Alerts This Week
Warning Icon 1 560
Alerts This Week
Warning Icon 1 560

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryimportantred hat enterprise linux

Red Hat Enterprise Linux 8.2 RHSA-2022:0291-01 Important: Parfait Log4j RCE

An update for the parfait:0.5 module is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: parfait:0.5 security update Advisory ID: RHSA-2022:0291-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:0291 Issue date: 2022-01-26 CVE Names: CVE-2021-4104 CVE-2022-23302 CVE-2022-23305 CVE-2022-23307 ==================================================================== 1. Summary: An update for the parfait:0.5 module is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream EUS (v. 8.2) - noarch 3. Description: Parfait is a Java performance monitoring library that collects metrics and exposes them through a variety of outputs. It provides APIs for extracting performance metrics from the JVM and other sources. It interfaces to Performance Co-Pilot (PCP) using the Memory Mapped Value (MMV) machinery for extremely lightweight instrumentation. Security Fix(es): * log4j: SQL injection in Log4j 1.x when application is configured to use JDBCAppender (CVE-2022-23305) * log4j: Unsafe deserialization flaw in Chainsaw log viewer (CVE-2022-23307) * log4j: Remote code execution in Log4j 1.x when application is configured to use JMSAppender (CVE-2021-4104) * log4j: Remote code execution in Log4j 1.x when applicationis configured to use JMSSink (CVE-2022-23302) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2031667 - CVE-2021-4104 log4j: Remote code execution in Log4j 1.x when application is configured to use JMSAppender 2041949 - CVE-2022-23302 log4j: Remote code execution in Log4j 1.x when application is configured to use JMSSink 2041959 - CVE-2022-23305 log4j: SQL injection in Log4j 1.x when application is configured to use JDBCAppender 2041967 - CVE-2022-23307 log4j: Unsafe deserialization flaw in Chainsaw log viewer 6. Package List: Red Hat Enterprise Linux AppStream EUS (v.8.2): Source: parfait-0.5.4-4.module+el8.2.0+13999+fa2fb353.src.rpm si-units-0.6.5-2.module+el8+2463+615f6896.src.rpm unit-api-1.0-5.module+el8+2463+615f6896.src.rpm uom-lib-1.0.1-6.module+el8+2463+615f6896.src.rpm uom-parent-1.0.3-3.module+el8+2463+615f6896.src.rpm uom-se-1.0.4-3.module+el8+2463+615f6896.src.rpm uom-systems-0.7-1.module+el8+2463+615f6896.src.rpm