opendmarc/db. The rddmarc tools are provided in /usr/share/opendmarc/contrib/rddmarc. --------------------------------------------------------------------------------Update Information: Upgrade to 1.4.1 bugfix release. --------------------------------------------------------------------------------ChangeLog: * Thu Apr 29 2021 Matt Domsch - 1.4.1-1 - Update to 1.4.1 --------------------------------------------------------------------------------References: [ 1 ] Bug #1786435 - SeLinux problems pclose() exited with status 127 https://bugzilla.redhat.com/show_bug.cgi?id=1786435 [ 2 ] Bug #1828432 - CVE-2019-20790 CVE-2020-12272 opendmarc: Two vulnerabilities in openDMARC 1.3.2 [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1828432 [ 3 ] Bug #1861993 - CVE-2020-12460 opendmarc: improper null termination in function opendmarc_xml_parse leads to heap-buffer overflow [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1861993 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-433e7d72ce' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Elevate your security by updating to the newest opendmarc version in Fedora 34 through this critical bugfix update.. Fedora 34, opendmarc update, system security, DMARC authentication. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 30, 2021 Critical Fedora
Banner 2 1028x280 1708121730 1 1771599631
198
Ls Advisories Archlinux Esm H240
Price Tag 1security advisorymedium severityremote attack

Arch Linux ASA-202105-13 Medium: OpenDMARC Authentication Bypass Threat

The package opendmarc before version 1.4.1.1-1 is vulnerable to multiple issues including content spoofing and authentication bypass. . Arch Linux Security Advisory ASA-202105-13 ========================================= Severity: Medium Date : 2021-05-19 CVE-ID : CVE-2019-20790 CVE-2020-12272 Package : opendmarc Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1375 Summary ====== The package opendmarc before version 1.4.1.1-1 is vulnerable to multiple issues including content spoofing and authentication bypass. Resolution ========= Upgrade to 1.4.1.1-1. # pacman -Syu "opendmarc> =1.4.1.1-1" The problems have been fixed upstream in version 1.4.1.1. Workaround ========= None. Description ========== - CVE-2019-20790 (authentication bypass) OpenDMARC before 1.4.1, when used with pypolicyd-spf 2.0.2, allows attacks that bypass SPF and DMARC authentication in situations where the HELO field is inconsistent with the MAIL FROM field. - CVE-2020-12272 (content spoofing) OpenDMARC before 1.4.1 allows attacks that inject authentication results to provide false information about the domain that originated an e-mail message. This is caused by incorrect parsing and interpretation of SPF/DKIM authentication results, as demonstrated by the example.net(. substring. OpenDMARC has added checking to validate that the domain element in both SPF and DKIM header fields being inspected argument contains only valid domain name characters. This has been fixed as of OpenDMARC 1.4.1 (March 2021). Impact ===== A remote attacker could spoof SPF, DMARC and DKIMauthentication results. References ========= https://bugs.launchpad.net/pypolicyd-spf/+bug/1838816 / https://www.usenix.org/system/files/sec20fall_chen-jianjun_prepub_0.pdf https://github.com/trusteddomainproject/OpenDMARC/issues/49 https://github.com/trusteddomainproject/OpenDMARC/issues/158 https://github.com/trusteddomainproject/OpenDMARC/commit/d72e1ec0ae6ed3a9827b31be4f268fc528232371 https://github.com/trusteddomainproject/OpenDMARC/commit/9c0db8c12e4488fbf948afc27d8395d0c6bb53bd https://github.com/trusteddomainproject/OpenDMARC/commit/5f980792546d11bc16dff7f875188ba81989ba33 https://github.com/trusteddomainproject/OpenDMARC/blob/develop/SECURITY/CVE-2020-12272 / https://github.com/trusteddomainproject/OpenDMARC/commit/f3a9a9d4edfaa05102292727d021683f58aa4b6e https://security.archlinux.org/CVE-2019-20790 https://security.archlinux.org/CVE-2020-12272 . Debian Security Announcement DSA-2022-27 highlights critical vulnerabilities in libxml2 that may lead to unauthorized data access.. Arch Linux Advisory, OpenDMARC, Medium Severity Threats, Security Updates. . Severity: Medium. LinuxSecurity.com Team

Calendar 2 May 20, 2021 Medium ArchLinux
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydebianheap overflow

Debian 9: DLA-2639-1 Moderate: OpenDMARC Heap Overflow Issue

It was discovered that OpenDMARC, a milter implementation of DMARC, has improper null termination in the function opendmarc_xml_parse that can result in a one-byte heap overflow in opendmarc_xml when parsing a specially crafted DMARC aggregate report. This can cause remote memory . - ----------------------------------------------------------------------- Debian LTS Advisory DLA-2639-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Utkarsh Gupta April 25, 2021 https://wiki.debian.org/LTS - ----------------------------------------------------------------------- Package : opendmarc Version : 1.3.2-2+deb9u3 CVE ID : CVE-2020-12460 Debian Bug : 966464 It was discovered that OpenDMARC, a milter implementation of DMARC, has improper null termination in the function opendmarc_xml_parse that can result in a one-byte heap overflow in opendmarc_xml when parsing a specially crafted DMARC aggregate report. This can cause remote memory corruption when a '\0' byte overwrites the heap metadata of the next chunk and its PREV_INUSE flag. For Debian 9 stretch, this problem has been fixed in version 1.3.2-2+deb9u3. We recommend that you upgrade your opendmarc packages. For the detailed security status of opendmarc please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/opendmarc Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . OpenDMARC security patch resolves buffer overflow vulnerabilities resulting in memory instability. Update your installations to enhance security.. OpenDMARC Security, Debian Update, Heap Overflow Issue. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 25, 2021 Important Debian LTS
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here