Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorysecurity updatedebian

Debian 11 DLA-4068-1 Critical: php-nesbot-carbon Arbitrary Include Threat

Arbitrary file include in Carbon::setLocale has been fixed in Carbon, a PHP API extension for DateTime. For Debian 11 bullseye, this problem has been fixed in version . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4068-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Adrian Bunk February 25, 2025 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : php-nesbot-carbon Version : 2.32.2-1+deb11u1 CVE ID : CVE-2025-22145 Debian Bug : 1092680 Arbitrary file include in Carbon::setLocale has been fixed in Carbon, a PHP API extension for DateTime. For Debian 11 bullseye, this problem has been fixed in version 2.32.2-1+deb11u1. We recommend that you upgrade your php-nesbot-carbon packages. For the detailed security status of php-nesbot-carbon please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/php-nesbot-carbon Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Ubuntu LTS Notice ULA-5092-2 presents a solution for Carbon unrestricted file upload; suggested updates explained.. Debian LTS, php-nesbot-carbon, security advisory, file include, upgrade instructions. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 25, 2025 Critical Debian LTS
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorydenial of servicehigh severity

Gentoo: GLSA-202003-38 High: Imagick Arbitrary Code Execution Threat

A vulnerability in Imagick PHP extension might allow an attacker to execute arbitrary code.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 202003-38 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: PECL Imagick: Arbitrary code execution Date: March 19, 2020 Bugs: #687030 ID: 202003-38 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= A vulnerability in Imagick PHP extension might allow an attacker to execute arbitrary code. Background ========= Imagick is a PHP extension to create and modify images using the ImageMagick library. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-php/pecl-imagick < 3.4.4 > = 3.4.4 Description ========== An out-of-bounds write vulnerability was discovered in the Imagick PHP extension. Impact ===== A remote attacker, able to upload specially crafted images which will get processed by Imagick, could possibly execute arbitrary code with the privileges of the process or cause a Denial of Service condition. Workaround ========= There is no known workaround at this time. Resolution ========= All Imagick PHP extension users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =dev-php/pecl-imagick-3.4.4" References ========= [ 1 ] CVE-2019-11037 https://nvd.nist.gov/vuln/detail/CVE-2019-11037 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/202003-38 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org. License ====== Copyright 2020 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5/ . Gentoo Linux Security Advisory GLSA 202103-45 reveals a critical vulnerability in PECL Memcached that permits unauthorized access to sensitive data.. Gentoo Imagick Code Execution, PHP Extension Flaw, High Severity Advisory. . LinuxSecurity.com Team

Calendar 2 Mar 19, 2020 Gentoo
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedorabuffer overflow

Fedora 24: php-pecl-http Update - Critical Buffer Overflow Fix

**Version 2.5.6** * Fix php-bug php#71719: Buffer overflow in HTTP url parsing functions (Mike, rc0r) * Fix gh-issue #28: Possible null pointer dereference in php_http_url_mod() (rc0r) * Fix gh-issue #22: Fix PHP5 config.w32 (Jan Ehrhardt) * Fix gh-issue #20: setSslOptions notice with curl 7.43 (Mike, Vitaliy Demidov). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-9d6b6d0689 2016-03-27 00:00:51.401879 -------------------------------------------------------------------------------- Name : php-pecl-http Product : Fedora 24 Version : 2.5.6 Release : 1.fc24 URL : Summary : Extended HTTP support Description : The HTTP extension aims to provide a convenient and powerful set of functionality for major applications. The HTTP extension eases handling of HTTP URLs, dates, redirects, headersand messages in a HTTP context (both incoming and outgoing). It also provides means for client negotiation of preferred language and charset, as well as a convenient way to exchange arbitrary data with caching and resuming capabilities. Also provided is a powerful request and parallel interface. Version 2 is completely incompatible to previous version. Documentation : https://mdref.m6w6.name/http -------------------------------------------------------------------------------- Update Information: **Version 2.5.6** * Fix php-bug php#71719: Buffer overflow in HTTP url parsing functions (Mike, rc0r) * Fix gh-issue #28: Possible null pointer dereference in php_http_url_mod() (rc0r) * Fix gh-issue #22: Fix PHP5 config.w32 (Jan Ehrhardt) * Fix gh-issue #20: setSslOptions notice with curl 7.43 (Mike, Vitaliy Demidov) -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update php-pecl-http' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the FedoraProject GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . This release focuses on correcting security vulnerabilities by resolving memory corruption and uninitialized pointer problems within the php-pecl-http module for Fedora 24.. php pecl http buffer overflow fix fedora. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 27, 2016 Critical Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here