Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 17 articles for you...
89
security advisoryfedorathreatFedora 44 fixes rust-rpki package to address CVE security vulnerabilities
Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues: CVE-2026-41676 / GHSA-pqf5-4pqq-29f5 CVE-2026-41677 / GHSA-xmgf-hq76-4vx2 CVE-2026-41678 / GHSA-8c75-8mhr-p7r9. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-aac0adf7f7 2026-05-19 16:18:59.081706+00:00 -------------------------------------------------------------------------------- Name : rust-rpki Product : Fedora 44 Version : 0.18.6 Release : 4.fc44 URL : https://crates.io/crates/rpki Summary : Library for validating and creating RPKI data Description : A library for validating and creating RPKI data. -------------------------------------------------------------------------------- Update Information: Rebuild with version 0.10.79 of the openssl crate which includes fixes for the following security issues: CVE-2026-41676 / GHSA-pqf5-4pqq-29f5 CVE-2026-41677 / GHSA-xmgf-hq76-4vx2 CVE-2026-41678 / GHSA-8c75-8mhr-p7r9 CVE-2026-41681 / GHSA-ghm9-cr32-g9qj CVE-2026-41898 / GHSA-hppc-g8h3-xhp3 CVE-2026-42327 / GHSA-xp3w-r5p5-63rr CVE-2026-44662 / GHSA-xv59-967r-8726 -------------------------------------------------------------------------------- ChangeLog: * Mon May 11 2026 Fabio Valentini - 0.18.6-4 - Rebuild for rust-openssl CVE-2026-{41676,41677,41678,41681,41898,42327,44662} -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-aac0adf7f7' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
May 19, 2026
•Critical
Fedora
89
security advisoryfedorasegmentation faultFedora 41: Critical Performance Fixes for mingw-exiv2 CVE-2025-54080
Update to exiv2-0.28.7, fixes CVE-2025-54080 and CVE-2025-55304.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-e5ab9a2288 2025-10-22 01:31:30.739329+00:00 -------------------------------------------------------------------------------- Name : mingw-exiv2 Product : Fedora 41 Version : 0.28.7 Release : 1.fc41 URL : https://exiv2.org/ Summary : MinGW Windows exiv2 library Description : MinGW Windows exiv2 library. -------------------------------------------------------------------------------- Update Information: Update to exiv2-0.28.7, fixes CVE-2025-54080 and CVE-2025-55304. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 2 2025 Sandro Mani - 0.28.7-1 - Update to 0.28.7 * Fri Aug 29 2025 Sandro Mani - 0.28.6-1 - Update to 0.28.6 * Thu Jul 24 2025 Fedora Release Engineering - 0.28.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild * Sun Mar 23 2025 Sandro Mani - 0.28.5-1 - Update to 0.28.5 * Sat Mar 22 2025 Sandro Mani - 0.27.7-3 - Rebuild * Fri Jan 17 2025 Fedora Release Engineering - 0.27.7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2391816 - CVE-2025-54080 mingw-exiv2: Exiv2 Segmentation Faults [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2391816 [ 2 ] Bug #2391837 - CVE-2025-55304 mingw-exiv2: Exiv2 has quadratic performance in ICC profile parsing in JpegBase::readMetadata [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2391837 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-e5ab9a2288' at the command line. For more information, refer to the dnf documentationavailable at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Oct 22, 2025
•Critical
Fedora
89
