Alerts This Week
Warning Icon 1 535
Alerts This Week
Warning Icon 1 535

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorycriticalman-in-the-middle

SciLinux: SLSA-2017-2998-1 Critical: OpenJDK Issues and Fixes

Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to completely bypass Java sandbox restrictions. (CVE-2017-10285, CVE-2017-10346) * It was discovered that the Kerberos client implementation in the Libraries component of OpenJDK used the sname field from the plain text part rather than encrypted part of t [More...]. Synopsis: Critical: java-1.8.0-openjdk security update Advisory ID: SLSA-2017:2998-1 Issue Date: 2017-10-20 CVE Numbers: CVE-2017-10285 CVE-2017-10346 CVE-2017-10388 CVE-2017-10274 CVE-2017-10349 CVE-2017-10357 CVE-2017-10348 CVE-2017-10347 CVE-2017-10350 CVE-2017-10281 CVE-2017-10295 CVE-2017-10345 CVE-2017-10355 CVE-2017-10356 -- Security Fix(es): * Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to completely bypass Java sandbox restrictions. (CVE-2017-10285, CVE-2017-10346) * It was discovered that the Kerberos client implementation in the Libraries component of OpenJDK used the sname field from the plain text part rather than encrypted part of the KDC reply message. A man-in-the- middle attacker could possibly use this flaw to impersonate Kerberos services to Java applications acting as Kerberos clients. (CVE-2017-10388) * It was discovered that the Security component of OpenJDK generated weak password-based encryption keys used to protect private keys stored in key stores. This made it easier to perform password guessing attacks to decrypt stored keys if an attacker could gain access to a key store. (CVE-2017-10356) * A flaw was found in the Smart Card IO component in OpenJDK. An untrusted Java application or applet could use this flaw tobypass certain Java sandbox restrictions. (CVE-2017-10274) * It was found that the FtpClient implementation in the Networking component of OpenJDK did not set connect and read timeouts by default. A malicious FTP server or a man-in-the-middle attacker could use this flaw to block execution of a Java application connecting to an FTP server. (CVE-2017-10355) * It was found that the HttpURLConnection and HttpsURLConnection classes in the Networking component of OpenJDK failed to check for newline characters embedded in URLs. An attacker able to make a Java application perform an HTTP request using an attacker provided URL could possibly inject additional headers into the request. (CVE-2017-10295) * It was discovered that multiple classes in the JAXP, Serialization, Libraries, and JAX-WS components of OpenJDK did not limit the amount of memory allocated when creating object instances from the serialized form. A specially-crafted input could cause a Java application to use an excessive amount of memory when deserialized. (CVE-2017-10349, CVE-2017-10357, CVE-2017-10347, CVE-2017-10281, CVE-2017-10345, CVE-2017-10348, CVE-2017-10350) Note: If the web browser plug-in provided by the icedtea-web package was installed, the issues exposed via Java applets could have been exploited without user interaction if a user visited a malicious website. -- SL6 x86_64 java-1.8.0-openjdk-1.8.0.151-1.b12.el6_9.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.151-1.b12.el6_9.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.151-1.b12.el6_9.x86_64.rpm java-1.8.0-openjdk-debug-1.8.0.151-1.b12.el6_9.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.151-1.b12.el6_9.x86_64.rpm java-1.8.0-openjdk-demo-debug-1.8.0.151-1.b12.el6_9.