Alerts This Week
Warning Icon 1 535
Alerts This Week
Warning Icon 1 535

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderateupdate

openSUSE 15.x: 2023:4504-1 moderate: avahi printer issue

This update for avahi fixes the following issues: CVE-2023-38470: Ensure each label is at least one byte long (bsc#1215947). CVE-2023-38473: Fixed a reachable assertion when parsing a host name. # Security update for avahi Announcement ID: SUSE-SU-2023:4503-1 Rating: moderate References: * bsc#1215947 * bsc#1216419 Cross-References: * CVE-2023-38470 * CVE-2023-38473 CVSS scores: * CVE-2023-38470 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-38470 ( NVD ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-38473 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-38473 ( NVD ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP4 * Basesystem Module 15-SP5 * Desktop Applications Module 15-SP4 * Desktop Applications Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap Micro 5.3 * openSUSE Leap Micro 5.4 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro 6.0 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 * SUSE Package Hub 15 15-SP4 * SUSE Package Hub 15 15-SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for avahi fixes the following issues: * CVE-2023-38470: Ensure eachlabel is at least one byte long (bsc#1215947). * CVE-2023-38473: Fixed a reachable assertion when parsing a host name (bsc#1216419). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2023-4503=1 openSUSE-SLE-15.4-2023-4503=1 * openSUSE Leap Micro 5.3 zypper in -t patch openSUSE-Leap-Micro-5.3-2023-4503=1 * openSUSE Leap Micro 5.4 zypper in -t patch openSUSE-Leap-Micro-5.4-2023-4503=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2023-4503=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-4503=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-4503=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-4503=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-4503=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2023-4503=1 * Basesystem Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2023-4503=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2023-4503=1 * Desktop Applications Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP4-2023-4503=1 * Desktop Applications Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2023-4503=1 * SUSE Package Hub 15 15-SP4 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2023-4503=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2023-4503=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libavahi-gobject-devel-0.8-150400.7.10.1 * libdns_sd-0.8-150400.7.10.1 *libavahi-glib-devel-0.8-150400.7.10.1 * avahi-debugsource-0.8-150400.7.10.1 * avahi-autoipd-debuginfo-0.8-150400.7.10.1 * libavahi-libevent1-0.8-150400.7.10.1 * libhowl0-debuginfo-0.8-150400.7.10.1 * avahi-compat-mDNSResponder-devel-0.8-150400.7.10.1 * libavahi-devel-0.8-150400.7.10.1 * avahi-utils-gtk-0.8-150400.7.10.1 * libavahi-glib1-0.8-150400.7.10.1 * avahi-utils-0.8-150400.7.10.1 * avahi-autoipd-0.8-150400.7.10.1 * avahi-0.8-150400.7.10.1 * libavahi-core7-debuginfo-0.8-150400.7.10.1 * typelib-1_0-Avahi-0_6-0.8-150400.7.10.1 * python3-avahi-0.8-150400.7.10.1 * libavahi-glib1-debuginfo-0.8-150400.7.10.1 * libhowl0-0.8-150400.7.10.1 * avahi-glib2-debugsource-0.8-150400.7.10.1 * python3-avahi-gtk-0.8-150400.7.10.1 * libavahi-qt5-1-0.8-150400.7.10.1 * libavahi-libevent1-debuginfo-0.8-150400.7.10.1 * libavahi-common3-debuginfo-0.8-150400.7.10.1 * avahi-qt5-debugsource-0.8-150400.7.10.1 * libavahi-ui-gtk3-0-debuginfo-0.8-150400.7.10.1 * avahi-utils-debuginfo-0.8-150400.7.10.1 * libavahi-client3-debuginfo-0.8-150400.7.10.1 * libavahi-qt5-devel-0.8-150400.7.10.1 * libavahi-gobject0-0.8-150400.7.10.1 * libavahi-core7-0.8-150400.7.10.1 * libavahi-common3-0.8-150400.7.10.1 * avahi-utils-gtk-debuginfo-0.8-150400.7.10.1 * libavahi-ui-gtk3-0-0.8-150400.7.10.1 * avahi-compat-howl-devel-0.8-150400.7.10.1 * libavahi-qt5-1-debuginfo-0.8-150400.7.10.1 * avahi-debuginfo-0.8-150400.7.10.1 * libavahi-gobject0-debuginfo-0.8-150400.7.10.1 * libavahi-client3-0.8-150400.7.10.1 * libdns_sd-debuginfo-0.8-150400.7.10.1 * openSUSE Leap 15.4 (x86_64) * libdns_sd-32bit-debuginfo-0.8-150400.7.10.1 * libavahi-common3-32bit-0.8-150400.7.10.1 * libavahi-client3-32bit-0.8-150400.7.10.1 * libavahi-common3-32bit-debuginfo-0.8-150400.7.10.1 * libavahi-client3-32bit-debuginfo-0.8-150400.7.10.1 * libdns_sd-32bit-0.8-150400.7.10.1 * avahi-32bit-debuginfo-0.8-150400.7.10.1 * libavahi-glib1-32bit-0.8-150400.7.10.1 * libavahi-glib1-32bit-debuginfo-0.8-150400.7.10.1 * openSUSE Leap 15.4 (noarch) * avahi-lang-0.8-150400.7.10.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libavahi-client3-64bit-0.8-150400.7.10.1 * avahi-64bit-debuginfo-0.8-150400.7.10.1 * libavahi-common3-64bit-0.8-150400.7.10.1 * libavahi-common3-64bit-debuginfo-0.8-150400.7.10.1 * libdns_sd-64bit-debuginfo-0.8-150400.7.10.1 * libavahi-glib1-64bit-0.8-150400.7.10.1 * libdns_sd-64bit-0.8-150400.7.10.1 * libavahi-glib1-64bit-debuginfo-0.8-150400.7.10.1 * libavahi-client3-64bit-debuginfo-0.8-150400.7.10.1 * openSUSE Leap Micro 5.3 (aarch64 x86_64) * libavahi-core7-debuginfo-0.8-150400.7.10.1 * avahi-debugsource-0.8-150400.7.10.1 * libavahi-client3-debuginfo-0.8-150400.7.10.1 * avahi-debuginfo-0.8-150400.7.10.1 * libavahi-core7-0.8-150400.7.10.1 * libavahi-common3-debuginfo-0.8-150400.7.10.1 * libavahi-common3-0.8-150400.7.10.1 * libavahi-client3-0.8-150400.7.10.1 * avahi-0.8-150400.7.10.1 * openSUSE Leap Micro 5.4 (aarch64 s390x x86_64) * libavahi-core7-debuginfo-0.8-150400.7.10.1 * avahi-debugsource-0.8-150400.7.10.1 * libavahi-client3-debuginfo-0.8-150400.7.10.1 * avahi-debuginfo-0.8-150400.7.10.1 * libavahi-core7-0.8-150400.7.10.1 * libavahi-common3-debuginfo-0.8-150400.7.10.1 * libavahi-common3-0.8-150400.7.10.1 * libavahi-client3-0.8-150400.7.10.1 * avahi-0.8-150400.7.10.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libavahi-gobject-devel-0.8-150400.7.10.1 * libdns_sd-0.8-150400.7.10.1 * libavahi-glib-devel-0.8-150400.7.10.1 * avahi-debugsource-0.8-150400.7.10.1 * avahi-autoipd-debuginfo-0.8-150400.7.10.1 * libavahi-libevent1-0.8-150400.7.10.1 * libhowl0-debuginfo-0.8-150400.7.10.1 * avahi-compat-mDNSResponder-devel-0.8-150400.7.10.1 * libavahi-devel-0.8-150400.7.10.1 * avahi-utils-gtk-0.8-150400.7.10.1 * libavahi-glib1-0.8-150400.7.10.1 *avahi-utils-0.8-150400.7.10.1 * avahi-autoipd-0.8-150400.7.10.1 * avahi-0.8-150400.7.10.1 * libavahi-core7-debuginfo-0.8-150400.7.10.1 * typelib-1_0-Avahi-0_6-0.8-150400.7.10.1 * python3-avahi-0.8-150400.7.10.1 * libavahi-glib1-debuginfo-0.8-150400.7.10.1 * avahi-glib2-debugsource-0.8-150400.7.10.1 * libhowl0-0.8-150400.7.10.1 * python3-avahi-gtk-0.8-150400.7.10.1 * libavahi-qt5-1-0.8-150400.7.10.1 * libavahi-common3-debuginfo-0.8-150400.7.10.1 * libavahi-libevent1-debuginfo-0.8-150400.7.10.1 * avahi-qt5-debugsource-0.8-150400.7.10.1 * libavahi-ui-gtk3-0-debuginfo-0.8-150400.7.10.1 * avahi-utils-debuginfo-0.8-150400.7.10.1 * libavahi-client3-debuginfo-0.8-150400.7.10.1 * libavahi-qt5-devel-0.8-150400.7.10.1 * libavahi-gobject0-0.8-150400.7.10.1 * libavahi-core7-0.8-150400.7.10.1 * libavahi-common3-0.8-150400.7.10.1 * avahi-utils-gtk-debuginfo-0.8-150400.7.10.1 * libavahi-ui-gtk3-0-0.8-150400.7.10.1 * avahi-compat-howl-devel-0.8-150400.7.10.1 * libavahi-qt5-1-debuginfo-0.8-150400.7.10.1 * avahi-debuginfo-0.8-150400.7.10.1 * libavahi-gobject0-debuginfo-0.8-150400.7.10.1 * libavahi-client3-0.8-150400.7.10.1 * libdns_sd-debuginfo-0.8-150400.7.10.1 * openSUSE Leap 15.5 (x86_64) * libdns_sd-32bit-debuginfo-0.8-150400.7.10.1 * libavahi-common3-32bit-0.8-150400.7.10.1 * libavahi-client3-32bit-0.8-150400.7.10.1 * libavahi-common3-32bit-debuginfo-0.8-150400.7.10.1 * libavahi-client3-32bit-debuginfo-0.8-150400.7.10.1 * libdns_sd-32bit-0.8-150400.7.10.1 * avahi-32bit-debuginfo-0.8-150400.7.10.1 * libavahi-glib1-32bit-0.8-150400.7.10.1 * libavahi-glib1-32bit-debuginfo-0.8-150400.7.10.1 * openSUSE Leap 15.5 (noarch) * avahi-lang-0.8-150400.7.10.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * libavahi-core7-debuginfo-0.8-150400.7.10.1 * avahi-debugsource-0.8-150400.7.10.1 * libavahi-client3-debuginfo-0.8-150400.7.10.1 *avahi-debuginfo-0.8-150400.7.10.1 * libavahi-core7-0.8-150400.7.10.1 * libavahi-common3-debuginfo-0.8-150400.7.10.1 * libavahi-common3-0.8-150400.7.10.1 * libavahi-client3-0.8-150400.7.10.1 * avahi-0.8-150400.7.10.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * libavahi-core7-debuginfo-0.8-150400.7.10.1 * avahi-debugsource-0.8-150400.7.10.1 * libavahi-client3-debuginfo-0.8-150400.7.10.1 * avahi-debuginfo-0.8-150400.7.10.1 * libavahi-core7-0.8-150400.7.10.1 * libavahi-common3-debuginfo-0.8-150400.7.10.1 * libavahi-common3-0.8-150400.7.10.1 * libavahi-client3-0.8-150400.7.10.1 * avahi-0.8-150400.7.10.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * libavahi-core7-debuginfo-0.8-150400.7.10.1 * avahi-debugsource-0.8-150400.7.10.1 * libavahi-client3-debuginfo-0.8-150400.7.10.1 * avahi-debuginfo-0.8-150400.7.10.1 * libavahi-core7-0.8-150400.7.10.1 * libavahi-common3-debuginfo-0.8-150400.7.10.1 * libavahi-common3-0.8-150400.7.10.1 * libavahi-client3-0.8-150400.7.10.1 * avahi-0.8-150400.7.10.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * libavahi-core7-debuginfo-0.8-150400.7.10.1 * avahi-debugsource-0.8-150400.7.10.1 * libavahi-client3-debuginfo-0.8-150400.7.10.1 * avahi-debuginfo-0.8-150400.7.10.1 * libavahi-core7-0.8-150400.7.10.1 * libavahi-common3-debuginfo-0.8-150400.7.10.1 * libavahi-common3-0.8-150400.7.10.1 * libavahi-client3-0.8-150400.7.10.1 * avahi-0.8-150400.7.10.