Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 9 articles for you...
100
security advisorySuSEimportantSUSE RMT-Server Important Denial of Service Issues 2026-1745-1
An update that solves 10 vulnerabilities can now be installed.. # Security update for rmt-server Announcement ID: SUSE-SU-2026:1745-1 Release Date: 2026-05-07T07:22:43Z Rating: important References: * bsc#1261388 * bsc#1261398 * bsc#1261406 * bsc#1261417 * bsc#1261426 * bsc#1261436 * bsc#1261447 * bsc#1261458 * bsc#1261466 * bsc#1261471 Cross-References: * CVE-2026-26961 * CVE-2026-26962 * CVE-2026-34230 * CVE-2026-34763 * CVE-2026-34785 * CVE-2026-34786 * CVE-2026-34826 * CVE-2026-34829 * CVE-2026-34830 * CVE-2026-34831 CVSS scores: * CVE-2026-26961 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-26961 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-26961 ( NVD ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-26961 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-26962 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-26962 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-26962 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-26962 ( NVD ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-34230 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-34230 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34230 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34230 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34763 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-34763 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-34763 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-34785 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-34785 ( SUSE ): 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-34785 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-34786 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-34786 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-34786 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-34826 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-34826 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34826 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34826 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34829 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-34829 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34829 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34830 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-34830 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-34830 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-34830 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-34831 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-34831 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-34831 ( NVD ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-34831 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N Affected Products: * Public Cloud Module 15-SP7 * Server Applications Module 15-SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves 10 vulnerabilities can now be installed. ## Description: This update for rmt-server fixes the following issues: Update toversion 2.27. Security issues fixed: * CVE-2026-26961: rack: greedy multipart boundary parsing can lead to parser differentials and WAF bypass (bsc#1261398). * CVE-2026-26962: rack: improper unfolding of folded multipart headers can lead to downstream header injection and response splitting(bsc#1261471). * CVE-2026-34763: rack: unescaped regex interpolation of configured root path can lead to root directory disclosure (bsc#1261406). * CVE-2026-34785: rack: prefix matching logic can lead to the exposure of unintended files under the static root (bsc#1261417). * CVE-2026-34786: rack: URL-encoded path mismatch can lead to `header_rules` bypass (bsc#1261426). * CVE-2026-34826: rack: missing individual byte range limit checks when parsing HTTP `Range` headers can lead to excessive resource consumption and a denial of service (bsc#1261436). * CVE-2026-34829: rack: multipart parsing without `Content-Length` header can lead to unbounded chunked file uploads and a denial of service (bsc#1261447). * CVE-2026-34230: rack: quadratic complexity when processing of wildcard `Accept-Encoding` headers can lead to a denial of service (bsc#1261388). * CVE-2026-34830: rack: improper sanitization of the `X-Accel-Mapping` request header can lead to the exposure of unintended files via `X-Accel-Redirect` (bsc#1261458). * CVE-2026-34831: rack: `Content-Length` header and body byte size mismatch when creating error responses can lead to incorrect HTTP response framing (bsc#1261466). Other updates and bugfixes: * Fix ReDoS in `Addressable`. * Fix out-of-bounds read in `rdiscount`. