Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 6 articles for you...
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisoryDoSimportant

Rocky Linux edition 10 fixes protobuf vulnerability RLSA-2026-3101

Important: protobuf security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:3094", "synopsis": "Important: protobuf security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for protobuf.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The protobuf packages provide Protocol Buffers, Google's data interchange format. Protocol Buffers can encode structured data in an efficient yet extensible format, and provide a flexible, efficient, and automated mechanism for serializing structured data.\n\nSecurity Fix(es):\n\n* python: protobuf: Protobuf: Denial of Service due to recursion depth bypass (CVE-2026-0994)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2432398", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2432398", "description": ""}], "cves": [{"name": "CVE-2026-0994", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-0994", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-674"}], "references": [], "publishedAt": "2026-02-24T18:56:34.668877Z", "rpms": {"Rocky Linux 10": {"nvras": ["protobuf-devel-0:3.19.6-15.el10_1.x86_64.rpm", "protobuf-lite-debuginfo-0:3.19.6-15.el10_1.ppc64le.rpm", "protobuf-compiler-debuginfo-0:3.19.6-15.el10_1.s390x.rpm", "protobuf-devel-0:3.19.6-15.el10_1.ppc64le.rpm", "protobuf-compiler-0:3.19.6-15.el10_1.ppc64le.rpm", "protobuf-0:3.19.6-15.el10_1.aarch64.rpm", "python3-protobuf-0:3.19.6-15.el10_1.ppc64le.rpm", "python3-protobuf-0:3.19.6-15.el10_1.x86_64.rpm", "protobuf-0:3.19.6-15.el10_1.x86_64.rpm", "protobuf-0:3.19.6-15.el10_1.src.rpm","protobuf-debuginfo-0:3.19.6-15.el10_1.x86_64.rpm", "python3-protobuf-debuginfo-0:3.19.6-15.el10_1.x86_64.rpm", "protobuf-devel-0:3.19.6-15.el10_1.s390x.rpm", "protobuf-lite-debuginfo-0:3.19.6-15.el10_1.x86_64.rpm", "protobuf-lite-0:3.19.6-15.el10_1.x86_64.rpm", "python3-protobuf-debuginfo-0:3.19.6-15.el10_1.ppc64le.rpm", "protobuf-devel-0:3.19.6-15.el10_1.aarch64.rpm", "protobuf-compiler-debuginfo-0:3.19.6-15.el10_1.ppc64le.rpm", "protobuf-lite-0:3.19.6-15.el10_1.s390x.rpm", "protobuf-lite-debuginfo-0:3.19.6-15.el10_1.s390x.rpm", "protobuf-compiler-0:3.19.6-15.el10_1.x86_64.rpm", "protobuf-debuginfo-0:3.19.6-15.el10_1.s390x.rpm", "protobuf-debuginfo-0:3.19.6-15.el10_1.aarch64.rpm", "protobuf-lite-devel-0:3.19.6-15.el10_1.x86_64.rpm", "protobuf-0:3.19.6-15.el10_1.s390x.rpm", "protobuf-lite-devel-0:3.19.6-15.el10_1.ppc64le.rpm", "protobuf-compiler-debuginfo-0:3.19.6-15.el10_1.x86_64.rpm", "protobuf-debugsource-0:3.19.6-15.el10_1.aarch64.rpm", "protobuf-debugsource-0:3.19.6-15.el10_1.x86_64.rpm", "protobuf-debugsource-0:3.19.6-15.el10_1.s390x.rpm", "protobuf-compiler-debuginfo-0:3.19.6-15.el10_1.aarch64.rpm", "protobuf-compiler-0:3.19.6-15.el10_1.s390x.rpm", "python3-protobuf-debuginfo-0:3.19.6-15.el10_1.aarch64.rpm", "python3-protobuf-0:3.19.6-15.el10_1.s390x.rpm", "python3-protobuf-0:3.19.6-15.el10_1.aarch64.rpm", "protobuf-debugsource-0:3.19.6-15.el10_1.ppc64le.rpm", "protobuf-lite-devel-0:3.19.6-15.el10_1.aarch64.rpm", "protobuf-lite-0:3.19.6-15.el10_1.ppc64le.rpm", "protobuf-0:3.19.6-15.el10_1.ppc64le.rpm", "protobuf-debuginfo-0:3.19.6-15.el10_1.ppc64le.rpm", "protobuf-compiler-0:3.19.6-15.el10_1.aarch64.rpm", "protobuf-lite-devel-0:3.19.6-15.el10_1.s390x.rpm", "python3-protobuf-debuginfo-0:3.19.6-15.el10_1.s390x.rpm", "protobuf-lite-debuginfo-0:3.19.6-15.el10_1.aarch64.rpm", "protobuf-lite-0:3.19.6-15.el10_1.aarch64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. ], 'cves': [], 'references': [], 'publishedAt': '2026-02-24T18:56:34.668877Z', 'rpms': }, 'rebootSug. important, protobuf, security,update, 'cves', 'references', 'publishedat', '2026-02-24t18. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 24, 2026 Important Rocky Linux
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateSuSE

