Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -4 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorymoderatedebian

Debian 11: DLA-3889-1 Moderate: Pymongo Deserialization Issue

pymongo a python interface to the MongoDB document-oriented database was vulnerable. An out-of-bounds read in the 'bson' module allowed deserialization of . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3889-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Bastien Roucariès September 16, 2024 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : pymongo Version : 3.11.0-1+deb11u1 CVE ID : CVE-2024-5629 pymongo a python interface to the MongoDB document-oriented database was vulnerable. An out-of-bounds read in the 'bson' module allowed deserialization of malformed BSON provided by a Server to raise an exception which may contain arbitrary application memory. For Debian 11 bullseye, this problem has been fixed in version 3.11.0-1+deb11u1. We recommend that you upgrade your pymongo packages. For the detailed security status of pymongo please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/pymongo Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Debian LTS Advisory DLA-3890-1 introduces updates to flask for security vulnerabilities including remote code execution and input validation flaws.. pymongo updates, database security, python vulnerabilities. . LinuxSecurity.com Team

Calendar 2 Sep 16, 2024 Debian LTS
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorycriticalsoftware update

Ubuntu 24.04 LTS USN-6904-1 Critical: PyMongo Crash Risk

PyMongo could be made to crash or expose sensitive information if it received a crafted BSON.. ========================================================================== Ubuntu Security Notice USN-6904-1 July 22, 2024 pymongo vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: PyMongo could be made to crash or expose sensitive information if it received a crafted BSON. Software Description: - pymongo: Python interface to the MongoDB document-oriented database Details: It was discovered that PyMongo incorrectly handled certain BSON. An attacker could possibly use this issue to read sensitive information or cause a crash. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.04 LTS python3-bson 3.11.0-1ubuntu0.24.04.1 python3-bson-ext 3.11.0-1ubuntu0.24.04.1 Ubuntu 22.04 LTS python3-bson 3.11.0-1ubuntu0.22.04.1 python3-bson-ext 3.11.0-1ubuntu0.22.04.1 Ubuntu 20.04 LTS python3-bson 3.10.1-0ubuntu2.1 python3-bson-ext 3.10.1-0ubuntu2.1 Ubuntu 18.04 LTS python-bson 3.6.1+dfsg1-1ubuntu0.1~esm1 Available with Ubuntu Pro python-bson-ext 3.6.1+dfsg1-1ubuntu0.1~esm1 Available with Ubuntu Pro python3-bson 3.6.1+dfsg1-1ubuntu0.1~esm1 Available with Ubuntu Pro python3-bson-ext 3.6.1+dfsg1-1ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 16.04 LTS python-bson 3.2-1ubuntu0.1~esm1 Available with Ubuntu Pro python-bson-ext 3.2-1ubuntu0.1~esm1 Available with Ubuntu Pro python3-bson 3.2-1ubuntu0.1~esm1 Available with Ubuntu Pro python3-bson-ext 3.2-1ubuntu0.1~esm1 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6904-1 CVE-2024-5629 Package Information: https://launchpad.net/ubuntu/+source/pymongo/3.11.0-1ubuntu0.24.04.1 https://launchpad.net/ubuntu/+source/pymongo/3.11.0-1ubuntu0.22.04.1 https://launchpad.net/ubuntu/+source/pymongo/3.10.1-0ubuntu2.1 . PyMongo vulnerability alert emphasizing potential crash and data leak threats across various Ubuntu LTS editions.. Ubuntu LTS, PyMongo Security, Information Exposure, Crash Risk. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 22, 2024 Critical Ubuntu
Banner 1 1028x280 1708121660 1771599717
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydebianmemory issue

Debian 10: DLA-3832-1 Moderate: Pymongo Out-Of-Bounds Memory Issue

An out-of-bounds read in the 'bson' module allowed deserialization of malformed BSON provided by a Server to raise an exception which may contain arbitrary application memory. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3832-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Bastien Roucariès June 17, 2024 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : pymongo Version : 3.7.1-1.1+deb10u1 CVE ID : CVE-2024-5629 An out-of-bounds read in the 'bson' module allowed deserialization of malformed BSON provided by a Server to raise an exception which may contain arbitrary application memory. For Debian 10 buster, this problem has been fixed in version 3.7.1-1.1+deb10u1. We recommend that you upgrade your pymongo packages. For the detailed security status of pymongo please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/pymongo Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Elevate pymongo to rectify buffer overflow vulnerability in BSON component for enhanced security and reliability.. Debian LTS Security, Pymongo Update, BSON Module Fix. . LinuxSecurity.com Team

Calendar 2 Jun 17, 2024 Debian LTS
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryremote code executionimportant

