Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
217
Ls Advisories Oracle Esm H240
Price Tag 1security advisoryupdatesecurity fix

Oracle Linux 7: ELSA-2024-4222 Important PKI-Core Security Update

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2024-4222 http://linux.oracle.com/errata/ELSA-2024-4222.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: aarch64: pki-base-10.5.18-32.el7_9.noarch.rpm pki-base-java-10.5.18-32.el7_9.noarch.rpm pki-ca-10.5.18-32.el7_9.noarch.rpm pki-kra-10.5.18-32.el7_9.noarch.rpm pki-server-10.5.18-32.el7_9.noarch.rpm pki-symkey-10.5.18-32.el7_9.aarch64.rpm pki-tools-10.5.18-32.el7_9.aarch64.rpm pki-javadoc-10.5.18-32.el7_9.noarch.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates//pki-core-10.5.18-32.el7_9.src.rpm Related CVEs: CVE-2023-4727 Description of changes: [10.5.18-32] - ########################################################################## - # RHEL 7.9 (Async Security Update CY24Q2.4): - ########################################################################## - Updated nspr-devel and nss-devel build requirements as well as nss and nss-tools runtime requirements (mharmsen) - Updated jss dependencies (mharmsen) - Added git build dependency (mharmsen) - Additional trivial fix (jmagne) - RHEL-9917 - EMBARGOED CVE-2023-4727 pki-core: dogtag ca: token authentication bypass vulnerability [rhel-7.9.z] (jmagne) - RHEL-24339 - pki-core - PrettyPrintCert does not properly translate AIA information into a readable format [RHEL 7.9.z] (mfargett) - RHEL-26881 - Fix additional OID mappings [RHEL 7.9.z] (mfargett) - ########################################################################## - # RHCS 9.7 (Async Security Update CY24Q2.4): - ########################################################################## - Bug 2047831 - Coolkey Hardcoded RSA Max Key Size [RHCS 9.7.z] (jmagne) - Bug 2121463 - Add Secure Channel Support for AES-256 Keys [RHCS 9.7.z] (jmagne) - Bug 2177785 - TPS missing Host header field in HTTP/1.1 request message [RHCS 9.7.z] (mfargett) - Bug 2180920 - add AES support for TMS server-sidekeygen on latest HSM / FIPS environment [RHCS 9.7.z] (jmagne) - Bug 2233158 - Make key wrapping algorithm configurable between AES-KWP and AES-CBC [RHCS 9.7.z] (jmagne) - Bug 2253682 - pkidestroy log keeps HSM token password [RHCS 9.7.z] (mfargett, jmagne) - Bug 2265180 - Add Support for Symmetric Key Rollover [RHCS 9.7.z] (jmagne) - Bug 2280722 - Shared token is not generated for TPS and TKS during install despite adding pki_import_shared_secret=True param at install [RHCS 9.7.z] (jmagne) [10.5.18-31] - ########################################################################## - # RHEL 7.9 (Async Security Update CY24Q2.3): - ########################################################################## - Updated nspr-devel and nss-devel build requirements as well as nss and nss-tools runtime requirements (mharmsen) - Updated jss dependencies (mharmsen) - Added git build dependency (mharmsen) - Additional trivial fix (jmagne) - RHEL-9917 - EMBARGOED CVE-2023-4727 pki-core: dogtag ca: token authentication bypass vulnerability [rhel-7.9.z] (jmagne) - RHEL-24339 - pki-core - PrettyPrintCert does not properly translate AIA information into a readable format [RHEL 7.9.z] (mfargett) - RHEL-26881 - Fix additional OID mappings [RHEL 7.9.z] (mfargett) - ########################################################################## - # RHCS 9.7 (Async Security Update CY24Q2.3): - ########################################################################## - Bug 2047831 - Coolkey Hardcoded RSA Max Key Size [RHCS 9.7.z] (jmagne) - Bug 2121463 - Add Secure Channel Support for AES-256 Keys [RHCS 9.7.z] (jmagne) - Bug 2177785 - TPS missing Host header field in HTTP/1.1 request message [RHCS 9.7.z] (mfargett) - Bug 2180920 - add AES support for TMS server-side keygen on latest HSM / FIPS environment [RHCS 9.7.z] (jmagne) - Bug 2233158 - Make key wrapping algorithm configurable between AES-KWP and AES-CBC [RHCS 9.7.z] (jmagne) - Bug 2253682 - pkidestroy log keeps HSM token password [RHCS 9.7.z] (mfargett,jmagne) - Bug 2265180 - Add Support for Symmetric Key Rollover [RHCS 9.7.z] (jmagne) - Bug 2280722 - Shared token is not generated for TPS and TKS during install despite adding pki_import_shared_secret=True param at install [RHCS 9.7.z] (jmagne) [10.5.18-30] - ########################################################################## - # RHEL 7.9 (Async Security Update CY24Q2.2): - ########################################################################## - Updated nspr-devel and nss-devel build requirements as well as nss and nss-tools runtime requirements (mharmsen) - Updated jss dependencies (mharmsen) - Added git build dependency (mharmsen) - Additional trivial fix (jmagne) - RHEL-9917 - EMBARGOED CVE-2023-4727 pki-core: dogtag ca: token authentication bypass vulnerability [rhel-7.9.z] (jmagne) - RHEL-24339 - pki-core - PrettyPrintCert does not properly translate AIA information into a readable format [RHEL 7.9.z] (mfargett) - RHEL-26881 - Fix additional OID mappings [RHEL 7.9.z] (mfargett) - ########################################################################## - # RHCS 9.7 (Async Security Update CY24Q2.2): - ########################################################################## - Bug 2047831 - Coolkey Hardcoded RSA Max Key Size [RHCS 9.7.z] (jmagne) - Bug 2121463 - Add Secure Channel Support for AES-256 Keys [RHCS 9.7.z] (jmagne) - Bug 2177785 - TPS missing Host header field in HTTP/1.1 request message [RHCS 9.7.z] (mfargett) - Bug 2180920 - add AES support for TMS server-side keygen on latest HSM / FIPS environment [RHCS 9.7.z] (jmagne) - Bug 2233158 - Make key wrapping algorithm configurable between AES-KWP and AES-CBC [RHCS 9.7.z] (jmagne) - Bug 2253682 - pkidestroy log keeps HSM token password [RHCS 9.7.z] (mfargett, jmagne) - Bug 2265180 - Add Support for Symmetric Key Rollover [RHCS 9.7.z] (jmagne) - Bug 2280722 - Shared token is not generated for TPS and TKS during install despite adding pki_import_shared_secret=True param at install [RHCS 9.7.z](jmagne) [10.5.18-29] - ########################################################################## - # RHEL 7.9 (Async Security Update CY24Q2.1): - ########################################################################## - Updated nspr-devel and nss-devel build requirements as well as nss and nss-tools runtime requirements (mharmsen) - Updated jss dependencies (mharmsen) - Added git build dependency (mharmsen) - Additional trivial fix (jmagne) - RHEL-9917 - EMBARGOED CVE-2023-4727 pki-core: dogtag ca: token authentication bypass vulnerability [rhel-7.9.z] (jmagne) - RHEL-24339 - pki-core - PrettyPrintCert does not properly translate AIA information into a readable format [RHEL 7.9.z] (mfargett) - RHEL-26881 - Fix additional OID mappings [RHEL 7.9.z] (mfargett) - ########################################################################## - # RHCS 9.7 (Async Security Update CY24Q2.1): - ########################################################################## - Bug 2047831 - Coolkey Hardcoded RSA Max Key Size [RHCS 9.7.z] (jmagne) - Bug 2121463 - Add Secure Channel Support for AES-256 Keys [RHCS 9.7.z] (jmagne) - Bug 2177785 - TPS missing Host header field in HTTP/1.1 request message [RHCS 9.7.z] (mfargett) - Bug 2180920 - add AES support for TMS server-side keygen on latest HSM / FIPS environment [RHCS 9.7.z] (jmagne) - Bug 2233158 - Make key wrapping algorithm configurable between AES-KWP and AES-CBC [RHCS 9.7.z] (jmagne) - Bug 2253682 - pkidestroy log keeps HSM token password [RHCS 9.7.z] (mfargett, jmagne) - Bug 2265180 - Add Support for Symmetric Key Rollover [RHCS 9.7.z] (jmagne) - Bug 2280722 - Shared token is not generated for TPS and TKS during install despite adding pki_import_shared_secret=True param at install [RHCS 9.7.z] (jmagne) [10.5.18-28] - ########################################################################## - # RHEL 7.9 (Async Security Update CY24Q2): - ########################################################################## - Updated nspr-devel and nss-develbuild requirements as well as nss and nss-tools runtime requirements (mharmsen) - Updated jss dependencies (mharmsen) - Added git build dependency (mharmsen) - RHEL-9917 - EMBARGOED CVE-2023-4727 pki-core: dogtag ca: token authentication bypass vulnerability [rhel-7.9.z] (jmagne) - RHEL-24339 - pki-core - PrettyPrintCert does not properly translate AIA information into a readable format [RHEL 7.9.z] (mfargett) - RHEL-26881 - Fix additional OID mappings [RHEL 7.9.z] (mfargett) - ########################################################################## - # RHCS 9.7 (Async Security Update CY24Q2): - ########################################################################## - Bug 2047831 - Coolkey Hardcoded RSA Max Key Size [RHCS 9.7.z] (jmagne) - Bug 2121463 - Add Secure Channel Support for AES-256 Keys [RHCS 9.7.z] (jmagne) - Bug 2177785 - TPS missing Host header field in HTTP/1.1 request message [RHCS 9.7.z] (mfargett) - Bug 2180920 - add AES support for TMS server-side keygen on latest HSM / FIPS environment [RHCS 9.7.z] (jmagne) - Bug 2233158 - Make key wrapping algorithm configurable between AES-KWP and AES-CBC [RHCS 9.7.z] (jmagne) - Bug 2253682 - pkidestroy log keeps HSM token password [RHCS 9.7.z] (mfargett) - Bug 2265180 - Add Support for Symmetric Key Rollover [RHCS 9.7.z] (jmagne) _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . The Oracle Linux 7 advisory ELSA-2024-4223 pertains to important security enhancements and urgent resolution for pki-core vulnerabilities.. Oracle Linux, Security Advisory, PKI Core Updates, Authentication Bypass. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jul 03, 2024 Important Oracle
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryhigh severityfedora

