Alerts This Week
Warning Icon 1 631
Alerts This Week
Warning Icon 1 631

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian LTS openssl Important Use-After-Free NULL Pointer Issues DLA-4624-1

Calendar White Jun 09, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 alsa-lib Important Denial of Service Fix USN-8044-2

Calendar White Jun 09, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS node-shell-quote Important Denial of Service CVE-2026-9277

Calendar White Jun 09, 2026
Important
Mageia Large Esm H800
Mageia

Mageia 9 Suricata Critical Performance Security Issues MGASA-2026-0181

Calendar White Jun 09, 2026
Critical
Mageia Large Esm H900
Mageia

Mageia 9 PackageKit Important TOCTOU Race Escalation CVE-2026-41651

Calendar White Jun 09, 2026
Important
Mageia Large Esm H900
Mageia

Mageia 9 Unbound Critical Remote Code Execution Advisory 2026-0034

Calendar White Jun 09, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS Netatalk Multiple Security Issues USN-8395-1

Calendar White Jun 09, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 mingw-objfw 1.5.5 Update Security Fix FEDORA-2026-de23fedf3e

Calendar White Jun 08, 2026
Fedora Large Esm H900
Fedora

Fedora 43 objfw Important Update 1.5.5 Bug Fixes June 2026

Calendar White Jun 08, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -3 articles for you...
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisoryimportantthunderbird

Mageia 9 Thunderbird Important CSS Exfiltration Security MGASA-2026-0036

MGASA-2026-0036 - Updated thunderbird packages fix security vulnerability. MGASA-2026-0036 - Updated thunderbird packages fix security vulnerability Publication date: 11 Feb 2026 URL: https://advisories.mageia.org/MGASA-2026-0036.html Type: security Affected Mageia releases: 9 CVE: CVE-2026-0818 Description: CSS-based exfiltration of the content from partially encrypted emails when allowing remote content. (CVE-2026-0818) References: - https://bugs.mageia.org/show_bug.cgi?id=35100 - https://www.thunderbird.net/en-US/thunderbird/140.7.1esr/releasenotes/ - https://www.mozilla.org/en-US/security/advisories/mfsa2026-08/ - https://www.cve.org/CVERecord?id=CVE-2026-0818 SRPMS: - 9/core/thunderbird-140.7.1-1.mga9 - 9/core/thunderbird-l10n-140.7.1-1.mga9 . Updated thunderbird packages in Mageia address CSS-based exfiltration vulnerability affecting Mageia 9 systems.. Mageia Security, Thunderbird Update, Email Vulnerability, Remote Content Security. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 11, 2026 Important Mageia
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryimportantOpenSUSE

openSUSE 15.6 MozillaThunderbird Important CSS Exfiltration 2026-0388-1

An update that solves one vulnerability can now be installed.. # Security update for MozillaThunderbird Announcement ID: SUSE-SU-2026:0388-1 Release Date: 2026-02-05T11:14:26Z Rating: important References: * bsc#1257397 Cross-References: * CVE-2026-0818 CVSS scores: * CVE-2026-0818 ( SUSE ): 2.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-0818 ( SUSE ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N * CVE-2026-0818 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Linux Enterprise Workstation Extension 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves one vulnerability can now be installed. ## Description: This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 140.7.1 MFSA 2026-08 (bsc#1257397): * CVE-2026-0818: CSS-based exfiltration of the content from partially encrypted emails when allowing remote content ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2026-388=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-388=1 * SUSE Linux Enterprise Workstation Extension 15 SP7 zypper in -t patch SUSE-SLE-Product-WE-15-SP7-2026-388=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * MozillaThunderbird-debugsource-140.7.1-150200.8.254.1 * MozillaThunderbird-140.7.1-150200.8.254.1 * MozillaThunderbird-debuginfo-140.7.1-150200.8.254.1 * MozillaThunderbird-translations-other-140.7.1-150200.8.254.1 *MozillaThunderbird-translations-common-140.7.1-150200.8.254.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x) * MozillaThunderbird-debugsource-140.7.1-150200.8.254.1 * MozillaThunderbird-140.7.1-150200.8.254.1 * MozillaThunderbird-debuginfo-140.7.1-150200.8.254.1 * MozillaThunderbird-translations-other-140.7.1-150200.8.254.1 * MozillaThunderbird-translations-common-140.7.1-150200.8.254.1 * SUSE Linux Enterprise Workstation Extension 15 SP7 (x86_64) * MozillaThunderbird-debugsource-140.7.1-150200.8.254.1 * MozillaThunderbird-140.7.1-150200.8.254.1 * MozillaThunderbird-debuginfo-140.7.1-150200.8.254.1 * MozillaThunderbird-translations-other-140.7.1-150200.8.254.1 * MozillaThunderbird-translations-common-140.7.1-150200.8.254.1 ## References: * https://www.suse.com/security/cve/CVE-2026-0818.html * https://bugzilla.suse.com/show_bug.cgi?id=1257397 . Critical security update for MozillaThunderbird addressing CSS-based exfiltration in openSUSE. Take action now!. MozillaThunderbird update, security advisory, openSUSE patch. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 05, 2026 Important SuSE
Banner 2 1028x280 1708121730 1 1771599631
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisoryimportantOpenSUSE

Ubuntu 22.04 Network Security Update UFW-SEC-2026-0400-7 CVE-2026-0937

An update that solves one vulnerability can now be installed.. # Security update for MozillaThunderbird Announcement ID: SUSE-SU-2026:0388-1 Release Date: 2026-02-05T11:14:26Z Rating: important References: * bsc#1257397 Cross-References: * CVE-2026-0818 CVSS scores: * CVE-2026-0818 ( SUSE ): 2.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-0818 ( SUSE ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N * CVE-2026-0818 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Linux Enterprise Workstation Extension 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves one vulnerability can now be installed. ## Description: This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 140.7.1 MFSA 2026-08 (bsc#1257397): * CVE-2026-0818: CSS-based exfiltration of the content from partially encrypted emails when allowing remote content ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2026-388=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-388=1 * SUSE Linux Enterprise Workstation Extension 15 SP7 zypper in -t patch SUSE-SLE-Product-WE-15-SP7-2026-388=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * MozillaThunderbird-debugsource-140.7.1-150200.8.254.1 * MozillaThunderbird-140.7.1-150200.8.254.1 * MozillaThunderbird-debuginfo-140.7.1-150200.8.254.1 * MozillaThunderbird-translations-other-140.7.1-150200.8.254.1 *MozillaThunderbird-translations-common-140.7.1-150200.8.254.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x) * MozillaThunderbird-debugsource-140.7.1-150200.8.254.1 * MozillaThunderbird-140.7.1-150200.8.254.1 * MozillaThunderbird-debuginfo-140.7.1-150200.8.254.1 * MozillaThunderbird-translations-other-140.7.1-150200.8.254.1 * MozillaThunderbird-translations-common-140.7.1-150200.8.254.1 * SUSE Linux Enterprise Workstation Extension 15 SP7 (x86_64) * MozillaThunderbird-debugsource-140.7.1-150200.8.254.1 * MozillaThunderbird-140.7.1-150200.8.254.1 * MozillaThunderbird-debuginfo-140.7.1-150200.8.254.1 * MozillaThunderbird-translations-other-140.7.1-150200.8.254.1 * MozillaThunderbird-translations-common-140.7.1-150200.8.254.1 ## References: * https://www.suse.com/security/cve/CVE-2026-0818.html * https://bugzilla.suse.com/show_bug.cgi?id=1257397 . Important security update for openSUSE MozillaThunderbird addressing CSS-based content exfiltration vulnerability.. openSUSE security update MozillaThunderbird vulnerability CSS. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 05, 2026 Important OpenSUSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderatesoftware update

SUSE: 2022:4636-1 Moderate: MozillaThunderbird Remote Content Issue

An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for MozillaThunderbird ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4636-1 Rating: moderate References: #1206653 Cross-References: CVE-2022-46874 Affected Products: SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP4 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Linux Enterprise Workstation Extension 15-SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for MozillaThunderbird fixes the following issues: Update to version 102.6.1 * fixed: Remote content did not load in user-defined signatures * fixed: Addons that added new action buttons were not shown for addon upgrades, requiring removal and reinstall * fixed: Various stability improvements * CVE-2022-46874: Drag and Dropped Filenames could have been truncated to malicious extensions (bsc#1206653) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4636=1 - SUSE Linux Enterprise Workstation Extension 15-SP4: zypper in -t patch SUSE-SLE-Product-WE-15-SP4-2022-4636=1 - SUSE Linux Enterprise Module for PackagehubSubpackages 15-SP4: zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2022-4636=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): MozillaThunderbird-102.6.1-150200.8.99.1 MozillaThunderbird-debuginfo-102.6.1-150200.8.99.1 MozillaThunderbird-debugsource-102.6.1-150200.8.99.1 MozillaThunderbird-translations-common-102.6.1-150200.8.99.1 MozillaThunderbird-translations-other-102.6.1-150200.8.99.1 - SUSE Linux Enterprise Workstation Extension 15-SP4 (x86_64): MozillaThunderbird-102.6.1-150200.8.99.1 MozillaThunderbird-debuginfo-102.6.1-150200.8.99.1 MozillaThunderbird-debugsource-102.6.1-150200.8.99.1 MozillaThunderbird-translations-common-102.6.1-150200.8.99.1 MozillaThunderbird-translations-other-102.6.1-150200.8.99.1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP4 (aarch64 ppc64le s390x): MozillaThunderbird-102.6.1-150200.8.99.1 MozillaThunderbird-debuginfo-102.6.1-150200.8.99.1 MozillaThunderbird-debugsource-102.6.1-150200.8.99.1 MozillaThunderbird-translations-common-102.6.1-150200.8.99.1 MozillaThunderbird-translations-other-102.6.1-150200.8.99.1 References: https://www.suse.com/security/cve/CVE-2022-46874.html https://bugzilla.suse.com/1206653 . New release of Mozilla Thunderbird rectifies a vulnerability affecting SUSE platforms. Discover the steps to implement the fix. Keep your system safe!. SUSE Linux Enterprise, MozillaThunderbird Update, Security Fixes, Software Update. . LinuxSecurity.com Team

