Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderatebuffer overflow

SUSE 2010:002 Moderate: Security Report Fixes Several Minor Issues

To avoid flooding mailing lists with SUSE Security Announcements for minor To avoid flooding mailing lists with SUSE Security Announcements for minor issues, SUSE Security releases weekly summary reports for the low profile issues, SUSE Security releases weekly summary reports for the low profile vulnerability fixes. The SUSE Security Summary Reports do not list or download URLs like the SUSE Secu [More...]. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ______________________________________________________________________________ SUSE Security Summary Report Announcement ID: SUSE-SR:2010:002 Date: Mon, 01 Feb 2010 16:00:00 +0000 Cross-References: CVE-2009-0758, CVE-2009-3940, CVE-2009-4012 CVE-2009-4144, CVE-2009-4145, CVE-2009-4411 Content of this advisory: 1) Solved Security Vulnerabilities: - virtualbox-ose - NetworkManager-gnome - avahi - acl - libthai 2) Pending Vulnerabilities, Solutions, and Work-Arounds: none 3) Authenticity Verification and Additional Information ______________________________________________________________________________ 1) Solved Security Vulnerabilities To avoid flooding mailing lists with SUSE Security Announcements for minor issues, SUSE Security releases weekly summary reports for the low profile vulnerability fixes. The SUSE Security Summary Reports do not list or download URLs like the SUSE Security Announcements that are released for more severe vulnerabilities. Fixed packages for the following incidents are already available on our FTP server and via the YaST Online Update. - virtualbox-ose This update of virtualbox-ose fixes a memory consumption bug in the kernel code that can be used to allocate almost all physical memory (CVE-2009-3940). Affected Products: openSUSE 11.0, 11.1, 11.2 -NetworkManager-gnome nm-applet connected to WPA2 Enterprise networks even if the specified CA certificate file didn't exist (CVE-2009-4144). When editing connections in nm-applet the connection object was exported via DBus disclosing potentially sensitive information to local users (CVE-2009-4145). Affected Products: SLE11, openSUSE 11.0, 11.1, 11.2 - avahi The avahi-daemon reflector could cause packet storms when reflecting legacy unicast mDNS traffic (CVE-2009-0758). Affected Products: SLE10-SP2, SLE10-SP3, SLE11, openSUSE 11.0, 11.1 - acl the getfacl tool followed symbolic links in recursive (-R) mode even if the --physical (-P) option was specified (CVE-2009-4411). Affected Products: SLE11, openSUSE 11.0, 11.1 - libthai very long strings could lead to a heap buffer overflow in libthai (CVE-2009-4012). Affected Products: SLE11, openSUSE 11.0, 11.1, 11.2 ______________________________________________________________________________ 2) Pending Vulnerabilities, Solutions, and Work-Arounds none ______________________________________________________________________________ 3) Authenticity Verification and Additional Information - Announcement authenticity verification: SUSE security announcements are published via mailing lists and on Web sites. The authenticity and integrity of a SUSE security announcement is guaranteed by a cryptographic signature in each announcement. All SUSE security announcements are published with a valid signature. To verify the signature of the announcement, save it as text into a file and run the command gpg --verify replacing with the name of the file containing the announcement. The output for a valid signature looks like: gpg: Signature made using RSA key ID 3D25D3D9 gpg: Good signature from "SuSE Security Team " where is replaced by the date the document was signed. If the security team's key is notcontained in your key ring, you can import it from the first installation CD. To import the key, use the command gpg --import gpg-pubkey-3d25d3d9-36e12d04.asc - Package authenticity verification: SUSE update packages are available on many mirror FTP servers all over the world. While this service is considered valuable and important to the free and open source software community, the authenticity and integrity of a package needs to be verified to ensure that it has not been tampered with. The internal RPM package signatures provide an easy way to verify the authenticity of an RPM package. Use the command rpm -v --checksig to verify the signature of the package, replacing with the filename of the RPM package downloaded. The package is unmodified if it contains a valid signature from This email address is being protected from spambots. You need JavaScript enabled to view it. with the key ID 9C800ACA. This key is automatically imported into the RPM database (on RPMv4-based distributions) and the gpg key ring of 'root' during installation. You can also find it on the first installation CD and included at the end of this announcement. - SUSE runs two security mailing lists to which any interested party may subscribe: This email address is being protected from spambots. You need JavaScript enabled to view it. - General Linux and SUSE security discussion. All SUSE security announcements are sent to this list. To subscribe, send an e-mail to . This email address is being protected from spambots. You need JavaScript enabled to view it. - SUSE's announce-only mailing list. Only SUSE's security announcements are sent to this list. To subscribe, send an e-mail to . ==================================================================== SUSE's security contact is or . The public key is listed below. ==================================================================== . SUSE publishes Security Overview Document 2020:005 tackling slight concerns related to patched flaws across multiple modules..SUSE Security Summary, Package Fixes, Memory Bugs. . LinuxSecurity.com Team

