Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 2 articles for you...
202
security advisoryimportantcupsopenSUSE: cups Important Vuln CVE-2025-58436 Advisory 2025:4319-1
An update that solves one vulnerability can now be installed.. # Security update for cups Announcement ID: SUSE-SU-2025:4319-1 Release Date: 2025-12-03T12:34:37Z Rating: important References: * bsc#1254353 Cross-References: * CVE-2025-58436 CVSS scores: * CVE-2025-58436 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-58436 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-58436 ( NVD ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * Desktop Applications Module 15-SP6 * Desktop Applications Module 15-SP7 * Development Tools Module 15-SP6 * Development Tools Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for cups fixes the following issues: * The fix for CVE-2025-58436 causes a regression where GTK applications will hang. (bsc#1254353) See also https://github.com/OpenPrinting/cups/issues/1429 The fix has been temporary disabled. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patchopenSUSE-SLE-15.6-2025-4319=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-4319=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-4319=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-4319=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-4319=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-4319=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-4319=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-4319=1 * Desktop Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2025-4319=1 * Desktop Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP7-2025-4319=1 * Development Tools Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2025-4319=1 * Development Tools Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP7-2025-4319=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-4319=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-4319=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * cups-2.2.7-150000.3.80.1 * cups-config-2.2.7-150000.3.80.1 * cups-ddk-debuginfo-2.2.7-150000.3.80.1 * libcupscgi1-debuginfo-2.2.7-150000.3.80.1 * cups-client-debuginfo-2.2.7-150000.3.80.1 * cups-client-2.2.7-150000.3.80.1 * cups-debuginfo-2.2.7-150000.3.80.1 * libcupsimage2-2.2.7-150000.3.80.1 * libcups2-2.2.7-150000.3.80.1 * libcupscgi1-2.2.7-150000.3.80.1 * libcups2-debuginfo-2.2.7-150000.3.80.1 * libcupsmime1-debuginfo-2.2.7-150000.3.80.1 * libcupsmime1-2.2.7-150000.3.80.1 * libcupsppdc1-2.2.7-150000.3.80.1 * libcupsimage2-debuginfo-2.2.7-150000.3.80.1 * cups-devel-2.2.7-150000.3.80.1 * libcupsppdc1-debuginfo-2.2.7-150000.3.80.1 * cups-debugsource-2.2.7-150000.3.80.1 * cups-ddk-2.2.7-150000.3.80.1 * openSUSE Leap 15.6 (x86_64) * libcupsmime1-32bit-debuginfo-2.2.7-150000.3.80.1 * libcupsimage2-32bit-2.2.7-150000.3.80.1 * cups-devel-32bit-2.2.7-150000.3.80.1 * libcupscgi1-32bit-2.2.7-150000.3.80.1 * libcupsmime1-32bit-2.2.7-150000.3.80.1 * libcupsimage2-32bit-debuginfo-2.2.7-150000.3.80.1 * libcups2-32bit-debuginfo-2.2.7-150000.3.80.1 * libcupsppdc1-32bit-2.2.7-150000.3.80.1 * libcupsppdc1-32bit-debuginfo-2.2.7-150000.3.80.1 * libcups2-32bit-2.2.7-150000.3.80.1 * libcupscgi1-32bit-debuginfo-2.2.7-150000.3.80.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * cups-config-2.2.7-150000.3.80.1 * cups-debuginfo-2.2.7-150000.3.80.1 * libcups2-2.2.7-150000.3.80.1 * libcups2-debuginfo-2.2.7-150000.3.80.1 * cups-debugsource-2.2.7-150000.3.80.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * cups-config-2.2.7-150000.3.80.1 * cups-debuginfo-2.2.7-150000.3.80.1 * libcups2-2.2.7-150000.3.80.1 * libcups2-debuginfo-2.2.7-150000.3.80.1 * cups-debugsource-2.2.7-150000.3.80.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * cups-config-2.2.7-150000.3.80.1 * cups-debuginfo-2.2.7-150000.3.80.1 * libcups2-2.2.7-150000.3.80.1 * libcups2-debuginfo-2.2.7-150000.3.80.1 * cups-debugsource-2.2.7-150000.3.80.