Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorymoderateinformation leak

Ubuntu: USN-4500-1 Low: Kernel Memory Disclosure Vulnerability

Ralf Schlatterbeck discovered an information leak in roundup, a web-based issue tracking system. An authenticated attacker could use it to see sensitive details about other users, including their hashed password. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3502-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Yves-Alexis Perez March 03, 2016 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : roundup CVE ID : CVE-2014-6276 Ralf Schlatterbeck discovered an information leak in roundup, a web-based issue tracking system. An authenticated attacker could use it to see sensitive details about other users, including their hashed password. After applying the update, which will fix the shipped templates, the site administrator should ensure the instanced versions (in /var/lib/roundup usually) are also updated, either by patching them manually or by recreating them. More info can be found in the upstream documentation at https://www.roundup-tracker.org/docs/upgrading.html For the oldstable distribution (wheezy), this problem has been fixed in version 1.4.20-1.1+deb7u1. For the stable distribution (jessie), this problem has been fixed in version 1.4.20-1.1+deb8u1. For the testing (stretch) and unstable (sid) distribution, this problem has not yet been fixed. We recommend that you upgrade your roundup packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Ralf Schlatterbeck has informed us about a data breach in roundup that compromises sensitive user information. Please implement the necessary update immediately.. roundup Security, Debian Advisory, InformationLeak. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Mar 03, 2016 Low Debian
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorymoderatesoftware update

Fedora 30: 2021-2341 Moderate: Roundup Security Improvement Patch

security bug bz#489355. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2009-2591 2009-03-11 17:13:40 --------------------------------------------------------------------------------Name : roundup Product : Fedora 9 Version : 1.4.6 Release : 4.fc9 URL : https://roundup.sourceforge.io/ Summary : Simple and flexible issue-tracking system Description : Roundup is a simple and flexible issue-tracking system with command line, web and email interfaces. It is based on the winning design from Ka-Ping Yee in the Software Carpentry "Track" design competition. --------------------------------------------------------------------------------ChangeLog: * Mon Mar 9 2009 Paul P. Komkoff Jr - 1.4.6-4 - security bug bz#489355 * Wed Feb 25 2009 Fedora Release Engineering - 1.4.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Sat Nov 29 2008 Ignacio Vazquez-Abrams - 1.4.6-2 - Rebuild for Python 2.6 * Fri Oct 3 2008 Paul P. Komkoff Jr - 1.4.6-1 - new upstream version --------------------------------------------------------------------------------References: [ 1 ] Bug #489355 - roundup: privilege escalation in EditCSVAction https://bugzilla.redhat.com/show_bug.cgi?id=489355 --------------------------------------------------------------------------------This update can be installed with the "yum" update program. Use su -c 'yum update roundup' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailinglist This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Debian 11 patch resolves vulnerability in file manager through the newest system upgrade. Maintain safety with this patch!. Fedora 9 Update, Roundup Software, Privilege Escalation Fix. . LinuxSecurity.com Team

Calendar 2 Mar 11, 2009 Fedora
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorymoderatefedora

Fedora 12: 2009-2584 High: OpenSSL Vulnerability Disclosure

security bug bz#489355. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2009-2583 2009-03-11 17:13:37 --------------------------------------------------------------------------------Name : roundup Product : Fedora 10 Version : 1.4.6 Release : 4.fc10 URL : https://roundup.sourceforge.io/ Summary : Simple and flexible issue-tracking system Description : Roundup is a simple and flexible issue-tracking system with command line, web and email interfaces. It is based on the winning design from Ka-Ping Yee in the Software Carpentry "Track" design competition. --------------------------------------------------------------------------------ChangeLog: * Mon Mar 9 2009 Paul P. Komkoff Jr - 1.4.6-4 - security bug bz#489355 * Wed Feb 25 2009 Fedora Release Engineering - 1.4.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Sat Nov 29 2008 Ignacio Vazquez-Abrams - 1.4.6-2 - Rebuild for Python 2.6 --------------------------------------------------------------------------------References: [ 1 ] Bug #489355 - roundup: privilege escalation in EditCSVAction https://bugzilla.redhat.com/show_bug.cgi?id=489355 --------------------------------------------------------------------------------This update can be installed with the "yum" update program. Use su -c 'yum update roundup' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Fedora 10's latest updatetackles security flaw bz#489355 in roundup, improving both system reliability and protection measures.. Fedora Update, Privilege Escalation, Roundup Issue Tracking. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 11, 2009 Important Fedora
91
Ls Advisories Gentoo Esm H240
Price Tag 1security advisorygentooaccess issue

Gentoo: GLSA-202310-12 Low: WordPress Security Vulnerability

Roundup will make files owned by the user that it's running as accessable to a remote attacker.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200408-09 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Low Title: Roundup filesystem access vulnerability Date: August 11, 2004 Bugs: #53494 ID: 200408-09 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Roundup will make files owned by the user that it's running as accessable to a remote attacker. Background ========= Roundup is a simple to use issue-tracking system with command-line, web, and e-mail interfaces. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-www/roundup = 0.7.6 Description ========== Improper handling of a specially crafted URL allows access to the server's filesystem, which could contain sensitive information. Impact ===== An attacker could view files owned by the user running Roundup. This will never be root however, as Roundup will not run as root. Workaround ========= There is no known workaround at this time. All users are encouraged to upgrade to the latest available version of Roundup. Resolution ========= All Roundup users should upgrade to the latest version: # emerge sync # emerge -pv "> =net-www/roundup-0.7.6" # emerge "> =net-www/roundup-0.7.6" References ========= [ 1 ] Secunia Advisory SA11801 https://www.flexera.com/products/security/software-vulnerability-research/secunia-research Availability =========== This GLSA and any updates to it are available forviewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200408-09 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to This email address is being protected from spambots. You need JavaScript enabled to view it. or alternatively, you may file a bug at https://bugs.gentoo.org/. License ====== Copyright 2004 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/1.0/ . The Gentoo GLSA 200406-12 outlines a minor security flaw in the Roundup issue tracker, enabling unauthorized access to files from a remote location.. Gentoo Linux, Roundup Access, Remote Threat. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Aug 11, 2004 Low Gentoo
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here