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Public Cloud Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP7-2026-1745=1 * Server Applications Module 15-SP7 zypper in -t patchSUSE-SLE-Module-Server-Applications-15-SP7-2026-1745=1 ## Package List: * Public Cloud Module 15-SP7 (aarch64 ppc64le s390x x86_64) * rmt-server-debuginfo-2.27-150700.3.20.1 * rmt-server-pubcloud-2.27-150700.3.20.1 * rmt-server-debugsource-2.27-150700.3.20.1 * Server Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * rmt-server-config-2.27-150700.3.20.1 * rmt-server-debuginfo-2.27-150700.3.20.1 * rmt-server-debugsource-2.27-150700.3.20.1 * rmt-server-2.27-150700.3.20.1 ## References: * https://www.suse.com/security/cve/CVE-2026-26961.html * https://www.suse.com/security/cve/CVE-2026-26962.html * https://www.suse.com/security/cve/CVE-2026-34230.html * https://www.suse.com/security/cve/CVE-2026-34763.html * https://www.suse.com/security/cve/CVE-2026-34785.html * https://www.suse.com/security/cve/CVE-2026-34786.html * https://www.suse.com/security/cve/CVE-2026-34826.html * https://www.suse.com/security/cve/CVE-2026-34829.html * https://www.suse.com/security/cve/CVE-2026-34830.html * https://www.suse.com/security/cve/CVE-2026-34831.html * https://bugzilla.suse.com/show_bug.cgi?id=1261388 * https://bugzilla.suse.com/show_bug.cgi?id=1261398 * https://bugzilla.suse.com/show_bug.cgi?id=1261406 * https://bugzilla.suse.com/show_bug.cgi?id=1261417 * https://bugzilla.suse.com/show_bug.cgi?id=1261426 * https://bugzilla.suse.com/show_bug.cgi?id=1261436 * https://bugzilla.suse.com/show_bug.cgi?id=1261447 * https://bugzilla.suse.com/show_bug.cgi?id=1261458 * https://bugzilla.suse.com/show_bug.cgi?id=1261466 * https://bugzilla.suse.com/show_bug.cgi?id=1261471 . Update for rmt-server on SUSE addresses 10 important vulnerabilities to enhance security stability.. SUSE Update rmt-server vulnerabilities patch. . Severity: Important. LinuxSecurity.com Team
May 07, 2026
•Important
SuSE
219
security advisoryimportantserviceHighland OS 3.21 defense-utilities Serious Threat Warning BETA-2024-27540
Important: fence-agents security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:13917", "synopsis": "Important: fence-agents security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for fence-agents.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The fence-agents packages provide a collection of scripts for handling remote power management for cluster devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster. \n\nSecurity Fix(es):\n\n* pyasn1: pyasn1 Vulnerable to Denial of Service via Unbounded Recursion (CVE-2026-30922)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2448553", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2448553", "description": ""}], "cves": [{"name": "CVE-2026-30922", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-30922", "cvss3ScoringVector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-835"}], "references": [], "publishedAt": "2026-05-07T12:03:39.445016Z", "rpms": {"Rocky Linux 9": {"nvras": ["fence-agents-0:4.10.0-98.el9_7.13.src.rpm", "fence-agents-aliyun-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-all-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-all-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-all-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-all-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-amt-ws-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-apc-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-apc-snmp-0:4.10.0-98.el9_7.13.noarch.rpm","fence-agents-aws-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-azure-arm-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-bladecenter-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-brocade-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-cisco-mds-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-cisco-ucs-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