Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorycode executionRed Hat Enterprise Linux

Red Hat: RHSA-2018-2526-01 Important Mutt Code Execution Issue

An update for mutt is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: mutt security update Advisory ID: RHSA-2018:2526-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2018:2526 Issue date: 2018-08-20 CVE Names: CVE-2018-14354 CVE-2018-14357 CVE-2018-14362 ==================================================================== 1. Summary: An update for mutt is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7) - aarch64, ppc64le, s390x 3. Description: Mutt is a low resource, highly configurable, text-based MIME e-mail client. Mutt supports most e-mail storing formats, such as mbox and Maildir, as well as most protocols, including POP3 and IMAP. Security Fix(es): * mutt: Remote code injection vulnerability to an IMAPmailbox (CVE-2018-14354) * mutt: Remote Code Execution via backquote characters (CVE-2018-14357) * mutt: POP body caching path traversal vulnerability (CVE-2018-14362) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1602069 - CVE-2018-14354 mutt: Remote code injection vulnerability to an IMAP mailbox 1602079 - CVE-2018-14362 mutt: POP body caching path traversal vulnerability 1602915 - CVE-2018-14357 mutt: Remote Code Execution via backquote characters 6. Package List: Red Hat Enterprise Linux Desktop (v. 6): Source: mutt-1.5.20-9.20091214hg736b6a.el6.src.rpm i386: mutt-1.5.20-9.20091214hg736b6a.el6.i686.rpm mutt-debuginfo-1.5.20-9.20091214hg736b6a.el6.i686.rpm x86_64: mutt-1.5.20-9.20091214hg736b6a.el6.x86_64.rpm mutt-debuginfo-1.5.20-9.20091214hg736b6a.el6.x86_64.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: mutt-1.5.20-9.20091214hg736b6a.el6.src.rpm x86_64: mutt-1.5.20-9.20091214hg736b6a.el6.x86_64.rpm mutt-debuginfo-1.5.20-9.20091214hg736b6a.el6.x86_64.rpm Red Hat Enterprise Linux Server (v. 6): Source: mutt-1.5.20-9.20091214hg736b6a.el6.src.rpm i386: mutt-1.5.20-9.20091214hg736b6a.el6.i686.rpm mutt-debuginfo-1.5.20-9.20091214hg736b6a.el6.i686.rpm ppc64: mutt-1.5.20-9.20091214hg736b6a.el6.ppc64.rpm mutt-debuginfo-1.5.20-9.20091214hg736b6a.el6.ppc64.rpm s390x: mutt-1.5.20-9.20091214hg736b6a.el6.s390x.rpm mutt-debuginfo-1.5.20-9.20091214hg736b6a.el6.s390x.rpm x86_64: mutt-1.5.20-9.20091214hg736b6a.el6.x86_64.rpm mutt-debuginfo-1.5.20-9.20091214hg736b6a.el6.x86_64.rpm Red Hat Enterprise Linux Workstation (v.6): Source: mutt-1.5.20-9.20091214hg736b6a.el6.src.rpm i386: mutt-1.5.20-9.20091214hg736b6a.el6.i686.rpm mutt-debuginfo-1.5.20-9.20091214hg736b6a.el6.i686.rpm x86_64: mutt-1.5.20-9.20091214hg736b6a.el6.x86_64.rpm mutt-debuginfo-1.5.20-9.20091214hg736b6a.el6.x86_64.rpm Red Hat Enterprise Linux Client (v. 7): Source: mutt-1.5.21-28.el7_5.src.rpm x86_64: mutt-1.5.21-28.el7_5.x86_64.rpm mutt-debuginfo-1.5.21-28.el7_5.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v. 7): Source: mutt-1.5.21-28.el7_5.src.rpm x86_64: mutt-1.5.21-28.el7_5.x86_64.rpm mutt-debuginfo-1.5.21-28.el7_5.x86_64.rpm Red Hat Enterprise Linux Server (v. 7): Source: mutt-1.5.21-28.el7_5.src.rpm ppc64: mutt-1.5.21-28.el7_5.ppc64.rpm mutt-debuginfo-1.5.21-28.el7_5.ppc64.rpm ppc64le: mutt-1.5.21-28.el7_5.ppc64le.rpm mutt-debuginfo-1.5.21-28.el7_5.ppc64le.rpm s390x: mutt-1.5.21-28.el7_5.s390x.rpm mutt-debuginfo-1.5.21-28.el7_5.s390x.rpm x86_64: mutt-1.5.21-28.el7_5.x86_64.rpm mutt-debuginfo-1.5.21-28.el7_5.x86_64.rpm Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7): Source: mutt-1.5.21-28.el7_5.src.rpm aarch64: mutt-1.5.21-28.el7_5.aarch64.rpm mutt-debuginfo-1.5.21-28.el7_5.aarch64.rpm ppc64le: mutt-1.5.21-28.el7_5.ppc64le.rpm mutt-debuginfo-1.5.21-28.el7_5.ppc64le.rpm s390x: mutt-1.5.21-28.el7_5.s390x.rpm mutt-debuginfo-1.5.21-28.el7_5.s390x.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: mutt-1.5.21-28.el7_5.src.rpm x86_64: mutt-1.5.21-28.el7_5.x86_64.rpm mutt-debuginfo-1.5.21-28.el7_5.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2018-14354 https://access.redhat.com/security/cve/CVE-2018-14357 https://access.redhat.com/security/cve/CVE-2018-14362 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details athttps://access.redhat.com/security/team/contact/ Copyright 2018 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBW3rmK9zjgjWX9erEAQhPGA/9HLwFzxG4TQSaAlbrWHbDLBuVlZcWJ7bd 6RolTh+hOOyZBDgFRn2R+4Kj/ayqs66DNngUael1dbKGmFLXhJTXFGwyHusCNGzl WZSB+mNG6EJlFaG1CmD8FvEDojgzfO7PFCKmhNXQgUHy2yqDpQC7wX862PtGxe72 2L5kSzzaIet1jKmBQnBEce4K5ZZXPih2XppjDbfCiWI9a+SwxWJWpAlyAkTibNQd tZX8e1lLSUrQXBnV1M+Wetn3aRL9TVB5jUX/ChgkWDzNj8yNjRWi4AKUXDPdVsmP e8XiJppWGcqUzjKzL9GLKNdzM8ub4Cv+GxaOWbowwyI17gLKyI7RsEPhmS/dpcHL 3LW0oKdKFzhhMvL8T3qwR/EJSlqYnvUf/CD0+9NhmHcZPG5HoTco3HGy6asq5Tpz eRdCA03BFMhKHCV3CkBXXwDIfo1OqVRQB1hsV2ltNZKVaVkidh00J2+4AdRPbOze CYEijaw4hLBkxHvCw0vi9cCKDNdPQ+NPm1P0vJwbarZTQoFd8Gt64kXQ1hAquRsB mdaCW7DKLD5MenHVcIf2oRPyxmit+QB8BH9QWG7bT/l67aJ0FQMRQJu7XX61pDSC d4uNZMz543zT+3kNRff3KP6uP5MAgDutJ5ydFybj/v5dw9nXn+veW5G+TTzptYhO Bik3Hls6fzY=2ljN -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . This notice details a critical patch for CentOS Linux tackling various vulnerabilities and enhancements.. Red Hat, Mutt Update, Security Fixes, Important Advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Aug 20, 2018 Important Red Hat
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorysecurity fixremote code injection