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * cups-config-2.2.7-150000.3.80.1 * cups-debuginfo-2.2.7-150000.3.80.1 * libcups2-2.2.7-150000.3.80.1 * libcups2-debuginfo-2.2.7-150000.3.80.1 * cups-debugsource-2.2.7-150000.3.80.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * cups-config-2.2.7-150000.3.80.1 * cups-debuginfo-2.2.7-150000.3.80.1 * libcups2-2.2.7-150000.3.80.1 *libcups2-debuginfo-2.2.7-150000.3.80.1 * cups-debugsource-2.2.7-150000.3.80.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * cups-2.2.7-150000.3.80.1 * cups-config-2.2.7-150000.3.80.1 * libcupscgi1-debuginfo-2.2.7-150000.3.80.1 * cups-client-debuginfo-2.2.7-150000.3.80.1 * cups-client-2.2.7-150000.3.80.1 * cups-debuginfo-2.2.7-150000.3.80.1 * libcupsimage2-2.2.7-150000.3.80.1 * libcups2-2.2.7-150000.3.80.1 * libcupscgi1-2.2.7-150000.3.80.1 * libcups2-debuginfo-2.2.7-150000.3.80.1 * libcupsmime1-debuginfo-2.2.7-150000.3.80.1 * libcupsmime1-2.2.7-150000.3.80.1 * libcupsppdc1-2.2.7-150000.3.80.1 * libcupsimage2-debuginfo-2.2.7-150000.3.80.1 * cups-devel-2.2.7-150000.3.80.1 * cups-debugsource-2.2.7-150000.3.80.1 * libcupsppdc1-debuginfo-2.2.7-150000.3.80.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * cups-2.2.7-150000.3.80.1 * cups-config-2.2.7-150000.3.80.1 * libcupscgi1-debuginfo-2.2.7-150000.3.80.1 * cups-client-debuginfo-2.2.7-150000.3.80.1 * cups-client-2.2.7-150000.3.80.1 * cups-debuginfo-2.2.7-150000.3.80.1 * libcupsimage2-2.2.7-150000.3.80.1 * libcups2-2.2.7-150000.3.80.1 * libcupscgi1-2.2.7-150000.3.80.1 * libcups2-debuginfo-2.2.7-150000.3.80.1 * libcupsmime1-debuginfo-2.2.7-150000.3.80.1 * libcupsmime1-2.2.7-150000.3.80.1 * libcupsppdc1-2.2.7-150000.3.80.1 * libcupsimage2-debuginfo-2.2.7-150000.3.80.1 * cups-devel-2.2.7-150000.3.80.1 * cups-debugsource-2.2.7-150000.3.80.1 * libcupsppdc1-debuginfo-2.2.7-150000.3.80.1 * Desktop Applications Module 15-SP6 (x86_64) * libcups2-32bit-debuginfo-2.2.7-150000.3.80.1 * libcups2-32bit-2.2.7-150000.3.80.1 * Desktop Applications Module 15-SP7 (x86_64) * libcups2-32bit-debuginfo-2.2.7-150000.3.80.1 * libcups2-32bit-2.2.7-150000.3.80.1 * Development Tools Module 15-SP6 (aarch64 ppc64le s390x x86_64) * cups-ddk-debuginfo-2.2.7-150000.3.80.1 *cups-debuginfo-2.2.7-150000.3.80.1 * cups-debugsource-2.2.7-150000.3.80.1 * cups-ddk-2.2.7-150000.3.80.1 * Development Tools Module 15-SP7 (aarch64 ppc64le s390x x86_64) * cups-ddk-debuginfo-2.2.7-150000.3.80.1 * cups-debuginfo-2.2.7-150000.3.80.1 * cups-debugsource-2.2.7-150000.3.80.1 * cups-ddk-2.2.7-150000.3.80.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * cups-config-2.2.7-150000.3.80.1 * cups-debuginfo-2.2.7-150000.3.80.1 * libcups2-2.2.7-150000.3.80.1 * libcups2-debuginfo-2.2.7-150000.3.80.1 * cups-debugsource-2.2.7-150000.3.80.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * cups-config-2.2.7-150000.3.80.1 * cups-debuginfo-2.2.7-150000.3.80.1 * libcups2-2.2.7-150000.3.80.1 * libcups2-debuginfo-2.2.7-150000.3.80.1 * cups-debugsource-2.2.7-150000.3.80.1 ## References: * https://www.suse.com/security/cve/CVE-2025-58436.html * https://bugzilla.suse.com/show_bug.cgi?id=1254353 . Installation instructions for the important security update for cups on openSUSE to resolve CVE-2025-58436 issues.. cups security fix, openSUSE update, application vulnerability, Linux security patch. . Severity: Important. LinuxSecurity.com Team
Dec 03, 2025
•Important
OpenSUSE
100
security advisorymoderatebuffer overflowSUSE: Kernel Livepatch MICRO Moderate Security Fix CVE-2025-38087