SUSE: Protobuf Moderate Crash Issue Update CVE-2025-4565 2025:3722-1

* bsc#1244663 Cross-References: * CVE-2025-4565 . # Security update for protobuf Announcement ID: SUSE-SU-2025:3722-1 Release Date: 2025-10-22T11:21:36Z Rating: moderate References: * bsc#1244663 Cross-References: * CVE-2025-4565 CVSS scores: * CVE-2025-4565 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-4565 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-4565 ( NVD ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-4565 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * Public Cloud Module 15-SP3 * Public Cloud Module 15-SP4 * Public Cloud Module 15-SP5 * Public Cloud Module 15-SP6 * Public Cloud Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE LinuxEnterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.2 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.2 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.2 * SUSE Manager Server 4.3 * SUSE Package Hub 15 15-SP6 * SUSE Package Hub 15 15-SP7 An update that solves one vulnerability can now be installed. ## Description: This update for protobuf fixes the following issues: * CVE-2025-4565: parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages can lead to crash due to a `RecursionError` (bsc#1244663). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3722=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3722=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-3722=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-3722=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-3722=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-3722=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-3722=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-3722=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-3722=1 * Public Cloud Module 15-SP3 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP3-2025-3722=1 * Public Cloud Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2025-3722=1 * PublicCloud Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP5-2025-3722=1 * Public Cloud Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP6-2025-3722=1 * Public Cloud Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP7-2025-3722=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2025-3722=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-3722=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-3722=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * protobuf-debugsource-3.9.2-150200.4.27.1 * libprotobuf-lite20-debuginfo-3.9.2-150200.4.27.1 * libprotobuf-lite20-3.9.2-150200.4.27.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * protobuf-debugsource-3.9.2-150200.4.27.1 * libprotobuf-lite20-debuginfo-3.9.2-150200.4.27.1 * libprotobuf-lite20-3.9.2-150200.4.27.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * protobuf-debugsource-3.9.2-150200.4.27.1 * libprotobuf-lite20-debuginfo-3.9.2-150200.4.27.1 * libprotobuf-lite20-3.9.2-150200.4.27.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * protobuf-debugsource-3.9.2-150200.4.27.1 * libprotobuf-lite20-debuginfo-3.9.2-150200.4.27.1 * libprotobuf-lite20-3.9.2-150200.4.27.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * libprotobuf-lite20-debuginfo-3.9.2-150200.4.27.1 * libprotobuf-lite20-3.9.2-150200.4.27.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * protobuf-debugsource-3.9.2-150200.4.27.1 * libprotobuf20-debuginfo-3.9.2-150200.4.27.1 * libprotobuf20-3.9.2-150200.4.27.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * protobuf-debugsource-3.9.2-150200.4.27.1 * libprotobuf20-debuginfo-3.9.2-150200.4.27.1 * libprotobuf20-3.9.2-150200.4.27.1 * SUSE PackageHub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * python3-protobuf-3.9.2-150200.4.27.1 * protobuf-debugsource-3.9.2-150200.4.27.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * python3-protobuf-3.9.2-150200.4.27.1 * protobuf-debugsource-3.9.2-150200.4.27.1 * Public Cloud Module 15-SP3 (aarch64 ppc64le s390x x86_64) * python3-protobuf-3.9.2-150200.4.27.1 * protobuf-debugsource-3.9.2-150200.4.27.1 * Public Cloud Module 15-SP4 (aarch64 ppc64le s390x x86_64) * python3-protobuf-3.9.2-150200.4.27.1 * Public Cloud Module 15-SP5 (aarch64 ppc64le s390x x86_64) * python3-protobuf-3.9.2-150200.4.27.1 * Public Cloud Module 15-SP6 (aarch64 ppc64le s390x x86_64) * python3-protobuf-3.9.2-150200.4.27.1 * protobuf-debugsource-3.9.2-150200.4.27.1 * Public Cloud Module 15-SP7 (aarch64 ppc64le s390x x86_64) * python3-protobuf-3.9.2-150200.4.27.1 * protobuf-debugsource-3.9.2-150200.4.27.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * libprotobuf-lite20-3.9.2-150200.4.27.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * protobuf-debugsource-3.9.2-150200.4.27.1 * libprotobuf-lite20-debuginfo-3.9.2-150200.4.27.1 * libprotobuf-lite20-3.9.2-150200.4.27.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * protobuf-debugsource-3.9.2-150200.4.27.1 * libprotobuf-lite20-debuginfo-3.9.2-150200.4.27.1 * libprotobuf-lite20-3.9.2-150200.4.27.1 ## References: * https://www.suse.com/security/cve/CVE-2025-4565.html * https://bugzilla.suse.com/show_bug.cgi?id=1244663 . Update addresses CVE-2025-4565 in protobuf for SUSE, fixing parsing errors leading to crashes. Essential patch available.. SUSE Linux Protobuf Update, CVE-2025-4565 Patch, Security Alert SUSE, Protobuf Crash Vulnerability. . LinuxSecurity.com Team