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.151-1.b12.el6_9.x86_64.rpm java-1.8.0-openjdk-devel-debug-1.8.0.151-1.b12.el6_9.x86_64.rpm java-1.8.0-openjdk-headless-debug-1.8.0.151-1.b12.el6_9.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.151-1.b12.el6_9.x86_64.rpm java-1.8.0-openjdk-src-debug-1.8.0.151-1.b12.el6_9.x86_64.rpm i386 java-1.8.0-openjdk-1.8.0.151-1.b12.el6_9.i686.rpm java-1.8.0-openjdk-debuginfo-1.8.0.151-1.b12.el6_9.i686.rpm java-1.8.0-openjdk-headless-1.8.0.151-1.b12.el6_9.i686.rpm java-1.8.0-openjdk-debug-1.8.0.151-1.b12.el6_9.i686.rpm java-1.8.0-openjdk-demo-1.8.0.151-1.b12.el6_9.i686.rpm java-1.8.0-openjdk-demo-debug-1.8.0.151-1.b12.el6_9.i686.rpm java-1.8.0-openjdk-devel-1.8.0.151-1.b12.el6_9.i686.rpm java-1.8.0-openjdk-devel-debug-1.8.0.151-1.b12.el6_9.i686.rpm java-1.8.0-openjdk-headless-debug-1.8.0.151-1.b12.el6_9.i686.rpm java-1.8.0-openjdk-src-1.8.0.151-1.b12.el6_9.i686.rpm java-1.8.0-openjdk-src-debug-1.8.0.151-1.b12.el6_9.i686.rpm noarch java-1.8.0-openjdk-javadoc-1.8.0.151-1.b12.el6_9.noarch.rpm java-1.8.0-openjdk-javadoc-debug-1.8.0.151-1.b12.el6_9.noarch.rpm SL7 x86_64 java-1.8.0-openjdk-1.8.0.151-1.b12.el7_4.i686.rpm java-1.8.0-openjdk-1.8.0.151-1.b12.el7_4.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.151-1.b12.el7_4.i686.rpm java-1.8.0-openjdk-debuginfo-1.8.0.151-1.b12.el7_4.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.151-1.b12.el7_4.i686.rpm java-1.8.0-openjdk-headless-1.8.0.151-1.b12.el7_4.x86_64.rpm java-1.8.0-openjdk-accessibility-1.8.0.151-1.b12.el7_4.i686.rpm java-1.8.0-openjdk-accessibility-1.8.0.151-1.b12.el7_4.x86_64.rpm java-1.8.0-openjdk-accessibility-debug-1.8.0.151-1.b12.el7_4.i686.rpm java-1.8.0-openjdk-accessibility-debug-1.8.0.151-1.b12.el7_4.x86_64.rpm java-1.8.0-openjdk-debug-1.8.0.151-1.b12.el7_4.i686.rpm java-1.8.0-openjdk-debug-1.8.0.151-1.b12.el7_4.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.151-1.b12.el7_4.i686.rpm java-1.8.0-openjdk-demo-1.8.0.151-1.b12.el7_4.x86_64.rpm java-1.8.0-openjdk-demo-debug-1.8.0.151-1.b12.el7_4.i686.rpm java-1.8.0-openjdk-demo-debug-1.8.0.151-1.b12.el7_4.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.151-1.b12.el7_4.i686.rpm java-1.8.0-openjdk-devel-1.8.0.151-1.b12.el7_4.x86_64.rpm java-1.8.0-openjdk-devel-debug-1.8.0.151-1.b12.el7_4.i686.rpm java-1.8.0-openjdk-devel-debug-1.8.0.151-1.b12.el7_4.x86_64.rpm java-1.8.0-openjdk-headless-debug-1.8.0.151-1.b12.el7_4.i686.rpm java-1.8.0-openjdk-headless-debug-1.8.0.151-1.b12.el7_4.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.151-1.b12.el7_4.i686.rpm java-1.8.0-openjdk-src-1.8.0.151-1.b12.el7_4.x86_64.rpm java-1.8.0-openjdk-src-debug-1.8.0.151-1.b12.el7_4.i686.rpm java-1.8.0-openjdk-src-debug-1.8.0.151-1.b12.el7_4.x86_64.rpm noarch java-1.8.0-openjdk-javadoc-1.8.0.151-1.b12.el7_4.noarch.rpm java-1.8.0-openjdk-javadoc-debug-1.8.0.151-1.b12.el7_4.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.151-1.b12.el7_4.noarch.rpm java-1.8.0-openjdk-javadoc-zip-debug-1.8.0.151-1.b12.el7_4.noarch.rpm - Scientific Linux Development Team . Important security patch for java-1.8.0-openjdk that resolves various vulnerabilities in OpenJDK elements on SL6.x and SL7.x systems.. OpenJDK Fixes, Java Security Update, Critical OpenJDK Issues, Java Applet Exploits. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 20, 2017 Critical Scientific Linux
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorysecurity updatecritical fix

