Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorycriticaldebian

Debian: DSA-5283-1 Important: KeyManager Access Control Flaw

Douglas Mendizabal discovered that Barbican, the OpenStack Key Management Service, incorrectly parsed requests which could allow an authenticated user to bypass Barbican access policies. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5247-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff October 04, 2022 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : barbican CVE ID : CVE-2022-3100 Debian Bug : 1021139 Douglas Mendizabal discovered that Barbican, the OpenStack Key Management Service, incorrectly parsed requests which could allow an authenticated user to bypass Barbican access policies. For the stable distribution (bullseye), this problem has been fixed in version 1:11.0.0-3+deb11u1. We recommend that you upgrade your barbican packages. For the detailed security status of barbican please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/barbican Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . The recent Barbican update for Debian fixes a critical vulnerability in request handling that might allow access control circumvention. Users should upgrade immediately. Barbican Update, Debian Security, Access Control Update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 04, 2022 Important Debian
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatesecurity issue

Red Hat: RHSA-2015:1668-01 Moderate: HTTP Request Smuggling Alert

Updated httpd packages that fix one security issue are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Moderate: httpd security update Advisory ID: RHSA-2015:1668-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2015:1668.html Issue date: 2015-08-24 CVE Names: CVE-2015-3183 ==================================================================== 1. Summary: Updated httpd packages that fix one security issue are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, noarch, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - noarch, x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, noarch, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, noarch, x86_64 3. Description: The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Multiple flaws were found in the way httpd parsed HTTP requests and responses using chunked transfer encoding. A remote attacker could use these flaws to create a specially crafted request, which httpd would decode differently from an HTTP proxy software in front of it, possibly leading to HTTP request smuggling attacks. (CVE-2015-3183) All httpd users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. After installing the updated packages, thehttpd service will be restarted automatically. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1243887 - CVE-2015-3183 httpd: HTTP request smuggling attack against chunked request parser 6. Package List: Red Hat Enterprise Linux Desktop (v. 6): Source: httpd-2.2.15-47.el6_7.src.rpm i386: httpd-2.2.15-47.el6_7.i686.rpm httpd-debuginfo-2.2.15-47.el6_7.i686.rpm httpd-tools-2.2.15-47.el6_7.i686.rpm x86_64: httpd-2.2.15-47.el6_7.x86_64.rpm httpd-debuginfo-2.2.15-47.el6_7.x86_64.rpm httpd-tools-2.2.15-47.el6_7.