Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 1 articles for you...
202
security advisorymoderateupdateopenSUSE Leap 15.6 Moderate TOCTOU Race Condition Vulnerability 2026-1941-1
An update that solves one vulnerability can now be installed.. # Security update for sed Announcement ID: SUSE-SU-2026:1941-1 Release Date: 2026-05-18T07:44:39Z Rating: moderate References: * bsc#1262144 Cross-References: * CVE-2026-5958 CVSS scores: * CVE-2026-5958 ( SUSE ): 2.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:H/SI:H/SA:N * CVE-2026-5958 ( SUSE ): 6.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:N * CVE-2026-5958 ( NVD ): 2.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for sed fixes the following issue: * CVE-2026-5958: a TOCTOU race can allow to read attacker-controlled content and write it to an unintended file (bsc#1262144). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-1941=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1941=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * sed-4.9-150600.3.3.1 * sed-debugsource-4.9-150600.3.3.1 * sed-debuginfo-4.9-150600.3.3.1 * openSUSE Leap 15.6 (noarch) * sed-lang-4.9-150600.3.3.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * sed-4.9-150600.3.3.1 * sed-debugsource-4.9-150600.3.3.1 * sed-debuginfo-4.9-150600.3.3.1 * Basesystem Module 15-SP7 (noarch) *sed-lang-4.9-150600.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5958.html * https://bugzilla.suse.com/show_bug.cgi?id=1262144 . # Security update for sed Announcement ID: SUSE-SU-2026:1941-1 Release Date: 2026-05-18T07:44:39Z Ra. update, solves, vulnerability, installed, security, announcement. . LinuxSecurity.com Team
May 18, 2026
OpenSUSE
100
security advisorymoderatepatchopenSUSE 15.6 sed Moderate TOCTOU Race Vuln 2026-1941-1
An update that solves one vulnerability can now be installed.. # Security update for sed Announcement ID: SUSE-SU-2026:1941-1 Release Date: 2026-05-18T07:44:39Z Rating: moderate References: * bsc#1262144 Cross-References: * CVE-2026-5958 CVSS scores: * CVE-2026-5958 ( SUSE ): 2.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:H/SI:H/SA:N * CVE-2026-5958 ( SUSE ): 6.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:N * CVE-2026-5958 ( NVD ): 2.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for sed fixes the following issue: * CVE-2026-5958: a TOCTOU race can allow to read attacker-controlled content and write it to an unintended file (bsc#1262144). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-1941=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1941=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * sed-4.9-150600.3.3.1 * sed-debugsource-4.9-150600.3.3.1 * sed-debuginfo-4.9-150600.3.3.1 * openSUSE Leap 15.6 (noarch) * sed-lang-4.9-150600.3.3.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * sed-4.9-150600.3.3.1 * sed-debugsource-4.9-150600.3.3.1 * sed-debuginfo-4.9-150600.3.3.1 * Basesystem Module 15-SP7 (noarch) *sed-lang-4.9-150600.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5958.html * https://bugzilla.suse.com/show_bug.cgi?id=1262144 . SUSE updates sed to fix a moderate TOCTOU race vulnerability. Install recommended security patches now.. SUSE Linux, sed software, TOCTOU issue, security update, patch instructions. . LinuxSecurity.com Team
May 18, 2026
SuSE
203
security advisoryimportantrace conditionMageia 9 sed Important Race Condition Issue MGASA-2026-0128 CVE-2026-5958
MGASA-2026-0128 - Updated sed packages fix security vulnerability. MGASA-2026-0128 - Updated sed packages fix security vulnerability Publication date: 13 May 2026 URL: https://advisories.mageia.org/MGASA-2026-0128.html Type: security Affected Mageia releases: 9 CVE: CVE-2026-5958 Description: Race Condition in GNU Sed. (CVE-2026-5958) References: - https://bugs.mageia.org/show_bug.cgi?id=35465 - https://lists.opensuse.org/archives/list/
May 13, 2026
•Important
Mageia
100
security advisorymoderateSuSESUSE Linux Enterprise Server 12 SP5 Toctou Race Vulnerability Notice
An update that solves one vulnerability can now be installed.. # Security update for sed Announcement ID: SUSE-SU-2026:1699-1 Release Date: 2026-05-06T07:26:45Z Rating: moderate References: * bsc#1262144 Cross-References: * CVE-2026-5958 CVSS scores: * CVE-2026-5958 ( SUSE ): 2.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:H/SI:H/SA:N * CVE-2026-5958 ( SUSE ): 6.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:N * CVE-2026-5958 ( NVD ): 2.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for sed fixes the following issue: * CVE-2026-5958: a TOCTOU race can allow to read attacker-controlled content and write it to an unintended file (bsc#1262144). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-1699=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * sed-4.2.2-7.6.1 * sed-debugsource-4.2.2-7.6.1 * sed-debuginfo-4.2.2-7.6.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (noarch) * sed-lang-4.2.2-7.6.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5958.html * https://bugzilla.suse.com/show_bug.cgi?id=1262144 . Update for SUSE Linux fixes moderate security issue in sed, addressing TOCTOU race allowing unintended access.. SUSE Linux update, sed security fix, moderatethreat, TOCTOU race. . LinuxSecurity.com Team
May 06, 2026
SuSE
172
security advisorycriticalremote accessUbuntu 26.04 LTS Sed Critical Overwrite Risk USN-8229-1 CVE-2026-5958