noarch: parfait-0.5.4-4.module+el8.2.0+13999+fa2fb353.noarch.rpm parfait-examples-0.5.4-4.module+el8.2.0+13999+fa2fb353.noarch.rpm parfait-javadoc-0.5.4-4.module+el8.2.0+13999+fa2fb353.noarch.rpm pcp-parfait-agent-0.5.4-4.module+el8.2.0+13999+fa2fb353.noarch.rpm si-units-0.6.5-2.module+el8+2463+615f6896.noarch.rpm si-units-javadoc-0.6.5-2.module+el8+2463+615f6896.noarch.rpm unit-api-1.0-5.module+el8+2463+615f6896.noarch.rpm unit-api-javadoc-1.0-5.module+el8+2463+615f6896.noarch.rpm uom-lib-1.0.1-6.module+el8+2463+615f6896.noarch.rpm uom-lib-javadoc-1.0.1-6.module+el8+2463+615f6896.noarch.rpm uom-parent-1.0.3-3.module+el8+2463+615f6896.noarch.rpm uom-se-1.0.4-3.module+el8+2463+615f6896.noarch.rpm uom-se-javadoc-1.0.4-3.module+el8+2463+615f6896.noarch.rpm uom-systems-0.7-1.module+el8+2463+615f6896.noarch.rpm uom-systems-javadoc-0.7-1.module+el8+2463+615f6896.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2021-4104 https://access.redhat.com/security/cve/CVE-2022-23302 https://access.redhat.com/security/cve/CVE-2022-23305 https://access.redhat.com/security/cve/CVE-2022-23307 https://access.redhat.com/security/updates/classification#important https://access.redhat.com/security/vulnerabilities/RHSB-2021-009 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYfGCstzjgjWX9erEAQiUxw//S5hSjsz3pQC3KoSelkCnB+ypLxHtPi5w xkOYSwGjYdEEvd3aiG481BNAdJnA49YlhzG4oeXF/R6hkOPIrmOnEjImuV1izeTf Xj2mYiVTe0G0I6sjmELj8nLtkEN/ZxQ6BodmVXvP8daup8WkS3nbPMev7yfh+hWV F5RMfngonWLDbg8CM/OHmuRiUz5mx4PbdvEsTYH0xDYMrNY3Qa3In7Dhjrb76cS+ e/EKwUc53Cdvugbm64f5u8Y02qQB4m8eBwPP9wx0DfUfhLSOD/GXRefnY+npjBj5 C/Wfcc8mD5Jg8Vnr/wm3M3jNaANzFN+SQ8w4hVTElPtRzHseQ+y31CumCYLrbsDP 8QPQisamigD5owzGHasy9Dk6abe7qt635ErU9XCBVR7QEYK/HfKSc0VeuUR2TOTd h/yE8WU9TvUPFlavdo0l0PYq8NMkLmR1HhuW9URSoiIwC3q791p3QxLShEbvxH2+ UxIJWOufMX98m2Saaye//9G68iQgjUd8FRaV7Z2La7qVgG9o9/ZtnjuAEaJbW5fi wXSS74Ex8AAMQ1KPpO8U6HzVU91O8Z1WnoxVKvbxIbRDVFRpM2G38O8G5oHzAdZ3 5yqfYgkIM5xCv9Odcoe/e/HxCZYp2q+di9K1mQceTRaOc/WvIG3QC7V61FDAwPbY dbOVG0oan7U=6pMI -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Crucial safety enhancement for Red Hat's parfait:0.5 component, tackling several significant security flaws.. Red Hat Security Advisory, Parfait Module Update, Log4j Security Issues. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 26, 2022 Important Red Hat
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorycriticalremote code execution

