Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 31 FEDORA-2019-cf87377f5f Critical: jackson-parent Security Fix

- Update jackson-parent to version 2.10. - Update jackson-bom to version 2.10.0. - Update jackson-annotations to version 2.10.0. - Update jackson-core to version 2.10.0. - Update jackson-databind to version 2.10.0. Resolves CVE-2019-14540, CVE-2019-16335, CVE-2019-16942, CVE-2019-16943.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-cf87377f5f 2019-10-26 17:17:38.267827 --------------------------------------------------------------------------------Name : jackson-parent Product : Fedora 31 Version : 2.10 Release : 1.fc31 URL : https://github.com/FasterXML/jackson-parent Summary : Parent pom for all Jackson components Description : Project for parent pom for all Jackson components. --------------------------------------------------------------------------------Update Information: - Update jackson-parent to version 2.10. - Update jackson-bom to version 2.10.0. - Update jackson-annotations to version 2.10.0. - Update jackson-core to version 2.10.0. - Update jackson-databind to version 2.10.0. Resolves CVE-2019-14540, CVE-2019-16335, CVE-2019-16942, CVE-2019-16943. --------------------------------------------------------------------------------ChangeLog: * Thu Oct 3 2019 Fabio Valentini - 2.10-1 - Update to version 2.10. --------------------------------------------------------------------------------References: [ 1 ] Bug #1758193 - CVE-2019-16943 jackson-databind: Serialization gadgets in classes of the p6spy package [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1758193 [ 2 ] Bug #1758188 - CVE-2019-16942 jackson-databind: Serialization gadgets in classes of the commons-dbcp package [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1758188 [ 3 ] Bug #1758183 - jackson-databind: Serialization gadgets in classes of the xalan package [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1758183 [ 4 ] Bug #1758172 -jackson-databind: Serialization gadgets in classes of the commons-configuration package [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1758172 [ 5 ] Bug #1758168 - jackson-databind: Serialization gadgets in classes of the ehcache package [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1758168 [ 6 ] Bug #1755850 - CVE-2019-14540 jackson-databind: polymorphic typing issue related to com.zaxxer.hikari.HikariConfig [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1755850 [ 7 ] Bug #1755832 - CVE-2019-16335 jackson-databind: polymorphic typing issue related to com.zaxxer.hikari.HikariDataSource [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1755832 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-cf87377f5f' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Attention Fedora 31 users: An essential update for the jackson-parent package is available, addressing critical vulnerabilities. Please update ASAP to secure your system.. Fedora Update, Jackson Components, Security Fixes. . Severity: Critical.LinuxSecurity.com Team

Calendar 2 Oct 26, 2019 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoraupdate

Fedora 30: FEDORA-2019-b171554877 Critical: jackson-databind Issues

- Update jackson-parent to version 2.10. - Update jackson-bom to version 2.10.0. - Update jackson-annotations to version 2.10.0. - Update jackson-core to version 2.10.0. - Update jackson-databind to version 2.10.0. Resolves CVE-2019-14540, CVE-2019-16335, CVE-2019-16942, CVE-2019-16943.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-b171554877 2019-10-12 00:23:35.071643 --------------------------------------------------------------------------------Name : jackson-databind Product : Fedora 30 Version : 2.10.0 Release : 1.fc30 URL : https://github.com/FasterXML/jackson-databind/ Summary : General data-binding package for Jackson (2.x) Description : The general-purpose data-binding functionality and tree-model for Jackson Data Processor. It builds on core streaming parser/generator package, and uses Jackson Annotations for configuration. --------------------------------------------------------------------------------Update Information: - Update jackson-parent to version 2.10. - Update jackson-bom to version 2.10.0. - Update jackson-annotations to version 2.10.0. - Update jackson-core to version 2.10.0. - Update jackson-databind to version 2.10.0. Resolves CVE-2019-14540, CVE-2019-16335, CVE-2019-16942, CVE-2019-16943. --------------------------------------------------------------------------------ChangeLog: * Thu Oct 3 2019 Alexander Scheel - 2.10.0-1 - Update to latest upstream release - Fixes: CVE-2019-14540 - Fixes: CVE-2019-16335 - Fixes: CVE-2019-16942 - Fixes: CVE-2019-16943 - Resolves: rhbz#1758168 - Resolves: rhbz#1758172 - Resolves: rhbz#1758183 * Thu Sep 12 2019 Alexander Scheel - 2.9.9.3-1 - Update to latest upstream release; fixes CVE-2019-12384 --------------------------------------------------------------------------------References: [ 1 ] Bug #1758193 - CVE-2019-16943 jackson-databind: Serialization gadgets in classes of the p6spy package[fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1758193 [ 2 ] Bug #1758188 - CVE-2019-16942 jackson-databind: Serialization gadgets in classes of the commons-dbcp package [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1758188 [ 3 ] Bug #1758183 - jackson-databind: Serialization gadgets in classes of the xalan package [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1758183 [ 4 ] Bug #1758172 - jackson-databind: Serialization gadgets in classes of the commons-configuration package [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1758172 [ 5 ] Bug #1758168 - jackson-databind: Serialization gadgets in classes of the ehcache package [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1758168 [ 6 ] Bug #1755850 - CVE-2019-14540 jackson-databind: polymorphic typing issue related to com.zaxxer.hikari.HikariConfig [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1755850 [ 7 ] Bug #1755832 - CVE-2019-16335 jackson-databind: polymorphic typing issue related to com.zaxxer.hikari.HikariDataSource [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1755832 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-b171554877' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct:https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . The recent update for jackson-databind addresses various serialization flaws and significant vulnerabilities within Fedora 30.. jackson-databind update, fedora security, serialization issues. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 11, 2019 Critical Fedora
Banner 4 1028x280 1708121825 1771600306
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorysecurity updateDebian

Debian: DLA-1831-1 Moderate: jackson-databind JSON File Access Issue

More Polymorphic Typing issues were discovered in jackson-databind. When Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint and the service has JDOM 1.x or 2.x or logback-core jar in the classpath, an attacker can send a . Package : jackson-databind Version : 2.4.2-2+deb8u7 CVE ID : CVE-2019-12384 CVE-2019-12814 Debian Bug : 930750 More Polymorphic Typing issues were discovered in jackson-databind. When Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint and the service has JDOM 1.x or 2.x or logback-core jar in the classpath, an attacker can send a specifically crafted JSON message that allows them to read arbitrary local files on the server. For Debian 8 "Jessie", these problems have been fixed in version 2.4.2-2+deb8u7. We recommend that you upgrade your jackson-databind packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Upgrade jackson-databind to mitigate issues with polymorphic type handling for users on Debian 8.. jackson-databind, JSON vulnerabilities, Debian updates, security issues. . LinuxSecurity.com Team

Calendar 2 Jun 21, 2019 Debian LTS
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here