-common-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-compute-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-compute-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-debuginfo-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-debuginfo-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-debuginfo-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-debugsource-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-debugsource-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-debugsource-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-debugsource-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-drac5-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-eaton-snmp-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-emerson-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-eps-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-gce-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-heuristics-ping-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-hpblade-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ibmblade-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ibm-powervs-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ibm-vpc-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ifmib-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ilo2-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ilo-moonshot-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ilo-mp-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ilo-ssh-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-intelmodular-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ipdu-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-ipmilan-0:4.10.0-98.el9_7.13.noarch.rpm","fence-agents-kdump-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-kdump-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-kdump-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-kdump-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-kdump-debuginfo-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-kdump-debuginfo-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-kdump-debuginfo-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-kdump-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-kubevirt-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-kubevirt-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-kubevirt-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-kubevirt-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-kubevirt-debuginfo-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-kubevirt-debuginfo-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-kubevirt-debuginfo-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-kubevirt-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-lpar-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-mpath-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-nutanix-ahv-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-openstack-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-openstack-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-redfish-0:4.10.0-98.el9_7.13.aarch64.rpm", "fence-agents-redfish-0:4.10.0-98.el9_7.13.ppc64le.rpm", "fence-agents-redfish-0:4.10.0-98.el9_7.13.s390x.rpm", "fence-agents-redfish-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-agents-rhevm-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-rsa-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-rsb-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-sbd-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-scsi-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-virsh-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-vmware-rest-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-vmware-soap-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-wti-0:4.10.0-98.el9_7.13.noarch.rpm", "fence-agents-zvm-0:4.10.0-98.el9_7.13.s390x.rpm","fence-virt-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-cpg-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-cpg-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virt-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-libvirt-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-libvirt-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-multicast-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-multicast-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-serial-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-serial-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-tcp-0:4.10.0-98.el9_7.13.x86_64.rpm", "fence-virtd-tcp-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm", "ha-cloud-support-0:4.10.0-98.el9_7.13.ppc64le.rpm", "ha-cloud-support-0:4.10.0-98.el9_7.13.x86_64.rpm", "ha-cloud-support-debuginfo-0:4.10.0-98.el9_7.13.