* bsc#1231676 * bsc#1231943 * bsc#1232271 * bsc#1236207 * bsc#1242579 . # Security update for kernel-livepatch-MICRO-6-0-RT_Update_2 Announcement ID: SUSE-SU-2025:20782-1 Release Date: 2025-09-11T15:47:54Z Rating: moderate References: * bsc#1231676 * bsc#1231943 * bsc#1232271 * bsc#1236207 * bsc#1242579 * bsc#1244235 * bsc#1245505 * bsc#1245775 * bsc#1245791 * bsc#1245805 * bsc#1246030 * bsc#1248108 Cross-References: * CVE-2024-47674 * CVE-2024-47706 * CVE-2024-49867 * CVE-2025-21659 * CVE-2025-21701 * CVE-2025-21999 * CVE-2025-37890 * CVE-2025-38000 * CVE-2025-38001 * CVE-2025-38087 * CVE-2025-38212 CVSS scores: * CVE-2024-47674 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-47674 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-47674 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-47706 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-47706 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-47706 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-49867 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-49867 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-49867 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21659 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-21659 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2025-21701 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-21999 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-21999 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-21999 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-37890 ( SUSE ): 7.0CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38000 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38000 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38001 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38001 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38087 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38087 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38212 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38212 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves 11 vulnerabilities and has one fix can now be installed. ## Description: This update for kernel-livepatch-MICRO-6-0-RT_Update_2 fixes the following issues: * CVE-2025-38087: net/sched: fix use-after-free in taprio_dev_notifier (bsc#1245505) * CVE-2025-21999: proc: fix UAF in proc_get_inode() (bsc#1242579) * CVE-2025-38001: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice (bsc#1244235) * CVE-2024-49867: btrfs: wait for fixup workers before stopping cleaner kthread during umount (bsc#1232271) * CVE-2025-21659: netdev: prevent accessing NAPI instances from another namespace (bsc#1236207) * CVE-2025-38000: sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() (bsc#1245775) * CVE-2025-37890: net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc (bsc#1245791) * CVE-2024-47674: mm: avoid leaving partial pfn mappings around in error case (bsc#1231676) * CVE-2025-21701: net: avoid race between device unregistration and ethnl ops (bsc#1245805) * CVE-2024-47706: block, bfq: fix possible UAF for bfqq-> bic with merge chain (bsc#1231943) ## Patch Instructions: To install thisSUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-114=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-6_4_0-10-rt-debuginfo-11-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_2-debugsource-11-1.1 * kernel-livepatch-6_4_0-10-rt-11-1.1 ## References: * https://www.suse.com/security/cve/CVE-2024-47674.html * https://www.suse.com/security/cve/CVE-2024-47706.html * https://www.suse.com/security/cve/CVE-2024-49867.html * https://www.suse.com/security/cve/CVE-2025-21659.html * https://www.suse.com/security/cve/CVE-2025-21701.html * https://www.suse.com/security/cve/CVE-2025-21999.html * https://www.suse.com/security/cve/CVE-2025-37890.html * https://www.suse.com/security/cve/CVE-2025-38000.html * https://www.suse.com/security/cve/CVE-2025-38001.html * https://www.suse.com/security/cve/CVE-2025-38087.html * https://www.suse.com/security/cve/CVE-2025-38212.html * https://bugzilla.suse.com/show_bug.cgi?id=1231676 * https://bugzilla.suse.com/show_bug.cgi?id=1231943 * https://bugzilla.suse.com/show_bug.cgi?id=1232271 * https://bugzilla.suse.com/show_bug.cgi?id=1236207 * https://bugzilla.suse.com/show_bug.cgi?id=1242579 * https://bugzilla.suse.com/show_bug.cgi?id=1244235 * https://bugzilla.suse.com/show_bug.cgi?id=1245505 * https://bugzilla.suse.com/show_bug.cgi?id=1245775 * https://bugzilla.suse.com/show_bug.cgi?id=1245791 * https://bugzilla.suse.com/show_bug.cgi?id=1245805 * https://bugzilla.suse.com/show_bug.cgi?id=1246030 * https://bugzilla.suse.com/show_bug.cgi?id=1248108 . Security update for kernel-livepatch-MICRO-6-0-RT_Update_2, addressing multiple security issues with a moderate rating.. SUSE Linux Micro 6.1, kernel-livepatch, security update, resource access, buffer overflow. . LinuxSecurity.com Team
Sep 26, 2025
SuSE
203
security advisorydenial of servicecriticalMageia 9: MGASA-2025-0191 critical: tomcat DoS and resource bypass
FileUpload large number of parts with headers DoS. (CVE-2025-48988) Security constraint bypass for pre/post-resources. (CVE-2025-49125) References: - https://bugs.mageia.org/show_bug.cgi?id=34376 . MGASA-2025-0191 - Updated tomcat packages fix security vulnerabilities Publication date: 25 Jun 2025 URL: https://advisories.mageia.org/MGASA-2025-0191.html Type: security Affected Mageia releases: 9 CVE: CVE-2025-48988, CVE-2025-49125 FileUpload large number of parts with headers DoS. (CVE-2025-48988) Security constraint bypass for pre/post-resources. (CVE-2025-49125) References: - https://bugs.mageia.org/show_bug.cgi?id=34376 - https://www.openwall.com/lists/oss-security/2025/06/16/1 - https://www.openwall.com/lists/oss-security/2025/06/16/2 - https://www.cve.org/CVERecord?id=CVE-2025-48988 - https://www.cve.org/CVERecord?id=CVE-2025-49125 SRPMS: - 9/core/tomcat-9.0.106-1.mga9 . Mageia has issued critical security updates for tomcat to fix vulnerabilities that could result in Denial of Service and unauthorized system access. Secure your systems!. Mageia Tomcat Security Update, DoS Vulnerability Fix, Security Advisory Mageia. . Severity: Critical. LinuxSecurity.com Team
Jun 25, 2025
•Critical
Mageia
100
security advisorythreat mitigationSUSESUSE Linux: 2024:2754-1 Important: Skopeo Resource Access Risk
* bsc#1224123 Cross-References: * CVE-2024-28180 . # Security update for skopeo Announcement ID: SUSE-SU-2024:2754-1 Rating: important References: * bsc#1224123 Cross-References: * CVE-2024-28180 CVSS scores: Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves one vulnerability can now be installed. ## Description: This update for skopeo fixes the following issues: Update to version 1.14.4: * CVE-2024-3727: Fixed a vulnerability that allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, resource exhaustion, local path traversal and other attacks. (bsc#1224123) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2754=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2754=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2754=1 ## Package List: * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * libgpg-error-devel-1.29-150000.3.3.1 * libgpg-error0-1.29-150000.3.3.1 * skopeo-1.14.4-150000.4.26.1 * libgpg-error0-debuginfo-1.29-150000.3.3.1 * libgpg-error-debugsource-1.29-150000.3.3.1 * skopeo-debuginfo-1.14.4-150000.4.26.1 * libgpg-error-devel-debuginfo-1.29-150000.3.3.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (x86_64) *libgpg-error0-32bit-1.29-150000.3.3.1 * libgpg-error0-32bit-debuginfo-1.29-150000.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * libgpg-error-devel-1.29-150000.3.3.1 * libgpg-error0-1.29-150000.3.3.1 * skopeo-1.14.4-150000.4.26.1 * libgpg-error0-debuginfo-1.29-150000.3.3.1 * libgpg-error-debugsource-1.29-150000.3.3.1 * skopeo-debuginfo-1.14.4-150000.4.26.1 * libgpg-error-devel-debuginfo-1.29-150000.