security advisoryFedoraupdate informationFedora 42: fluent-bit 2025-e31c4c683b Security Advisory Updates
Update to 3.2.8 - Closes rhbz#2137000 rhbz#2340164 rhbz#2300673. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-e31c4c683b 2025-03-21 00:15:51.823152+00:00 -------------------------------------------------------------------------------- Name : fluent-bit Product : Fedora 42 Version : 3.2.8 Release : 1.fc42 URL : https://github.com/fluent/fluent-bit Summary : Fluent Bit is a super fast, lightweight, and highly scalable logging and metrics processor and forwarder. Description : Fluent Bit is a high performance and multi-platform log forwarder. -------------------------------------------------------------------------------- Update Information: Update to 3.2.8 - Closes rhbz#2137000 rhbz#2340164 rhbz#2300673 -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 4 2025 Mikel Olasagasti Uranga - 3.2.8-1 - Update to 3.2.8 - Closes rhbz#2137000 rhbz#2340164 rhbz#2300673 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2137000 - fluent-bit-3.2.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=2137000 [ 2 ] Bug #2300673 - fluent-bit: FTBFS in Fedora rawhide/f41 https://bugzilla.redhat.com/show_bug.cgi?id=2300673 [ 3 ] Bug #2340164 - fluent-bit: FTBFS in Fedora rawhide/f42 https://bugzilla.redhat.com/show_bug.cgi?id=2340164 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-e31c4c683b' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Mar 21, 2025
•Informational
Fedora
172
security advisoryupdate instructionsubuntuUbuntu 7363-1: PAM-PKCS#11 Security Advisory Updates
PAM-PKCS#11 could be used to bypass authentication.. ========================================================================== Ubuntu Security Notice USN-7363-1 March 20, 2025 pam-pkcs11 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: PAM-PKCS#11 could be used to bypass authentication. Software Description: - pam-pkcs11: Fully featured PAM module for using PKCS#11 smart cards Details: Marcus Rückert and Matthias Gerstner discovered that PAM-PKCS#11 did not properly handle certain return codes when authentication was not possible. An attacker could possibly use this issue to bypass authentication. This issue only affected Ubuntu 24.04 LTS and Ubuntu 24.10. (CVE-2025-24531) It was discovered that PAM-PKCS#11 did not require a private key signature for authentication by default. An attacker could possibly use this issue to bypass authentication. (CVE-2025-24032) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.10 libpam-pkcs11 0.6.12-2ubuntu0.24.10.1 Ubuntu 24.04 LTS libpam-pkcs11 0.6.12-2ubuntu0.24.04.1 Ubuntu 22.04 LTS libpam-pkcs11 0.6.11-4ubuntu0.1 Ubuntu 20.04 LTS libpam-pkcs11 0.6.11-2ubuntu0.1 Ubuntu 18.04 LTS libpam-pkcs11 0.6.9-2ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 16.04 LTS libpam-pkcs11 0.6.8-4ubuntu0.1~esm1 Available with Ubuntu Pro In general, astandard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7363-1 CVE-2025-24032, CVE-2025-24531 Package Information: https://launchpad.net/ubuntu/+source/pam-pkcs11/0.6.12-2ubuntu0.24.10.1 https://launchpad.net/ubuntu/+source/pam-pkcs11/0.6.12-2ubuntu0.24.04.1 https://launchpad.net/ubuntu/+source/pam-pkcs11/0.6.11-4ubuntu0.1 https://launchpad.net/ubuntu/+source/pam-pkcs11/0.6.11-2ubuntu0.1 . PAM-PKCS#11 issues allow bypassing authentication in Ubuntu LTS versions. Update your systems to secure them against these risks.. pam-pkcs#11, bypass, authentication, ================================================. . Severity: Important. LinuxSecurity.com Team