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 s390x x86_64) * libavahi-core7-debuginfo-0.8-150400.7.10.1 * avahi-debugsource-0.8-150400.7.10.1 * libavahi-client3-debuginfo-0.8-150400.7.10.1 * avahi-debuginfo-0.8-150400.7.10.1 * libavahi-core7-0.8-150400.7.10.1 * libavahi-common3-debuginfo-0.8-150400.7.10.1 * libavahi-common3-0.8-150400.7.10.1 * libavahi-client3-0.8-150400.7.10.1 * avahi-0.8-150400.7.10.1 * Basesystem Module15-SP4 (aarch64 ppc64le s390x x86_64) * libdns_sd-0.8-150400.7.10.1 * libavahi-glib-devel-0.8-150400.7.10.1 * avahi-debugsource-0.8-150400.7.10.1 * libavahi-libevent1-0.8-150400.7.10.1 * libhowl0-debuginfo-0.8-150400.7.10.1 * avahi-compat-mDNSResponder-devel-0.8-150400.7.10.1 * libavahi-devel-0.8-150400.7.10.1 * libavahi-glib1-0.8-150400.7.10.1 * avahi-utils-0.8-150400.7.10.1 * avahi-0.8-150400.7.10.1 * libavahi-core7-debuginfo-0.8-150400.7.10.1 * typelib-1_0-Avahi-0_6-0.8-150400.7.10.1 * libavahi-glib1-debuginfo-0.8-150400.7.10.1 * avahi-glib2-debugsource-0.8-150400.7.10.1 * libhowl0-0.8-150400.7.10.1 * libavahi-common3-debuginfo-0.8-150400.7.10.1 * libavahi-libevent1-debuginfo-0.8-150400.7.10.1 * libavahi-ui-gtk3-0-debuginfo-0.8-150400.7.10.1 * avahi-utils-debuginfo-0.8-150400.7.10.1 * libavahi-client3-debuginfo-0.8-150400.7.10.1 * libavahi-gobject0-0.8-150400.7.10.1 * libavahi-core7-0.8-150400.7.10.1 * libavahi-common3-0.8-150400.7.10.1 * libavahi-ui-gtk3-0-0.8-150400.7.10.1 * avahi-compat-howl-devel-0.8-150400.7.10.1 * avahi-debuginfo-0.8-150400.7.10.1 * libavahi-gobject0-debuginfo-0.8-150400.7.10.1 * libavahi-client3-0.8-150400.7.10.1 * libdns_sd-debuginfo-0.8-150400.7.10.1 * Basesystem Module 15-SP4 (noarch) * avahi-lang-0.8-150400.7.10.1 * Basesystem Module 15-SP4 (x86_64) * libavahi-common3-32bit-0.8-150400.7.10.1 * libavahi-client3-32bit-0.8-150400.7.10.1 * libavahi-common3-32bit-debuginfo-0.8-150400.7.10.1 * libavahi-client3-32bit-debuginfo-0.8-150400.7.10.1 * avahi-32bit-debuginfo-0.8-150400.7.10.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libdns_sd-0.8-150400.7.10.1 * libavahi-glib-devel-0.8-150400.7.10.1 * avahi-debugsource-0.8-150400.7.10.1 * libavahi-libevent1-0.8-150400.7.10.1 * libhowl0-debuginfo-0.8-150400.7.10.1 * avahi-compat-mDNSResponder-devel-0.8-150400.7.10.1 * libavahi-devel-0.8-150400.7.10.1 *libavahi-glib1-0.8-150400.7.10.1 * avahi-utils-0.8-150400.7.10.1 * avahi-0.8-150400.7.10.1 * libavahi-core7-debuginfo-0.8-150400.7.10.1 * typelib-1_0-Avahi-0_6-0.8-150400.7.10.1 * libavahi-glib1-debuginfo-0.8-150400.7.10.1 * avahi-glib2-debugsource-0.8-150400.7.10.1 * libhowl0-0.8-150400.7.10.1 * libavahi-common3-debuginfo-0.8-150400.7.10.1 * libavahi-libevent1-debuginfo-0.8-150400.7.10.1 * libavahi-ui-gtk3-0-debuginfo-0.8-150400.7.10.1 * avahi-utils-debuginfo-0.8-150400.7.10.1 * libavahi-client3-debuginfo-0.8-150400.7.10.1 * libavahi-gobject0-0.8-150400.7.10.1 * libavahi-core7-0.8-150400.7.10.1 * libavahi-common3-0.8-150400.7.10.1 * libavahi-ui-gtk3-0-0.8-150400.7.10.1 * avahi-compat-howl-devel-0.8-150400.7.10.1 * avahi-debuginfo-0.8-150400.7.10.1 * libavahi-gobject0-debuginfo-0.8-150400.7.10.1 * libavahi-client3-0.8-150400.7.10.1 * libdns_sd-debuginfo-0.8-150400.7.10.1 * Basesystem Module 15-SP5 (noarch) * avahi-lang-0.8-150400.7.10.1 * Basesystem Module 15-SP5 (x86_64) * libavahi-common3-32bit-0.8-150400.7.10.1 * libavahi-client3-32bit-0.8-150400.7.10.1 * libavahi-common3-32bit-debuginfo-0.8-150400.7.10.1 * libavahi-client3-32bit-debuginfo-0.8-150400.7.10.1 * avahi-32bit-debuginfo-0.8-150400.7.10.1 * Desktop Applications Module 15-SP4 (aarch64 ppc64le s390x