Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedorasoftware update

Fedora 34: FEDORA-2021-2f9dcdbace Moderate: Matrix-Synapse Remote Overwrite

Update to v1.48.0 ---- Update to v1.47.1 Fix CVE-2021-41281 ---- Update to v1.47.0. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-2f9dcdbace 2021-12-09 01:34:54.384249 --------------------------------------------------------------------------------Name : matrix-synapse Product : Fedora 34 Version : 1.48.0 Release : 1.fc34 URL : https://github.com/matrix-org/synapse Summary : A Matrix reference homeserver written in Python using Twisted Description : Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in the context of a coded base and let you run your own homeserver and generally help bootstrap the ecosystem. --------------------------------------------------------------------------------Update Information: Update to v1.48.0 ---- Update to v1.47.1 Fix CVE-2021-41281 ---- Update to v1.47.0 --------------------------------------------------------------------------------ChangeLog: * Tue Nov 30 2021 Kai A. Hiller - 1.48.0-1 - Update to v1.48.0 * Wed Nov 24 2021 Kai A. Hiller - 1.47.1-1 - Update to v1.47.1 - Fix CVE-2021-41281 * Fri Nov 19 2021 Kai A. Hiller - 1.47.0-1 - Update to v1.47.0 --------------------------------------------------------------------------------References: [ 1 ] Bug #2026127 - CVE-2021-41281: remote overwrite vulnerability in

Calendar 2 Dec 08, 2021 Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysoftware updateFedora

CentOS 8: 2022-1234567abcdef Low: Apache-Struts SQL Injection Fix

Update to v1.48.0 ---- Update to v1.47.1 ---- Update to v1.47.0. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-9758549fce 2021-12-09 01:11:04.658120 --------------------------------------------------------------------------------Name : matrix-synapse Product : Fedora 35 Version : 1.48.0 Release : 1.fc35 URL : https://github.com/matrix-org/synapse Summary : A Matrix reference homeserver written in Python using Twisted Description : Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in the context of a coded base and let you run your own homeserver and generally help bootstrap the ecosystem. --------------------------------------------------------------------------------Update Information: Update to v1.48.0 ---- Update to v1.47.1 ---- Update to v1.47.0 --------------------------------------------------------------------------------ChangeLog: * Tue Nov 30 2021 Kai A. Hiller - 1.48.0-1 - Update to v1.48.0 * Wed Nov 24 2021 Kai A. Hiller - 1.47.1-1 - Update to v1.47.1 - Fix CVE-2021-41281 * Fri Nov 19 2021 Kai A. Hiller - 1.47.0-1 - Update to v1.47.0 --------------------------------------------------------------------------------References: [ 1 ] Bug #2026127 - CVE-2021-41281: remote overwrite vulnerability in

Calendar 2 Dec 08, 2021 Low Fedora
Banner 4 1028x280 1708121825 1771600306
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderateRed Hat