Fedora 33: 2021-7458e2d835 High: Httpd Critical Vulnerability Exploit

- 389-ds fixes an information disclosure during unsuccessful LDAP BIND operation, CVE-2020-35518 - Dogtag PKI adopted to work with 389-ds with the fix - FreeIPA rebuilt to require new Dogtag and 389-ds versions. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-7458e2d835 2021-03-03 23:15:16.431618 --------------------------------------------------------------------------------Name : pki-core Product : Fedora 33 Version : 10.10.5 Release : 1.fc33 URL : https://www.dogtagpki.org Summary : Dogtag PKI Core Package Description : Dogtag PKI is an enterprise software system designed to manage enterprise Public Key Infrastructure deployments. PKI consists of the following components: * Automatic Certificate Management Environment (ACME) Responder * Certificate Authority (CA) * Key Recovery Authority (KRA) * Online Certificate Status Protocol (OCSP) Manager * Token Key Service (TKS) * Token Processing Service (TPS) --------------------------------------------------------------------------------Update Information: - 389-ds fixes an information disclosure during unsuccessful LDAP BIND operation, CVE-2020-35518 - Dogtag PKI adopted to work with 389-ds with the fix - FreeIPA rebuilt to require new Dogtag and 389-ds versions --------------------------------------------------------------------------------ChangeLog: * Thu Feb 25 2021 Alexander Scheel - 10.10.5-1 - Update to latest stable release 10.10.5 Resolves: rh-bz#1929940 --------------------------------------------------------------------------------References: [ 1 ] Bug #1908653 - CVE-2020-35518 389-ds-base: information disclosure during the binding of a DN [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1908653 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisoryFEDORA-2021-7458e2d835' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . A recent update to Fedora pki-core resolves an information leakage issue related to LDAP operations. Details regarding the latest versions and installation instructions are included.. Fedora Update,pki-core,security fix,dogtag PKI. . LinuxSecurity.com Team

Calendar 2 Mar 03, 2021 Fedora
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here