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Rocky Linux security update for fence-agents addresses important issues to protect from potential DoS attacks.. Rocky Linux fence-agents security important update. . Severity: Important. LinuxSecurity.com Team
May 07, 2026
•Important
Rocky Linux
89
security advisoryfedoraupdateFedora 44 kf6-kservice Update FEDORA-2026-fe3d8d4767 Available Now
Frameworks 6.25.0 + KDE Plasma 6.6.4. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-fe3d8d4767 2026-04-16 23:40:54.273526+00:00 -------------------------------------------------------------------------------- Name : kf6-kservice Product : Fedora 44 Version : 6.25.0 Release : 1.fc44 URL : https://invent.kde.org/frameworks/kservice Summary : KDE Frameworks 6 Tier 3 solution for advanced plugin and service introspection Description : KDE Frameworks 6 Tier 3 solution for advanced plugin and service introspection. -------------------------------------------------------------------------------- Update Information: Frameworks 6.25.0 + KDE Plasma 6.6.4 -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 9 2026 Steve Cossette - 6.25.0-1 - 6.25.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2455469 - Configuring WifI network via Network pane appears to not work https://bugzilla.redhat.com/show_bug.cgi?id=2455469 [ 2 ] Bug #2457573 - FE: KDE Frameworks 6.25.0 + Plasma 6.6.4 https://bugzilla.redhat.com/show_bug.cgi?id=2457573 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-fe3d8d4767' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list
Apr 16, 2026
•Informational
Fedora
219
security advisoryDoSimportantRocky Linux 9 Update RLSB-2023-7846 - Major Vulnerability Found in .NET 9.1
Important: .NET 9.0 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:4456", "synopsis": "Important: .NET 9.0 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for dotnet9.0.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": ".NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.\n\nNew versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 9.0.115 and .NET Runtime 9.0.14.Security Fix(es):\n\n* .net: .NET: Denial of Service via out-of-bounds read (CVE-2026-26127)\n\n* asp.net: ASP.NET Core: Denial of Service via uncontrolled resource allocation (CVE-2026-26130)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2446098", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2446098", "description": ""}, {"ticket": "2446134", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2446134", "description": ""}], "cves": [{"name": "CVE-2026-26127", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-26127", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-125"}, {"name": "CVE-2026-26130", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2026-26130", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-770"}], "references": [], "publishedAt": "2026-03-13T12:03:59.563415Z", "rpms": {"Rocky Linux 9": {"nvras":["aspnetcore-runtime-9.0-0:9.0.14-1.el9_7.aarch64.rpm", "aspnetcore-runtime-9.0-0:9.0.14-1.el9_7.ppc64le.rpm", "aspnetcore-runtime-9.0-0:9.0.14-1.el9_7.s390x.rpm", "aspnetcore-runtime-9.0-0:9.0.14-1.el9_7.x86_64.rpm", "aspnetcore-runtime-dbg-9.0-0:9.0.14-1.el9_7.aarch64.rpm", "aspnetcore-runtime-dbg-9.0-0:9.0.14-1.el9_7.ppc64le.rpm", "aspnetcore-runtime-dbg-9.0-0:9.0.14-1.el9_7.s390x.rpm", "aspnetcore-runtime-dbg-9.0-0:9.0.14-1.el9_7.x86_64.rpm", "aspnetcore-targeting-pack-9.0-0:9.0.14-1.el9_7.aarch64.rpm", "aspnetcore-targeting-pack-9.0-0:9.0.14-1.el9_7.ppc64le.rpm", "aspnetcore-targeting-pack-9.0-0:9.0.14-1.el9_7.s390x.rpm", "aspnetcore-targeting-pack-9.0-0:9.0.14-1.el9_7.x86_64.rpm", "dotnet9.0-0:9.0.115-1.el9_7.src.rpm", "dotnet9.0-debuginfo-0:9.0.115-1.el9_7.aarch64.rpm", "dotnet9.0-debuginfo-0:9.0.115-1.el9_7.ppc64le.rpm", "dotnet9.0-debuginfo-0:9.0.115-1.el9_7.s390x.rpm", "dotnet9.0-debuginfo-0