Alerts This Week
Warning Icon 1 537
Alerts This Week
Warning Icon 1 537

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -1 articles for you...
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorydenial of servicecritical

Mageia 9: QtBase6 & QtBase5 Critical DoS CVE-2025-5455 Advisory 2025-0212

An issue was found in the private API function qDecodeDataUrl() in QtCore, which is used in QTextDocument and QNetworkReply, and, potentially, in user code. If the function was called with malformed data, for example, an URL that contained a "charset" parameter that lacked a value (such as "data:charset,"), and Qt was built with . MGASA-2025-0212 - Updated qtbase6 & qtbase5 packages fix security vulnerability Publication date: 22 Jul 2025 URL: https://advisories.mageia.org/MGASA-2025-0212.html Type: security Affected Mageia releases: 9 CVE: CVE-2025-5455 An issue was found in the private API function qDecodeDataUrl() in QtCore, which is used in QTextDocument and QNetworkReply, and, potentially, in user code. If the function was called with malformed data, for example, an URL that contained a "charset" parameter that lacked a value (such as "data:charset,"), and Qt was built with assertions enabled, then it would hit an assertion, resulting in a denial of service (abort). This impacts Qt up to 5.15.18, 6.0.0-> 6.5.8, 6.6.0-> 6.8.3 and 6.9.0. References: - https://bugs.mageia.org/show_bug.cgi?id=34444 - - https://www.cve.org/CVERecord?id=CVE-2025-5455 SRPMS: - 9/core/qtbase6-6.4.1-5.2.mga9 - 9/core/qtbase5-5.15.7-6.2.mga9 . A critical alert for Mageia users warns of a denial of service vulnerability in qtbase5 and qtbase6 from improper handling of malformed data, urging prompt updates and audits. Mageia security advisory, qtbase6 update, denial of service, critical vulnerability. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jul 22, 2025 Critical Mageia
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorybuffer overflowinteger overflow

Mageia 9: 2025-0046 moderate: qtbase5 & qtbase6 Buffer Overflow Advisory

network/access/http2/hpacktable.cpp has an incorrect HPack integer overflow check. (CVE-2023-51714) A buffer overflow and application crash can occur via a crafted KTX image file. (CVE-2024-25580) Code to make security-relevant decisions about an established connection . MGASA-2025-0046 - Updated qtbase5 & qtbase6 packages fix security vulnerabilities Publication date: 09 Feb 2025 URL: https://advisories.mageia.org/MGASA-2025-0046.html Type: security Affected Mageia releases: 9 CVE: CVE-2023-51714, CVE-2024-25580, CVE-2024-39936 network/access/http2/hpacktable.cpp has an incorrect HPack integer overflow check. (CVE-2023-51714) A buffer overflow and application crash can occur via a crafted KTX image file. (CVE-2024-25580) Code to make security-relevant decisions about an established connection may execute too early, because the encrypted() signal has not yet been emitted and processed. (CVE-2024-39936) References: - https://bugs.mageia.org/show_bug.cgi?id=33159 - https://lwn.net/Articles/971686/ - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./message/KVCBTKX6LVBTP6UEJQZ2PENI2KATSRJK/ - https://www.cve.org/CVERecord?id=CVE-2023-51714 - https://www.cve.org/CVERecord?id=CVE-2024-25580 - https://www.cve.org/CVERecord?id=CVE-2024-39936 SRPMS: - 9/core/qtbase5-5.15.7-6.1.mga9 - 9/core/qtbase6-6.4.1-5.1.mga9 . The latest qtbase5 and qtbase6 updates rectify security vulnerabilities in Mageia. Announcement made on 09 February 2025.. qtbase5 Updates, Mageia Security, buffer Overflow Fixes, qtbase6 Advisory Updates. . LinuxSecurity.com Team

Calendar 2 Feb 09, 2025 Mageia
Banner 1 1028x280 1708121660 1771599717
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorymoderatebuffer overflow

Mageia 8 MGASA-2023-0190 Moderate: Qtbase5 HSTS Parsing Issue

Qt Network incorrectly parses the strict-transport-security (HSTS) header, allowing unencrypted connections to be established, even when explicitly prohibited by the server. This happens if the case used for this header does not exactly match. (CVE-2023-32762) QTextLayout buffer overflow in SVG file rendering. (CVE-2023-32763) . MGASA-2023-0190 - Updated qtbase5 packages fix security vulnerability Publication date: 31 May 2023 URL: https://advisories.mageia.org/MGASA-2023-0190.html Type: security Affected Mageia releases: 8 CVE: CVE-2023-32762, CVE-2023-32763 Qt Network incorrectly parses the strict-transport-security (HSTS) header, allowing unencrypted connections to be established, even when explicitly prohibited by the server. This happens if the case used for this header does not exactly match. (CVE-2023-32762) QTextLayout buffer overflow in SVG file rendering. (CVE-2023-32763) References: - https://bugs.mageia.org/show_bug.cgi?id=31940 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/JOTXCTZAIHUV2MKEPOPE3QDWDQRQN7TL/ - https://www.cve.org/CVERecord?id=CVE-2023-32762 - https://www.cve.org/CVERecord?id=CVE-2023-32763 SRPMS: - 8/core/qtbase5-5.15.2-4.9.mga8 . Recent updates for qtbase5 packages address critical security vulnerabilities in Mageia. Significant concerns involve HSTS interpretation and SVG buffer overflow risks.. qtbase5 security, Mageia update, HSTS issue, buffer overflow. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 31, 2023 Important Mageia
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorysoftware updateDoS fix