Calendar 2 Feb 01, 2010 SuSE
87
Ls Advisories Debian Esm H240
Price Tag 1security advisoryremote exploitcritical

Debian: DSA 245-1 Critical: DHCP3 Packet Storm Remote Exploit

There is a bug in the dhcrelay causing it to send a continuing packet storm towards the configured DHCP server(s) in case of a malicious BOOTP packet.. - -------------------------------------------------------------------------- Debian Security Advisory DSA 245-1 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Martin Schulze January 28th, 2003 Debian -- Debian security FAQ - -------------------------------------------------------------------------- Package : dhcp3 Vulnerability : ignored counter boundary Problem-Type : remote Debian-specific: no CVE Id : CAN-2003-0039 Florian Lohoff discovered a bug in the dhcrelay causing it to send a continuing packet storm towards the configured DHCP server(s) in case of a malicious BOOTP packet, such as sent from buggy Cisco switches. When the dhcp-relay receives a BOOTP request it forwards the request to the DHCP server using the broadcast MAC address ff:ff:ff:ff:ff:ff which causes the network interface to reflect the packet back into the socket. To prevent loops the dhcrelay checks whether the relay-address is its own, in which case the packet would be dropped. In combination with a missing upper boundary for the hop counter an attacker can force the dhcp-relay to send a continuing packet storm towards the configured dhcp server(s). This patch introduces a new commandline switch ``-c maxcount' and people are advised to start the dhcp-relay with ``dhcrelay -c 10' or a smaller number, which will only create that many packets. The dhcrelay program from the ``dhcp' package does not seem to be affected since DHCP packets are dropped if they were apparently relayed already. For the stable distribution (woody) this problem has been fixed in version 3.0+3.0.1rc9-2.2. The old stable distribution (potato) does not contain dhcp3 packages. For the unstable distribution (sid) this problem has been fixed in version 1.1.2-1. We recommend that you upgrade your dhcp3 packagewhen you are using the dhcrelay server. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.0 alias woody - -------------------------------- Source archives: Size/MD5 checksum: 730 24c46bc59c7b7fbf5af839b1896073cf Size/MD5 checksum: 24457 9d555df929ea70ef2b36f7455298a79f Size/MD5 checksum: 809803 3cc4758e5a59362315393a1874dfcb21 Alpha architecture: Size/MD5 checksum: 416630 397a678e504608e82480b70da257e3de Size/MD5 checksum: 216102 393965c956aa0c61b87830ade40927ef Size/MD5 checksum: 106904 787c1f7ef446485f153fdb5985f57669 Size/MD5 checksum: 287256 9157faf5d681794429640f3c77ef2ae3 Size/MD5 checksum: 526892 48d538b72ff214a8ec5b224f9e4716da ARM architecture: Size/MD5 checksum: 386896 f4f9769ef04b52227b0b1134824a8f58 Size/MD5 checksum: 188652 b82228305af807ba3588ab0aad6d55aa Size/MD5 checksum: 93386 4990ce79c724969a518c8203398c6a36 Size/MD5 checksum: 273362 16e0bd4a19aaabf42f91d62cde3c806f Size/MD5 checksum: 484526 d597e37691b5aba8599fc654354436df Intel IA-32 architecture: Size/MD5 checksum: 375346 27d1ad0d2b6cfbbdebfcdf034edfef0b Size/MD5 checksum: 178596 955644258c1c3447c440ea68240c5595 Size/MD5 checksum: 82090 88d318c70305922de31c6f0eab7db3e6 