:9.0.115-1.el9_7.x86_64.rpm", "dotnet9.0-debugsource-0:9.0.115-1.el9_7.aarch64.rpm", "dotnet9.0-debugsource-0:9.0.115-1.el9_7.ppc64le.rpm", "dotnet9.0-debugsource-0:9.0.115-1.el9_7.s390x.rpm", "dotnet9.0-debugsource-0:9.0.115-1.el9_7.x86_64.rpm", "dotnet-apphost-pack-9.0-0:9.0.14-1.el9_7.aarch64.rpm", "dotnet-apphost-pack-9.0-0:9.0.14-1.el9_7.ppc64le.rpm", "dotnet-apphost-pack-9.0-0:9.0.14-1.el9_7.s390x.rpm", "dotnet-apphost-pack-9.0-0:9.0.14-1.el9_7.x86_64.rpm", "dotnet-apphost-pack-9.0-debuginfo-0:9.0.14-1.el9_7.aarch64.rpm", "dotnet-apphost-pack-9.0-debuginfo-0:9.0.14-1.el9_7.ppc64le.rpm", "dotnet-apphost-pack-9.0-debuginfo-0:9.0.14-1.el9_7.s390x.rpm", "dotnet-apphost-pack-9.0-debuginfo-0:9.0.14-1.el9_7.x86_64.rpm", "dotnet-hostfxr-9.0-0:9.0.14-1.el9_7.aarch64.rpm", "dotnet-hostfxr-9.0-0:9.0.14-1.el9_7.ppc64le.rpm", "dotnet-hostfxr-9.0-0:9.0.14-1.el9_7.s390x.rpm", "dotnet-hostfxr-9.0-0:9.0.14-1.el9_7.x86_64.rpm", "dotnet-hostfxr-9.0-debuginfo-0:9.0.14-1.el9_7.aarch64.rpm", "dotnet-hostfxr-9.0-debuginfo-0:9.0.14-1.el9_7.ppc64le.rpm", "dotnet-hostfxr-9.0-debuginfo-0:9.0.14-1.el9_7.s390x.rpm","dotnet-hostfxr-9.0-debuginfo-0:9.0.14-1.el9_7.x86_64.rpm", "dotnet-runtime-9.0-0:9.0.14-1.el9_7.aarch64.rpm", "dotnet-runtime-9.0-0:9.0.14-1.el9_7.ppc64le.rpm", "dotnet-runtime-9.0-0:9.0.14-1.el9_7.s390x.rpm", "dotnet-runtime-9.0-0:9.0.14-1.el9_7.x86_64.rpm", "dotnet-runtime-9.0-debuginfo-0:9.0.14-1.el9_7.aarch64.rpm", "dotnet-runtime-9.0-debuginfo-0:9.0.14-1.el9_7.ppc64le.rpm", "dotnet-runtime-9.0-debuginfo-0:9.0.14-1.el9_7.s390x.rpm", "dotnet-runtime-9.0-debuginfo-0:9.0.14-1.el9_7.x86_64.rpm", "dotnet-runtime-dbg-9.0-0:9.0.14-1.el9_7.aarch64.rpm", "dotnet-runtime-dbg-9.0-0:9.0.14-1.el9_7.ppc64le.rpm", "dotnet-runtime-dbg-9.0-0:9.0.14-1.el9_7.s390x.rpm", "dotnet-runtime-dbg-9.0-0:9.0.14-1.el9_7.x86_64.rpm", "dotnet-sdk-9.0-0:9.0.115-1.el9_7.aarch64.rpm", "dotnet-sdk-9.0-0:9.0.115-1.el9_7.ppc64le.rpm", "dotnet-sdk-9.0-0:9.0.115-1.el9_7.s390x.rpm", "dotnet-sdk-9.0-0:9.0.115-1.el9_7.x86_64.rpm", "dotnet-sdk-9.0-debuginfo-0:9.0.115-1.el9_7.aarch64.rpm", "dotnet-sdk-9.0-debuginfo-0:9.0.115-1.el9_7.ppc64le.rpm", "dotnet-sdk-9.0-debuginfo-0:9.0.115-1.el9_7.s390x.rpm", "dotnet-sdk-9.0-debuginfo-0:9.0.115-1.el9_7.x86_64.rpm", "dotnet-sdk-9.0-source-built-artifacts-0:9.0.115-1.el9_7.aarch64.rpm", "dotnet-sdk-9.0-source-built-artifacts-0:9.0.115-1.el9_7.ppc64le.rpm", "dotnet-sdk-9.0-source-built-artifacts-0:9.0.115-1.el9_7.s390x.rpm", "dotnet-sdk-9.0-source-built-artifacts-0:9.0.115-1.el9_7.x86_64.rpm", "dotnet-sdk-aot-9.0-0:9.0.115-1.el9_7.aarch64.rpm", "dotnet-sdk-aot-9.0-0:9.0.115-1.el9_7.x86_64.rpm", "dotnet-sdk-aot-9.0-debuginfo-0:9.0.115-1.el9_7.aarch64.rpm", "dotnet-sdk-aot-9.0-debuginfo-0:9.0.115-1.el9_7.x86_64.rpm", "dotnet-sdk-dbg-9.0-0:9.0.115-1.el9_7.aarch64.rpm", "dotnet-sdk-dbg-9.0-0:9.0.115-1.el9_7.ppc64le.rpm", "dotnet-sdk-dbg-9.0-0:9.0.115-1.el9_7.s390x.rpm", "dotnet-sdk-dbg-9.0-0:9.0.115-1.el9_7.x86_64.rpm", "dotnet-targeting-pack-9.0-0:9.0.14-1.el9_7.aarch64.rpm", "dotnet-targeting-pack-9.0-0:9.0.14-1.el9_7.ppc64le.rpm", "dotnet-targeting-pack-9.0-0:9.0.14-1.el9_7.s390x.rpm","dotnet-targeting-pack-9.0-0:9.0.14-1.el9_7.x86_64.rpm", "dotnet-templates-9.0-0:9.0.115-1.el9_7.aarch64.rpm", "dotnet-templates-9.0-0:9.0.115-1.el9_7.ppc64le.rpm", "dotnet-templates-9.0-0:9.0.115-1.el9_7.s390x.rpm", "dotnet-templates-9.0-0:9.0.115-1.el9_7.x86_64.rpm", "netstandard-targeting-pack-2.1-0:9.0.115-1.el9_7.aarch64.rpm", "netstandard-targeting-pack-2.1-0:9.0.115-1.el9_7.ppc64le.rpm", "netstandard-targeting-pack-2.1-0:9.0.115-1.el9_7.s390x.rpm", "netstandard-targeting-pack-2.1-0:9.0.115-1.el9_7.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. This advisory informs of an important .NET 9.0 security update addressing denial of service issues for Rocky Linux.. Rocky Linux 9,.NET 9.0,security patch,Denial of Service. . Severity: Important. LinuxSecurity.com Team
Mar 13, 2026
•Important
Rocky Linux
89
security advisoryfedoraserviceFedora 43 rust-ybaas Update Moderate Stack Exhaustion Attack CVE-2026-25537
Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-f400579a21 2026-02-10 01:31:32.937525+00:00 -------------------------------------------------------------------------------- Name : rust-ybaas Product : Fedora 43 Version : 0.0.19 Release : 6.fc43 URL : https://crates.io/crates/ybaas Summary : Yubibomb as a service Description : Don't you love when you accidentally tap your Yubikey when you have your IRC client in focus and you send 987947 into Libera? Want to be able to have that experience without having to reach all the way over to your laptop's USB port? Don't want the complexity of installing and using the yubibomb CLI tool? Now you can use yubibomb as a service! -------------------------------------------------------------------------------- Update Information: Update the time crate to version 0.3.47. Update the time-macros crate to version 0.2.27. Update the time-core crate to version 0.1.8. Update the num-conv crate to version 0.2.0. Update the git2 crate to version 0.20.4. Update the bytes crate to version 1.11.1. Additionally, this update contains rebuilds of applications affected by security advisories: bytes: RUSTSEC-2026-0007 git2: RUSTSEC-2026-0008 jsonwebtoken: CVE-2026-25537 time: RUSTSEC-2026-0009 All applications that statically link libgit2 via the git2 Rust bindings were also rebuilt against the latest version of the git2 / libgit2-sys crates to pull in fixes included in libgit2 between v1.8.1 and v1.9.2. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 7 2026 Fabio Valentini - 0.0.19-6 - Rebuild for RUSTSEC-2026-{0007,0008,0009} and CVE-2026-25537 * Sat Jan 17 2026 FedoraRelease Engineering - 0.0.19-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437470 - CVE-2026-25537 rust-jsonwebtoken: jsonwebtoken has Type Confusion that leads to potential authorization bypass [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2437470 [ 2 ] Bug #2437472 - CVE-2026-25537 uv: jsonwebtoken has Type Confusion that leads to potential authorization bypass [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2437472 [ 3 ] Bug #2438104 - CVE-2026-25727 atuin: time affected by a stack exhaustion denial of service attack [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2438104 [ 4 ] Bug #2438135 - CVE-2026-25727 keylime-agent-rust: time affected by a stack exhaustion denial of service attack [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2438135 [ 5 ] Bug #2438138 - CVE-2026-25727 maturin: time affected by a stack exhaustion denial of service attack [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2438138 [ 6 ] Bug #2438149 - CVE-2026-25727 rustup: time affected by a stack exhaustion denial of service attack [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2438149 [ 7 ] Bug #2438158 - CVE-2026-25727 tbtools: time affected by a stack exhaustion denial of service attack [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2438158 [ 8 ] Bug #2438164 - CVE-2026-25727 tuigreet: time affected by a stack exhaustion denial of service attack [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2438164 [ 9 ] Bug #2438165 - CVE-2026-25727 uv: time affected by a stack exhaustion denial of service attack [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2438165 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade--advisory FEDORA-2026-f400579a21' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Feb 10, 2026
•Important
Fedora
217
security advisorybindimportantOracle Linux 9: bind9.18 Important Security Fix ELSA-2025-19950
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2025-19950 http://linux.oracle.com/errata/ELSA-2025-19950.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: bind9.18-9.18.29-4.el9_6.2.x86_64.rpm bind9.18-chroot-9.18.29-4.el9_6.2.x86_64.rpm bind9.18-devel-9.18.29-4.el9_6.2.i686.rpm bind9.18-devel-9.18.29-4.el9_6.2.x86_64.rpm bind9.18-dnssec-utils-9.18.29-4.el9_6.2.x86_64.rpm bind9.18-doc-9.18.29-4.el9_6.2.noarch.rpm bind9.18-libs-9.18.29-4.el9_6.2.i686.rpm bind9.18-libs-9.18.29-4.el9_6.2.x86_64.rpm bind9.18-utils-9.18.29-4.el9_6.2.x86_64.rpm aarch64: bind9.18-9.18.29-4.el9_6.2.aarch64.rpm bind9.18-chroot-9.18.29-4.el9_6.2.aarch64.rpm bind9.18-devel-9.18.29-4.el9_6.2.aarch64.rpm bind9.18-dnssec-utils-9.18.29-4.el9_6.2.aarch64.rpm bind9.18-doc-9.18.29-4.el9_6.2.noarch.rpm bind9.18-libs-9.18.29-4.el9_6.2.aarch64.rpm bind9.18-utils-9.18.29-4.el9_6.2.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/bind9.18-9.18.29-4.el9_6.2.src.rpm Related CVEs: CVE-2025-8677 CVE-2025-40778 CVE-2025-40780 Description of changes: [32:9.18.29-4.2] - Fix upstream reported regression in recent CVE fix (CVE-2025-8677) - Add upstream created test to this regression [32:9.18.29-4.1] - Refuse malformed DNSKEY records (CVE-2025-8677) - Address various spoofing attacks (CVE-2025-40778) - Prevent cache poisoning due to weak PRNG (CVE-2025-40780) _______________________________________________ El-errata mailing list