Red Hat Enterprise MRG 2.3 RHSA-2013:1170-01 Important MongoDB Update

Updated mongodb and pymongo packages that fix two security issues and add one enhancement are now available for Red Hat Enterprise MRG 2.3 for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: mongodb and pymongo security and enhancement update Advisory ID: RHSA-2013:1170-01 Product: Red Hat Enterprise MRG for RHEL-6 Advisory URL: https://access.redhat.com/errata/RHSA-2013:1170.html Issue date: 2013-08-21 CVE Names: CVE-2013-1892 CVE-2013-2132 ==================================================================== 1. Summary: Updated mongodb and pymongo packages that fix two security issues and add one enhancement are now available for Red Hat Enterprise MRG 2.3 for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: MRG Grid for RHEL 6 Server v.2 - i386, x86_64 3. Description: MongoDB is a NoSQL database. PyMongo provides tools for working with MongoDB. A flaw was found in the run() function implementation in MongoDB. A database user permitted to send database queries to a MongoDB server could use this flaw to crash the server or, possibly, execute arbitrary code with the privileges of the mongodb user. (CVE-2013-1892) A NULL pointer dereference flaw was found in PyMongo. An invalid DBRef record received from a MongoDB server could cause an application using PyMongo to crash. (CVE-2013-2132) Note: In Red Hat Enterprise MRG Grid, MongoDB is not accessed by usersdirectly and is only accessed by other Grid services, such as Condor and Cumin. This update alsoadds the following enhancement: * Previously, MongoDB was configured to listen for connections on all network interfaces. This could allow remote users to access the database if the firewall was configured to allow access to the MongoDB port (access is blocked by the default firewall configuration in Red Hat Enterprise Linux). This update changes the configuration to only listen on the loopback interface by default. (BZ#892767) Users of Red Hat Enterprise MRG 2.3 for Red Hat Enterprise Linux 6 are advised to upgrade to these updated packages, which contain backported patches to resolve these issues and add this enhancement. After installing this update, MongoDB will be restarted automatically. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258 5. Bugs fixed (http://bugzilla.redhat.com/): 927536 - CVE-2013-1892 MongoDB: Server Side JavaScript Includes allow Remote Code Execution 969560 - CVE-2013-2132 pymongo: null pointer when decoding invalid DBRef 6. Package List: MRG Grid for RHEL 6 Server v.2: Source: i386: mongodb-1.6.4-6.el6.i686.rpm mongodb-debuginfo-1.6.4-6.el6.i686.rpm mongodb-server-1.6.4-6.el6.i686.rpm pymongo-1.9-11.el6.i686.rpm pymongo-debuginfo-1.9-11.el6.i686.rpm python-bson-1.9-11.el6.i686.rpm x86_64: mongodb-1.6.4-6.el6.x86_64.rpm mongodb-debuginfo-1.6.4-6.el6.x86_64.rpm mongodb-server-1.6.4-6.el6.x86_64.rpm pymongo-1.9-11.el6.x86_64.rpm pymongo-debuginfo-1.9-11.el6.x86_64.rpm python-bson-1.9-11.el6.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7.References: https://access.redhat.com/security/cve/CVE-2013-1892 https://access.redhat.com/security/cve/CVE-2013-2132 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2013 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFSFQb3XlSAg2UNWIIRAptVAJ4idyFf19jChBXB0HDox3Xy3oEZ/gCfd0yj nz4H+Z007JHbJWChMXS6VZI=gxWG -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Red Hat enhances both mongodb and pymongo to rectify security vulnerabilities and boost performance on RHEL 6 platforms.. MongoDB Update, Pymongo Security, Red Hat Advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 21, 2013 Important Red Hat
Banner 1 1028x280 1708121660 1771599717
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydenial of serviceremote exploit

Debian: DSA-2705-1 Moderate: Pymongo Denial Of Service Threat

Jibbers McGee discovered that pymongo, a high-performance schema-free document-oriented data store, is prone to a denial-of-service vulnerability. An attacker can remotely trigger a NULL pointer dereference causing MongoDB . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2705-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Giuseppe Iuculano June 10, 2013 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : pymongo Vulnerability : denial of service Problem type : remote Debian-specific: no CVE ID : CVE-2013-2132 Debian Bug : 710597 Jibbers McGee discovered that pymongo, a high-performance schema-free document-oriented data store, is prone to a denial-of-service vulnerability. An attacker can remotely trigger a NULL pointer dereference causing MongoDB to crash. The oldstable distribution (squeeze), is not affected by this issue. For the stable distribution (wheezy), this problem has been fixed in version 2.2-4+deb7u1. For the testing distribution (jessie), this problem has been fixed in version 2.5.2-1. For the unstable distribution (sid), this problem has been fixed in version 2.5.2-1. We recommend that you upgrade your pymongo packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: http://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Pymongo encounters a critical patch addressing a potential service disruption threat; upgrade advised for both production and experimental versions.. Debian Security,pymongo Update,Denial of Service Exploit,Remote Vulnerability. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 10, 2013 Important Debian
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here