Red Hat 8.1 RHSA-2022-0294-04 Critical: Parfait RCE Security Update

An update for the parfait:0.5 module is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: parfait:0.5 security update Advisory ID: RHSA-2022:0294-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:0294 Issue date: 2022-01-26 CVE Names: CVE-2021-4104 CVE-2022-23302 CVE-2022-23305 CVE-2022-23307 ==================================================================== 1. Summary: An update for the parfait:0.5 module is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream E4S (v. 8.1) - noarch 3. Description: Parfait is a Java performance monitoring library that collects metrics and exposes them through a variety of outputs. It provides APIs for extracting performance metrics from the JVM and other sources. It interfaces to Performance Co-Pilot (PCP) using the Memory Mapped Value (MMV) machinery for extremely lightweight instrumentation. Security Fix(es): * log4j: SQL injection in Log4j 1.x when application is configured to use JDBCAppender (CVE-2022-23305) * log4j: Unsafe deserialization flaw in Chainsaw log viewer (CVE-2022-23307) * log4j: Remote code execution in Log4j 1.x when application is configured to use JMSAppender (CVE-2021-4104) * log4j: Remote code execution in Log4j1.x when application is configured to use JMSSink (CVE-2022-23302) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2031667 - CVE-2021-4104 log4j: Remote code execution in Log4j 1.x when application is configured to use JMSAppender 2041949 - CVE-2022-23302 log4j: Remote code execution in Log4j 1.x when application is configured to use JMSSink 2041959 - CVE-2022-23305 log4j: SQL injection in Log4j 1.x when application is configured to use JDBCAppender 2041967 - CVE-2022-23307 log4j: Unsafe deserialization flaw in Chainsaw log viewer 6. Package List: Red Hat Enterprise Linux AppStream E4S (v.8.1): Source: parfait-0.5.4-4.module+el8.1.0+14000+df5fdac7.src.rpm si-units-0.6.5-2.module+el8+2463+615f6896.src.rpm unit-api-1.0-5.module+el8+2463+615f6896.src.rpm uom-lib-1.0.1-6.module+el8+2463+615f6896.src.rpm uom-parent-1.0.3-3.module+el8+2463+615f6896.src.rpm uom-se-1.0.4-3.module+el8+2463+615f6896.src.rpm uom-systems-0.7-1.module+el8+2463+615f6896.src.rpm noarch: parfait-0.5.4-4.module+el8.1.0+14000+df5fdac7.noarch.rpm parfait-examples-0.5.4-4.module+el8.1.0+14000+df5fdac7.noarch.rpm parfait-javadoc-0.5.4-4.module+el8.1.0+14000+df5fdac7.noarch.rpm pcp-parfait-agent-0.5.4-4.module+el8.1.0+14000+df5fdac7.noarch.rpm si-units-0.6.5-2.module+el8+2463+615f6896.noarch.rpm si-units-javadoc-0.6.5-2.module+el8+2463+615f6896.noarch.rpm unit-api-1.0-5.module+el8+2463+615f6896.noarch.rpm unit-api-javadoc-1.0-5.module+el8+2463+615f6896.noarch.rpm uom-lib-1.0.1-6.module+el8+2463+615f6896.noarch.rpm uom-lib-javadoc-1.0.1-6.module+el8+2463+615f6896.noarch.rpm uom-parent-1.0.3-3.module+el8+2463+615f6896.noarch.rpm uom-se-1.0.4-3.module+el8+2463+615f6896.noarch.rpm uom-se-javadoc-1.0.4-3.module+el8+2463+615f6896.noarch.rpm uom-systems-0.7-1.module+el8+2463+615f6896.noarch.rpm uom-systems-javadoc-0.7-1.module+el8+2463+615f6896.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2021-4104 https://access.redhat.com/security/cve/CVE-2022-23302 https://access.redhat.com/security/cve/CVE-2022-23305 https://access.redhat.com/security/cve/CVE-2022-23307 https://access.redhat.com/security/updates/classification#important https://access.redhat.com/security/vulnerabilities/RHSB-2021-009 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYfGCqtzjgjWX9erEAQjUug/8DD2f6quqR7hfUDqi7m1j+YQCc7Bz5V8N Z6Vz2MC/q8cGJWlEt/3gDi+LFOtHWzHOthZJA+35+Za+9KPJ++K0IP2OWxes3krE jRUtI84WH7l+nJre/9AyN9T5erSNHzU0euUM06xIk5pDcxTZhXAn9QZ/ohQ25W6N 2CimKZnPdUnD47xVu/bhdXa2DQHXhLhiyGGjhTlw1s9FU5D0KQJfME7S/DwLQRFi GEtz5/PBoGWmSOI4ujVfjLepi5Z6baD8ooyV4EuuUmRo6oKbsigubd2esdswz3y3 gifsn76aiSmzBA1Tjl+kFlM9cp0HNMSv51/qgJ/FbMiffUnLKN/6ZmQrlg7HozgA tzBa8Houe5UT5sNvPko9v9+iYPEUu3GH2xMaBfvZXA39dKhMZzUEK+C9tt+0vpyX LGInFg+igPleAdMbI+bpAYvMBVfx2Ze8Of1ZrJBS923Z+QRdlAxVdCX4zRdRaXnH +TjgVHCE9ossvkHFKIGJEsiAuXeYc6ejRikIObqJXO5sMzt5uw9K2w6XMaSpg05o 4LzmKnDLwVASdZzqGb7FQOroWHLNqOGg9PCKEVzsYSlPazSP41IKl8arrIUa7J/i 76iKxwSz3L6TvvITZotBtqfAQYQF46C9rTP5dqJD6uGcx0CBUnTD65ZRnrsb/T6S narjY5Zv2pE=5byM -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Ubuntu releases a patch for kernel:4.18 variant addressing critical security flaws, strengthening overall protection.. Parfait RCE Alert, Red Hat Enterprise Updates, Remote Code Execution, Critical Security Fixes, Parfait Module Security. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 26, 2022 Important Red Hat
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here