Nov 11, 2025
•Important
Oracle
172
security advisorycriticalUbuntuRubyGems Critical DoS Vulnerabilities in Ubuntu 22.04 LTS USN-7735-1
Several security issues were fixed in RubyGems.. ========================================================================== Ubuntu Security Notice USN-7735-1 September 03, 2025 rubygems vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 25.04 - Ubuntu 22.04 LTS Summary: Several security issues were fixed in RubyGems. Software Description: - rubygems: package management framework for Ruby libraries/applications Details: It was discovered that RubyGems incorrectly handled certain regular expressions. An attacker could use this issue to cause RubyGems to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS. (CVE-2023-28755) It was discovered that RubyGems incorrectly handled decompressed domain names within a DNS packet. An attacker could use this issue to cause RubyGems to crash, resulting in a denial of service. This issue only affected Ubuntu 25.04. (CVE-2025-24294) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 25.04 ruby-rubygems 3.6.3-1ubuntu0.1 Ubuntu 22.04 LTS ruby-rubygems 3.3.5-2ubuntu1.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7735-1 CVE-2023-28755, CVE-2025-24294 Package Information: https://launchpad.net/ubuntu/+source/rubygems/3.6.3-1ubuntu0.1 https://launchpad.net/ubuntu/+source/rubygems/3.3.5-2ubuntu1.1 . Critical issues have been resolved in RubyGems for Ubuntu 22.04 LTS and 25.04. Prompt updates are recommended.. RubyGems Security, Denial of Service, Ubuntu 22.04, Ubuntu 25.04 Security. . Severity: Critical. LinuxSecurity.com Team
Sep 04, 2025
•Critical
Ubuntu
89
security advisoryfedoraimportantFedora 42: minidlna Important Stack-Buffer Overflow CVE-2023-47430
Avoid restarting minidlna.service when rotating logs if it's not running. Fix CVE-2023-47430 . . -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-9fb8ee63fb 2025-07-18 01:05:30.483965+00:00 -------------------------------------------------------------------------------- Name : minidlna Product : Fedora 42 Version : 1.3.3 Release : 13.fc42 URL : http://sourceforge.net/projects/minidlna/ Summary : Lightweight DLNA/UPnP-AV server targeted at embedded systems Description : MiniDLNA (aka ReadyDLNA) is server software with the aim of being fully compliant with DLNA/UPnP-AV clients. The minidlna daemon serves media files (music, pictures, and video) to clients on your local network. Example clients include applications such as Totem and XBMC, and devices such as portable media players, smartphones, and televisions. -------------------------------------------------------------------------------- Update Information: Avoid restarting minidlna.service when rotating logs if it's not running. Fix CVE-2023-47430 . -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 7 2025 Dominik Mierzejewski - 1.3.3-13 - use systemctl try-restart in postrotate script (resolves rhbz#2372859) - attempt to fix CVE-2023-47430 (resolves rhbz#2271621) * Tue May 27 2025 Jitka Plesnikova - 1.3.3-12 - Rebuilt for flac 1.5.0 * Tue Feb 11 2025 Zbigniew J\u0119drzejewski-Szmek - 1.3.3-11 - Drop call to %sysusers_create_compat -------------------------------------------------------------------------------- References: [ 1 ] Bug #2271621 - CVE-2023-47430 minidlna: Stack-buffer-overflow vulnerability in ReadyMedia [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2271621 [ 2 ] Bug #2372859 - Use `systemctl try-restart` in logrotate postrotate script https://bugzilla.redhat.com/show_bug.cgi?id=2372859 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-9fb8ee63fb' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Debian 12's rdiff-backup upgrade addresses significant memory-corruption vulnerability CVE-2023-57420 with improved operational safeguards.. Fedora Update,minidlna security,service restart fix,minidlna vulnerability,security patch. . Severity: Important. LinuxSecurity.com Team
Jul 18, 2025
•Important
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!