Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian LTS openssl Important Use-After-Free NULL Pointer Issues DLA-4624-1

Calendar White Jun 09, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 alsa-lib Important Denial of Service Fix USN-8044-2

Calendar White Jun 09, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS node-shell-quote Important Denial of Service CVE-2026-9277

Calendar White Jun 09, 2026
Important
Mageia Large Esm H800
Mageia

Mageia 9 Suricata Critical Performance Security Issues MGASA-2026-0181

Calendar White Jun 09, 2026
Critical
Mageia Large Esm H900
Mageia

Mageia 9 PackageKit Important TOCTOU Race Escalation CVE-2026-41651

Calendar White Jun 09, 2026
Important
Mageia Large Esm H900
Mageia

Mageia 9 Unbound Critical Remote Code Execution Advisory 2026-0034

Calendar White Jun 09, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS Netatalk Multiple Security Issues USN-8395-1

Calendar White Jun 09, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 mingw-objfw 1.5.5 Update Security Fix FEDORA-2026-de23fedf3e

Calendar White Jun 08, 2026
Fedora Large Esm H900
Fedora

Fedora 43 objfw Important Update 1.5.5 Bug Fixes June 2026

Calendar White Jun 08, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
219
Ls Advisories Rockylinux Esm H240
Price Tag 1security advisorymoderatedenial of service

Rocky Linux 10 RLSB-2026-13742 python-django Security Vulnerability Alert

Moderate: python-tornado security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:13641", "synopsis": "Moderate: python-tornado security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for python-tornado.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.\n\nSecurity Fix(es):\n\n* tornado-python: Tornado: Denial of Service via large multipart bodies (CVE-2026-31958)\n\n* tornado: Tornado: Cookie attribute injection due to improper handling of cookie arguments (CVE-2026-35536)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2454716", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2454716", "description": ""}, {"ticket": "2446765", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2446765", "description": ""}], "cves": [{"name": "CVE-2026-31958", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-31958", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "cvss3BaseScore": "5.3", "cwe": "CWE-770"}, {"name": "CVE-2026-35536", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-35536", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", "cvss3BaseScore": "5.4", "cwe": "CWE-88"}], "references": [], "publishedAt":"2026-05-06T12:05:16.751656Z", "rpms": {"Rocky Linux 10": {"nvras": ["python-tornado-debugsource-0:6.5.5-1.el10_1.1.s390x.rpm", "python3-tornado-0:6.5.5-1.el10_1.1.ppc64le.rpm", "python-tornado-debugsource-0:6.5.5-1.el10_1.1.aarch64.rpm", "python3-tornado-0:6.5.5-1.el10_1.1.x86_64.rpm", "python3-tornado-0:6.5.5-1.el10_1.1.aarch64.rpm", "python-tornado-debugsource-0:6.5.5-1.el10_1.1.ppc64le.rpm", "python-tornado-0:6.5.5-1.el10_1.1.src.rpm", "python3-tornado-debuginfo-0:6.5.5-1.el10_1.1.s390x.rpm", "python3-tornado-debuginfo-0:6.5.5-1.el10_1.1.x86_64.rpm", "python3-tornado-debuginfo-0:6.5.5-1.el10_1.1.ppc64le.rpm", "python3-tornado-0:6.5.5-1.el10_1.1.s390x.rpm", "python-tornado-debugsource-0:6.5.5-1.el10_1.1.x86_64.rpm", "python3-tornado-debuginfo-0:6.5.5-1.el10_1.1.aarch64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. A security update for python-tornado on Rocky Linux addresses denial of service risks with moderate severity. Stay informed!. Rocky Linux Update, python-tornado Security, Moderate Severity, Denial of Service Attack, Python Security. . LinuxSecurity.com Team

Calendar 2 May 06, 2026 Rocky Linux
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoraXSS

Fedora 10 Asterisk 1.6.0.17-2 Critical XSS Security Flaw

* Thu Nov 5 2009 Jeffrey C. Ollie - 1.6.0.17-2 - Fix firmware path * Wed Nov 4 2009 Jeffrey C. Ollie - 1.6.0.17-1 - Update to 1.6.0.17 to fix AST-2009-009/CVE-2008-7220 - Merge the firmware subpackage back into the main package. - Don't package the iaxy firmware anymore. . -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-11126 2009-11-06 23:59:04 -------------------------------------------------------------------------------- Name : asterisk Product : Fedora 10 Version : 1.6.0.17 Release : 2.fc10 URL : https://www.asterisk.org/ Summary : The Open Source PBX Description : Asterisk is a complete PBX in software. It runs on Linux and provides all of the features you would expect from a PBX and more. Asterisk does voice over IP in three protocols, and can interoperate with almost all standards-based telephony equipment using relatively inexpensive hardware. -------------------------------------------------------------------------------- Update Information: * Thu Nov 5 2009 Jeffrey C. Ollie - 1.6.0.17-2 - Fix firmware path * Wed Nov 4 2009 Jeffrey C. Ollie - 1.6.0.17-1 - Update to 1.6.0.17 to fix AST-2009-009/CVE-2008-7220 - Merge the firmware subpackage back into the main package. - Don't package the iaxy firmware anymore. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 5 2009 Jeffrey C. Ollie - 1.6.0.17-2 - Fix firmware path * Wed Nov 4 2009 Jeffrey C. Ollie - 1.6.0.17-1 - Update to 1.6.0.17 to fix AST-2009-009/CVE-2008-7220 - Merge the firmware subpackage back into the main package. - Don't package the iaxy firmware anymore. * Thu Sep 3 2009 Jeffrey C. Ollie - 1.6.0.15-2 - Create /var/lib/asterisk/keys * Thu Sep 3 2009 Jeffrey C. Ollie - 1.6.0.15-1 - Drop chan_mobile, too difficult to maintain as a patch - Update to 1.6.0.15 and drop unneeded patches * Fri Jan 23 2009 Jeffrey C. Ollie - 1.6.0.5-2 - Add a patch to fix a problemwith the manager interface. * Fri Jan 23 2009 Jeffrey C. Ollie - 1.6.0.5-1 - Update to 1.6.0.5 to fix regressions caused by fixes for AST-2009-001/CVE-2009-0041 (Asterisk 1.6.0.4 was never released). * Thu Jan 8 2009 Jeffrey C. Ollie - 1.6.0.3-1 - Update to 1.6.0.3 to fix AST-2009-001/CVE-2009-0041 - http://downloads.asterisk.org/pub/security/ * Sun Jan 4 2009 Jeffrey C. Ollie - 1.6.0.2-4 - Fedora Directory Server compatibility patch/subpackage. BZ#452176 * Sun Jan 4 2009 Jeffrey C. Ollie - 1.6.0.2-3 - Don't package func_curl in the main package. BZ#475910 - Fix up paths. BZ#477238 * Sun Jan 4 2009 Jeffrey C. Ollie - 1.6.0.2-2 - Add patch to fix compilation on PPC * Sun Jan 4 2009 Jeffrey C. Ollie - 1.6.0.2-1 - Update to 1.6.0.2 * Wed Nov 5 2008 Jeffrey C. Ollie - 1.6.0.1-3 - Fix issue with init script giving wrong path to config file. -------------------------------------------------------------------------------- References: [ 1 ] Bug #533137 - Asterisk: SIP responses expose valid usernames (AST-2009-008) https://bugzilla.redhat.com/show_bug.cgi?id=533137 [ 2 ] Bug #523277 - CVE-2008-7220 WordPress, MediaTomb, python-webhelpers, Asterisk, Plone -- embedded Prototype JavaScript FrameWork: XSS Ajax requests (AST-2009-009) https://bugzilla.redhat.com/show_bug.cgi?id=523277 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update asterisk' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailinglist This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Fedora 10 enhancements for Asterisk address firmware directory problems and patch a significant XSS exploit, bolstering system security.. Fedora Asterisk Update,Asterisk Security Fixes,Open Source PBX Patch. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 24, 2009 Critical Fedora
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here