Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -4 articles for you...
172
security advisoryupdate instructionsubuntuUbuntu 24.04, 22.04 High Severity: Linux Kernel Security Advisory
Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-7513-3 May 20, 2025 linux-azure, linux-azure-6.8, linux-oem-6.8 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-oem-6.8: Linux kernel for OEM systems - linux-azure-6.8: Linux kernel for Microsoft Azure cloud systems Details: Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - RISC-V architecture; - x86 architecture; - Block layer subsystem; - Compute Acceleration Framework; - ACPI drivers; - Drivers core; - Ublk userspace block driver; - Virtio block driver; - DMA engine subsystem; - GPU drivers; - Microsoft Hyper-V drivers; - Hardware monitoring drivers; - IIO ADC drivers; - IIO subsystem; - InfiniBand drivers; - Multiple devices driver; - Media drivers; - Microchip PCI driver; - Network drivers; - Mellanox network drivers; - STMicroelectronics network drivers; - PCI subsystem; - Pin controllers subsystem; - x86 platform drivers; - Power supply drivers; - SCSI subsystem; - USB Gadget drivers; - TDX Guest driver; - AFS file system; - BTRFS file system; - Ceph distributed file system; - EROFS file system; - File systems infrastructure; - Network file systems library; - NILFS2 file system; - Overlay file system; - SMB network file system; - VLANs driver; - Memory management; - LAPB network protocol; - io_uring subsystem; - BPF subsystem; - Control group (cgroup); - Tracing infrastructure; - Workqueue subsystem; - Bluetoothsubsystem; - Networking core; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - Multipath TCP; - Netfilter; - NET/ROM layer; - Packet sockets; - RDS protocol; - Network traffic control; - SCTP protocol; - SMC sockets; - Wireless networking; - SELinux security module; - ALSA framework; - SOF drivers; (CVE-2025-21648, CVE-2025-21645, CVE-2024-56767, CVE-2025-21664, CVE-2025-21636, CVE-2024-57898, CVE-2024-56667, CVE-2024-57912, CVE-2024-47408, CVE-2024-56761, CVE-2024-56665, CVE-2024-57887, CVE-2024-54683, CVE-2024-56662, CVE-2024-57910, CVE-2024-38608, CVE-2024-56710, CVE-2025-21656, CVE-2024-57885, CVE-2024-53125, CVE-2024-56675, CVE-2024-57895, CVE-2024-56660, CVE-2025-21638, CVE-2024-57932, CVE-2024-57807, CVE-2024-56759, CVE-2024-57883, CVE-2025-21643, CVE-2024-54193, CVE-2024-57879, CVE-2024-54460, CVE-2024-41013, CVE-2024-56654, CVE-2024-55916, CVE-2024-57897, CVE-2024-58087, CVE-2024-57904, CVE-2024-57893, CVE-2025-21652, CVE-2024-57925, CVE-2024-47736, CVE-2024-57802, CVE-2024-49571, CVE-2024-57916, CVE-2024-57801, CVE-2025-21647, CVE-2024-56763, CVE-2024-57903, CVE-2024-57899, CVE-2024-57908, CVE-2024-57900, CVE-2024-57911, CVE-2024-57902, CVE-2024-57938, CVE-2024-56760, CVE-2025-21642, CVE-2025-21971, CVE-2024-57933, CVE-2024-57917, CVE-2024-53179, CVE-2024-57896, CVE-2024-57906, CVE-2024-56716, CVE-2024-39282, CVE-2024-57806, CVE-2025-21938, CVE-2024-55881, CVE-2024-57931, CVE-2024-56717, CVE-2024-56369, CVE-2025-21640, CVE-2024-57888, CVE-2024-57804, CVE-2024-57907, CVE-2024-53687, CVE-2024-57940, CVE-2024-57929, CVE-2025-21637, CVE-2024-57805, CVE-2024-56372, CVE-2025-21646, CVE-2024-57913, CVE-2024-57901, CVE-2024-57889, CVE-2024-56770, CVE-2024-57945, CVE-2024-56659, CVE-2024-57946, CVE-2024-57890, CVE-2024-36476, CVE-2024-57882, CVE-2024-53685, CVE-2024-57791, CVE-2024-55639, CVE-2024-56718, CVE-2024-57792, CVE-2025-21662, CVE-2024-57793, CVE-2024-54455, CVE-2025-21632, CVE-2024-56715, CVE-2024-56652, CVE-2024-57939, CVE-2024-56657, CVE-2025-21658,CVE-2025-21655, CVE-2025-21635, CVE-2024-56656, CVE-2025-21660, CVE-2025-21634, CVE-2025-21631, CVE-2024-57892, CVE-2024-57884, CVE-2024-58237, CVE-2025-21659, CVE-2024-57926, CVE-2024-53690, CVE-2025-21654, CVE-2024-57841, CVE-2025-21639, CVE-2025-21663, CVE-2024-56670, CVE-2024-56758, CVE-2024-56764, CVE-2024-56709, CVE-2024-49568, CVE-2024-56769, CVE-2025-21653, CVE-2025-21651, CVE-2025-21650, CVE-2024-56664, CVE-2025-21649) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.04 