x86_64) * avahi-utils-gtk-debuginfo-0.8-150400.7.10.1 * libavahi-gobject-devel-0.8-150400.7.10.1 * avahi-debugsource-0.8-150400.7.10.1 * avahi-autoipd-debuginfo-0.8-150400.7.10.1 * avahi-glib2-debugsource-0.8-150400.7.10.1 * avahi-debuginfo-0.8-150400.7.10.1 * avahi-utils-gtk-0.8-150400.7.10.1 * avahi-autoipd-0.8-150400.7.10.1 * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * avahi-utils-gtk-debuginfo-0.8-150400.7.10.1 * libavahi-gobject-devel-0.8-150400.7.10.1 * avahi-debugsource-0.8-150400.7.10.1 * avahi-autoipd-debuginfo-0.8-150400.7.10.1 *avahi-glib2-debugsource-0.8-150400.7.10.1 * avahi-debuginfo-0.8-150400.7.10.1 * avahi-utils-gtk-0.8-150400.7.10.1 * avahi-autoipd-0.8-150400.7.10.1 * SUSE Package Hub 15 15-SP4 (aarch64 ppc64le s390x x86_64) * avahi-debugsource-0.8-150400.7.10.1 * python3-avahi-0.8-150400.7.10.1 * avahi-debuginfo-0.8-150400.7.10.1 * SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64) * avahi-debugsource-0.8-150400.7.10.1 * python3-avahi-0.8-150400.7.10.1 * avahi-debuginfo-0.8-150400.7.10.1 ## References: * https://www.suse.com/security/cve/CVE-2023-38470.html * https://www.suse.com/security/cve/CVE-2023-38473.html * https://bugzilla.suse.com/show_bug.cgi?id=1215947 * https://bugzilla.suse.com/show_bug.cgi?id=1216419 . Enhancements for avahi address security have been executed, confirming labels are compliant with established criteria. Essential upgrades are in place.. openSUSE Security Update, Avahi Update, Linux Vulnerability Fix. . LinuxSecurity.com Team

Calendar 2 Nov 21, 2023 OpenSUSE
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoraCVE fix

Fedora 28 FEDORA-2018-c39ae23dc8 Severe Ghostscript Fixes

This is a security fix for `CVE-2018-16802`. It also fixes a printing problem discovered in one of the previous CVE fixes.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-c39ae23dc8 2018-09-17 03:54:20.308094 --------------------------------------------------------------------------------Name : ghostscript Product : Fedora 28 Version : 9.24 Release : 3.fc28 URL : https://ghostscript.com/ Summary : Interpreter for PostScript language & PDF Description : This package provides useful conversion utilities based on Ghostscript software, for converting PS, PDF and other document formats between each other. Ghostscript is a suite of software providing an interpreter for Adobe Systems' PostScript (PS) and Portable Document Format (PDF) page description languages. Its primary purpose includes displaying (rasterization & rendering) and printing of document pages, as well as conversions between different document formats. --------------------------------------------------------------------------------Update Information: This is a security fix for `CVE-2018-16802`. It also fixes a printing problem discovered in one of the previous CVE fixes. --------------------------------------------------------------------------------ChangeLog: * Fri Sep 14 2018 David Kaspar [Dee'Kej] - 9.24-3 - ghostscript-9.24-002-icc-PermitReading.patch removed - ghostscript-9.24-002-fix-for-Canon-and-Kyocera-printers.patch added (bug #1626818) - ghostscript-9.24-003-CVE-2018-16802.patch added (bug #1627960) * Fri Sep 7 2018 Tom Callaway - 9.24-2 - add upstream fix for reading in ICC profiles * Wed Sep 5 2018 David Kaspar [Dee'Kej] - 9.24-1 - rebase to latest upstream