Alerts This Week
Warning Icon 1 659
Alerts This Week
Warning Icon 1 659

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity issueFedora

Fedora 36: FEDORA-2022-01ffde372c Moderate: Curl HSTS Bypass

- url: use IDN decoded names for HSTS checks (CVE-2022-42916) - http_proxy: restore the protocol pointer on error (CVE-2022-42915) - netrc: replace fgets with Curl_get_line (CVE-2022-35260) - fix POST following PUT confusion (CVE-2022-32221). --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-01ffde372c 2022-10-30 20:59:07.278958 --------------------------------------------------------------------------------Name : curl Product : Fedora 36 Version : 7.82.0 Release : 9.fc36 URL : https://curl.se/ Summary : A utility for getting files from remote servers (FTP, HTTP, and others) Description : curl is a command line tool for transferring data with URL syntax, supporting FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, IMAP, SMTP, POP3 and RTSP. curl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate, kerberos...), file transfer resume, proxy tunneling and a busload of other useful tricks. --------------------------------------------------------------------------------Update Information: - url: use IDN decoded names for HSTS checks (CVE-2022-42916) - http_proxy: restore the protocol pointer on error (CVE-2022-42915) - netrc: replace fgets with Curl_get_line (CVE-2022-35260) - fix POST following PUT confusion (CVE-2022-32221) --------------------------------------------------------------------------------ChangeLog: * Wed Oct 26 2022 Kamil Dudka - 7.82.0-9 - url: use IDN decoded names for HSTS checks (CVE-2022-42916) - http_proxy: restore the protocol pointer on error (CVE-2022-42915) - netrc: replace fgets with Curl_get_line (CVE-2022-35260) - fix POST following PUT confusion (CVE-2022-32221) --------------------------------------------------------------------------------References: [ 1 ] Bug #2137769 - CVE-2022-42916 curl: HSTS bypass viaIDN [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2137769 [ 2 ] Bug #2137780 - CVE-2022-32221 curl: POST following PUT confusion [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2137780 [ 3 ] Bug #2138111 - CVE-2022-42915 curl: HTTP proxy double-free [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2138111 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-01ffde372c' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . The recent Fedora curl update addresses critical security flaws, including an HSTS bypass, ensuring user data protection and secure connections while enhancing protocol handling.. Fedora Update,curl Security,Remote Server Commands,Network Tool Updates,HTTP Proxies. . LinuxSecurity.com Team

Calendar 2 Oct 30, 2022 Fedora
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorySSL supportsecurity fix