Calendar 2 Oct 22, 2025 SuSE
Banner 3 1028x280 1708121785 1771599793
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoracritical

Fedora 43: Important Fix for Rust Monitord Exporter Protobuf Recursion

Update mirrorlist-server to version 3.0.8. Update the maxminddb crate to version 0.26.0. Update the prometheus crate to version 0.14.0. Update the protobuf and protobuf-codegen crates to version 3.7.2. Initial packaging of the protobuf-parse and protobuf-support crates.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-9e77f6ddcb 2025-10-14 22:21:43.157840+00:00 -------------------------------------------------------------------------------- Name : rust-monitord-exporter Product : Fedora 43 Version : 0.4.1 Release : 6.fc43 URL : https://crates.io/crates/monitord-exporter Summary : Let Prometheus know how happy your systemd is Description : monitord-exporter is a Prometheus exporter using monitord to export statistic to Prometheus collectors. -------------------------------------------------------------------------------- Update Information: Update mirrorlist-server to version 3.0.8. Update the maxminddb crate to version 0.26.0. Update the prometheus crate to version 0.14.0. Update the protobuf and protobuf-codegen crates to version 3.7.2. Initial packaging of the protobuf-parse and protobuf-support crates. This includes fixes for CVE-2025-53605 (Uncontrolled Recursion Vulnerability in the protobuf crate). -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 6 2025 Fabio Valentini - 0.4.1-6 - Add missing type annotation for prometheus 0.14 compatibility -------------------------------------------------------------------------------- References: [ 1 ] Bug #2376751 - CVE-2025-53605 mirrorlist-server: Protobuf: Uncontrolled Recursion Vulnerability [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2376751 [ 2 ] Bug #2401160 - F43FailsToInstall: rust-prometheus+protobuf-codegen-pure-devel https://bugzilla.redhat.com/show_bug.cgi?id=2401160 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-9e77f6ddcb' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Critical update for Fedora 43's rust-monitord-exporter addressing CVE-2025-53605 uncontrolled recursion issue.. rust monitord exporter, Fedora 43, CVE-2025-53605, protobuf crate. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 14, 2025 Critical Fedora
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorycriticaldebian

Debian 11: Severe Recursion Flaw in libcommons-lang3-java DLA-4286-1

A vulnerability has been discovered in libcommons-lang3-java, a set of Java classes that provide helper methods for standard Java classes. CVE-2025-48924 . ------------------------------------------------------------------------- Debian LTS Advisory DLA-4286-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Daniel Leidert August 31, 2025 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : libcommons-lang3-java Version : 3.11-1+deb11u1 CVE ID : CVE-2025-48924 Debian Bug : 1109125 A vulnerability has been discovered in libcommons-lang3-java, a set of Java classes that provide helper methods for standard Java classes. CVE-2025-48924   An uncontrolled recursion vulnerability was discovered in   ClassUtils.getClass() that could lead to a StackOverflowError on   very long inputs. For Debian 11 bullseye, this problem has been fixed in version 3.11-1+deb11u1. We recommend that you upgrade your libcommons-lang3-java packages. For the detailed security status of libcommons-lang3-java please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/libcommons-lang3-java Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . A critical update to libcommons-lang3-java addresses a significant unhandled recursive loop problem that could lead to application failures.. Debian libcommons-lang3-java update, security patch, Debian vulnerabilities. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Aug 31, 2025 Critical Debian LTS
Banner 3 1028x280 1708121785 1771599793
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoraupdate

Fedora 40: FEDORA-2025-05248392g1 urgent: tcpdump overflow

New version 4.2.11. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-04475838f9 2025-03-01 01:38:57.010379+00:00 -------------------------------------------------------------------------------- Name : wireshark Product : Fedora 40 Version : 4.2.11 Release : 1.fc40 URL : http://www.wireshark.org/ Summary : Network traffic analyzer Description : Wireshark allows you to examine protocol data stored in files or as it is captured from wired or wireless (WiFi or Bluetooth) networks, USB devices, and many other sources. It supports dozens of protocol capture file formats and understands more than a thousand protocols. It has many powerful features including a rich display filter language and the ability to reassemble multiple protocol packets in order to, for example, view a complete TCP stream, save the contents of a file which was transferred over HTTP or CIFS, or play back an RTP audio stream. -------------------------------------------------------------------------------- Update Information: New version 4.2.11 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 20 2025 Michal Ruprich - 1:4.2.11-1 - New version 4.2.11 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2346670 - wireshark-4.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2346670 [ 2 ] Bug #2346741 - CVE-2025-1492 wireshark: Uncontrolled Recursion in Wireshark [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2346741 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-04475838f9' at the command line. For more information, refer to the dnf documentation availableat http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . The latest Wireshark 4.2.11 security update for Fedora 40 highlights significant vulnerabilities linked to recursive functions in network traffic examination.. wireshark security, linux updates, fedora security, network analyzer updates. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 01, 2025 Critical Fedora
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateupdate

openSUSE Leap 15.4 SUSE-SU-2023:4270-1 Moderate Poppler Crash Fix

* bsc#1128114 * bsc#1214726 Cross-References: * CVE-2019-9545 . # Security update for poppler Announcement ID: SUSE-SU-2023:4270-1 Rating: moderate References: * bsc#1128114 * bsc#1214726 Cross-References: * CVE-2019-9545 * CVE-2022-37052 CVSS scores: * CVE-2019-9545 ( SUSE ): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2019-9545 ( NVD ): 8.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2022-37052 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 An update that solves two vulnerabilities can now be installed. ## Description: This update for poppler fixes the following issues: * CVE-2019-9545: Fixed an uncontrolled recursion issue that could cause a crash (bsc#1128114). * CVE-2022-37052: Fixed a crash that could be triggered when opening a crafted file (bsc#1214726). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch openSUSE-SLE-15.4-2023-4270=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64) * libpoppler73-0.62.0-150000.4.31.1 * libpoppler73-debuginfo-0.62.0-150000.4.31.1 * openSUSE Leap 15.4 (x86_64) * libpoppler73-32bit-debuginfo-0.62.0-150000.4.31.1 * libpoppler73-32bit-0.62.0-150000.4.31.1 ## References: * https://www.suse.com/security/cve/CVE-2019-9545.html * https://www.suse.com/security/cve/CVE-2022-37052.html * https://bugzilla.suse.com/show_bug.cgi?id=1128114 * https://bugzilla.suse.com/show_bug.cgi?id=1214726 . SUSE releases a significant security patch for libpng, tackling flaws that could cause application instability and excessive memory usage in Leap 15.4.. poppler update,SUSE security advisory,openSUSE vulnerabilities. . LinuxSecurity.com Team

Calendar 2 Oct 30, 2023 SuSE
Banner 3 1028x280 1708121785 1771599793
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorysecurity updatedebian

Debian 9: DLA-2872-1 Urgent: Agg Stack Overflow Resolution Released

Stack overflow due to infinite recursion was fixed in agg, the Anti-Grain Geometry graphical toolkit. For Debian 9 stretch, this problem has been fixed in version . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2872-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Adrian Bunk December 31, 2021 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : agg Version : 2.5+dfsg1-11+deb9u1 CVE ID : CVE-2019-6245 Debian Bug : 919322 Stack overflow due to infinite recursion was fixed in agg, the Anti-Grain Geometry graphical toolkit. For Debian 9 stretch, this problem has been fixed in version 2.5+dfsg1-11+deb9u1. We recommend that you upgrade your agg packages. For the detailed security status of agg please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/agg Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Debian LTS Notice DLA-2873-1 addresses memory corruption in gtk graphical toolkit. Update advised for safety.. Debian Security, agg Update, Graphical Toolkit, Stack Overflow Fix, Debian LTS. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 30, 2021 Critical Debian LTS
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderateupdate

openSUSE: 2021:3123-1 Moderate Update for libcroco Recursion Issue

An update that fixes one vulnerability is now available. . openSUSE Security Update: Security update for libcroco ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:3123-1 Rating: moderate References: #1171685 Cross-References: CVE-2020-12825 CVSS scores: CVE-2020-12825 (NVD) : 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H CVE-2020-12825 (SUSE): 2.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L Affected Products: openSUSE Leap 15.3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for libcroco fixes the following issues: - CVE-2020-12825: Fixed recursion issue in block and any productions (bsc#1171685). Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2021-3123=1 Package List: - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): libcroco-0.6.13-3.3.1 libcroco-0_6-3-0.6.13-3.3.1 libcroco-0_6-3-debuginfo-0.6.13-3.3.1 libcroco-debuginfo-0.6.13-3.3.1 libcroco-debugsource-0.6.13-3.3.1 libcroco-devel-0.6.13-3.3.1 - openSUSE Leap 15.3 (x86_64): libcroco-0_6-3-32bit-0.6.13-3.3.1 libcroco-0_6-3-32bit-debuginfo-0.6.13-3.3.1 References: https://www.suse.com/security/cve/CVE-2020-12825.html https://bugzilla.suse.com/1171685 . openSUSE Security Patch for libcroco tackles a notable recursion vulnerability, enhancing both system reliability and security.. openSUSE Security Update, libcroco patch, recursion fix, update installation. . LinuxSecurity.com Team

Calendar 2 Sep 16, 2021 OpenSUSE
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here