Alerts This Week
Warning Icon 1 537
Alerts This Week
Warning Icon 1 537

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
198
Ls Advisories Archlinux Esm H240
Price Tag 1security advisorydenial of servicemedium severity

Arch Linux: 201507-11 Medium: lib32-krb5 Denial Of Service Issues

The package lib32-krb5 before version 1.13.2-2 is vulnerable to multiple issues including denial of service and preauthentication requirement bypass. . Arch Linux Security Advisory ASA-201507-11 ========================================= Severity: Medium Date : 2015-07-12 CVE-ID : CVE-2014-5355 CVE-2015-2694 Package : lib32-krb5 Type : multiple issues Remote : Yes Link : https://wiki.archlinux.org/title/CVE Summary ====== The package lib32-krb5 before version 1.13.2-2 is vulnerable to multiple issues including denial of service and preauthentication requirement bypass. Resolution ========= Upgrade to 1.13.2-2. # pacman -Syu "lib32-krb5> =1.13.2-2" The problems have been fixed upstream in version 1.13.2. Workaround ========= None. Description ========== - CVE-2014-5355 (denial of service) When a server process uses the krb5_recvauth function, an unauthenticated remote attacker can cause a NULL dereference by sending a zero-byte version string, or a read beyond the end of allocated storage by sending a non-null-terminated version string. The example user-to-user server application (uuserver) is similarly vulnerable to a zero-length or non-null-terminated principal name string. The krb5_recvauth function reads two version strings from the client using krb5_read_message(), which produces a krb5_data structure containing a length and a pointer to an octet sequence. krb5_recvaut assumes that the data pointer is a valid C string and passes it to strcmp() to verify the versions. If the client sends an empty octet sequence, the data pointer will be NULL and strcmp() will dereference a NULL pointer, causing the process to crash. If the client sends a non-null-terminated octet sequence, strcmp() will read beyond the end of the allocated storage, possibly causing the process to crash. - CVE-2015-2694 (preauthentication requirement bypass) It has been discovered that, when the KDC is configured with PKINIT support, an unauthenticated remote attackercan bypass the requires_preauth flag on a client principal and obtain a ciphertext encrypted in the principal's long-term key. This ciphertext could be used to conduct an off-line dictionary attack against the user's password. Impact ===== A remote attacker is able to send specially crafted packets to perform a denial of service attack or bypass the requires_preauth flag and obtain ciphertext that could be used to conduct an off-line dictionary attack against the user's password. References ========= https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-5355 https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2694 https://bugs.archlinux.org/task/45575 . Gentoo Linux notice emphasizes vulnerabilities in lib32-libxml2, notably concerning remote code execution and XML entity expansion exploits.. Arch Linux, lib32-krb5, denial of service, preauthentication bypass, security advisory. . Severity: Medium. LinuxSecurity.com Team

Calendar 2 Jul 12, 2015 Medium ArchLinux
198
Ls Advisories Archlinux Esm H240
Price Tag 1security advisorydenial of servicecritical threat

Arch Linux: ASA-201507-10 Critical: krb5 Denial Of Service & Bypass

The package krb5 before version 1.13.2-1 is vulnerable to multiple issues including denial of service and preauthentication requirement bypass. . Arch Linux Security Advisory ASA-201507-10 ========================================= Severity: Medium Date : 2015-07-12 CVE-ID : CVE-2014-5355 CVE-2015-2694 Package : krb5 Type : multiple issues Remote : Yes Link : https://wiki.archlinux.org/title/CVE Summary ====== The package krb5 before version 1.13.2-1 is vulnerable to multiple issues including denial of service and preauthentication requirement bypass. Resolution ========= Upgrade to 1.13.2-1. # pacman -Syu "krb5> =1.13.2-1" The problems have been fixed upstream in version 1.13.2. Workaround ========= None. Description ========== - CVE-2014-5355 (denial of service) When a server process uses the krb5_recvauth function, an unauthenticated remote attacker can cause a NULL dereference by sending a zero-byte version string, or a read beyond the end of allocated storage by sending a non-null-terminated version string. The example user-to-user server application (uuserver) is similarly vulnerable to a zero-length or non-null-terminated principal name string. The krb5_recvauth function reads two version strings from the client using krb5_read_message(), which produces a krb5_data structure containing a length and a pointer to an octet sequence. krb5_recvaut assumes that the data pointer is a valid C string and passes it to strcmp() to verify the versions. If the client sends an empty octet sequence, the data pointer will be NULL and strcmp() will dereference a NULL pointer, causing the process to crash. If the client sends a non-null-terminated octet sequence, strcmp() will read beyond the end of the allocated storage, possibly causing the process to crash. - CVE-2015-2694 (preauthentication requirement bypass) It has been discovered that, when the KDC is configured with PKINIT support, an unauthenticated remote attacker can bypassthe requires_preauth flag on a client principal and obtain a ciphertext encrypted in the principal's long-term key. This ciphertext could be used to conduct an off-line dictionary attack against the user's password. Impact ===== A remote attacker is able to send specially crafted packets to perform a denial of service attack or bypass the requires_preauth flag and obtain ciphertext that could be used to conduct an off-line dictionary attack against the user's password. References ========= https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-5355 https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2694 https://bugs.archlinux.org/task/45575 . Arch Linux Security Announcement ASA-202309-15 releases updates for openssl addressing vulnerabilities related to remote code execution and authentication flaws.. Arch Linux, krb5 Update, Denial of Service Threat, Preauthentication Bypass. . Severity: Medium. LinuxSecurity.com Team

Calendar 2 Jul 12, 2015 Medium ArchLinux
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here