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): i386: httpd-debuginfo-2.2.15-47.el6_7.i686.rpm httpd-devel-2.2.15-47.el6_7.i686.rpm mod_ssl-2.2.15-47.el6_7.i686.rpm noarch: httpd-manual-2.2.15-47.el6_7.noarch.rpm x86_64: httpd-debuginfo-2.2.15-47.el6_7.i686.rpm httpd-debuginfo-2.2.15-47.el6_7.x86_64.rpm httpd-devel-2.2.15-47.el6_7.i686.rpm httpd-devel-2.2.15-47.el6_7.x86_64.rpm mod_ssl-2.2.15-47.el6_7.x86_64.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: httpd-2.2.15-47.el6_7.src.rpm x86_64: httpd-2.2.15-47.el6_7.x86_64.rpm httpd-debuginfo-2.2.15-47.el6_7.x86_64.rpm httpd-tools-2.2.15-47.el6_7.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v. 6): noarch: httpd-manual-2.2.15-47.el6_7.noarch.rpm x86_64: httpd-debuginfo-2.2.15-47.el6_7.i686.rpm httpd-debuginfo-2.2.15-47.el6_7.x86_64.rpm httpd-devel-2.2.15-47.el6_7.i686.rpm httpd-devel-2.2.15-47.el6_7.x86_64.rpm mod_ssl-2.2.15-47.el6_7.x86_64.rpm Red Hat Enterprise Linux Server (v.6): Source: httpd-2.2.15-47.el6_7.src.rpm i386: httpd-2.2.15-47.el6_7.i686.rpm httpd-debuginfo-2.2.15-47.el6_7.i686.rpm httpd-devel-2.2.15-47.el6_7.i686.rpm httpd-tools-2.2.15-47.el6_7.i686.rpm mod_ssl-2.2.15-47.el6_7.i686.rpm noarch: httpd-manual-2.2.15-47.el6_7.noarch.rpm ppc64: httpd-2.2.15-47.el6_7.ppc64.rpm httpd-debuginfo-2.2.15-47.el6_7.ppc.rpm httpd-debuginfo-2.2.15-47.el6_7.ppc64.rpm httpd-devel-2.2.15-47.el6_7.ppc.rpm httpd-devel-2.2.15-47.el6_7.ppc64.rpm httpd-tools-2.2.15-47.el6_7.ppc64.rpm mod_ssl-2.2.15-47.el6_7.ppc64.rpm s390x: httpd-2.2.15-47.el6_7.s390x.rpm httpd-debuginfo-2.2.15-47.el6_7.s390.rpm httpd-debuginfo-2.2.15-47.el6_7.s390x.rpm httpd-devel-2.2.15-47.el6_7.s390.rpm httpd-devel-2.2.15-47.el6_7.s390x.rpm httpd-tools-2.2.15-47.el6_7.s390x.rpm mod_ssl-2.2.15-47.el6_7.s390x.rpm x86_64: httpd-2.2.15-47.el6_7.x86_64.rpm httpd-debuginfo-2.2.15-47.el6_7.i686.rpm httpd-debuginfo-2.2.15-47.el6_7.x86_64.rpm httpd-devel-2.2.15-47.el6_7.i686.rpm httpd-devel-2.2.15-47.el6_7.x86_64.rpm httpd-tools-2.2.15-47.el6_7.x86_64.rpm mod_ssl-2.2.15-47.el6_7.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: httpd-2.2.15-47.el6_7.src.rpm i386: httpd-2.2.15-47.el6_7.i686.rpm httpd-debuginfo-2.2.15-47.el6_7.i686.rpm httpd-devel-2.2.15-47.el6_7.i686.rpm httpd-tools-2.2.15-47.el6_7.i686.rpm mod_ssl-2.2.15-47.el6_7.i686.rpm noarch: httpd-manual-2.2.15-47.el6_7.noarch.rpm x86_64: httpd-2.2.15-47.el6_7.x86_64.rpm httpd-debuginfo-2.2.15-47.el6_7.i686.rpm httpd-debuginfo-2.2.15-47.el6_7.x86_64.rpm httpd-devel-2.2.15-47.el6_7.i686.rpm httpd-devel-2.2.15-47.el6_7.x86_64.rpm httpd-tools-2.2.15-47.el6_7.x86_64.rpm mod_ssl-2.2.15-47.el6_7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2015-3183 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is .More contact details at https://access.redhat.com/security/team/contact/ Copyright 2015 Red Hat, Inc. . Latest httpd updates are now available for Red Hat Enterprise Linux 6, addressing a critical vulnerability in HTTP request processing.. Red Hat HTTPD Update, Security Patches, Request Parsing Issues. . LinuxSecurity.com Team