Mageia 8: 2023-0051 Security Advisory for qtbase5 DoS Issues

Avoid unintentionally using binaries from CWD (CVE-2022-23853) Fix a possible DOS involving the Qt SQL ODBC driver plugin (CVE-2023-24607) Also fixes a regression that prevented Akonadi from working with kmail . MGASA-2023-0051 - Updated qtbase5 packages fix security vulnerability Publication date: 20 Feb 2023 URL: https://advisories.mageia.org/MGASA-2023-0051.html Type: security Affected Mageia releases: 8 CVE: CVE-2022-23853, CVE-2023-24607 Avoid unintentionally using binaries from CWD (CVE-2022-23853) Fix a possible DOS involving the Qt SQL ODBC driver plugin (CVE-2023-24607) Also fixes a regression that prevented Akonadi from working with kmail References: - https://bugs.mageia.org/show_bug.cgi?id=29359 - https://www.cve.org/CVERecord?id=CVE-2022-23853 - https://https://www.cve.org/CVERecord?id=CVE-2023-24607 SRPMS: - 8/core/qtbase5-5.15.2-4.8.mga8 . The latest qtbase5 package updates tackle security vulnerabilities, mitigate DoS threats, and correct various bugs within Mageia.. qtbase5 security update,Mageia security advisory,DoS prevention,CWD vulnerability fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 20, 2023 Important Mageia
Banner 1 1028x280 1708121660 1771599717
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorydenial of servicecritical issue

Mageia 7 MGASA-2021-0200 Critical: QSslSocket Denial of Service

QSslSocket incorrectly calls SSL_shutdown() in OpenSSL mid-handshake causing denial of service in TLS applications (CVE-2020-13962) This update provides additionals fixes: - Check that the sizes are even representable when checking if clipping is . MGASA-2021-0200 - Updated qtbase5 packages fix security vulnerability Publication date: 30 Apr 2021 URL: https://advisories.mageia.org/MGASA-2021-0200.html Type: security Affected Mageia releases: 7 CVE: CVE-2020-13962 QSslSocket incorrectly calls SSL_shutdown() in OpenSSL mid-handshake causing denial of service in TLS applications (CVE-2020-13962) This update provides additionals fixes: - Check that the sizes are even representable when checking if clipping is necessary (P300) - Multiply instead of shifting, The shift operator is undefined for negative values. (P301) - Check returns of hex2int in get_hex_rgb, Avoids undefined behavior when trying to shift negative values. (P302) - Sanitize lengthValue in CSS parser, Limit the LengthData to the integer range before rounding it, taking into account that qRound() substracts 1 from negative values. (P303) - QBezier: Don't try calculating a unit vector when length is null. It's undefined and causes a division by zero. (P304) - Avoid potential ub in corrupt bmp file. biHeight may be int_min, in which case qAbs () will not work. (P305) - wasm: disable XDG_RUNTIME_DIR warning XDG is not very relevant on the Web platform. (P306) - Use SOURCE_DATE_EPOCH. Use the standard variable name in addition to the QT-specific one to make builds reproducible out-of-the-box (P308) - Fix notification of QDockWidget when it gets undocked (P309) - Synthesize Enter/LeaveEvent for accepted QTabletEvent (P310) - Fix crash when running QtCore: Stack is misaligned on x86-64 (P311) - Add support for PostgreSQL 12 (P312) - QStandardPaths: Correct handling for XDG_RUNTIME_DIR (P313) - QStandardPaths/Unix: improve the XDG_RUNTIME_DIR creation/detection (P312) - Add remote print queue support(P313) References: - https://bugs.mageia.org/show_bug.cgi?id=27218 - - https://access.redhat.com/errata/RHSA-2020:4690 - https://www.cve.org/CVERecord?id=CVE-2020-13962 SRPMS: - 7/core/qtbase5-5.12.6-4.2.mga7 . Revised qtbase5 bundles resolve a significant vulnerability in Mageia related to QSslSocket, leading to potential denial-of-service in TLS-enabled applications.. Mageia Security, QSslSocket, DoS Threat, SSL Update, QtBase5 Patch. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Apr 30, 2021 Critical Mageia
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorydenial of servicemageia

