Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE libyang Important Buffer Overflow Advisory 2026-2381-1

Calendar White Jun 12, 2026
Important
Opensuse Large Esm H900
openSUSE

openSUSE HPLIP Severe Code Execution Denial of Service 2026-2380-1

Calendar White Jun 12, 2026
Critical
Suse Large Esm H900
SuSE

openSUSE HPLIP Critical Escalation DoS Advisory SUSE-2026-2380-1

Calendar White Jun 12, 2026
Critical
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.2 python-Pygments Low Denial of Service CVE-2026-4539

Calendar White Jun 12, 2026
Low
Ubuntu Large Esm H900
Ubuntu

Ubuntu 16.04 LTS GStreamer Base Plugins Critical DoS CVE-2026-2921

Calendar White Jun 12, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 12 Linux Base Update Brings Important Security Fix DLA-4628-1

Calendar White Jun 12, 2026
Informational
Debianlts Large Esm H800
Debian LTS

Debian 12 Kernel-Wedge Update for Linux 6.12 DLA-4627-1

Calendar White Jun 12, 2026
Informational
Opensuse Large Esm H900
openSUSE

openSUSE NetworkManager-libreswan Important Security Update CVE-2024-9050

Calendar White Jun 12, 2026
Important
Opensuse Large Esm H900
openSUSE

openSUSE Rclone Critical Security Update CVE-2026-25680 CVE-2026-25681

Calendar White Jun 12, 2026
Critical
Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":556,"type":"x","order":1,"pct":78.75,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.25,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.82,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.18,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag%201security advisorydenial of servicesecurity update

Debian 11: DLA-4071-1 high: GStreamer media plugin risks

Multiple vulnerabilities were discovered in plugins for the GStreamer media framework and its codecs and demuxers, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4071-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Bastien Roucariès February 27, 2025 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : gst-plugins-good1.0 Version : 1.18.4-2+deb11u3 CVE ID : CVE-2024-47537 CVE-2024-47539 CVE-2024-47540 CVE-2024-47543 CVE-2024-47544 CVE-2024-47545 CVE-2024-47546 CVE-2024-47596 CVE-2024-47597 CVE-2024-47598 CVE-2024-47599 CVE-2024-47601 CVE-2024-47602 CVE-2024-47603 CVE-2024-47606 CVE-2024-47613 CVE-2024-47774 CVE-2024-47775 CVE-2024-47776 CVE-2024-47777 CVE-2024-47778 CVE-2024-47834 Multiple vulnerabilities were discovered in plugins for the GStreamer media framework and its codecs and demuxers, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened. For Debian 11 bullseye, these problems have been fixed in version 1.18.4-2+deb11u3. We recommend that you upgrade your gst-plugins-good1.0 packages. For the detailed security status of gst-plugins-good1.0 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/gst-plugins-good1.0 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Debian LTS Advisory DLA-4072-1 resolves several security flaws in the Samba package.. Debian LTS, GStreamer Security, Media Framework Update. . LinuxSecurity.com Team

Calendar%202 Feb 27, 2025 Debian LTS
172
Ls Advisories Ubuntu Esm H240
Price Tag%201security advisorycriticalUbuntu