Mar 20, 2025
•Important
Ubuntu
172
security advisoryupdatethreatUbuntu 24.04 LTS & 22.04 LTS: USN-7303-1 critical: kernel issues
Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-7303-1 February 26, 2025 linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-nvidia: Linux kernel for NVIDIA systems - linux-nvidia-lowlatency: Linux low latency kernel for NVIDIA systems - linux-nvidia-6.8: Linux kernel for NVIDIA systems Details: Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; - ACPI drivers; - Drivers core; - ATA over ethernet (AOE) driver; - Network block device driver; - TPM device driver; - Hardware crypto device drivers; - ARM SCMI message protocol; - EFI core; - GPU drivers; - I2C subsystem; - I3C subsystem; - InfiniBand drivers; - Input Device core drivers; - IOMMU subsystem; - Mailbox framework; - Media drivers; - Ethernet bonding driver; - Network drivers; - Mellanox network drivers; - STMicroelectronics network drivers; - NTB driver; - PCI subsystem; - Alibaba DDR Sub-System Driveway PMU driver; - x86 platform drivers; - Powercap sysfs driver; - Remote Processor subsystem; - SCSI subsystem; - USB Device Class drivers; - vDPA drivers; - Virtio Host (VHOST) subsystem; - Framebuffer layer; - AFS file system; - BTRFS file system; - File systems infrastructure; - Ceph distributed file system; - Ext4 file system; - F2FS file system; - JFS file system; - Network file systems library; - Network file system (NFS) server daemon; - NILFS2 file system; - SMB network file system; - BPF subsystem; - Virtio network driver; - TCP network protocol; - Perf events; - Padata parallel execution mechanism; - RCU subsystem; - Arbitrary resource management; - Static call mechanism; - Tracing infrastructure; - Memory management; - Bluetooth subsystem; - CAN network layer; - Networking core; - Distributed Switch Architecture; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - IEEE 802.15.4 subsystem; - NCSI (Network Controller Sideband Interface) driver; - RxRPC session sockets; - SCTP protocol; - TIPC protocol; - Wireless networking; - AudioScience HPI driver; - KVM core; (CVE-2024-49852, CVE-2024-50175, CVE-2024-47709, CVE-2024-47671, CVE-2024-50179, CVE-2024-47743, CVE-2024-47687, CVE-2024-49934, CVE-2024-47700, CVE-2024-49892, CVE-2024-49866, CVE-2024-50012, CVE-2024-49860, CVE-2024-49948, CVE-2024-49882, CVE-2024-47744, CVE-2024-49905, CVE-2024-47728, CVE-2024-49874, CVE-2024-47678, CVE-2024-47688, CVE-2024-47737, CVE-2024-49859, CVE-2024-49947, CVE-2024-49994, CVE-2024-49986, CVE-2024-49917, CVE-2024-50000, CVE-2024-49962, CVE-2024-47733, CVE-2024-47741, CVE-2024-47685, CVE-2024-47752, CVE-2024-49960, CVE-2024-47754, CVE-2024-47675, CVE-2024-49958, CVE-2024-47748, CVE-2024-47679, CVE-2024-47690, CVE-2024-47740, CVE-2024-47672, CVE-2024-49883, CVE-2024-49928, CVE-2024-49961, CVE-2024-47677, CVE-2024-47706, CVE-2024-49955, CVE-2024-49907, CVE-2024-47745, CVE-2024-49963, CVE-2024-47723, CVE-2024-49897, CVE-2024-49927, CVE-2024-50008, CVE-2024-47713, CVE-2024-49894, CVE-2024-49903, CVE-2024-47747, CVE-2024-47705, CVE-2024-49976, CVE-2024-53144, CVE-2024-49983, CVE-2024-49937, CVE-2024-49953, CVE-2024-41016, CVE-2024-49969, CVE-2024-49982, CVE-2024-50007, CVE-2024-50015, CVE-2024-49889, CVE-2024