Calendar 2 Aug 24, 2015 Red Hat
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysecurity updatecritical

Fedora Core 3: php-4.3.11-2.7 Critical XML_RPC Parsing Issue

This update includes the latest upstream version of the PEAR XML_RPC package, which fixes a security issue in request parsing in the XML_RPC Server code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-2498 to this issue.. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2005-809 2005-08-25 ---------------------------------------------------------------------Product : Fedora Core 3 Name : php Version : 4.3.11 Release : 2.7 Summary : The PHP HTML-embedded scripting language. (PHP: Hypertext Preprocessor) Description : PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated webpages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. The mod_php module enables the Apache Web server to understand and process the embedded PHP language in Web pages. ---------------------------------------------------------------------Update Information: This update includes the latest upstream version of the PEAR XML_RPC package, which fixes a security issue in request parsing in the XML_RPC Server code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-2498 to this issue. ---------------------------------------------------------------------* Wed Aug 17 2005 Joe Orton 4.3.11-2.7 - pear: update to XML_RPC 1.4.0 (CAN-2005-2498, #165847) ---------------------------------------------------------------------This update can be downloaded from: 8ee124ab881288fd6bbfb2fd9c7ea13e SRPMS/php-4.3.11-2.7.src.rpm 913fb86266b1c68e686f0ba3f2b414c2 x86_64/php-4.3.11-2.7.x86_64.rpm c68ec21fa6a61c67f942e5445c7e1743 x86_64/php-devel-4.3.11-2.7.x86_64.rpm 08f69204bc70f2f12e0a086e375c331e x86_64/php-pear-4.3.11-2.7.x86_64.rpm 2bf2480fb69fc136038a634fbcfcce48 x86_64/php-imap-4.3.11-2.7.x86_64.rpm d3bacd5fdbf67254c705bc7bc61d281e x86_64/php-ldap-4.3.11-2.7.x86_64.rpm 3344ccc2e07d4b3397706e1872989482 x86_64/php-mysql-4.3.11-2.7.x86_64.rpm de65d833cb8e07eca0f56e018c828bbf x86_64/php-pgsql-4.3.11-2.7.x86_64.rpm 7e76bc8bd1bac00d2571bb97ea42cc9b x86_64/php-odbc-4.3.11-2.7.x86_64.rpm 9537ed06161fcc317831ffeaf7026f9e x86_64/php-snmp-4.3.11-2.7.x86_64.rpm e84e3bf1da132eb91e0be70f01edd3a5 x86_64/php-domxml-4.3.11-2.7.x86_64.rpm 922a1ea8060e709a06d26d594242ee32 x86_64/php-xmlrpc-4.3.11-2.7.x86_64.rpm b6145a24e3798e6e61a4a8bc89e8c0c5 x86_64/php-mbstring-4.3.11-2.7.x86_64.rpm 90dd25b292a8e2c823e5b5d98168d43a x86_64/php-ncurses-4.3.11-2.7.x86_64.rpm 09806af9f54acee63f849e2e60ef2b91 x86_64/php-gd-4.3.11-2.7.x86_64.rpm 3bbeb07601b8ec69463c336c0c205fff x86_64/debug/php-debuginfo-4.3.11-2.7.x86_64.rpm 1e4265fc6ef11f87897ab6a35aff6aa3 i386/php-4.3.11-2.7.i386.rpm c02d99c3007643a3a1a7bd9e1bac2e50 i386/php-devel-4.3.11-2.7.i386.rpm 11925259bae2e97e3f77b73d87d1fb70 i386/php-pear-4.3.11-2.7.i386.rpm 195b3c6e2479dcfdedcaa11859a7bd6b i386/php-imap-4.3.11-2.7.i386.rpm 18115f4afa5c36802e9014d5f3f0d7f7 i386/php-ldap-4.3.11-2.7.i386.rpm 77c0eaa6b267a24fd6635425dfb54743 i386/php-mysql-4.3.11-2.7.i386.rpm b1b8decc25e8f58711e00e5a26c90392 i386/php-pgsql-4.3.11-2.7.i386.rpm f563dd6f5b41da7c42f5689bfeaea825 i386/php-odbc-4.3.11-2.7.i386.rpm f47b90f3573f6abf1eb03feb6bcdf069 i386/php-snmp-4.3.11-2.7.i386.rpm d4e19949fe88844cc1bfdac03613fa74 i386/php-domxml-4.3.11-2.7.i386.rpm 74b4eafd808d15d93096be7e448a3749 i386/php-xmlrpc-4.3.11-2.7.i386.rpm e81c3b236495308bd48a05600c003afc i386/php-mbstring-4.3.11-2.7.i386.rpm 4731638caeeeffb16f4d45671a70de68 i386/php-ncurses-4.3.11-2.7.i386.rpm 4063e0d5f86bdfcf9a38f4fcb6426d33 i386/php-gd-4.3.11-2.7.i386.rpm 971a5476be2929cc7d131b84351a9137 i386/debug/php-debuginfo-4.3.11-2.7.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. ----------------------------------------------------------------------- fedora-announce-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Addresses vulnerability in PEAR XML_RPC component for Fedora Core 3, reinforcing server code safety from potential threats.. request parsing fix, XML_RPC vulnerability, Fedora Core update, security patch, PEAR XML_RPC. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Aug 25, 2005 Critical Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here