version, which contains important CVE fixes - additional ZER0-DAY fixes added * Wed Aug 29 2018 David Kaspar [Dee'Kej] - 9.23-7 - ghostscript-9.23-002-fixes-for-set-of-CVEs-reported-by-Google.patch added * Mon Jul 30 2018 David Kaspar[Dee'Kej] - 9.23-6 - ghostscript-9.23-001-create-GC-descriptors-for-JPEG-passthrough.patch added (bug #1589467) * Fri Jul 13 2018 Fedora Release Engineering - 9.23-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Tue May 15 2018 David Kaspar [Dee'Kej] - 9.23-4 - One more rebuild for libidn ABI fix (BZ#'s 1573961 and 1566414) * Mon May 14 2018 David Kaspar [Dee'Kej] - 9.23-3 - %conflicts_vers bumped to fix F27-> F28 upgrade * Thu May 10 2018 Stephen Gallagher - 9.23-2.1 - Rebuilding for libidn ABI fix (BZ#'s 1573961 and 1566414) * Mon Apr 23 2018 David Kaspar [Dee'Kej] - 9.23-2 - Fix for CVE-2018-10194 added (bug #1569821) --------------------------------------------------------------------------------References: [ 1 ] Bug #1626818 - ghostscript-9.23-6 causes "filter failed" error in cups https://bugzilla.redhat.com/show_bug.cgi?id=1626818 [ 2 ] Bug #1627960 - CVE-2018-16802 ghostscript: Incorrect "restoration of privilege" checking when running out of stack during exception handling [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1627960 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2018-c39ae23dc8' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines:https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Update for Ghostscript in Fedora 28 mitigating CVE-2018-16802 alongside resolved earlier printing problems.. Ghostscript Security Update,Fedora Security Patch,Printing Issues Fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Sep 17, 2018 Critical Fedora
Banner 3 1028x280 1708121785 1771599793
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorysambalow severity

SciLinux: SLSA-2018-1883-1 Low Severity Update for Samba4

samba: Null pointer indirection in printer server process (CVE-2018-1050) SL6 x86_64 samba4-4.2.10-15.el6.x86_64.rpm samba4-client-4.2.10-15.el6.x86_64.rpm samba4-common-4.2.10-15.el6.x86_64.rpm samba4-dc-4.2.10-15.el6.x86_64.rpm samba4-dc-libs-4.2.10-15.el6.x86_64.rpm samba4-debuginfo-4.2.10-15.el6.x86_64.rpm samba4-devel-4.2.10-15.el6.x86_64.rpm samba4-libs [More...]. Synopsis: Low: samba4 security and bug fix update Advisory ID: SLSA-2018:1883-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2018-1050 -- Security Fix(es): * samba: Null pointer indirection in printer server process (CVE-2018-1050) -- SL6 x86_64 samba4-4.2.10-15.el6.x86_64.rpm samba4-client-4.2.10-15.el6.x86_64.rpm samba4-common-4.2.10-15.el6.x86_64.rpm samba4-dc-4.2.10-15.el6.x86_64.rpm samba4-dc-libs-4.2.10-15.el6.x86_64.rpm samba4-debuginfo-4.2.10-15.el6.x86_64.rpm samba4-devel-4.2.10-15.el6.x86_64.rpm samba4-libs-4.2.10-15.el6.x86_64.rpm samba4-pidl-4.2.10-15.el6.x86_64.rpm samba4-python-4.2.10-15.el6.x86_64.rpm samba4-test-4.2.10-15.el6.x86_64.rpm samba4-winbind-4.2.10-15.el6.x86_64.rpm samba4-winbind-clients-4.2.10-15.el6.x86_64.rpm samba4-winbind-krb5-locator-4.2.10-15.el6.x86_64.rpm i386 samba4-4.2.10-15.el6.i686.rpm samba4-client-4.2.10-15.el6.i686.rpm samba4-common-4.2.10-15.el6.i686.rpm samba4-dc-4.2.10-15.el6.i686.rpm samba4-dc-libs-4.2.10-15.el6.i686.rpm samba4-debuginfo-4.2.10-15.el6.i686.rpm