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (x86_64) * libgpg-error0-32bit-1.29-150000.3.3.1 * libgpg-error0-32bit-debuginfo-1.29-150000.3.3.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * libgpg-error-devel-1.29-150000.3.3.1 * libgpg-error0-1.29-150000.3.3.1 * skopeo-1.14.4-150000.4.26.1 * libgpg-error0-debuginfo-1.29-150000.3.3.1 * libgpg-error-debugsource-1.29-150000.3.3.1 * skopeo-debuginfo-1.14.4-150000.4.26.1 * libgpg-error-devel-debuginfo-1.29-150000.3.3.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (x86_64) * libgpg-error0-32bit-1.29-150000.3.3.1 * libgpg-error0-32bit-debuginfo-1.29-150000.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2024-28180.html * https://bugzilla.suse.com/show_bug.cgi?id=1224123 . SUSE Security Patch SUSE-SU-2024:2755-1 mitigates a severe vulnerability in podman, affecting various platforms.. SUSE Linux Enterprise, skopeo patch, security update. . Severity: Important. LinuxSecurity.com Team
Aug 05, 2024
•Important
SuSE
172
security advisorysoftware updateUbuntuUbuntu 24.04 LTS: USN-6836-1 Moderate: SSSD Authorization Problem
SSSD did not always correctly apply the GPO policy.. ========================================================================== Ubuntu Security Notice USN-6836-1 June 17, 2024 sssd vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.04 LTS - Ubuntu 23.10 - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: SSSD did not always correctly apply the GPO policy. Software Description: - sssd: System Security Services Daemon Details: It was discovered that SSSD did not always correctly apply the GPO policy for authenticated users, contrary to expectations. This could result in improper authorization or improper access to resources. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.04 LTS sssd 2.9.4-1.1ubuntu6.1 Ubuntu 23.10 sssd 2.9.1-2ubuntu2.1 Ubuntu 22.04 LTS sssd 2.6.3-1ubuntu3.3 Ubuntu 20.04 LTS sssd 2.2.3-3ubuntu0.13 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6836-1 CVE-2023-3758 Package Information: https://launchpad.net/ubuntu/+source/sssd/2.9.4-1.1ubuntu6.1 https://launchpad.net/ubuntu/+source/sssd/2.9.1-2ubuntu2.1 https://launchpad.net/ubuntu/+source/sssd/2.6.3-1ubuntu3.3 https://launchpad.net/ubuntu/+source/sssd/2.2.3-3ubuntu0.13 . The Ubuntu Security Notice USN-6836-1 concerns problems in sssd policy implementation that impact several long-term support releases.. SSSD Updates, Ubuntu Security, Linux System Security. . LinuxSecurity.com Team
Jun 17, 2024
Ubuntu
89
security advisorymoderateFedoraFedora 36: 2022-5ef0bd9a27 Moderate: Golang Aliyun OSS Update
Rebuild to mitigate CVE-2022-{1705,32148,30631,30633,28131,30635,30632,30630,1962} in golang --- See https://groups.google.com/g/golang-dev/c/frczlF8OFQ0/m/4lrZh5BHDgAJ for more information about the specific vulnerabilities.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-5ef0bd9a27 2022-07-30 01:52:05.591823 --------------------------------------------------------------------------------Name : golang-github-aliyun-ossutil Product : Fedora 36 Version : 1.7.9 Release : 4.fc36 URL : https://github.com/aliyun/ossutil Summary : Alibaba Cloud (Aliyun) Object Storage Service (OSS) CLI Description : Alibaba Cloud (Aliyun) Object Storage Service (OSS) CLI. --------------------------------------------------------------------------------Update Information: Rebuild to mitigate CVE-2022-{1705,32148,30631,30633,28131,30635,30632,30630,1962} in golang ---See https://groups.google.com/g/golang-dev/c/frczlF8OFQ0/m/4lrZh5BHDgAJ for more information about the specific vulnerabilities. --------------------------------------------------------------------------------ChangeLog: * Tue Jul 19 2022 Maxwell G - 1.7.9-4 - Rebuild for CVE-2022-{1705,32148,30631,30633,28131,30635,30632,30630,1962} in golang --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-5ef0bd9a27' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list