LTS linux-image-6.8.0-1028-oem 6.8.0-1028.28 linux-image-6.8.0-1029-azure 6.8.0-1029.34 linux-image-6.8.0-1029-azure-fde 6.8.0-1029.34 linux-image-azure-fde-lts-24.04 6.8.0-1029.34 linux-image-azure-lts-24.04 6.8.0-1029.34 linux-image-oem-24.04 6.8.0-1028.28 linux-image-oem-24.04a 6.8.0-1028.28 Ubuntu 22.04 LTS linux-image-6.8.0-1029-azure 6.8.0-1029.34~22.04.1 linux-image-6.8.0-1029-azure-fde 6.8.0-1029.34~22.04.1 linux-image-azure 6.8.0-1029.34~22.04.1 linux-image-azure-fde 6.8.0-1029.34~22.04.1 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7513-3 https://ubuntu.com/security/notices/USN-7513-2 https://ubuntu.com/security/notices/USN-7513-1 CVE-2024-36476, CVE-2024-38608, CVE-2024-39282, CVE-2024-41013, CVE-2024-47408, CVE-2024-47736, CVE-2024-49568, CVE-2024-49571, CVE-2024-53125, CVE-2024-53179, CVE-2024-53685, CVE-2024-53687, CVE-2024-53690,CVE-2024-54193, CVE-2024-54455, CVE-2024-54460, CVE-2024-54683, CVE-2024-55639, CVE-2024-55881, CVE-2024-55916, CVE-2024-56369, CVE-2024-56372, CVE-2024-56652, CVE-2024-56654, CVE-2024-56656, CVE-2024-56657, CVE-2024-56659, CVE-2024-56660, CVE-2024-56662, CVE-2024-56664, CVE-2024-56665, CVE-2024-56667, CVE-2024-56670, CVE-2024-56675, CVE-2024-56709, CVE-2024-56710, CVE-2024-56715, CVE-2024-56716, CVE-2024-56717, CVE-2024-56718, CVE-2024-56758, CVE-2024-56759, CVE-2024-56760, CVE-2024-56761, CVE-2024-56763, CVE-2024-56764, CVE-2024-56767, CVE-2024-56769, CVE-2024-56770, CVE-2024-57791, CVE-2024-57792, CVE-2024-57793, CVE-2024-57801, CVE-2024-57802, CVE-2024-57804, CVE-2024-57805, CVE-2024-57806, CVE-2024-57807, CVE-2024-57841, CVE-2024-57879, CVE-2024-57882, CVE-2024-57883, CVE-2024-57884, CVE-2024-57885, CVE-2024-57887, CVE-2024-57888, CVE-2024-57889, CVE-2024-57890, CVE-2024-57892, CVE-2024-57893, CVE-2024-57895, CVE-2024-57896, CVE-2024-57897, CVE-2024-57898, CVE-2024-57899, CVE-2024-57900, CVE-2024-57901, CVE-2024-57902, CVE-2024-57903, CVE-2024-57904, CVE-2024-57906, CVE-2024-57907, CVE-2024-57908, CVE-2024-57910, CVE-2024-57911, CVE-2024-57912, CVE-2024-57913, CVE-2024-57916, CVE-2024-57917, CVE-2024-57925, CVE-2024-57926, CVE-2024-57929, CVE-2024-57931, CVE-2024-57932, CVE-2024-57933, CVE-2024-57938, CVE-2024-57939, CVE-2024-57940, CVE-2024-57945, CVE-2024-57946, CVE-2024-58087, CVE-2024-58237, CVE-2025-21631, CVE-2025-21632, CVE-2025-21634, CVE-2025-21635, CVE-2025-21636, CVE-2025-21637, CVE-2025-21638, CVE-2025-21639, CVE-2025-21640, CVE-2025-21642, CVE-2025-21643, CVE-2025-21645, CVE-2025-21646, CVE-2025-21647, CVE-2025-21648, CVE-2025-21649, CVE-2025-21650, CVE-2025-21651, CVE-2025-21652, CVE-2025-21653, CVE-2025-21654, CVE-2025-21655, CVE-2025-21656, CVE-2025-21658, CVE-2025-21659, CVE-2025-21660, CVE-2025-21662, CVE-2025-21663, CVE-2025-21664, CVE-2025-21938, CVE-2025-21971 Package Information: https://launchpad.net/ubuntu/+source/linux-azure/6.8.0-1029.34 https://launchpad.net/ubuntu/+source/linux-oem-6.8/6.8.0-1028.28 https://launchpad.net/ubuntu/+source/linux-azure-6.8/6.8.0-1029.34~22.04.1 . Numerous vulnerabilities were resolved within the Linux kernel of Ubuntu, essential for ensuring the security of the system.. Linux Kernel Update, Ubuntu Support, Security Patches. . LinuxSecurity.com Team