sed could be made to overwrite files.. ========================================================================== Ubuntu Security Notice USN-8229-1 May 04, 2026 sed vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS - Ubuntu 25.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS Summary: sed could be made to overwrite files. Software Description: - sed: GNU stream editor for filtering/transforming text Details: Micha\u0142 Majchrowicz and Marcin Wyczechowski discovered that sed incorrectly handled symbolic links when performing in-place edits. A local attacker could possibly use this issue to overwrite arbitrary files. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS sed 4.9-2ubuntu1 Ubuntu 25.10 sed 4.9-2ubuntu0.25.10.1 Ubuntu 24.04 LTS sed 4.9-2ubuntu0.24.04.1 Ubuntu 22.04 LTS sed 4.8-1ubuntu2.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8229-1 CVE-2026-5958 Package Information: https://launchpad.net/ubuntu/+source/sed/4.9-2ubuntu1 https://launchpad.net/ubuntu/+source/sed/4.9-2ubuntu0.25.10.1 https://launchpad.net/ubuntu/+source/sed/4.9-2ubuntu0.24.04.1 https://launchpad.net/ubuntu/+source/sed/4.8-1ubuntu2.1 . A critical issue with sed in Ubuntu could allow local users to overwrite files, requiring immediate updates.. sed software issue, Ubuntu security advisory, file overwrite risk. . Severity: Critical. LinuxSecurity.com Team
May 04, 2026
•Critical
Ubuntu
100
security advisorymoderatearbitrary file overwriteSUSE Linux Micro 6.1 Sed Moderate TOCTOU File Overwrite Risk 2026-21448-1
An update that solves one vulnerability can now be installed.. # Security update for sed Announcement ID: SUSE-SU-2026:21448-1 Release Date: 2026-04-27T17:14:51Z Rating: moderate References: * bsc#1262144 Cross-References: * CVE-2026-5958 CVSS scores: * CVE-2026-5958 ( SUSE ): 2.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:H/SI:H/SA:N * CVE-2026-5958 ( SUSE ): 6.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:N * CVE-2026-5958 ( NVD ): 2.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * SUSE Linux Micro 6.1 An update that solves one vulnerability can now be installed. ## Description: This update for sed fixes the following issue: * CVE-2026-5958: TOCTOU race allows write of user-controlled content to unintended files and can lead to arbitrary file overwrite (bsc#1262144). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-513=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * sed-4.9-slfo.1.1_2.1 * sed-debugsource-4.9-slfo.1.1_2.1 * sed-debuginfo-4.9-slfo.1.1_2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5958.html * https://bugzilla.suse.com/show_bug.cgi?id=1262144 . Update for SUSE Linux Micro addresses a moderate risk from sed vulnerability CVE-2026-5958, enabling potential file overwrite.. SUSE Linux Micro sed CVE-2026-5958 security. . Severity: Important. LinuxSecurity.com Team
May 04, 2026
•Important
SuSE
202
security advisorymoderateinformation disclosureopenSUSE Tumbleweed sed Moderate CVE-2026-5958 Advisory 2026-10649-1
An update that solves one vulnerability can now be installed.. # sed-4.10-1.1 on GA media Announcement ID: openSUSE-SU-2026:10649-1 Rating: moderate Cross-References: * CVE-2026-5958 CVSS scores: * CVE-2026-5958 ( SUSE ): 6.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:N * CVE-2026-5958 ( SUSE ): 2.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:H/SI:H/SA:N Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the sed-4.10-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * sed 4.10-1.1 * sed-lang 4.10-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5958.html . An update for openSUSE Tumbleweed addresses a moderate severity issue in the sed application, enhancing security.. openSUSE Tumbleweed, sed application, moderate security update, system compromise, information disclosure. . LinuxSecurity.com Team
May 01, 2026
OpenSUSE
100
security advisorymoderateSuSESUSE Linux Micro 6.0 Sed Moderate Toctou Arbitrary Overwrite 2026-21413-1
An update that solves one vulnerability can now be installed.. # Security update for sed Announcement ID: SUSE-SU-2026:21413-1 Release Date: 2026-04-27T17:24:57Z Rating: moderate References: * bsc#1262144 Cross-References: * CVE-2026-5958 CVSS scores: * CVE-2026-5958 ( SUSE ): 2.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:H/SI:H/SA:N * CVE-2026-5958 ( SUSE ): 6.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:N * CVE-2026-5958 ( NVD ): 2.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * SUSE Linux Micro 6.0 An update that solves one vulnerability can now be installed. ## Description: This update for sed fixes the following issue: * CVE-2026-5958: TOCTOU race allows write of user-controlled content to unintended files and can lead to arbitrary file overwrite (bsc#1262144). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-688=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * sed-debuginfo-4.9-3.1 * sed-4.9-3.1 * sed-debugsource-4.9-3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5958.html * https://bugzilla.suse.com/show_bug.cgi?id=1262144 . Update fixes sed security risk allowing arbitrary file overwrite. Installation methods included for safety.. SUSE Linux, sed security, file overwrite, security update. . LinuxSecurity.com Team
Apr 30, 2026
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!