Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderate threatupdate instructions

openSUSE: 2023:3144-1 Moderate: Python Tornado Open Redirect Issue

This update fixes the following issues: python-tornado:. # Security update for SUSE Manager Client Tools Announcement ID: SUSE-SU-2023:3144-1 Rating: moderate References: * #1208612 * #1211741 * #1212279 Cross-References: * CVE-2023-28370 CVSS scores: * CVE-2023-28370 ( SUSE ): 3.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N * CVE-2023-28370 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: * Basesystem Module 15-SP4 * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap Micro 5.3 * openSUSE Leap Micro 5.4 * SUSE CaaS Platform 4.0 * SUSE Enterprise Storage 7 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 * SUSE Linux Enterprise Desktop 15 SP1 * SUSE Linux Enterprise Desktop 15 SP2 * SUSE Linux Enterprise Desktop 15 SP3 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 * SUSE Linux Enterprise High Performance Computing 15 SP1 * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.0 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP1 * SUSE Linux Enterprise Real Time 15 SP2 * SUSE Linux Enterprise Real Time 15 SP3 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux EnterpriseReal Time 15 SP5 * SUSE Linux Enterprise Server 15 * SUSE Linux Enterprise Server 15 SP1 * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Client Tools for SLE 15 * SUSE Manager Client Tools for SLE Micro 5 * SUSE Manager Proxy 4.2 * SUSE Manager Proxy 4.2 Module 4.2 * SUSE Manager Proxy 4.3 * SUSE Manager Proxy 4.3 Module 4.3 * SUSE Manager Retail Branch Server 4.2 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.2 * SUSE Manager Server 4.2 Module 4.2 * SUSE Manager Server 4.3 * SUSE Manager Server 4.3 Module 4.3 An update that solves one vulnerability, contains three features and has two fixes can now be installed. ## Description: This update fixes the following issues: python-tornado: * Security fixes: * CVE-2023-28370: Fixed an open redirect issue in the static file handler (bsc#1211741) prometheus-blackbox_exporter: * Use obscpio for go modules service * Set version number * Set build date from SOURCE_DATE_EPOCH * Update to 0.24.0 (bsc#1212279, jsc#PED-4556) * Requires go1.19 * Avoid empty validation script * Add rc symlink for backwards compatibility spacecmd: * Version 4.3.22-1 * Bypass traditional systems check on older SUMA instances (bsc#1208612) ## Patch Instructions: To install this SUSE Moderate update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the commandlisted for your product: * openSUSE Leap Micro 5.3 zypper in -t patch openSUSE-Leap-Micro-5.3-2023-3144=1 * openSUSE Leap Micro 5.4 zypper in -t patch openSUSE-Leap-Micro-5.4-2023-3144=1 * openSUSE Leap 15.4 zypper in -t patch openSUSE-SLE-15.4-2023-3144=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2023-3144=1 * SUSE Manager Client Tools for SLE 15 zypper in -t patch SUSE-SLE-Manager-Tools-15-2023-3144=1 * SUSE Manager Client Tools for SLE Micro 5 zypper in -t patch SUSE-SLE-Manager-Tools-For-Micro-5-2023-3144=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-3144=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-3144=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-3144=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-3144=1 * Basesystem Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2023-3144=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2023-3144=1 * SUSE Manager Proxy 4.2 Module 4.2 zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Proxy-4.2-2023-3144=1 * SUSE Manager Proxy 4.3 Module 4.3 zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Proxy-4.3-2023-3144=1 * SUSE Manager Server 4.2 Module 4.2 zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Server-4.2-2023-3144=1 * SUSE Manager Server 4.3 Module 4.3 zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Server-4.3-2023-3144=1 * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2023-3144=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2023-3144=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-ESPOS-2023-3144=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patchSUSE-SLE-Product-HPC-15-SP3-LTSS-2023-3144=1 * SUSE Linux Enterprise Real Time 15 SP3 zypper in -t patch SUSE-SLE-Product-RT-15-SP3-2023-3144=1 * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-LTSS-2023-3144=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2023-3144=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2023-3144=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP1-2023-3144=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2023-3144=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2023-3144=1 * SUSE Manager Proxy 4.2 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.2-2023-3144=1 * SUSE Manager Retail Branch Server 4.2 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.2-2023-3144=1 * SUSE Manager Server 4.2 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.2-2023-3144=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2023-3144=1 * SUSE Enterprise Storage 7 zypper in -t patch SUSE-Storage-7-2023-3144=1 * SUSE CaaS Platform 4.0 To install this update, use the SUSE CaaS Platform 'skuba' tool. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way. * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2023-3144=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2023-3144=1 ## Package List: * openSUSE Leap Micro 5.3 (aarch64 x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * openSUSE Leap Micro 5.4(aarch64 s390x x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * prometheus-blackbox_exporter-0.24.0-150000.1.20.2 * openSUSE Leap 15.4 (noarch) * spacecmd-4.3.22-150000.3.101.1 * system-user-prometheus-1.0.0-150000.10.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * prometheus-blackbox_exporter-0.24.0-150000.1.20.2 * openSUSE Leap 15.5 (noarch) * spacecmd-4.3.22-150000.3.101.1 * system-user-prometheus-1.0.0-150000.10.1 * SUSE Manager Client Tools for SLE 15 (aarch64 ppc64le s390x x86_64) * prometheus-blackbox_exporter-0.24.0-150000.1.20.2 * SUSE Manager Client Tools for SLE 15 (noarch) * spacecmd-4.3.22-150000.3.101.1 * system-user-prometheus-1.0.0-150000.10.1 * SUSE Manager Client Tools for SLE Micro 5 (aarch64 s390x x86_64) * prometheus-blackbox_exporter-0.24.0-150000.1.20.2 * SUSE Manager Client Tools for SLE Micro 5 (noarch) * system-user-prometheus-1.0.0-150000.10.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) *python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * Basesystem Module 15-SP4 (aarch64 ppc64le s390x x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * SUSE Manager Proxy 4.2 Module 4.2 (aarch64 ppc64le s390x x86_64) * prometheus-blackbox_exporter-0.24.0-150000.1.20.2 * SUSE Manager Proxy 4.2 Module 4.2 (noarch) * system-user-prometheus-1.0.0-150000.10.1 * SUSE Manager Proxy 4.3 Module 4.3 (aarch64 ppc64le s390x x86_64) * prometheus-blackbox_exporter-0.24.0-150000.1.20.2 * SUSE Manager Proxy 4.3 Module 4.3 (noarch) * system-user-prometheus-1.0.0-150000.10.1 * SUSE Manager Server 4.2 Module 4.2 (noarch) * system-user-prometheus-1.0.0-150000.10.1 * SUSE Manager Server 4.3 Module 4.3 (noarch) * system-user-prometheus-1.0.0-150000.10.1 * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 (aarch64 x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * python2-tornado-4.5.3-150000.3.6.1 * python2-tornado-debuginfo-4.5.3-150000.3.6.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * python2-tornado-4.5.3-150000.3.6.1 * python2-tornado-debuginfo-4.5.3-150000.3.6.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (aarch64 x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * SUSE Linux Enterprise Real Time 15 SP3 (x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 (aarch64 ppc64le s390x x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * python2-tornado-4.5.3-150000.3.6.1 * python2-tornado-debuginfo-4.5.3-150000.3.6.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * python2-tornado-4.5.3-150000.3.6.1 * python2-tornado-debuginfo-4.5.3-150000.3.6.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 (ppc64le x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 *python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * python2-tornado-4.5.3-150000.3.6.1 * python2-tornado-debuginfo-4.5.3-150000.3.6.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * python2-tornado-4.5.3-150000.3.6.1 * python2-tornado-debuginfo-4.5.3-150000.3.6.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * SUSE Manager Proxy 4.2 (x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * SUSE Manager Retail Branch Server 4.2 (x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * SUSE Manager Server 4.2 (ppc64le s390x x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * python2-tornado-4.5.3-150000.3.6.1 * python2-tornado-debuginfo-4.5.3-150000.3.6.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * SUSE Enterprise Storage 7 (aarch64 x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 *python2-tornado-4.5.3-150000.3.6.1 * python2-tornado-debuginfo-4.5.3-150000.3.6.1 * SUSE CaaS Platform 4.0 (x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * python2-tornado-4.5.3-150000.3.6.1 * python2-tornado-debuginfo-4.5.3-150000.3.6.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * python-tornado-debugsource-4.5.3-150000.3.6.1 * python-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-debuginfo-4.5.3-150000.3.6.1 * python3-tornado-4.5.3-150000.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2023-28370.html * https://bugzilla.suse.com/show_bug.cgi?id=1208612 * https://bugzilla.suse.com/show_bug.cgi?id=1211741 * https://bugzilla.suse.com/show_bug.cgi?id=1212279 * * * . Incremental security enhancement for SUSE Manager Client Utilities, focusing on python-tornado vulnerabilities with remediation guidelines outlined.. openSUSE Update, Python Tornado Security, SUSE Manager Tools. . LinuxSecurity.com Team