openSUSE 12.3 & 13.1: 2014:0433-1 Critical: perl-HTTP-Body Remote Injection

An update that fixes one vulnerability is now available. An update that fixes one vulnerability is now available. An update that fixes one vulnerability is now available.. openSUSE Security Update: perl-HTTP-Body: update to 1.19 release with security fixes ______________________________________________________________________________ Announcement ID: openSUSE-SU-2014:0433-1 Rating: important References: #844951 Cross-References: CVE-2013-4407 Affected Products: openSUSE 13.1 openSUSE 12.3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: perl-HTTP-Body was updated to 1.19 and also received a security fix for a potential remote code injection when upload files. Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 13.1: zypper in -t patch openSUSE-2014-247 - openSUSE 12.3: zypper in -t patch openSUSE-2014-247 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 13.1 (noarch): perl-HTTP-Body-1.19-2.4.1 - openSUSE 12.3 (noarch): perl-HTTP-Body-1.19-4.4.1 References: https://www.suse.com/security/cve/CVE-2013-4407.html . The recent update for openSUSE perl-HTTP-Body tackles potential remote code execution vulnerabilities by implementing crucial security patches.. OpenSUSE Security, Perl HTTP Body Exploit, Software Updates, Remote Code Risk. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 25, 2014 Important OpenSUSE
Banner 4 1028x280 1708121825 1771600306
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorycriticaldebian

Debian: DSA-1554-2 Critical: Roundup Input Sanitization Flaw

Roundup, an issue tracking system, fails to properly escape HTML input, allowing an attacker to inject client-side code (typically JavaScript) into a document that may be viewed in the victim's browser. . - ------------------------------------------------------------------------Debian Security Advisory DSA-1554-2 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Thijs Kinkhorst May 06, 2008 http://www.debian.org/security/faq - ------------------------------------------------------------------------Package : roundup Vulnerability : insufficient input sanitising Problem type : remote Debian-specific: no CVE Id(s) : CVE-2008-1474 Debian Bug : 472643 Roundup, an issue tracking system, fails to properly escape HTML input, allowing an attacker to inject client-side code (typically JavaScript) into a document that may be viewed in the victim's browser. For the stable distribution (etch), this problem has been fixed in version 1.2.1-5+etch2. For the unstable distribution (sid), this problem has been fixed in version 1.3.3-3.1. We recommend that you upgrade your roundup packages. Upgrade instructions - --------------------wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 4.0 alias etch - -------------------------------Source archives: Size/MD5 checksum: 982 90a8692563dfca36cb0778b6429aa664 Size/MD5 checksum: 1058595 38de336cf23d0dc20df17695b7c72806 Size/MD5 checksum: 26324 662312074898af0226c723e133fb92cd Architecture independent packages: Size/MD5 checksum: 1003218 ad60e355ed48161d847860a0f3bb8f2b These files will probably be moved into the stable distribution on its next update. - ---------------------------------------------------------------------------------For apt-get: deb https://www.debian.org/security/ stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Debian Security Advisory DSA-1554-2 http://www.debian.org/security/ Thijs Kinkhorst May 06, 2008 htt. roundup, tracking, system, fails, properly, escape, input, allowing, attacker. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 06, 2008 Critical Debian
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here