May 20, 2025
Ubuntu
172
security advisorysecurity issuesoftware patchUbuntu 16.04 & 14.04 LTS: USN-7262-1 High: Linux Kernel Security Warning
Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-7262-1 February 10, 2025 linux, linux-aws, linux-lts-xenial vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services (AWS) systems - linux-lts-xenial: Linux hardware enablement kernel from Xenial for Trusty Details: Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Multiple devices driver; - Network drivers; - Sonic Silicon Backplane drivers; - File systems infrastructure; - Closures library; - Netfilter; (CVE-2024-41012, CVE-2024-38597, CVE-2024-42252, CVE-2024-43914, CVE-2024-38553, CVE-2024-40982, CVE-2024-41066, CVE-2024-42311, CVE-2024-41020, CVE-2024-53141) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 LTS linux-image-4.4.0-1178-aws 4.4.0-1178.193 Available with Ubuntu Pro linux-image-4.4.0-263-generic 4.4.0-263.297 Available with Ubuntu Pro linux-image-4.4.0-263-lowlatency 4.4.0-263.297 Available with Ubuntu Pro linux-image-aws 4.4.0.1178.182 Available with Ubuntu Pro linux-image-generic 4.4.0.263.269 Available with Ubuntu Pro linux-image-generic-lts-xenial 4.4.0.263.269 Available with Ubuntu Pro linux-image-lowlatency 4.4.0.263.269 Available with Ubuntu Pro linux-image-lowlatency-lts-xenial 4.4.0.263.269 Available with Ubuntu Pro linux-image-virtual 4.4.0.263.269 Available with Ubuntu Pro linux-image-virtual-lts-xenial 4.4.0.263.269 Available with Ubuntu Pro Ubuntu 14.04 LTS linux-image-4.4.0-1140-aws 4.4.0-1140.146 Available with Ubuntu Pro linux-image-4.4.0-263-generic 4.4.0-263.297~14.04.1 Available with Ubuntu Pro linux-image-4.4.0-263-lowlatency 4.4.0-263.297~14.04.1 Available with Ubuntu Pro linux-image-aws 4.4.0.1140.137 Available with Ubuntu Pro linux-image-generic-lts-xenial 4.4.0.263.297~14.04.1 Available with Ubuntu Pro linux-image-lowlatency-lts-xenial 4.4.0.263.297~14.04.1 Available with Ubuntu Pro linux-image-virtual-lts-xenial 4.4.0.263.297~14.04.1 Available with Ubuntu Pro After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7262-1 CVE-2024-38553, CVE-2024-38597, CVE-2024-40982, CVE-2024-41012, CVE-2024-41020, CVE-2024-41066, CVE-2024-42252, CVE-2024-42311, CVE-2024-43914,CVE-2024-53141 . Ubuntu Linux kernel enhancements tackle security vulnerabilities, essential for ensuring optimal system safety and functionality.. Ubuntu updates, Linux kernel fixes, security issues, system protection. . LinuxSecurity.com Team
Feb 10, 2025
Ubuntu
203
security advisorysecurity updatearbitrary command executionMageia 9: MGASA-2024-0237 High: Emacs Arbitrary Command Execution
Arbitrary shell command evaluation in Org mode (GNU Emacs) References: - https://bugs.mageia.org/show_bug.cgi?id=33326 - https://www.openwall.com/lists/oss-security/2024/06/23/1 . MGASA-2024-0237 - Updated emacs packages fix security vulnerability Publication date: 25 Jun 2024 URL: https://advisories.mageia.org/MGASA-2024-0237.html Type: security Affected Mageia releases: 9 Arbitrary shell command evaluation in Org mode (GNU Emacs) References: - https://bugs.mageia.org/show_bug.cgi?id=33326 - https://www.openwall.com/lists/oss-security/2024/06/23/1 - https://www.openwall.com/lists/oss-security/2024/06/23/2 SRPMS: - 9/core/emacs-28.2-10.2.mga9 . Mageia 2024-0238 enhances apache libraries to resolve critical vulnerabilities linked to unauthorized data access.. emacs security advisory,Mageia updates,arbitrary command execution,security fixes. . LinuxSecurity.com Team
