Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorysoftware updatekdegraphics

SciLinux: 2007-11-12 Important kdegraphics Update for PDF Threats

Important: kdegraphics security update. Date: Tue, 13 Nov 2007 17:09:14 -0600 Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for kdegraphics on SL5.x, SL4.x i386/x86_64 Comments: To: This email address is being protected from spambots. You need JavaScript enabled to view it. Synopsis: Important: kdegraphics security update Issue date: 2007-11-12 CVE Names: CVE-2007-4352 CVE-2007-5392 CVE-2007-5393 Alin Rad Pop discovered several flaws in the handling of PDF files. An attacker could create a malicious PDF file that would cause kpdf to crash, or potentially execute arbitrary code when opened. (CVE-2007-4352, CVE-2007-5392, CVE-2007-5393 SL 4.x SRPMS: kdegraphics-3.3.1-6.src.rpm i386: kdegraphics-3.3.1-6.i386.rpm kdegraphics-devel-3.3.1-6.i386.rpm x86_64: kdegraphics-3.3.1-6.x86_64.rpm kdegraphics-devel-3.3.1-6.x86_64.rpm SL 5.x SRPMS: kdegraphics-3.5.4-5.el5_1.src.rpm i386: kdegraphics-3.5.4-5.el5.i386.rpm kdegraphics-devel-3.5.4-5.el5.i386.rpm x86_64: kdegraphics-3.5.4-5.el5.x86_64.rpm kdegraphics-devel-3.5.4-5.el5.i386.rpm kdegraphics-devel-3.5.4-5.el5.x86_64.rpm -Connie Sieh -Troy Dawson . Crucial patch released for kdegraphics addressing vulnerabilities in PDF processing for Scientific Linux. More information below.. KDEGraphics Security Update, Scientific Linux Security, PDF Handling Flaw. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Nov 13, 2007 Important Scientific Linux
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorycriticalapplication crash

SciLinux: SL5.x poppler Critical Security Update for PDF Issues

Important: poppler security update. Date: Tue, 13 Nov 2007 17:00:23 -0600 Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for poppler on SL5.x i386/x86_64 Comments: To: This email address is being protected from spambots. You need JavaScript enabled to view it. Synopsis: Important: poppler security update Issue date: 2007-11-07 CVE Names: CVE-2007-4352 CVE-2007-5392 CVE-2007-5393 Alin Rad Pop discovered several flaws in the handling of PDF files. An attacker could create a malicious PDF file that would cause an application linked with poppler to crash, or potentially execute arbitrary code when opened. (CVE-2007-4352, CVE-2007-5392, CVE-2007-5393) SL 5.x SRPMS: poppler-0.5.4-4.3.el5_1.src.rpm i386: poppler-0.5.4-4.3.el5.i386.rpm poppler-devel-0.5.4-4.3.el5.i386.rpm poppler-utils-0.5.4-4.3.el5.i386.rpm x86_64: poppler-0.5.4-4.3.el5.i386.rpm poppler-0.5.4-4.3.el5.x86_64.rpm poppler-devel-0.5.4-4.3.el5.i386.rpm poppler-devel-0.5.4-4.3.el5.x86_64.rpm poppler-utils-0.5.4-4.3.el5.x86_64.rpm -Connie Sieh -Troy Dawson . Crucial poppler security patch released to fix severe PDF vulnerabilities in the Scientific Linux platform.. poppler security update, scientific linux, pdf security flaws, application crash, security advisory. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 13, 2007 Critical Scientific Linux
Banner 1 1028x280 1708121660 1771599717
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentoocode execution

Gentoo GLSA-200602-12 Alert: Risk of Heap Overflow in GPdf Detected

GPdf includes vulnerable Xpdf code to handle PDF files, making it vulnerable to the execution of arbitrary code.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200602-12 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: GPdf: Heap overflows in included Xpdf code Date: February 21, 2006 Bugs: #121511 ID: 200602-12 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= GPdf includes vulnerable Xpdf code to handle PDF files, making it vulnerable to the execution of arbitrary code. Background ========= GPdf is a Gnome PDF viewer. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-text/gpdf < 2.10.0-r4 > = 2.10.0-r4 Description ========== Dirk Mueller found a heap overflow vulnerability in the XPdf codebase when handling splash images that exceed size of the associated bitmap. Impact ===== An attacker could entice a user to open a specially crafted PDF file with GPdf, potentially resulting in the execution of arbitrary code with the rights of the user running the affected application. Workaround ========= There is no known workaround at this time. Resolution ========= All GPdf users should upgrade to the latest version. # emerge --sync # emerge --ask --oneshot --verbose "> =app-text/gpdf-2.10.0-r4" References ========= [ 1 ] CVE-2006-0301 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200602-12 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2006 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.0/ . Warning regarding GPdf flaw in Gentoo: potential heap overflow within Xpdf could allow for execution of arbitrary code.. GPdf Security Alert, Heap Overflow Gentoo, PDF Vulnerability Fix, Code Execution Risk. . LinuxSecurity.com Team

Calendar 2 Feb 21, 2006 Gentoo
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hat Linuxcritical