samba4-devel-4.2.10-15.el6.i686.rpm samba4-libs-4.2.10-15.el6.i686.rpm samba4-pidl-4.2.10-15.el6.i686.rpm samba4-python-4.2.10-15.el6.i686.rpm samba4-test-4.2.10-15.el6.i686.rpm samba4-winbind-4.2.10-15.el6.i686.rpm samba4-winbind-clients-4.2.10-15.el6.i686.rpm samba4-winbind-krb5-locator-4.2.10-15.el6.i686.rpm - Scientific Linux Development Team . Minor samba4 security patch: Resolving null pointer dereference within the printing service process.. samba security,samba4 update,Samba printerissue,SciLinux advisory. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Jul 02, 2018 Low Scientific Linux
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisoryGentoohigh severity

Gentoo: GLSA 200409-24 High: Foomatic Command Execution Threat

The foomatic-rip filter in foomatic-filters contains a vulnerability which may allow arbitrary command execution on the print server.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200409-24 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: Foomatic: Arbitrary command execution in foomatic-rip filter Date: September 20, 2004 Bugs: #64166 ID: 200409-24 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= The foomatic-rip filter in foomatic-filters contains a vulnerability which may allow arbitrary command execution on the print server. Background ========= Foomatic is a system for connecting printer drivers with spooler systems such as CUPS and LPD. The foomatic-filters package contains wrapper scripts which are designed to be used with Foomatic. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-print/foomatic = 3.0.2 2 net-print/foomatic-filters = 3.0.2 ------------------------------------------------------------------- 2 affected packages on all of their supported architectures. ------------------------------------------------------------------- Description ========== There is a vulnerability in the foomatic-filters package. This vulnerability is due to insufficient checking of command-line parameters and environment variables in the foomatic-rip filter. Impact ===== This vulnerability may allow both local and remote attackers to execute arbitrary commands on the print server with the permissions of the spooler(oftentimes the "lp" user). Workaround ========= There is no known workaround at this time. Resolution ========= All foomatic users should upgrade to the latest version: # emerge sync # emerge -pv "> =net-print/foomatic-3.0.2" # emerge "> =net-print/foomatic-3.0.2" PLEASE NOTE: You should update foomatic, instead of foomatic-filters. This will help to ensure that all other foomatic components remain functional. References ========= [ 1 ] Foomatic Announcement [ 2 ] Mandrakesoft Security Advisory [ 3 ] CAN 2004-0801 https://www.cve.org/CVERecord?id=CVE-CAN-2004-0801 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200409-24 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2004 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/1.0/ . The recent GLSA 202309-25 from Gentoo highlights a critical weakness that permits unauthorized command execution in system-config. Ensure immediate updates!. Foomatic Filter, Gentoo Security, Command Execution, Printer Issue, System Security. . LinuxSecurity.com Team

Calendar 2 Sep 20, 2004 Gentoo
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here