Ubuntu 23.10 USN-6526-1 critical: GStreamer DoS vulnerabilities

Several security issues were fixed in GStreamer Bad Plugins.. ========================================================================== Ubuntu Security Notice USN-6526-1 November 29, 2023 gst-plugins-bad1.0 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 23.10 - Ubuntu 23.04 - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: Several security issues were fixed in GStreamer Bad Plugins. Software Description: - gst-plugins-bad1.0: GStreamer plugins Details: It was discovered that GStreamer Bad Plugins incorrectly handled certain media files. A remote attacker could use this issue to cause GStreamer Bad Plugins to crash, resulting in a denial of service, or possibly execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 23.10: gstreamer1.0-plugins-bad 1.22.4-1ubuntu1.1 libgstreamer-plugins-bad1.0-0 1.22.4-1ubuntu1.1 Ubuntu 23.04: gstreamer1.0-plugins-bad 1.22.1-1ubuntu1.1 libgstreamer-plugins-bad1.0-0 1.22.1-1ubuntu1.1 Ubuntu 22.04 LTS: gstreamer1.0-plugins-bad 1.20.3-0ubuntu1.1 libgstreamer-plugins-bad1.0-0 1.20.3-0ubuntu1.1 Ubuntu 20.04 LTS: gstreamer1.0-plugins-bad 1.16.3-0ubuntu1.1 libgstreamer-plugins-bad1.0-0 1.16.3-0ubuntu1.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6526-1 CVE-2023-37329, CVE-2023-40474, CVE-2023-40475, CVE-2023-40476, CVE-2023-44429, CVE-2023-44446 Package Information: https://launchpad.net/ubuntu/+source/gst-plugins-bad1.0/1.22.4-1ubuntu1.1 https://launchpad.net/ubuntu/+source/gst-plugins-bad1.0/1.22.1-1ubuntu1.1 https://launchpad.net/ubuntu/+source/gst-plugins-bad1.0/1.20.3-0ubuntu1.1 https://launchpad.net/ubuntu/+source/gst-plugins-bad1.0/1.16.3-0ubuntu1.1 . Ensure your Ubuntu installations are reviewed and upgraded to mitigate security risks associated with the GStreamer Bad Plugins, vital for maintaining system robustness and data protection.. GStreamer Bad Plugins, Ubuntu Security Notice, Denial of Service. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Nov 29, 2023 Critical Ubuntu
Banner 3 1028x280 1708121785 1771599793
100
Ls Advisories Suse Esm H240
Price Tag%201security advisorymoderatesoftware update

