Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorysecurity issuebug fix

Red Hat 5 RHSA-2010:0237-05 Low Severity: Sendmail Security Update

Updated sendmail packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System (CVSS) base scores,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Low: sendmail security and bug fix update Advisory ID: RHSA-2010:0237-05 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2010:0237.html Issue date: 2010-03-30 CVE Names: CVE-2006-7176 CVE-2009-4565 ==================================================================== 1. Summary: Updated sendmail packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: RHEL Desktop Workstation (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 3. Description: Sendmail is a very widely used Mail Transport Agent (MTA). MTAs deliver mail from one machine to another. Sendmail is not a client program, but rather a behind-the-scenes daemon that moves email over networks or the Internet to its final destination. The configuration of sendmail in Red Hat Enterprise Linux was found to not reject the "localhost.localdomain" domain name for email messages that come from external hosts. This could allow remote attackers to disguise spoofed messages. (CVE-2006-7176) A flaw was found in the way sendmail handled NUL characters in the CommonName field of X.509 certificates.An attacker able to get a carefully-crafted certificate signed by a trusted Certificate Authority could trick sendmail into accepting it by mistake, allowing the attacker to perform a man-in-the-middle attack or bypass intended client certificate authentication. (CVE-2009-4565) Note: The CVE-2009-4565 issue only affected configurations using TLS with certificate verification and CommonName checking enabled, which is not a typical configuration. This update also fixes the following bugs: * sendmail was unable to parse files specified by the ServiceSwitchFile option which used a colon as a separator. (BZ#512871) * sendmail incorrectly returned a zero exit code when free space was low. (BZ#299951) * the sendmail manual page had a blank space between the -qG option and parameter. (BZ#250552) * the comments in the sendmail.mc file specified the wrong path to SSL certificates. (BZ#244012) * the sendmail packages did not provide the MTA capability. (BZ#494408) All users of sendmail are advised to upgrade to these updated packages, which resolve these issues. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at 5. Bugs fixed (http://bugzilla.redhat.com/): 238540 - CVE-2006-7176 sendmail allows external mail with from address This email address is being protected from spambots. You need JavaScript enabled to view it. 244012 - Old path to openssl used in sendmail.mc 250552 - the description about option '-qG name' should be modified in the manpage 440616 - there should be %{?dist} instead of %{dist} in the *.spec on the Release: line 449391 - sendmail allows external mail with from address This email address is being protected from spambots. You need JavaScript enabled to view it. 494408 - Sendmail should provide "MTA" 552622 - CVE-2009-4565 sendmail: incorrect verification of SSL certificate with NUL in name 6. Package List: Red Hat Enterprise Linux Desktop (v. 5client): Source: i386: sendmail-8.13.8-8.el5.i386.rpm sendmail-cf-8.13.8-8.el5.i386.rpm sendmail-debuginfo-8.13.8-8.el5.i386.rpm sendmail-doc-8.13.8-8.el5.i386.rpm x86_64: sendmail-8.13.8-8.el5.x86_64.rpm sendmail-cf-8.13.8-8.el5.x86_64.rpm sendmail-debuginfo-8.13.8-8.el5.x86_64.rpm sendmail-doc-8.13.8-8.el5.x86_64.rpm RHEL Desktop Workstation (v. 5 client): Source: i386: sendmail-debuginfo-8.13.8-8.el5.i386.rpm sendmail-devel-8.13.8-8.el5.i386.rpm x86_64: sendmail-debuginfo-8.13.8-8.el5.i386.rpm sendmail-debuginfo-8.13.8-8.el5.x86_64.rpm sendmail-devel-8.13.8-8.el5.i386.rpm sendmail-devel-8.13.8-8.el5.x86_64.rpm Red Hat Enterprise Linux (v. 5 server): Source: i386: sendmail-8.13.8-8.el5.i386.rpm sendmail-cf-8.13.8-8.el5.i386.rpm sendmail-debuginfo-8.13.8-8.el5.i386.rpm sendmail-devel-8.13.8-8.el5.i386.rpm sendmail-doc-8.13.8-8.el5.i386.rpm ia64: sendmail-8.13.8-8.el5.ia64.rpm sendmail-cf-8.13.8-8.el5.ia64.rpm sendmail-debuginfo-8.13.8-8.el5.ia64.rpm sendmail-devel-8.13.8-8.el5.ia64.rpm sendmail-doc-8.13.8-8.el5.ia64.rpm ppc: sendmail-8.13.8-8.el5.ppc.rpm sendmail-cf-8.13.8-8.el5.ppc.rpm sendmail-debuginfo-8.13.8-8.el5.ppc.rpm sendmail-debuginfo-8.13.8-8.el5.ppc64.rpm sendmail-devel-8.13.8-8.el5.ppc.rpm sendmail-devel-8.13.8-8.el5.ppc64.rpm sendmail-doc-8.13.8-8.el5.ppc.rpm s390x: sendmail-8.13.8-8.el5.s390x.rpm sendmail-cf-8.13.8-8.el5.s390x.rpm sendmail-debuginfo-8.13.8-8.el5.s390.rpm sendmail-debuginfo-8.13.8-8.el5.s390x.rpm sendmail-devel-8.13.8-8.el5.s390.rpm sendmail-devel-8.13.8-8.el5.s390x.rpm sendmail-doc-8.13.8-8.el5.s390x.rpm x86_64: sendmail-8.13.8-8.el5.x86_64.rpm sendmail-cf-8.13.8-8.el5.x86_64.rpm sendmail-debuginfo-8.13.8-8.el5.i386.rpm sendmail-debuginfo-8.13.8-8.el5.x86_64.rpm sendmail-devel-8.13.8-8.el5.i386.rpm sendmail-devel-8.13.8-8.el5.x86_64.rpm sendmail-doc-8.13.8-8.el5.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7.References: https://access.redhat.com/security/cve/CVE-2006-7176 https://access.redhat.com/security/cve/CVE-2009-4565 https://access.redhat.com/security/updates/classification#low 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2010 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFLsi5eXlSAg2UNWIIRAlOpAJ4gp1kqN+jdrzeE8qXWBaebBxJahQCgo73H n00iMkWN1fCmnabjXrFzOPo=aqpQ -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . A recent Sendmail update for RHEL 5 addresses low-severity security issues to improve system security and performance for users.. Sendmail Update, Red Hat 5, Low Severity, Security Issues. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Mar 30, 2010 Low Red Hat
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorycriticaldebian

Debian: Security Advisory for Sendmail Package Update - Critical Libc Issue

The version of sendmail that was listed in the earlier advisory today was compiled with the wrong version of libc. This has been corrected in version 8.9.3-3slink1.0.1 . . -----BEGIN PGP SIGNED MESSAGE----- - ------------------------------------------------------------------------ Debian Security Advisory This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Wichert Akkerman December 7, 1999 - ------------------------------------------------------------------------ The version of sendmail that was listed in the earlier advisory today was compiled with the wrong version of libc. This has been corrected in version 8.9.3-3slink1.0.1 . wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Intel ia32 architecture: i386/sendmail_8.9.3-3slink1.0.1_i386.deb MD5 checksum: c3379317e496f1d85f520a670f29fb1a This file will be moved into soon. - -- - ---------------------------------------------------------------------------- For apt-get: deb Debian -- Security Information stable updates For dpkg-ftp: dists/stable/updates Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQB1AwUBOE0c0KjZR/ntlUftAQE2TAL/dbmq0zUurTYM4CYVnJl+2jNg5Wuu33QR IELIeDWZfNKtpLx+WH2JnOcS8IbjGBMGl7bI8p1ZRuhKhRnB8b2XOfH9WFQUZVN/ k1esLcpDK8ChK3J1dEZ3S+wmD4VEb3Zq =mvYv -----END PGP SIGNATURE----- . The advisory for Debian highlights an update for the openssh package caused by an incorrect version of libc, reinforcing system robustness and protecting against vulnerabilities.. Debian Security Advisory, Sendmail Update, Libc Correction. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 13, 1999 Critical Debian
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here