Calendar 2 Dec 29, 2022 SuSE
Banner 2 1028x280 1708121730 1 1771599631
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorymoderate severitythunderbird

Mageia: 2022-0452 Moderate: Thunderbird Remote Content Threat

Quoting from an HTML email with certain tags will trigger network requests and load remote content, regardless of a configuration to block remote content. (CVE-2022-45414) References: . MGASA-2022-0452 - Updated thunderbird packages fix security vulnerability Publication date: 06 Dec 2022 URL: https://advisories.mageia.org/MGASA-2022-0452.html Type: security Affected Mageia releases: 8 CVE: CVE-2022-45414 Quoting from an HTML email with certain tags will trigger network requests and load remote content, regardless of a configuration to block remote content. (CVE-2022-45414) References: - https://bugs.mageia.org/show_bug.cgi?id=31210 - https://www.thunderbird.net/en-US/thunderbird/102.5.1/releasenotes/ - https://www.mozilla.org/en-US/security/advisories/mfsa2022-50/ - https://www.cve.org/CVERecord?id=CVE-2022-45414 SRPMS: - 8/core/thunderbird-102.5.1-1.mga8 - 8/core/thunderbird-l10n-102.5.1-1.mga8 . Newly released Thunderbird updates address security issues discovered on December 6, 2022, that affect the retrieval of external content.. thunderbird Security Update,Mageia Advisory,Remote Content Issue. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 07, 2022 Important Mageia
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorysecurity issueimportant

Thunderbird Security Update: SLSA-2015:1455-1 for Scientific Linux 7

Important: thunderbird security update. Date: Mon, 20 Jul 2015 20:44:03 +0000 Reply-To: scientific-linux-users@ Sender: Security Errata for Scientific Linux From: Pat Riehecky Subject: Security ERRATA Important: thunderbird on SL5.x, SL6.x, SL7.x i386/x86_64 MIME-Version: 1.0 Message-ID: Synopsis: Important: thunderbird security update Advisory ID: SLSA-2015:1455-1 Issue Date: 2015-07-20 CVE Numbers: CVE-2015-2724 CVE-2015-2725 CVE-2015-2731 CVE-2015-2734 CVE-2015-2735 CVE-2015-2736 CVE-2015-2737 CVE-2015-2738 CVE-2015-2739 CVE-2015-2740 CVE-2015-2741 -- Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. (CVE-2015-2724, CVE-2015-2725, CVE-2015-2731, CVE-2015-2734, CVE-2015-2735, CVE-2015-2736, CVE-2015-2737, CVE-2015-2738, CVE-2015-2739, CVE-2015-2740) It was found that Thunderbird skipped key-pinning checks when handling an error that could be overridden by the user (for example an expired certificate error). This flaw allowed a user to override a pinned certificate, which is an action the user should not be able to perform. (CVE-2015-2741) Note: All of the above issues cannot be exploited by a specially crafted HTML mail message as JavaScript is disabled by default for mail messages. They could be exploited another way in Thunderbird, for example, when viewing the full remote content of an RSS feed. After installing the update, Thunderbird must be restarted for the changes to take effect. -- SL5 x86_64 thunderbird-31.8.0-1.el5_11.x86_64.rpm thunderbird-debuginfo-31.8.0-1.el5_11.x86_64.rpm i386 thunderbird-31.8.0-1.el5_11.i386.rpm thunderbird-debuginfo-31.8.0-1.el5_11.i386.rpm SL6 x86_64 thunderbird-31.8.0-1.el6_6.x86_64.rpm thunderbird-debuginfo-31.8.0-1.el6_6.x86_64.rpm i386 thunderbird-31.8.0-1.el6_6.i686.rpm thunderbird-debuginfo-31.8.0-1.el6_6.i686.rpm SL7 x86_64 thunderbird-31.8.0-1.el7_1.x86_64.rpm thunderbird-debuginfo-31.8.0-1.el7_1.x86_64.rpm - Scientific Linux Development Team . Critical patch released for Thunderbird on Scientific Linux fixing various vulnerabilities in web content handling.. important thunderbird security scientific linux update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jul 20, 2015 Important Scientific Linux
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here