Red Hat Linux 7.3: RHSA-2003:037-09 Critical: Xpdf Arbitrary Code Exec

Updated Xpdf packages are now available that fix a vulnerability in which a maliciously-crafted pdf document could run arbitrary code.. ` --------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: Updated Xpdf packages fix security vulnerability Advisory ID: RHSA-2003:037-09 Issue date: 0000-01-01 Updated on: 2003-02-06 Product: Red Hat Linux Keywords: Cross references: Obsoletes: RHSA-2000:060 CVE Names: CAN-2002-1384 --------------------------------------------------------------------- 1. Topic: Updated Xpdf packages are now available that fix a vulnerability in which a maliciously-crafted pdf document could run arbitrary code. 2. Relevant releases/architectures: Red Hat Linux 6.2 - i386 Red Hat Linux 7.0 - i386 Red Hat Linux 7.1 - i386 Red Hat Linux 7.2 - i386, ia64 Red Hat Linux 7.3 - i386 Red Hat Linux 8.0 - i386 3. Problem description: Xpdf is a viewer for Portable Document Format (PDF) files. During an audit of CUPS, a printing system, Zen Parsec found an integer overflow vulnerability in the pdftops filter. Since the code for pdftops is taken from the Xpdf project, all versions of Xpdf including 2.01 are also vulnerable to this issue. An attacker could create a PDF file that could execute arbitrary code. This could would have the same access privileges as the user who viewed the file with Xpdf. All users of Xpdf are advised to upgrade to these erratum packages. For Red Hat Linux 8.0 we have included new packages based on Xpdf 1.01 with a patch to correct this issue. For Red Hat Linux 7.0, 7.1, 7.2, and 7.3 we have upgraded Xpdf to version 1.00 with a patch to correct this issue. For Red Hat Linux 6.2 we have upgraded Xpdf to version 0.92 with a patch to correct this issue. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. To update all RPMs for your particulararchitecture, run: rpm -Fvh [filenames] where [filenames] is a list of the RPMs you wish to upgrade. Only those RPMs which are currently installed will be updated. Those RPMs which are not installed but included in the list will not be updated. Note that you can also use wildcards (*.rpm) if your current directory *only* contains the desired RPMs. Please note that this update is also available via Red Hat Network. Many people find this an easier way to apply updates. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. 5. RPMs required: Red Hat Linux 6.2: SRPMS: i386: Red Hat Linux 7.0: SRPMS: i386: Red Hat Linux 7.1: SRPMS: i386: Red Hat Linux 7.2: SRPMS: i386: ia64: Red Hat Linux 7.3: SRPMS: i386: Red Hat Linux 8.0: SRPMS: i386: 6. Verification: MD5 sum Package Name -------------------------------------------------------------------------- 14f5a760b10a2022fe11b13a608679e4 6.2/en/os/SRPMS/xpdf-0.92-1.62.0.src.rpm 84273042eac769bca8e0ae41e40cbb51 6.2/en/os/i386/xpdf-0.92-1.62.0.i386.rpm 2ec914d67d16b66eb4777793c4927d2b 7.0/en/os/SRPMS/xpdf-0.92-2.70.0.src.rpm e9f8f9b571951d832dcfe6310c222600 7.0/en/os/i386/xpdf-0.92-2.70.0.i386.rpm 777407e0f43e7586f4ef22681eb5311b 7.1/en/os/SRPMS/xpdf-0.92-4.71.0.src.rpm 69f703be285030506d5775c7e258353e 7.1/en/os/i386/xpdf-0.92-4.71.0.i386.rpm 6aef839487e9ef365c8a1e083cdb8d40 7.2/en/os/SRPMS/xpdf-0.92-8.src.rpm a5b8632b5e3fdae729fd138c79511f37 7.2/en/os/i386/xpdf-0.92-8.i386.rpm 9833d7aaa358bf91daac2927d85ecca4 7.2/en/os/ia64/xpdf-0.92-8.ia64.rpm d3f8e5d7bbfe3c10c924b8e8e2c855e2 7.3/en/os/SRPMS/xpdf-1.00-5.src.rpm 970dcce631dd221352e4079de6fc8cc8 7.3/en/os/i386/xpdf-1.00-5.i386.rpm 1281db16a674bbba70a40f22b8da44c1 7.3/en/os/i386/xpdf-chinese-simplified-1.00-5.i386.rpm f9ad4618251a7aaabc62767dda2691777.3/en/os/i386/xpdf-chinese-traditional-1.00-5.i386.rpm c796d0feb9f67344104393c82c4c707c 7.3/en/os/i386/xpdf-japanese-1.00-5.i386.rpm 8313eca768d1741372b18a304400bec9 7.3/en/os/i386/xpdf-korean-1.00-5.i386.rpm d9e8a55e8fc1a1c2accf738372f541f1 8.0/en/os/SRPMS/xpdf-1.01-10.src.rpm 5ff0fab12ef736f60e9d9608a4c17d59 8.0/en/os/i386/xpdf-1.01-10.i386.rpm b175f4484b7b652164b4065b9c04f700 8.0/en/os/i386/xpdf-chinese-simplified-1.01-10.i386.rpm b79bb5155ef492835453dd0eb07af345 8.0/en/os/i386/xpdf-chinese-traditional-1.01-10.i386.rpm 15058d3a0a53536f6300d4e5c52c00b1 8.0/en/os/i386/xpdf-japanese-1.01-10.i386.rpm 028755012a882c6ed4024b7b4c601911 8.0/en/os/i386/xpdf-korean-1.01-10.i386.rpm These packages are GPG signed by Red Hat, Inc. for security. Our key is available at About You can verify each package with the following command: rpm --checksig -v If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command: md5sum 7. References: CVE -CVE-2002-1384 8. Contact: The Red Hat security contact is . More contact details at All Red Hat products Copyright 2003 Red Hat, Inc. _______________________________________________ Red Hat-watch-list mailing list To unsubscribe, visit: `. Recently released updates for Xpdf components by Red Hat aim to address possible vulnerabilities related to arbitrary code execution when processing PDF files.. RedHat Xpdf Security Advisory, Code Execution Risk, PDF Vulnerability Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 06, 2003 Critical Red Hat
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here