Calendar 2 Aug 02, 2023 OpenSUSE
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorycriticalubuntu

Ubuntu 23.04 USN-6159-1 Critical: python-tornado Redirect Threat

Tornado could be made to redirect users to arbitrary web site if it opened a specially crafted URL.. =========================================================================Ubuntu Security Notice USN-6159-1 June 13, 2023 python-tornado vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 23.04 - Ubuntu 16.04 LTS (Available with Ubuntu Pro) Summary: Tornado could be made to redirect users to arbitrary web site if it opened a specially crafted URL. Software Description: - python-tornado: scalable, non-blocking web server and tools - documentation Details: It was discovered that Tornado incorrectly handled certain redirect. An remote attacker could possibly use this issue to redirect a user to an arbitrary web site and conduct a phishing attack by having user access a specially crafted URL. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 23.04: python3-tornado 6.2.0-3ubuntu0.1 Ubuntu 16.04 LTS (Available with Ubuntu Pro): python-tornado 4.2.1-1ubuntu3.1+esm1 python3-tornado 4.2.1-1ubuntu3.1+esm1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6159-1 CVE-2023-28370 Package Information: https://launchpad.net/ubuntu/+source/python-tornado/6.2.0-3ubuntu0.1 . The Ubuntu Security Notice USN-6160-1 pertains to a severe security flaw in python-requests which permits unauthorized command execution.. python Tornado, Ubuntu security, redirect threat. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 13, 2023 Critical Ubuntu
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here