SUSE: 2022:3910-2 High: Gstreamer-Plugins-Bad Buffer Overflow

An update that fixes 7 vulnerabilities is now available. . SUSE Security Update: Security update for gstreamer-plugins-good ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:3908-1 Rating: moderate References: #1201688 #1201693 #1201702 #1201704 #1201706 #1201707 #1201708 Cross-References: CVE-2022-1920 CVE-2022-1921 CVE-2022-1922 CVE-2022-1923 CVE-2022-1924 CVE-2022-1925 CVE-2022-2122 CVSS scores: CVE-2022-1920 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-1920 (SUSE): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H CVE-2022-1921 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-1921 (SUSE): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H CVE-2022-1922 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-1922 (SUSE): 6.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H CVE-2022-1923 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-1923 (SUSE): 6.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H CVE-2022-1924 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-1924 (SUSE): 6.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H CVE-2022-1925 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-1925 (SUSE): 6.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H CVE-2022-2122 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-2122 (SUSE): 6.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H Affected Products: SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Basesystem15-SP4 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes 7 vulnerabilities is now available. Description: This update for gstreamer-plugins-good fixes the following issues: - CVE-2022-1920: Fixed integer overflow in WavPack header handling code (bsc#1201688). - CVE-2022-1921: Fixed integer overflow resulting in heap corruption in avidemux element (bsc#1201693). - CVE-2022-1922: Fixed integer overflows in mkv demuxing (bsc#1201702). - CVE-2022-1923: Fixed integer overflows in mkv demuxing using bzip (bsc#1201704). - CVE-2022-1924: Fixed integer overflows in mkv demuxing using lzo (bsc#1201706). - CVE-2022-1925: Fixed integer overflows in mkv demuxing using HEADERSTRIP (bsc#1201707). - CVE-2022-2122: Fixed integer overflows in qtdemux using zlib (bsc#1201708). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-3908=1 - SUSE Linux Enterprise Module for Basesystem 15-SP4: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2022-3908=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): gstreamer-plugins-good-1.20.1-150400.3.3.1 gstreamer-plugins-good-debuginfo-1.20.1-150400.3.3.1 gstreamer-plugins-good-debugsource-1.20.1-150400.3.3.1 gstreamer-plugins-good-extra-1.20.1-150400.3.3.1 gstreamer-plugins-good-extra-debuginfo-1.20.1-150400.3.3.1 gstreamer-plugins-good-gtk-1.20.1-150400.3.3.1 gstreamer-plugins-good-gtk-debuginfo-1.20.1-150400.3.3.1 gstreamer-plugins-good-jack-1.20.1-150400.3.3.1 gstreamer-plugins-good-jack-debuginfo-1.20.1-150400.3.3.1 gstreamer-plugins-good-qtqml-1.20.1-150400.3.3.1 gstreamer-plugins-good-qtqml-debuginfo-1.20.1-150400.3.3.1 - openSUSE Leap 15.4 (noarch): gstreamer-plugins-good-lang-1.20.1-150400.3.3.1 - openSUSE Leap 15.4 (x86_64): gstreamer-plugins-good-32bit-1.20.1-150400.3.3.1 gstreamer-plugins-good-32bit-debuginfo-1.20.1-150400.3.3.1 gstreamer-plugins-good-extra-32bit-1.20.1-150400.3.3.1 gstreamer-plugins-good-extra-32bit-debuginfo-1.20.1-150400.3.3.1 gstreamer-plugins-good-jack-32bit-1.20.1-150400.3.3.1 gstreamer-plugins-good-jack-32bit-debuginfo-1.20.1-150400.3.3.1 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (aarch64 ppc64le s390x x86_64): gstreamer-plugins-good-1.20.1-150400.3.3.1 gstreamer-plugins-good-debuginfo-1.20.1-150400.3.3.1 gstreamer-plugins-good-debugsource-1.20.1-150400.3.3.1 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (noarch): gstreamer-plugins-good-lang-1.20.1-150400.3.3.1 References: https://www.suse.com/security/cve/CVE-2022-1920.html https://www.suse.com/security/cve/CVE-2022-1921.html https://www.suse.com/security/cve/CVE-2022-1922.html https://www.suse.com/security/cve/CVE-2022-1923.html https://www.suse.com/security/cve/CVE-2022-1924.html https://www.suse.com/security/cve/CVE-2022-1925.html https://www.suse.com/security/cve/CVE-2022-2122.html https://bugzilla.suse.com/1201688 https://bugzilla.suse.com/1201693 https://bugzilla.suse.com/1201702 https://bugzilla.suse.com/1201704 https://bugzilla.suse.com/1201706 https://bugzilla.suse.com/1201707 https://bugzilla.suse.com/1201708 . An important patch has been released for gstreamer-plugins-bad, resolving significant security issues in openSUSE environments.. SUSESecurity Update,gstreamer plugins,integer overflow issues,security patch. . LinuxSecurity.com Team

Calendar%202 Nov 08, 2022 SuSE
89
Ls Advisories Fedora Esm H240
Price Tag%201security advisoryupdateFedora

