Alerts This Week
Warning Icon 1 566
Alerts This Week
Warning Icon 1 566

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Calendar White Jun 05, 2026
Important
Fedora Large Esm H800
Fedora

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Calendar White Jun 05, 2026
Critical
Fedora Large Esm H900
Fedora

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Calendar White Jun 05, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Calendar White Jun 05, 2026
high
Fedora Large Esm H800
Fedora

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Fedora Large Esm H900
Fedora

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Calendar White Jun 05, 2026
Low
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorySuSEimportant

SUSE: ongres-scram Important Timing Attack Fix CVE-2025-59432 2025:21016-1

* bsc#1250399 Cross-References: * CVE-2025-59432 . # Security update for ongres-scram Announcement ID: SUSE-SU-2025:21016-1 Release Date: 2025-11-19T10:14:36Z Rating: important References: * bsc#1250399 Cross-References: * CVE-2025-59432 CVSS scores: * CVE-2025-59432 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2025-59432 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N * CVE-2025-59432 ( NVD ): 6.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP Applications 16.0 An update that solves one vulnerability can now be installed. ## Description: This update for ongres-scram fixes the following issues: * CVE-2025-59432: Fixed timing attack vulnerability in SCRAM Authentication (bsc#1250399) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-33=1 * SUSE Linux Enterprise Server for SAP Applications 16.0 zypper in -t patch SUSE-SLES-16.0-33=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (noarch) * ongres-scram-javadoc-3.1-160000.3.1 * ongres-scram-3.1-160000.3.1 * ongres-scram-client-3.1-160000.3.1 * SUSE Linux Enterprise Server for SAP Applications 16.0 (noarch) * ongres-scram-javadoc-3.1-160000.3.1 * ongres-scram-3.1-160000.3.1 * ongres-scram-client-3.1-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2025-59432.html * https://bugzilla.suse.com/show_bug.cgi?id=1250399 . Critical update for SUSE's ongres-scram fixes timing attack vulnerability. Immediate action recommended for affectedsystems.. SUSE Linux, ongres-scram, security update, timing attack, SCRAM authentication. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Nov 26, 2025 Important SuSE
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderateupdate

openSUSE Leap 15.4: SUSE-SU-2025:4054-1 Addresses CVE-2025-59432 Risk

An update that solves one vulnerability can now be installed.. # Security update for ongres-scram Announcement ID: SUSE-SU-2025:4054-1 Release Date: 2025-11-11T14:04:45Z Rating: moderate References: * bsc#1250399 Cross-References: * CVE-2025-59432 CVSS scores: * CVE-2025-59432 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2025-59432 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N * CVE-2025-59432 ( NVD ): 6.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * Server Applications Module 15-SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for ongres-scram fixes the following issues: * CVE-2025-59432: Fixed timing attack vulnerability in SCRAM Authentication (bsc#1250399) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-4054=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-4054=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-4054=1 * Server Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2025-4054=1 ## Package List: * openSUSE Leap 15.4 (noarch) * ongres-scram-client-2.1-150400.8.5.1 *ongres-scram-parent-2.1-150400.8.5.1 * ongres-scram-2.1-150400.8.5.1 * ongres-scram-javadoc-2.1-150400.8.5.1 * openSUSE Leap 15.6 (noarch) * ongres-scram-client-2.1-150400.8.5.1 * ongres-scram-parent-2.1-150400.8.5.1 * ongres-scram-2.1-150400.8.5.1 * ongres-scram-javadoc-2.1-150400.8.5.1 * Server Applications Module 15-SP6 (noarch) * ongres-scram-client-2.1-150400.8.5.1 * ongres-scram-2.1-150400.8.5.1 * Server Applications Module 15-SP7 (noarch) * ongres-scram-client-2.1-150400.8.5.1 * ongres-scram-2.1-150400.8.5.1 ## References: * https://www.suse.com/security/cve/CVE-2025-59432.html * https://bugzilla.suse.com/show_bug.cgi?id=1250399 . An update for ongres-scram addresses a moderate timing attack vulnerability. Patch installations are recommended for users.. ongres-scram, security patch, timing attack, openSUSE security, moderate threat. . LinuxSecurity.com Team

Calendar 2 Nov 11, 2025 OpenSUSE
Banner 4 1028x280 1708121825 1771600306
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateSuSE

SUSE: ongres-scram Moderate Timing Attack Fix CVE-2025-59432 2025:4054-1

* bsc#1250399 Cross-References: * CVE-2025-59432 . # Security update for ongres-scram Announcement ID: SUSE-SU-2025:4054-1 Release Date: 2025-11-11T14:04:45Z Rating: moderate References: * bsc#1250399 Cross-References: * CVE-2025-59432 CVSS scores: * CVE-2025-59432 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2025-59432 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N * CVE-2025-59432 ( NVD ): 6.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * Server Applications Module 15-SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for ongres-scram fixes the following issues: * CVE-2025-59432: Fixed timing attack vulnerability in SCRAM Authentication (bsc#1250399) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-4054=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-4054=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-4054=1 * Server Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2025-4054=1 ## Package List: * openSUSE Leap 15.4 (noarch) * ongres-scram-client-2.1-150400.8.5.1 *ongres-scram-parent-2.1-150400.8.5.1 * ongres-scram-2.1-150400.8.5.1 * ongres-scram-javadoc-2.1-150400.8.5.1 * openSUSE Leap 15.6 (noarch) * ongres-scram-client-2.1-150400.8.5.1 * ongres-scram-parent-2.1-150400.8.5.1 * ongres-scram-2.1-150400.8.5.1 * ongres-scram-javadoc-2.1-150400.8.5.1 * Server Applications Module 15-SP6 (noarch) * ongres-scram-client-2.1-150400.8.5.1 * ongres-scram-2.1-150400.8.5.1 * Server Applications Module 15-SP7 (noarch) * ongres-scram-client-2.1-150400.8.5.1 * ongres-scram-2.1-150400.8.5.1 ## References: * https://www.suse.com/security/cve/CVE-2025-59432.html * https://bugzilla.suse.com/show_bug.cgi?id=1250399 . SUSE announces a moderate advisory for ongres-scram addressing CVE-2025-59432 to fix a timing attack vulnerability. Patch recommended.. SUSE ongres-scram security update, CVE-2025-59432, SCRAM authentication fix. . LinuxSecurity.com Team

Calendar 2 Nov 11, 2025 SuSE
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here