Jul 29, 2022
Fedora
202
security advisorycritical issueimportant updateopenSUSE 15.3: 2021:2005-1 Important Jetty-Minimal Update - Critical Issue
An update that fixes four vulnerabilities is now available. . openSUSE Security Update: Security update for jetty-minimal ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:2005-1 Rating: important References: #1184366 #1184367 #1184368 #1187117 Cross-References: CVE-2021-28163 CVE-2021-28164 CVE-2021-28165 CVE-2021-28169 CVSS scores: CVE-2021-28163 (NVD) : 2.7 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N CVE-2021-28163 (SUSE): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2021-28164 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2021-28164 (SUSE): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2021-28165 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-28165 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-28169 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2021-28169 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N Affected Products: openSUSE Leap 15.3 ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: This update for jetty-minimal fixes the following issues: Update to version 9.4.42.v20210604 - Fix: bsc#1187117, CVE-2021-28169 - possible for requests to the ConcatServlet with a doubly encoded path to access protected resources within the WEB-INF directory - Fix: bsc#1184367, CVE-2021-28165 - jetty server high CPU when client send data length > 17408 - Fix: bsc#1184368, CVE-2021-28164 - Normalize ambiguous URIs - Fix: bsc#1184366, CVE-2021-28163 - Exclude webapps directory from deployment scan Patch Instructions: To install this openSUSE Security Update use the SUSE recommendedinstallation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2021-2005=1 Package List: - openSUSE Leap 15.3 (noarch): jetty-annotations-9.4.42-3.9.1 jetty-client-9.4.42-3.9.1 jetty-continuation-9.4.42-3.9.1 jetty-http-9.4.42-3.9.1 jetty-io-9.4.42-3.9.1 jetty-jaas-9.4.42-3.9.1 jetty-javax-websocket-client-impl-9.4.42-3.9.1 jetty-javax-websocket-server-impl-9.4.42-3.9.1 jetty-jmx-9.4.42-3.9.1 jetty-jndi-9.4.42-3.9.1 jetty-jsp-9.4.42-3.9.1 jetty-minimal-javadoc-9.4.42-3.9.1 jetty-openid-9.4.42-3.9.1 jetty-plus-9.4.42-3.9.1 jetty-proxy-9.4.42-3.9.1 jetty-security-9.4.42-3.9.1 jetty-server-9.4.42-3.9.1 jetty-servlet-9.4.42-3.9.1 jetty-util-9.4.42-3.9.1 jetty-util-ajax-9.4.42-3.9.1 jetty-webapp-9.4.42-3.9.1 jetty-websocket-api-9.4.42-3.9.1 jetty-websocket-client-9.4.42-3.9.1 jetty-websocket-common-9.4.42-3.9.1 jetty-websocket-javadoc-9.4.42-3.9.1 jetty-websocket-server-9.4.42-3.9.1 jetty-websocket-servlet-9.4.42-3.9.1 jetty-xml-9.4.42-3.9.1 References: https://www.suse.com/security/cve/CVE-2021-28163.html https://www.suse.com/security/cve/CVE-2021-28164.html https://www.suse.com/security/cve/CVE-2021-28165.html https://www.suse.com/security/cve/CVE-2021-28169.html https://bugzilla.suse.com/1184366 https://bugzilla.suse.com/1184367 https://bugzilla.suse.com/1184368 https://bugzilla.suse.com/1187117 . Improvements for several security flaws in openSUSE jetty-minimal, boosting protection for critical software operations.. openSUSE Jetty, Minimal Security Update, Important Vulnerability Fix. . Severity: Important. LinuxSecurity.com Team
Jul 11, 2021
•Important
OpenSUSE
197
security advisoryupdatedebianDebian 9 Stretch DLA-2389-1: Critical ruby-rack-cors Directory Traversal
This package allowed ../ directory traversal to access private resources because resource matching did not ensure that pathnames were in a canonical format. . - ----------------------------------------------------------------------- Debian LTS Advisory DLA-2389-1
Oct 01, 2020
•Critical
Debian LTS
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!