SUSE OpenStack Cloud 7: 2018:1853-1 Important: MariaDB Update

An update that fixes 41 vulnerabilities is now available. . SUSE Security Update: Recommended update for mariadb ______________________________________________________________________________ Announcement ID: SUSE-SU-2018:1853-1 Rating: important References: #1012075 #1019948 #1039034 #1041891 #1042632 #1043328 #1047218 #1055165 #1055268 #1058374 #1058729 #1060110 #1062583 #1067443 #1068906 #1069401 #1080891 #1082318 #1083087 #1088681 #1092544 #1093130 Cross-References: CVE-2017-10268 CVE-2017-10286 CVE-2017-10320 CVE-2017-10365 CVE-2017-10378 CVE-2017-10379 CVE-2017-10384 CVE-2017-15365 CVE-2017-3257 CVE-2017-3302 CVE-2017-3308 CVE-2017-3309 CVE-2017-3313 CVE-2017-3453 CVE-2017-3456 CVE-2017-3464 CVE-2017-3636 CVE-2017-3641 CVE-2017-3653 CVE-2018-2562 CVE-2018-2612 CVE-2018-2622 CVE-2018-2640 CVE-2018-2665 CVE-2018-2668 CVE-2018-2755 CVE-2018-2759 CVE-2018-2761 CVE-2018-2766 CVE-2018-2767 CVE-2018-2771 CVE-2018-2777 CVE-2018-2781 CVE-2018-2782 CVE-2018-2784 CVE-2018-2786 CVE-2018-2787 CVE-2018-2810 CVE-2018-2813 CVE-2018-2817 CVE-2018-2819 Affected Products: SUSE OpenStack Cloud 7 ______________________________________________________________________________ An update that fixes 41 vulnerabilities is now available. Description: This MariaDB update to version 10.2.15 brings the following fixes and improvements. Security issues: - CVE-2018-2767: The embedded server library now supports SSL when connecting to remote servers (bsc#1088681). - Collected CVEs fixes: * 10.2.15: CVE-2018-2786, CVE-2018-2759, CVE-2018-2777, CVE-2018-2810, CVE-2018-2782, CVE-2018-2784, CVE-2018-2787,CVE-2018-2766, CVE-2018-2755, CVE-2018-2819, CVE-2018-2817, CVE-2018-2761, CVE-2018-2781, CVE-2018-2771, CVE-2018-2813 * 10.2.13: CVE-2018-2562, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668, CVE-2018-2612 * 10.2.10: CVE-2017-10378, CVE-2017-10268, CVE-2017-15365 * 10.2.8: CVE-2017-3636, CVE-2017-3641, CVE-2017-3653, CVE-2017-10320, CVE-2017-10365, CVE-2017-10379, CVE-2017-10384, CVE-2017-10286, CVE-2017-3257 * 10.2.6: CVE-2017-3308, CVE-2017-3309, CVE-2017-3453, CVE-2017-3456, CVE-2017-3464 * 10.2.5: CVE-2017-3313, CVE-2017-3302 Bugfixes: - bsc#1092544: Update suse_skipped_tests.list and add tests that are failing with GCC 8. - bsc#1012075: MariaDB Test Suite issue with test sys_vars.secure_file_priv.test. - bsc#1019948: mariadb even tumbleweed version is super old. - bsc#1039034: no ODBC support in MariaDB Server. - bsc#1041891: Make mariadb tests pass and exclude failures. - bsc#1042632: Mariadb fails to build with openssl-1.1. - bsc#1043328: Update mariadb in TW to 10.2 and drop comat with mysql. - bsc#1047218: trackerbug: packages do not build reproducibly from including build time. - bsc#1055165: mariadb build with cassandra enabled. - bsc#1055268: MariaDB configurations are not overwritable. - bsc#1058374: Use bind-address directive and SSL section settings in default my.cnf. - bsc#1058729: MariaDB - mysql-test - connect.drop-open-error is failing (regression). - bsc#1060110: The mariadb install script depends on hostname but does not require it. - bsc#1062583: Stop using boost-devel. - bsc#1067443: incomplete revert of the mariadb service rename. - bsc#1068906: MariaDB: ALTER TABLE can't rename columns with CHECK constraints. - bsc#1069401: Database failed apply with mariadb 10.2 : RuntimeError: Galera cluster did not start after 600 seconds. - bsc#1080891: server:database/mariadb: up-streaming patches. - bsc#1083087:Galera bootstrap failes work after MariaDB 10.2.13 upgrade. - bsc#1082318: mariadb-connector-c.changes and xtrabackup need to use %doc instead of %license. Release notes and changelog: - https://mariadb.com/docs/release-notes/community-server/old-releases/release-notes-mariadb-10-2-series/mariadb-10215-release-notes - https://mariadb.com/docs/release-notes/community-server/changelogs/changelogs-mariadb-102-series/mariadb-10215-changelog Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud 7: zypper in -t patch SUSE-OpenStack-Cloud-7-2018-1253=1 Package List: - SUSE OpenStack Cloud 7 (noarch): mariadb-errormessages-10.2.15-7.1 - SUSE OpenStack Cloud 7 (x86_64): galera-3-wsrep-provider-25.3.23-8.3 galera-3-wsrep-provider-debuginfo-25.3.23-8.3 libmariadb3-3.0.3-1.3.3 mariadb-10.2.15-7.1 mariadb-client-10.2.15-7.1 mariadb-client-debuginfo-10.2.15-7.1 mariadb-debuginfo-10.2.15-7.1 mariadb-debugsource-10.2.15-7.1 mariadb-galera-10.2.15-7.1 mariadb-tools-10.2.15-7.1 mariadb-tools-debuginfo-10.2.15-7.1 ruby2.1-rubygem-mysql2-0.4.10-7.2 ruby2.1-rubygem-mysql2-debuginfo-0.4.10-7.2 xtrabackup-2.4.10-5.3 xtrabackup-debuginfo-2.4.10-5.3 xtrabackup-debugsource-2.4.10-5.3 References: https://www.suse.com/security/cve/CVE-2017-10268.html https://www.suse.com/security/cve/CVE-2017-10286.html https://www.suse.com/security/cve/CVE-2017-10320.html https://www.suse.com/security/cve/CVE-2017-10365.html https://www.suse.com/security/cve/CVE-2017-10378.html https://www.suse.com/security/cve/CVE-2017-10379.html https://www.suse.com/security/cve/CVE-2017-10384.html https://www.suse.com/security/cve/CVE-2017-15365.html https://www.suse.com/security/cve/CVE-2017-3257.html https://www.suse.com/security/cve/CVE-2017-3302.html https://www.suse.com/security/cve/CVE-2017-3308.html https://www.suse.com/security/cve/CVE-2017-3309.html https://www.suse.com/security/cve/CVE-2017-3313.html https://www.suse.com/security/cve/CVE-2017-3453.html https://www.suse.com/security/cve/CVE-2017-3456.html https://www.suse.com/security/cve/CVE-2017-3464.html https://www.suse.com/security/cve/CVE-2017-3636.html https://www.suse.com/security/cve/CVE-2017-3641.html https://www.suse.com/security/cve/CVE-2017-3653.html https://www.suse.com/security/cve/CVE-2018-2562.html https://www.suse.com/security/cve/CVE-2018-2612.html https://www.suse.com/security/cve/CVE-2018-2622.html https://www.suse.com/security/cve/CVE-2018-2640.html https://www.suse.com/security/cve/CVE-2018-2665.html https://www.suse.com/security/cve/CVE-2018-2668.html https://www.suse.com/security/cve/CVE-2018-2755.html https://www.suse.com/security/cve/CVE-2018-2759.html https://www.suse.com/security/cve/CVE-2018-2761.html https://www.suse.com/security/cve/CVE-2018-2766.html https://www.suse.com/security/cve/CVE-2018-2767.html https://www.suse.com/security/cve/CVE-2018-2771.html https://www.suse.com/security/cve/CVE-2018-2777.html https://www.suse.com/security/cve/CVE-2018-2781.html https://www.suse.com/security/cve/CVE-2018-2782.html https://www.suse.com/security/cve/CVE-2018-2784.html https://www.suse.com/security/cve/CVE-2018-2786.html https://www.suse.com/security/cve/CVE-2018-2787.html https://www.suse.com/security/cve/CVE-2018-2810.html https://www.suse.com/security/cve/CVE-2018-2813.html https://www.suse.com/security/cve/CVE-2018-2817.html https://www.suse.com/security/cve/CVE-2018-2819.html https://bugzilla.suse.com/1012075 https://bugzilla.suse.com/1019948 https://bugzilla.suse.com/1039034 https://bugzilla.suse.com/1041891 https://bugzilla.suse.com/1042632 https://bugzilla.suse.com/1043328 https://bugzilla.suse.com/1047218 https://bugzilla.suse.com/1055165 https://bugzilla.suse.com/1055268 https://bugzilla.suse.com/1058374 https://bugzilla.suse.com/1058729 https://bugzilla.suse.com/1060110 https://bugzilla.suse.com/1062583 https://bugzilla.suse.com/1067443 https://bugzilla.suse.com/1068906 https://bugzilla.suse.com/1069401 https://bugzilla.suse.com/1080891 https://bugzilla.suse.com/1082318 https://bugzilla.suse.com/1083087 https://bugzilla.suse.com/1088681 https://bugzilla.suse.com/1092544 https://bugzilla.suse.com/1093130 . A crucial SUSE security patch addresses 41 vulnerabilities in MariaDB. Implement suggested solutions immediately.. SUSE OpenStack, MariaDB updates, SUSE security, important patches, security enhancements. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 29, 2018 Important SuSE
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here