-49923, CVE-2024-49850, CVE-2024-47720, CVE-2024-49973, CVE-2024-49991, CVE-2024-49901, CVE-2024-49881, CVE-2024-49911, CVE-2024-47710, CVE-2024-49981, CVE-2024-49918, CVE-2024-49861,CVE-2024-49959, CVE-2024-50005, CVE-2024-47701, CVE-2024-49855, CVE-2024-49987, CVE-2024-47704, CVE-2024-49977, CVE-2024-47670, CVE-2024-47707, CVE-2024-47735, CVE-2024-49996, CVE-2024-49868, CVE-2024-47749, CVE-2024-49985, CVE-2024-47753, CVE-2024-49877, CVE-2024-47716, CVE-2024-47731, CVE-2024-49880, CVE-2024-47715, CVE-2024-49931, CVE-2024-49856, CVE-2024-49929, CVE-2024-47689, CVE-2024-49885, CVE-2024-50002, CVE-2024-49999, CVE-2024-47734, CVE-2024-49909, CVE-2024-49871, CVE-2024-49915, CVE-2024-50013, CVE-2024-47682, CVE-2024-49864, CVE-2024-49949, CVE-2024-49933, CVE-2024-49975, CVE-2024-49863, CVE-2024-49867, CVE-2024-49951, CVE-2024-50014, CVE-2024-47739, CVE-2024-49886, CVE-2024-49891, CVE-2024-49879, CVE-2024-47696, CVE-2024-49896, CVE-2024-49988, CVE-2024-47691, CVE-2024-47732, CVE-2024-47742, CVE-2024-47698, CVE-2024-49925, CVE-2024-47695, CVE-2024-49898, CVE-2024-49989, CVE-2024-49913, CVE-2024-49935, CVE-2024-50017, CVE-2024-47703, CVE-2024-49954, CVE-2024-49875, CVE-2024-49858, CVE-2024-49997, CVE-2024-49895, CVE-2024-47719, CVE-2024-47750, CVE-2024-47693, CVE-2024-49926, CVE-2024-50001, CVE-2024-47718, CVE-2024-47714, CVE-2024-49919, CVE-2024-49938, CVE-2024-49952, CVE-2024-49942, CVE-2024-49957, CVE-2024-49930, CVE-2024-47702, CVE-2024-50006, CVE-2024-49888, CVE-2024-47756, CVE-2024-49890, CVE-2024-50176, CVE-2024-47686, CVE-2024-49978, CVE-2024-47697, CVE-2024-49974, CVE-2024-47751, CVE-2024-47712, CVE-2024-47727, CVE-2023-52917, CVE-2024-49980, CVE-2024-49965, CVE-2024-49878, CVE-2024-50016, CVE-2024-47738, CVE-2024-47681, CVE-2024-47699, CVE-2024-49998, CVE-2024-49902, CVE-2024-49966, CVE-2024-49884, CVE-2024-49936, CVE-2024-47757, CVE-2024-49851, CVE-2024-49924, CVE-2024-49944, CVE-2024-49912, CVE-2024-49992, CVE-2024-47684, CVE-2024-49950, CVE-2024-49939, CVE-2024-47730, CVE-2024-49853, CVE-2024-49862, CVE-2024-49900, CVE-2024-49876, CVE-2024-49945, CVE-2024-47673, CVE-2024-49870, CVE-2024-47692, CVE-2024-49946, CVE-2024-49995, CVE-2024-49922) Update instructions: The problem can becorrected by updating your system to the following package versions: Ubuntu 24.04 LTS linux-image-6.8.0-1022-nvidia 6.8.0-1022.25 linux-image-6.8.0-1022-nvidia-64k 6.8.0-1022.25 linux-image-6.8.0-1022-nvidia-lowlatency 6.8.0-1022.25.2 linux-image-6.8.0-1022-nvidia-lowlatency-64k 6.8.0-1022.25.2 linux-image-nvidia 6.8.0-1022.25 linux-image-nvidia-64k 6.8.0-1022.25 linux-image-nvidia-lowlatency 6.8.0-1022.25.2 linux-image-nvidia-lowlatency-64k 6.8.0-1022.25.2 Ubuntu 22.04 LTS linux-image-6.8.0-1022-nvidia 6.8.0-1022.25~22.04.2 linux-image-6.8.0-1022-nvidia-64k 6.8.0-1022.25~22.04.2 linux-image-nvidia-6.8 6.8.0-1022.25~22.04.2 linux-image-nvidia-64k-6.8 6.8.0-1022.25~22.04.2 linux-image-nvidia-64k-hwe-22.04 6.8.0-1022.25~22.04.2 linux-image-nvidia-hwe-22.04 6.8.0-1022.25~22.04.2 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7303-1 