Alerts This Week
Warning Icon 1 687
Alerts This Week
Warning Icon 1 687

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
198
Ls Advisories Archlinux Esm H240
Price Tag 1security advisoryremote exploitdirectory traversal

Arch Linux: ASA-201708-17 Medium: Salt Directory Traversal Exploit

The package salt before version 2017.7.1-1 is vulnerable to directory traversal. . Arch Linux Security Advisory ASA-201708-17 ========================================= Severity: Medium Date : 2017-08-23 CVE-ID : CVE-2017-12791 Package : salt Type : directory traversal Remote : Yes Link : https://security.archlinux.org/AVG-383 Summary ====== The package salt before version 2017.7.1-1 is vulnerable to directory traversal. Resolution ========= Upgrade to 2017.7.1-1. # pacman -Syu "salt> =2017.7.1-1" The problem has been fixed upstream in version 2017.7.1. Workaround ========= None. Description ========== It has been discovered that maliciously crafted minion IDs can cause unwanted directory traversals on the salt-master. The flaw is within the minion id validation which could allow certain minions to authenticate to a master despite not having the correct credentials. To exploit the vulnerability, an attacker must create a salt-minion with an ID containing characters that will cause a directory traversal. Impact ===== An unauthenticated attacker is able to craft a malicious minion ID to cause a directory traversal on the salt-master. References ========= https://groups.google.com/forum/#!topic/salt-announce/3e5bNantdJk https://security.archlinux.org/CVE-2017-12791 . The Fedora Project Security Advisory FSA-202007-15 highlights a critical severity vulnerability in the postgresql database management system.. Arch Linux, Salt Package, Directory Traversal, Security Advisory. . Severity: Medium. LinuxSecurity.com Team

Calendar 2 Aug 24, 2017 Medium ArchLinux
198
Ls Advisories Archlinux Esm H240
Price Tag 1security advisoryhigh severitycode execution

Arch Linux ASA-201701-41 High: Salt Code Execution Threats

The package salt before version 2016.11.2-1 is vulnerable to multiple issues including arbitrary code execution and arbitrary command execution. . Arch Linux Security Advisory ASA-201701-41 ========================================= Severity: High Date : 2017-01-31 CVE-ID : CVE-2017-5192 CVE-2017-5200 Package : salt Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-159 Summary ====== The package salt before version 2016.11.2-1 is vulnerable to multiple issues including arbitrary code execution and arbitrary command execution. Resolution ========= Upgrade to 2016.11.2-1. # pacman -Syu "salt> =2016.11.2-1" The problems have been fixed upstream in version 2016.11.2. Workaround ========= None. Description ========== - CVE-2017-5192 (arbitrary code execution) The `LocalClient.cmd_batch()` method client does not accept `external_auth` credentials and so access to it from salt-api has been removed for now. This vulnerability allows code execution for already- authenticated users and is only in effect when running salt-api as the `root` user. - CVE-2017-5200 (arbitrary command execution) Salt-api allows arbitrary command execution on a salt-master via Salt's ssh_client. Users of Salt-API and salt-ssh could execute a command on the salt master via a hole when both systems were enabled. Impact ===== A remote attacker is able to execute arbitrary commands on a salt master when salt is not configured properly. In addition, an authenticated attacker is able to execute arbitrary code on the salt stack if salt-api is run as root. References ========= https://groups.google.com/forum/#!msg/salt-announce/eP_kQiQdnvo/6cvBrwsqCAAJ https://docs.saltproject.io/en/latest/topics/releases/2016.11.2.html https://security.archlinux.org/CVE-2017-5192 https://security.archlinux.org/CVE-2017-5200 . Critical vulnerabilities in the salt package for Arch Linux allow code execution. Upgrade required for security.. Arch Linux,Salt Package,Arbitrary Execution. . LinuxSecurity.com Team

Calendar 2 Feb 01, 2017 ArchLinux
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here