Mageia 7: 2020-0192 Critical: Qtbase5 XML Entity Expansion Assessment

Updated qtbase5 packages fix security vulnerability: An XML Entity Expansion flaw was found in the QT library. Applications that use QT to load untrusted images, for example, SVG images, or untrusted XML documents, may be vulnerable to this flaw. This flaw allows an attacker to . MGASA-2020-0192 - Updated qtbase5 packages fix security vulnerability Publication date: 05 May 2020 URL: https://advisories.mageia.org/MGASA-2020-0192.html Type: security Affected Mageia releases: 7 CVE: CVE-2015-9541 Updated qtbase5 packages fix security vulnerability: An XML Entity Expansion flaw was found in the QT library. Applications that use QT to load untrusted images, for example, SVG images, or untrusted XML documents, may be vulnerable to this flaw. This flaw allows an attacker to cause a denial of service (CVE-2015-9541). References: - https://bugs.mageia.org/show_bug.cgi?id=26554 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/2PT6327C64Q4RBFRWUSBKCG7SVGBWU5W/ - https://www.cve.org/CVERecord?id=CVE-2015-9541 SRPMS: - 7/core/qtbase5-5.12.6-3.mga7 . The latest updates for qtbase5 packages address the XML entity expansion security flaw, enhancing Mageia's overall security profile. Refer to CVE-2015-9541 for detailed information.. qtbase5, security advisory, XML flaw, denial of service, Mageia update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 05, 2020 Critical Mageia
Banner 1 1028x280 1708121660 1771599717
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorysoftware updatemalicious code execution

Mageia 7: 2020-0080 Critical: Qtbase5 Malicious Code Threat

Updated qtbase5 packages fix security vulnerabilities: QPluginLoader in Qt versions 5.0.0 through 5.13.2 would search for certain plugins first on the current working directory of the application, which allows an attacker that can place files in the file system and influence . MGASA-2020-0080 - Updated qtbase5 packages fix security vulnerabilities Publication date: 09 Feb 2020 URL: https://advisories.mageia.org/MGASA-2020-0080.html Type: security Affected Mageia releases: 7 CVE: CVE-2020-0569, CVE-2020-0570 Updated qtbase5 packages fix security vulnerabilities: QPluginLoader in Qt versions 5.0.0 through 5.13.2 would search for certain plugins first on the current working directory of the application, which allows an attacker that can place files in the file system and influence the working directory of Qt-based applications to load and execute malicious code (CVE-2020-0569). QLibrary in Qt versions 5.12.0 through 5.14.0, on certain x86 machines, would search for certain libraries and plugins relative to current working directory of the application, which allows an attacker that can place files in the file system and influence the working directory of Qt-based applications to load and execute malicious code (CVE-2020-0570). Also, a file conflict that caused issues when upgrading from Mageia 6 has been fixed (mga#25418) References: - https://bugs.mageia.org/show_bug.cgi?id=26153 - https://bugs.mageia.org/show_bug.cgi?id=25418 - https://www.openwall.com/lists/oss-security/2020/01/30/1 - https://www.cve.org/CVERecord?id=CVE-2020-0569 - https://www.cve.org/CVERecord?id=CVE-2020-0570 SRPMS: - 7/core/qtbase5-5.12.6-2.mga7 . New qtbase5 versions fix significant security flaws in Mageia. Urgency of prompt updates cannot be overstated. Keep your system secure!. qtbase5 security, Mageia update, code execution risk, application vulnerabilities. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 09, 2020 Critical Mageia
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorydouble freeDenial of service

Mageia: 2019-0025 Moderate: qtbase5 Double Free and DoS Threat

Double free in QXmlStreamReader (CVE-2018-15518). Denial of Service on malformed BMP file in QBmpHandler (CVE-2018-19873). References: . MGASA-2019-0025 - Updated qtbase5 packages fix security vulnerabilities Publication date: 08 Jan 2019 URL: https://advisories.mageia.org/MGASA-2019-0025.html Type: security Affected Mageia releases: 6 CVE: CVE-2018-15518, CVE-2018-19873 Double free in QXmlStreamReader (CVE-2018-15518). Denial of Service on malformed BMP file in QBmpHandler (CVE-2018-19873). References: - https://bugs.mageia.org/show_bug.cgi?id=24081 - - https://www.cve.org/CVERecord?id=CVE-2018-15518 - https://www.cve.org/CVERecord?id=CVE-2018-19873 SRPMS: - 6/core/qtbase5-5.9.4-1.2.mga6 . Recent updates to qtbase5 packages tackle vulnerabilities related to double free and denial of service risks, released on January 8, 2019.. qtbase5 Update, Mageia Advisory, Security Fixes. . LinuxSecurity.com Team

Calendar 2 Jan 08, 2019 Mageia
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here