Red Hat 8.2: RHSA-2020-5417 Moderate: curl Remote Overwrite Issue

An update for curl is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: curl security and bug fix update Advisory ID: RHSA-2020:5417-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:5417 Issue date: 2020-12-15 CVE Names: CVE-2020-8177 ==================================================================== 1. Summary: An update for curl is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS EUS (v. 8.2) - aarch64, ppc64le, s390x, x86_64 3. Description: The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fix(es): * curl: Incorrect argument check can allow remote servers to overwrite local files (CVE-2020-8177) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * libcurl: Segfault when HTTPS_PROXY and NO_PROXY is used together (BZ#1900103) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1847915- CVE-2020-8177 curl: Incorrect argument check can allow remote servers to overwrite local files 1900103 - libcurl: Segfault when HTTPS_PROXY and NO_PROXY is used together [rhel-8.2.0.z] 6. Package List: Red Hat Enterprise Linux BaseOS EUS (v.8.2): Source: curl-7.61.1-12.el8_2.2.src.rpm aarch64: curl-7.61.1-12.el8_2.2.aarch64.rpm curl-debuginfo-7.61.1-12.el8_2.2.aarch64.rpm curl-debugsource-7.61.1-12.el8_2.2.aarch64.rpm curl-minimal-debuginfo-7.61.1-12.el8_2.2.aarch64.rpm libcurl-7.61.1-12.el8_2.2.aarch64.rpm libcurl-debuginfo-7.61.1-12.el8_2.2.aarch64.rpm libcurl-devel-7.61.1-12.el8_2.2.aarch64.rpm libcurl-minimal-7.61.1-12.el8_2.2.aarch64.rpm libcurl-minimal-debuginfo-7.61.1-12.el8_2.2.aarch64.rpm ppc64le: curl-7.61.1-12.el8_2.2.ppc64le.rpm curl-debuginfo-7.61.1-12.el8_2.2.ppc64le.rpm curl-debugsource-7.61.1-12.el8_2.2.ppc64le.rpm curl-minimal-debuginfo-7.61.1-12.el8_2.2.ppc64le.rpm libcurl-7.61.1-12.el8_2.2.ppc64le.rpm libcurl-debuginfo-7.61.1-12.el8_2.2.ppc64le.rpm libcurl-devel-7.61.1-12.el8_2.2.ppc64le.rpm libcurl-minimal-7.61.1-12.el8_2.2.ppc64le.rpm libcurl-minimal-debuginfo-7.61.1-12.el8_2.2.ppc64le.rpm s390x: curl-7.61.1-12.el8_2.2.s390x.rpm curl-debuginfo-7.61.1-12.el8_2.2.s390x.rpm curl-debugsource-7.61.1-12.el8_2.2.s390x.rpm curl-minimal-debuginfo-7.61.1-12.el8_2.2.s390x.rpm libcurl-7.61.1-12.el8_2.2.s390x.rpm libcurl-debuginfo-7.61.1-12.el8_2.2.s390x.rpm libcurl-devel-7.61.1-12.el8_2.2.s390x.rpm libcurl-minimal-7.61.1-12.el8_2.2.s390x.rpm libcurl-minimal-debuginfo-7.61.1-12.el8_2.2.s390x.rpm x86_64: curl-7.61.1-12.el8_2.2.x86_64.rpm curl-debuginfo-7.61.1-12.el8_2.2.i686.rpm curl-debuginfo-7.61.1-12.el8_2.2.x86_64.rpm curl-debugsource-7.61.1-12.el8_2.2.i686.rpm curl-debugsource-7.61.1-12.el8_2.2.x86_64.rpm curl-minimal-debuginfo-7.61.1-12.el8_2.2.i686.rpm curl-minimal-debuginfo-7.61.1-12.el8_2.2.x86_64.rpm libcurl-7.61.1-12.el8_2.2.i686.rpm libcurl-7.61.1-12.el8_2.2.x86_64.rpm libcurl-debuginfo-7.61.1-12.el8_2.2.i686.rpm libcurl-debuginfo-7.61.1-12.el8_2.2.x86_64.rpm libcurl-devel-7.61.1-12.el8_2.2.i686.rpm libcurl-devel-7.61.1-12.el8_2.2.x86_64.rpm libcurl-minimal-7.61.1-12.el8_2.2.i686.rpm libcurl-minimal-7.61.1-12.el8_2.2.x86_64.rpm libcurl-minimal-debuginfo-7.61.1-12.el8_2.2.i686.rpm libcurl-minimal-debuginfo-7.61.1-12.el8_2.2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-8177 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBX9h65tzjgjWX9erEAQhl5w//YmKVTzfBdkPw7TFSC0ADA2XJlkXX8OEG 7sBav0zb+5/lJvItXbJT0+DbZGpVGFtfZCTqVWyrVjhKbfQTLnPO6a8vefZwBRmT qZVpEF7C1RGrvn3wozFvqm8dd5OwaohhxRDINBzcJAZy23c0zuJwApBXsOKdP5HL pqfS9jNTfUQNdPgqzOvUDBadXLy0UEDgAS2/jZr/QifhcFn6eKQqCbWJpWf+Adgp fmogAtivYWAdaZvJ7NjAY6BJJ3E+j5UKm8v/gYARA4+FAwiDcfSiLkVQWfaXMkES +vlu5JnXi1olbMsq6qXY17thaTbI9X6sM+TRYnHXd+ADA4XqHTlKNKKD3/7BOhZw s4wawL9zs2x5XAXPZ9cEcwz9UBqVxyrU4EiUuuFPAoYYAXlOYGQtBDE+O6jVJywc TB+LAPtIMaoPani/aiiwoCeEkyPiMkKNoXDeed9s69qRVRNIhdAyes8L/4fvnrSy OTj2Mr/dMr0ws0J2K2LJfc8nkeeT8R/ld7ewEwHnRfTkr/P6B+0sWJthKPp9VHQ3 8iRkuA1411hiITMgMEztRcbGzsflQkDNOi77PnDfULzTolp1NVQ77nIoPCQyed20 Bmo6s0RET5DPQh0C9krynimFrzU2avPl85gWTa/zw+3WvV0QodxJ9k4c44RwNmy1 wQL/vinD7OA=1tPi -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Investigate the recent moderate curl update for Red Hat 8.2, emphasizing vital security enhancements and key performance boosts.. curl Security Update, Red Hat Enterprise Bug Fix, Remote File Tracking. . LinuxSecurity.com Team

Calendar 2 Dec 15, 2020 Red Hat
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorysecurity issuedebian

Debian DSA-3643-1 Critical: kde4libs Remote File Overwrite Threat

Andreas Cord-Landwehr discovered that kde4libs, the core libraries for all KDE 4 applications, do not properly handle the extraction of archives with "../" in the file paths. A remote attacker can take advantage of this flaw to overwrite files outside of the . - ------------------------------------------------------------------------- Debian Security Advisory DSA-3643-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Salvatore Bonaccorso August 06, 2016 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : kde4libs CVE ID : CVE-2016-6232 Debian Bug : 832620 Andreas Cord-Landwehr discovered that kde4libs, the core libraries for all KDE 4 applications, do not properly handle the extraction of archives with "../" in the file paths. A remote attacker can take advantage of this flaw to overwrite files outside of the extraction folder, if a user is tricked into extracting a specially crafted archive. For the stable distribution (jessie), this problem has been fixed in version 4:4.14.2-5+deb8u1. For the unstable distribution (sid), this problem has been fixed in version 4:4.14.22-2. We recommend that you upgrade your kde4libs packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Debian Security Advisory DSA-3745-1 addressing a vulnerability in libcurl allowing unauthorized access through manipulated URLs.. Debian Security Advisory,kde4libs Archive Issue,Remote Access Vulnerability. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Aug 06, 2016 Critical Debian
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here