Alerts This Week
Warning Icon 1 609
Alerts This Week
Warning Icon 1 609

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Calendar White Jun 05, 2026
Important
Fedora Large Esm H800
Fedora

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Calendar White Jun 05, 2026
Critical
Fedora Large Esm H900
Fedora

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Calendar White Jun 05, 2026
high
Fedora Large Esm H800
Fedora

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderate severitysystem integrity

openSUSE Leap 15.4 SUSE-SU-2023:3863-1 Moderate: Salt DoS Threat

This update for salt fixes the following issues: Security issues fixed:. # Security update for salt Announcement ID: SUSE-SU-2023:3863-1 Rating: moderate References: * #1193948 * #1210994 * #1212794 * #1212844 * #1212855 * #1213257 * #1213441 * #1213630 * #1213960 * #1214796 * #1214797 * #1215489 Cross-References: * CVE-2023-20897 * CVE-2023-20898 CVSS scores: * CVE-2023-20897 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-20897 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-20898 ( SUSE ): 4.2 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N * CVE-2023-20898 ( NVD ): 4.2 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N Affected Products: * Basesystem Module 15-SP4 * openSUSE Leap 15.4 * Server Applications Module 15-SP4 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 * Transactional Server Module 15-SP4 An update that solves two vulnerabilities and has 10 security fixes can now be installed. ## Description: This update for salt fixes the following issues: Security issues fixed: * CVE-2023-20897: Fixed DOS in minion return. (bsc#1214796, bsc#1213441) * CVE-2023-20898: Fixed Git Providers can read from the wrong environment because they get the same cache directory base name. (bsc#1214797, bsc#1193948) Bugs fixed: * Create minion_id with reproducible mtime * Fix broken tests to make them running in the testsuite * Fix detection of Salt codename by "salt_version" execution module * Fix inconsistency in reported versionby egg-info metadata (bsc#1215489) * Fix regression: multiple values for keyword argument 'saltenv' (bsc#1212844) * Fix the regression of user.present state when group is unset (bsc#1212855) * Fix utf8 handling in 'pass' renderer and make it more robust * Fix zypper repositories always being reconfigured * Make sure configured user is properly set by Salt (bsc#1210994) * Prevent possible exceptions on salt.utils.user.get_group_dict (bsc#1212794) * Revert usage of long running REQ channel to prevent possible missing responses on requests and duplicated responses (bsc#1213960, bsc#1213630, bsc#1213257) ## Special Instructions and Notes: ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Transactional Server Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Transactional-Server-15-SP4-2023-3863=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2023-3863=1 openSUSE-SLE-15.4-2023-3863=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-3863=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-3863=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-3863=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-3863=1 * Basesystem Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2023-3863=1 * Server Applications Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP4-2023-3863=1 ## Package List: * Transactional Server Module 15-SP4 (aarch64 ppc64le s390x x86_64) * salt-transactional-update-3006.0-150400.8.44.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * salt-standalone-formulas-configuration-3006.0-150400.8.44.1 * salt-doc-3006.0-150400.8.44.1 * salt-proxy-3006.0-150400.8.44.1 * salt-syndic-3006.0-150400.8.44.1 * salt-tests-3006.0-150400.8.44.1 * salt-3006.0-150400.8.44.1 * salt-ssh-3006.0-150400.8.44.1 * salt-transactional-update-3006.0-150400.8.44.1 * salt-master-3006.0-150400.8.44.1 * salt-cloud-3006.0-150400.8.44.1 * salt-minion-3006.0-150400.8.44.1 * python3-salt-3006.0-150400.8.44.1 * salt-api-3006.0-150400.8.44.1 * openSUSE Leap 15.4 (noarch) * salt-fish-completion-3006.0-150400.8.44.1 * salt-zsh-completion-3006.0-150400.8.44.1 * salt-bash-completion-3006.0-150400.8.44.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * salt-transactional-update-3006.0-150400.8.44.1 * salt-3006.0-150400.8.44.1 * salt-minion-3006.0-150400.8.44.1 * python3-salt-3006.0-150400.8.44.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * salt-transactional-update-3006.0-150400.8.44.1 * salt-3006.0-150400.8.44.1 * salt-minion-3006.0-150400.8.44.1 * python3-salt-3006.0-150400.8.44.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * salt-transactional-update-3006.0-150400.8.44.1 * salt-3006.0-150400.8.44.1 * salt-minion-3006.0-150400.8.44.1 * python3-salt-3006.0-150400.8.44.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * salt-transactional-update-3006.0-150400.8.44.1 * salt-3006.0-150400.8.44.1 * salt-minion-3006.0-150400.8.44.1 * python3-salt-3006.0-150400.8.44.1 * Basesystem Module 15-SP4 (aarch64 ppc64le s390x x86_64) * salt-minion-3006.0-150400.8.44.1 * salt-3006.0-150400.8.44.1 * salt-doc-3006.0-150400.8.44.1 * python3-salt-3006.0-150400.8.44.1 * Basesystem Module 15-SP4 (noarch) * salt-zsh-completion-3006.0-150400.8.44.1 * salt-bash-completion-3006.0-150400.8.44.1 * Server Applications Module 15-SP4 (aarch64 ppc64le s390x x86_64) * salt-standalone-formulas-configuration-3006.0-150400.8.44.1 * salt-proxy-3006.0-150400.8.44.1 * salt-syndic-3006.0-150400.8.44.1 *salt-ssh-3006.0-150400.8.44.1 * salt-master-3006.0-150400.8.44.1 * salt-cloud-3006.0-150400.8.44.1 * salt-api-3006.0-150400.8.44.1 * Server Applications Module 15-SP4 (noarch) * salt-fish-completion-3006.0-150400.8.44.1 ## References: * https://www.suse.com/security/cve/CVE-2023-20897.html * https://www.suse.com/security/cve/CVE-2023-20898.html * https://bugzilla.suse.com/show_bug.cgi?id=1193948 * https://bugzilla.suse.com/show_bug.cgi?id=1210994 * https://bugzilla.suse.com/show_bug.cgi?id=1212794 * https://bugzilla.suse.com/show_bug.cgi?id=1212844 * https://bugzilla.suse.com/show_bug.cgi?id=1212855 * https://bugzilla.suse.com/show_bug.cgi?id=1213257 * https://bugzilla.suse.com/show_bug.cgi?id=1213441 * https://bugzilla.suse.com/show_bug.cgi?id=1213630 * https://bugzilla.suse.com/show_bug.cgi?id=1213960 * https://bugzilla.suse.com/show_bug.cgi?id=1214796 * https://bugzilla.suse.com/show_bug.cgi?id=1214797 * https://bugzilla.suse.com/show_bug.cgi?id=1215489 . Kernel security enhancement for Fedora: addresses three vulnerabilities and provides eight improvements to enhance overall system stability.. openSUSE Security,Salt Update,Security Advisory,System Integrity,DoS Threat. . LinuxSecurity.com Team