Size/MD5 checksum: 269360 e87afd18b990a9c16e8768152b05fb11 Size/MD5 checksum: 465170 2bf1b093963bcd214e1edd9a078b7446 Intel IA-64 architecture: Size/MD5 checksum: 550076 a46f9f25e3567e22a55df624559f346e Size/MD5 checksum: 339224 d91056b8739382c06dcad9ed9fdce54d Size/MD5 checksum: 134254 11d223ea9054ad0b19d55add7083c21d Size/MD5 checksum: 348766 e546dac3162fee5eab1328c120bc51c4 Size/MD5 checksum: 701484 80aa1015319366aa8f6fa6c3e7daa088 HP Precision architecture: Size/MD5 checksum: 384876 e971b851045b3399b3280789bfb10dd8 Size/MD5 checksum: 188182 13442ca2429b42ef3aa007e84cb686bd Size/MD5 checksum: 93040 37c5a4ea972f80fc4aae1fa18cce870d Size/MD5 checksum: 274828 4ee56537ce01864eff25c04bf8cbc7cc Size/MD5 checksum: 478030 f5aa250b35b7aba6236e243f81a40571 Motorola 680x0 architecture: Size/MD5 checksum: 364618 a1fc0175cae39bb4b6f8366104cdd027 Size/MD5 checksum: 168548 e619f627bf4dc3502237445b170b9b10 Size/MD5 checksum: 79262 70957f418a8be321b6cd8ed681392daf Size/MD5 checksum: 264246 527734c5a0815888385c8030a0ab8d11 Size/MD5 checksum: 451098 b7a114770edf4846bcc122fa91802a87 Big endian MIPS architecture: Size/MD5 checksum: 397654 5dd77052a1bf96a6919b42abb7d1993d Size/MD5 checksum: 198506 29532f0c0c25cc74db482956a2e17767 Size/MD5 checksum: 94724 9be76951eec5cb400b91b6d2aa3afbc4 Size/MD5 checksum: 281616 d487fea11aa26522ca13252d5a1143f1 Size/MD5 checksum: 496364 ae74e80436ac5a5639d25c813937be4c Little endian MIPS architecture: Size/MD5 checksum: 397210 af17a66c93142f3b37f3ff54a70de6ce Size/MD5 checksum: 197808 f64f4c1cbe51b41a46105fb96afac7f2 Size/MD5 checksum: 94864 2cd66c4b1fad6f8cf76d88fb3d32b64e Size/MD5 checksum: 281570 1913fcf10728ea03dd914aef054b062a Size/MD5 checksum: 496042 9396140993730275d6b8de6e34675f54 PowerPC architecture: Size/MD5 checksum: 375068666bbe22fd67328d8992facd41d1896b Size/MD5 checksum: 178500 ae76150c581357a02d9b7bb8ced0dbdc Size/MD5 checksum: 91100 9a647196076ff0ca93f1972be8e06c96 Size/MD5 checksum: 269858 c7c3f542facc9f807dbbd1a8452cd732 Size/MD5 checksum: 466862 5e4a8282b7befb8471bcaa48d7f7e578 IBM S/390 architecture: Size/MD5 checksum: 374846 b2479d34b339e43b754f856d04fe7c18 Size/MD5 checksum: 177838 29fb48bb7d7df2abf795ba8d18d54dba Size/MD5 checksum: 83068 c693a61e70c3551ff06ebbe3902d77da Size/MD5 checksum: 270776 e518ea7234a90f9ad6775402bd1ebed9 Size/MD5 checksum: 465362 2e5c9c19eec1b2da7723ec841066d91d Sun Sparc architecture: Size/MD5 checksum: 375452 c9bd70d1b1fdf3d46d2d0c3d90afdabe Size/MD5 checksum: 178438 fc7418c8bdc8191c9068544c09095ac0 Size/MD5 checksum: 87346 dc9d3fedf805cb854e883ad054325380 Size/MD5 checksum: 271280 5a063042a2f5700ebd15c86459192761 Size/MD5 checksum: 465524 c7a808f387b4c4c488cba086145d272a These files will probably be moved into the stable distribution on its next revision. - --------------------------------------------------------------------------------- For apt-get: deb Debian -- Security Information stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and . Debian Security Advisory DSA 245-1 Debian Security Information Martin Schulze January 28th, 2003 Deb. there, dhcrelay, causing, continuing, packet, storm, towards, configured. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 28, 2003 Critical Debian
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here