CVE-2023-52917, CVE-2024-41016, CVE-2024-47670, CVE-2024-47671, CVE-2024-47672, CVE-2024-47673, CVE-2024-47675, CVE-2024-47677, CVE-2024-47678, CVE-2024-47679, CVE-2024-47681, CVE-2024-47682, CVE-2024-47684, CVE-2024-47685, CVE-2024-47686, CVE-2024-47687, CVE-2024-47688, CVE-2024-47689, CVE-2024-47690, CVE-2024-47691, CVE-2024-47692, CVE-2024-47693, CVE-2024-47695, CVE-2024-47696, CVE-2024-47697, CVE-2024-47698, CVE-2024-47699, CVE-2024-47700, CVE-2024-47701, CVE-2024-47702, CVE-2024-47703, CVE-2024-47704, CVE-2024-47705, CVE-2024-47706, CVE-2024-47707, CVE-2024-47709, CVE-2024-47710, CVE-2024-47712, CVE-2024-47713, CVE-2024-47714, CVE-2024-47715, CVE-2024-47716, CVE-2024-47718, CVE-2024-47719, CVE-2024-47720, CVE-2024-47723, CVE-2024-47727, CVE-2024-47728, CVE-2024-47730, CVE-2024-47731, CVE-2024-47732, CVE-2024-47733, CVE-2024-47734, CVE-2024-47735, CVE-2024-47737, CVE-2024-47738, CVE-2024-47739, CVE-2024-47740, CVE-2024-47741, CVE-2024-47742, CVE-2024-47743, CVE-2024-47744, CVE-2024-47745, CVE-2024-47747, CVE-2024-47748, CVE-2024-47749, CVE-2024-47750, CVE-2024-47751, CVE-2024-47752, CVE-2024-47753, CVE-2024-47754, CVE-2024-47756, CVE-2024-47757, CVE-2024-49850, CVE-2024-49851, CVE-2024-49852, CVE-2024-49853, CVE-2024-49855, CVE-2024-49856, CVE-2024-49858, CVE-2024-49859, CVE-2024-49860, CVE-2024-49861, CVE-2024-49862, CVE-2024-49863, CVE-2024-49864, CVE-2024-49866, CVE-2024-49867, CVE-2024-49868, CVE-2024-49870, CVE-2024-49871, CVE-2024-49874, CVE-2024-49875, CVE-2024-49876, CVE-2024-49877, CVE-2024-49878, CVE-2024-49879, CVE-2024-49880, CVE-2024-49881, CVE-2024-49882, CVE-2024-49883, CVE-2024-49884, CVE-2024-49885, CVE-2024-49886, CVE-2024-49888, CVE-2024-49889, CVE-2024-49890, CVE-2024-49891, CVE-2024-49892, CVE-2024-49894, CVE-2024-49895, CVE-2024-49896, CVE-2024-49897, CVE-2024-49898, CVE-2024-49900, CVE-2024-49901, CVE-2024-49902, CVE-2024-49903, CVE-2024-49905, CVE-2024-49907, CVE-2024-49909, CVE-2024-49911, CVE-2024-49912, CVE-2024-49913, CVE-2024-49915, CVE-2024-49917, CVE-2024-49918, CVE-2024-49919, CVE-2024-49922, CVE-2024-49923, CVE-2024-49924, CVE-2024-49925, CVE-2024-49926, CVE-2024-49927, CVE-2024-49928, CVE-2024-49929, CVE-2024-49930, CVE-2024-49931, CVE-2024-49933, CVE-2024-49934, CVE-2024-49935, CVE-2024-49936, CVE-2024-49937, CVE-2024-49938, CVE-2024-49939, CVE-2024-49942, CVE-2024-49944, CVE-2024-49945, CVE-2024-49946, CVE-2024-49947, CVE-2024-49948, CVE-2024-49949, CVE-2024-49950, CVE-2024-49951, CVE-2024-49952, CVE-2024-49953, CVE-2024-49954, CVE-2024-49955, CVE-2024-49957, CVE-2024-49958, CVE-2024-49959, CVE-2024-49960, CVE-2024-49961, CVE-2024-49962, CVE-2024-49963, CVE-2024-49965, CVE-2024-49966, CVE-2024-49969, CVE-2024-49973, CVE-2024-49974, CVE-2024-49975, CVE-2024-49976, CVE-2024-49977, CVE-2024-49978, CVE-2024-49980, CVE-2024-49981, CVE-2024-49982, CVE-2024-49983, CVE-2024-49985, CVE-2024-49986, CVE-2024-49987, CVE-2024-49988, CVE-2024-49989, CVE-2024-49991, CVE-2024-49992, CVE-2024-49994, CVE-2024-49995, CVE-2024-49996, CVE-2024-49997, CVE-2024-49998, CVE-2024-49999, CVE-2024-50000, CVE-2024-50001, CVE-2024-50002, CVE-2024-50005, CVE-2024-50006, CVE-2024-50007, CVE-2024-50008, CVE-2024-50012, CVE-2024-50013, CVE-2024-50014, CVE-2024-50015, CVE-2024-50016, CVE-2024-50017, CVE-2024-50175, CVE-2024-50176, CVE-2024-50179, CVE-2024-53144 Package Information: https://launchpad.net/ubuntu/+source/linux-nvidia/6.8.0-1022.25 https://launchpad.net/ubuntu/+source/linux-nvidia-lowlatency/6.8.0-1022.25.2 https://launchpad.net/ubuntu/+source/linux-nvidia-6.8/6.8.0-1022.25~22.04.2 . Essential updates for security issues in Linux kernel for Ubuntu, requiring reboot and package upgrades.. LinuxKernelSecurity,UbuntuSecurityAdvisory,SecurityUpdate. . Severity: Critical. LinuxSecurity.com Team