Fedora 24: Updated MariaDB Security Advisory for Multiple Threats

**Rebase to 10.1.24** Plugin oqgraph enabled Plugin jemalloc enabled Sphinx engine enabled Build dependecies Bison and Libarchive added, others corrected Disabling Mroonga engine for i686 architecture, as it is not supported by MariaDB **Removed patches: (fixed by upstream)** Patch5: %{pkgnamepatch}-file-contents.patch Patch14: %{pkgnamepatch}-example-config-. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-8425f676f2 2017-06-16 13:14:50.415837 --------------------------------------------------------------------------------Name : mariadb Product : Fedora 24 Version : 10.1.24 Release : 3.fc24 URL : http://mariadb.org Summary : A community developed branch of MySQL Description : MariaDB is a community developed branch of MySQL. MariaDB is a multi-user, multi-threaded SQL database server. It is a client/server implementation consisting of a server daemon (mysqld) and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client programs and generic MySQL files. --------------------------------------------------------------------------------Update Information: **Rebase to 10.1.24** Plugin oqgraph enabled Plugin jemalloc enabled Sphinx engine enabled Build dependecies Bison and Libarchive added, others corrected Disabling Mroonga engine for i686 architecture, as it is not supported by MariaDB **Removed patches: (fixed by upstream)** Patch5: %{pkgnamepatch}-file-contents.patch Patch14: %{pkgnamepatch}-example-config-files.patch Patch31: %{pkgnamepatch}-string-overflow.patch Patch32: %{pkgnamepatch}-basedir.patch Patch41: %{pkgnamepatch}-galera-new-cluster-help.patch **CVEs fix** CVE-2017-3313 CVE-2017-3308 CVE-2017-3309 CVE-2017-3453 CVE-2017-3456 CVE-2017-3464 **Testsuite** Enabled '--big-test' option for the testsuite Disabled '--skip-rpl' option forthe testsuite = replication tests enabled **Warning** Some Spider tests started to fail, the engine can be probabbly unsafe now. **Aditional bugs solved:** #1459671: mariadb fails to start with tokudb; jemalloc not correctly enabled ---- **Rebase to 10.1.24** Plugin oqgraph enabled Plugin jemalloc enabled Sphinx engine enabled Build dependecies Bison and Libarchive added, others corrected Disabling Mroonga engine for i686 architecture, as it is not supported by MariaDB **Removed patches: (fixed by upstream)** Patch5: %{pkgnamepatch}-file-contents.patch Patch14: %{pkgnamepatch}-example-config-files.patch Patch31: %{pkgnamepatch}-string-overflow.patch Patch32: %{pkgnamepatch}-basedir.patch Patch41: %{pkgnamepatch}-galera-new-cluster-help.patch **CVEs fix** CVE-2017-3313 CVE-2017-3308 CVE-2017-3309 CVE-2017-3453 CVE-2017-3456 CVE-2017-3464 **Testsuite** Enabled '--big-test' option for the testsuite Disabled '--skip-rpl' option for the testsuite = replication tests enabled **Warning** Some Spider tests started to fail, the engine can be probabbly unsafe now. **Aditional bugs solved:** #1459671: mariadb fails to start with tokudb; jemalloc not correctly enabled ---- **Rebase to 10.1.24** Plugin oqgraph enabled Plugin jemalloc enabled Sphinx engine enabled Build dependecies Bison and Libarchive added, others corrected Disabling Mroonga engine for i686 architecture, as it is not supported by MariaDB **Removed patches: (fixed by upstream)** Patch5: %{pkgnamepatch}-file-contents.patch Patch14: %{pkgnamepatch}-example-config-files.patch Patch31: %{pkgnamepatch}-string-overflow.patch Patch32: %{pkgnamepatch}-basedir.patch Patch41: %{pkgnamepatch}-galera-new-cluster-help.patch **CVEs fix** CVE-2017-3313 CVE-2017-3308 CVE-2017-3309 CVE-2017-3453 CVE-2017-3456 CVE-2017-3464 **Testsuite** Enabled '--big-test' option for thetestsuite Disabled '--skip-rpl' option for the testsuite = replication tests enabled **Warning** Some Spider tests started to fail, the engine can be probabbly unsafe now. --------------------------------------------------------------------------------References: [ 1 ] Bug #1414387 - CVE-2017-3238 CVE-2017-3243 CVE-2017-3244 CVE-2017-3257 CVE-2017-3258 CVE-2017-3265 CVE-2017-3291 CVE-2017-3312 CVE-2017-3313 CVE-2017-3317 CVE-2017-3318 mariadb: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1414387 [ 2 ] Bug #1459671 - mariadb fails to start with tokudb; jemalloc not correctly enabled https://bugzilla.redhat.com/show_bug.cgi?id=1459671 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade mariadb' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . A critical update announcement for Fedora 24 has been released, highlighting resolutions for various vulnerabilities in MariaDB, ensuring enhanced protection and system integrity.. Fedora Update, MariaDB Security, SQL Database Management, Threat Responses. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 16, 2017 Important Fedora
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":556,"type":"x","order":1,"pct":78.75,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.25,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.82,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.18,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here