Calendar 2 Sep 28, 2023 OpenSUSE
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorymoderatecode execution

Debian: DLA-2480-1 Moderate: Shell Injection in Salt API

Several vulnerabilities were discovered in salt. CVE-2020-16846 . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2480-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Abhijith PA December 04, 2020 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : salt Version : 2016.11.2+ds-1+deb9u6 CVE ID : CVE-2020-16846 CVE-2020-17490 CVE-2020-25592 Several vulnerabilities were discovered in salt. CVE-2020-16846 An unauthenticated user with network access to the Salt API can use shell injections to run code on the Salt-API using the SSH client CVE-2020-17490 When using the functions create_ca, create_csr, and create_self_signed_cert in the tls execution module, it would not ensure the key was created with the correct permissions. CVE-2020-25592 Properly validate eauth credentials and tokens along with their Access Control Lists – ACLs. Prior to this change, eauth was not properly validated when calling Salt SSH via the salt-api. Any value for “eauth” or “token” would allow a user to bypass authentication and make calls to Salt SSH For Debian 9 stretch, these problems have been fixed in version 2016.11.2+ds-1+deb9u6. We recommend that you upgrade your salt packages. For the detailed security status of salt please refer to its security tracker page at: Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Implement the latest updates for salt packages on Debian 9 stretch to address severe vulnerabilities, such as command injections and security weaknesses in authentication.. Debian LTS Security,Salt Update,Authentication Flaw. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 04, 2020 Important Debian LTS
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here