Scientific Linux SL6.x Critical: OpenJDK Java Security Advisories

Critical: java-1.7.0-openjdk security update. Date: Thu, 21 Jan 2016 16:38:50 +0000 Reply-To: scientific-linux-users@ Sender: Security Errata for Scientific Linux From: Pat Riehecky Subject: Security ERRATA Critical: java-1.7.0-openjdk on SL6.x i386/x86_64 MIME-Version: 1.0 Message-ID: Synopsis: Critical: java-1.7.0-openjdk security update Advisory ID: SLSA-2016:0053-1 Issue Date: 2016-01-21 CVE Numbers: CVE-2015-4871 CVE-2015-7575 CVE-2016-0494 CVE-2016-0402 CVE-2016-0448 CVE-2016-0466 CVE-2016-0483 -- An out-of-bounds write flaw was found in the JPEG image format decoder in the AWT component in OpenJDK. A specially crafted JPEG image could cause a Java application to crash or, possibly execute arbitrary code. An untrusted Java application or applet could use this flaw to bypass Java sandbox restrictions. (CVE-2016-0483) An integer signedness issue was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause the Java Virtual Machine to execute arbitrary code, allowing an untrusted Java application or applet to bypass Java sandbox restrictions. (CVE-2016-0494) It was discovered that the JAXP component in OpenJDK did not properly enforce the totalEntitySizeLimit limit. An attacker able to make a Java application process a specially crafted XML file could use this flaw to make the application consume an excessive amount of memory. (CVE-2016-0466) A flaw was found in the way TLS 1.2 could use the MD5 hash function for signing ServerKeyExchange and Client Authentication packets during a TLS handshake. A man-in-the-middle attacker able to force a TLS connection to use the MD5 hash function could use this flaw to conduct collision attacks to impersonate a TLS server or an authenticated TLS client. (CVE-2015-7575) Multiple flaws were discovered in the Libraries, Networking, and JMX components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain Java sandbox restrictions. (CVE-2015-4871, CVE-2016-0402,CVE-2016-0448) Note: If the web browser plug-in provided by the icedtea-web package was installed, the issues exposed via Java applets could have been exploited without user interaction if a user visited a malicious website. Note: This update also disallows the use of the MD5 hash algorithm in the certification path processing. The use of MD5 can be re-enabled by removing MD5 from the jdk.certpath.disabledAlgorithms security property defined in the java.security file. All running instances of OpenJDK Java must be restarted for the update to take effect. -- SL6 x86_64 java-1.7.0-openjdk-1.7.0.95-2.6.4.0.el6_7.x86_64.rpm java-1.7.0-openjdk-debuginfo-1.7.0.95-2.6.4.0.el6_7.x86_64.rpm java-1.7.0-openjdk-devel-1.7.0.95-2.6.4.0.el6_7.x86_64.rpm java-1.7.0-openjdk-demo-1.7.0.95-2.6.4.0.el6_7.x86_64.rpm java-1.7.0-openjdk-src-1.7.0.95-2.6.4.0.el6_7.x86_64.rpm i386 java-1.7.0-openjdk-1.7.0.95-2.6.4.0.el6_7.i686.rpm java-1.7.0-openjdk-debuginfo-1.7.0.95-2.6.4.0.el6_7.i686.rpm java-1.7.0-openjdk-devel-1.7.0.95-2.6.4.0.el6_7.i686.rpm java-1.7.0-openjdk-demo-1.7.0.95-2.6.4.0.el6_7.i686.rpm java-1.7.0-openjdk-src-1.7.0.95-2.6.4.0.el6_7.i686.rpm noarch java-1.7.0-openjdk-javadoc-1.7.0.95-2.6.4.0.el6_7.noarch.rpm - Scientific Linux Development Team . Urgent vulnerabilities found in java-1.7.0-openjdk on Scientific Linux SL6.x demand swift action to avert potential security breaches.. Java Update, Security Advisory, Critical Fix, OpenJDK Issue, Scientific Linux. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 21, 2016 Critical Scientific Linux
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here