Feb 26, 2025
•Critical
Ubuntu
197
security advisoryunauthorized accesssoftware updateDebian 11 bullseye DLA-4037-1: OpenJDK-11 fix for unauthorized access
An issue was found in the OpenJDK Java runtime, which may result in unauthorized access. For Debian 11 bullseye, this problem has been fixed in version . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4037-1
Jan 31, 2025
•Important
Debian LTS
219
security advisoryimportantthunderbirdRocky Linux 8: RLSA-2025:0281 important: thunderbird memory safety
Important: thunderbird security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2025:0281", "synopsis": "Important: thunderbird security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for thunderbird.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nSecurity Fix(es):\n\n* firefox: thunderbird: Memory safety bugs fixed in Firefox 134, Thunderbird 134, Firefox ESR 128.6, and Thunderbird 128.6 (CVE-2025-0243)\n\n* firefox: thunderbird: Memory safety bugs fixed in Firefox 134, Thunderbird 134, Firefox ESR 115.19, Firefox ESR 128.6, Thunderbird 115.19, and Thunderbird 128.6 (CVE-2025-0242)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2336175", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2336175", "description": ""}, {"ticket": "2336181", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2336181", "description": ""}], "cves": [{"name": "CVE-2025-0242", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-0242", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}, {"name": "CVE-2025-0243", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2025-0243", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}], "references": [], "publishedAt": "2025-01-17T16:13:58.660055Z", "rpms": {"Rocky Linux 8": {"nvras": ["thunderbird-0:128.6.0-3.el8_10.aarch64.rpm", "thunderbird-0:128.6.0-3.el8_10.src.rpm", "thunderbird-0:128.6.0-3.el8_10.x86_64.rpm","thunderbird-debuginfo-0:128.6.0-3.el8_10.aarch64.rpm", "thunderbird-debuginfo-0:128.6.0-3.el8_10.x86_64.rpm", "thunderbird-debugsource-0:128.6.0-3.el8_10.aarch64.rpm", "thunderbird-debugsource-0:128.6.0-3.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Rocky Linux delivers an essential update for Firefox that tackles vulnerabilities related to memory handling to bolster system protection.. Rocky Linux Thunderbird Update, Security Fixes, Memory Safety Bugs, Software Update. . Severity: Important. LinuxSecurity.com Team
Jan 17, 2025
•Important
Rocky Linux
89
security advisorysoftware updateFedoraFedora 40: FEDORA-2024-d6b0e72e3d critical: php-tcpdf security update
Version 6.8.0 (2024-12-23) Requires PHP 7.1+ and curl extension. Escape error message. Use strict time-constant function to compare TCPDF-tag hashes. Add K_CURLOPTS config array to set custom cURL options (NOTE: some defaults have. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-d6b0e72e3d 2025-01-08 03:05:51.306082+00:00 -------------------------------------------------------------------------------- Name : php-tcpdf Product : Fedora 40 Version : 6.8.0 Release : 1.fc40 URL : https://tcpdf.org/ Summary : PHP class for generating PDF documents and barcodes Description : PHP class for generating PDF documents. * no external libraries are required for the basic functions; * all standard page formats, custom page formats, custom margins and units of measure; * UTF-8 Unicode and Right-To-Left languages; * TrueTypeUnicode, OpenTypeUnicode, TrueType, OpenType, Type1 and CID-0 fonts; * font subsetting; * methods to publish some XHTML + CSS code, Javascript and Forms; * images, graphic (geometric figures) and transformation methods; * supports JPEG, PNG and SVG images natively, all images supported by GD (GD, GD2, GD2PART, GIF, JPEG, PNG, BMP, XBM, XPM) and all images supported via ImagMagick (http: ) * 1D and 2D barcodes: CODE 39, ANSI MH10.8M-1983, USD-3, 3 of 9, CODE 93, USS-93, Standard 2 of 5, Interleaved 2 of 5, CODE 128 A/B/C, 2 and 5 Digits UPC-Based Extention, EAN 8, EAN 13, UPC-A, UPC-E, MSI, POSTNET, PLANET, RMS4CC (Royal Mail 4-state Customer Code), CBC (Customer Bar Code), KIX (Klant index - Customer index), Intelligent Mail Barcode, Onecode, USPS-B-3200, CODABAR, CODE 11, PHARMACODE, PHARMACODE TWO-TRACKS, Datamatrix ECC200, QR-Code, PDF417; * ICC Color Profiles, Grayscale, RGB, CMYK, Spot Colors and Transparencies; * automatic page header and footer management; * document encryption up to 256 bit and digital signature certifications; * transactionsto UNDO commands; * PDF annotations, including links, text and file attachments; * text rendering modes (fill, stroke and clipping); * multiple columns mode; * no-write page regions; * bookmarks and table of content; * text hyphenation; * text stretching and spacing (tracking/kerning); * automatic page break, line break and text alignments including justification; * automatic page numbering and page groups; * move and delete pages; * page compression (requires php-zlib extension); * XOBject templates; * PDF/A-1b (ISO 19005-1:2005) support. By default, TCPDF uses the GD library which is know as slower than ImageMagick solution. You can optionally install php-pecl-imagick; TCPDF will use it. -------------------------------------------------------------------------------- Update Information: Version 6.8.0 (2024-12-23) Requires PHP 7.1+ and curl extension. Escape error message. Use strict time-constant function to compare TCPDF-tag hashes. Add K_CURLOPTS config array to set custom cURL options (NOTE: some defaults have changed). Add some addTTFfont fixes from tc-lib-pdf-font. -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 23 2024 Remi Collet - 6.8.0-1 - update to 6.8.0 - raise dependency on PHP 7.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2334288 - CVE-2024-56522 php-tcpdf: unserializeTCPDFtag uses != (aka loose comparison) and does not use a constant-time function to compare TCPDF tag hashes [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2334288 [ 2 ] Bug #2334292 - CVE-2024-56519 php-tcpdf: setSVGStyles does not sanitize the SVG font-family attribute [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2334292 [ 3 ] Bug #2334297 - CVE-2024-56521 php-tcpdf: CURLOPT_SSL_VERIFYHOST and CURLOPT_SSL_VERIFYPEER are set unsafely when libcurl is used [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2334297 [ 4 ] Bug #2334342 - CVE-2024-56527 php-tcpdf: Error function lacks an htmlspecialchars call for the error message. [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2334342 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-d6b0e72e3d' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jan 08, 2025
•Critical
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!