Jun 25, 2024
Mageia
199
security advisorybuffer overflowimportantCentOS: CESA-2020-0912 Important: Tomcat6 High Severity Issue
Upstream details at : https://access.redhat.com/errata/RHSA-2020:0912. CentOS Errata and Security Advisory 2020:0912 Important Upstream details at : https://access.redhat.com/errata/RHSA-2020:0912 The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 1f31df5053d2c93b8844fc06705226e08f8b4ffda26b741ee3394ac033621b5e tomcat6-6.0.24-114.el6_10.noarch.rpm e3087f026652ae767095701fd7e6b0314ad6e40574711edcaabaa37a12a28c82 tomcat6-admin-webapps-6.0.24-114.el6_10.noarch.rpm d2e3fb2a4042fbaac5ad2985581a0ce64479a18b9a5e21f53c0fe3aa99ec238d tomcat6-docs-webapp-6.0.24-114.el6_10.noarch.rpm 802628047af1ce14071227187c775a74aea464bae3bcafdf82eebe56b3972ad9 tomcat6-el-2.1-api-6.0.24-114.el6_10.noarch.rpm 5b9500612c9ac7ee533525a89bde239c95ed906d9b7500443e4a05f33ffd052f tomcat6-javadoc-6.0.24-114.el6_10.noarch.rpm 00a5f3c5c26b67c96a6708f0e77ee8db4db7ba4eff45afed075fd131243597d4 tomcat6-jsp-2.1-api-6.0.24-114.el6_10.noarch.rpm 049e09d3b6d20dfd3f9dc8bb9e0b4e990d7f18a8b65eb6a99b6e4a5bb6ab2f68 tomcat6-lib-6.0.24-114.el6_10.noarch.rpm ef82651f7d5f1003f2a27db152bc3b60d118f0f444ac14c42edef641fa825f5c tomcat6-servlet-2.5-api-6.0.24-114.el6_10.noarch.rpm 0134d6af3f09ea958aee1e4a860ed3a5bfbc9ffbb8800f15f88fc6461f1c2773 tomcat6-webapps-6.0.24-114.el6_10.noarch.rpm x86_64: 1f31df5053d2c93b8844fc06705226e08f8b4ffda26b741ee3394ac033621b5e tomcat6-6.0.24-114.el6_10.noarch.rpm e3087f026652ae767095701fd7e6b0314ad6e40574711edcaabaa37a12a28c82 tomcat6-admin-webapps-6.0.24-114.el6_10.noarch.rpm d2e3fb2a4042fbaac5ad2985581a0ce64479a18b9a5e21f53c0fe3aa99ec238d tomcat6-docs-webapp-6.0.24-114.el6_10.noarch.rpm 802628047af1ce14071227187c775a74aea464bae3bcafdf82eebe56b3972ad9 tomcat6-el-2.1-api-6.0.24-114.el6_10.noarch.rpm 5b9500612c9ac7ee533525a89bde239c95ed906d9b7500443e4a05f33ffd052f tomcat6-javadoc-6.0.24-114.el6_10.noarch.rpm 00a5f3c5c26b67c96a6708f0e77ee8db4db7ba4eff45afed075fd131243597d4 tomcat6-jsp-2.1-api-6.0.24-114.el6_10.noarch.rpm 049e09d3b6d20dfd3f9dc8bb9e0b4e990d7f18a8b65eb6a99b6e4a5bb6ab2f68 tomcat6-lib-6.0.24-114.el6_10.noarch.rpm ef82651f7d5f1003f2a27db152bc3b60d118f0f444ac14c42edef641fa825f5c tomcat6-servlet-2.5-api-6.0.24-114.el6_10.noarch.rpm 0134d6af3f09ea958aee1e4a860ed3a5bfbc9ffbb8800f15f88fc6461f1c2773 tomcat6-webapps-6.0.24-114.el6_10.noarch.rpm Source: 18ecd659c0eac0e737adbba7ca1cf2cbdd4d86504a6cbe7877e3ea9f2c5185b5 tomcat6-6.0.24-114.el6_10.src.rpm -- Johnny Hughes CentOS Project { https://www.centos.org/ } irc: hughesjr, #
Mar 25, 2020
•Important
CentOS
172
security advisoryinformation exposureubuntuUbuntu 18.04 LTS USN-3790-1 High: Requests Info Exposure
Requests could be made to expose sensitive information if it received a specially crafted HTTP header.. =========================================================================Ubuntu Security Notice USN-3790-1 October 15, 2018 requests vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS Summary: Requests could be made to expose sensitive information if it received a specially crafted HTTP header. Software Description: - requests: elegant and simple HTTP library for Python Details: It was discovered that Requests incorrectly handled certain HTTP headers. An attacker could possibly use this issue to access sensitive information. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: python-requests 2.18.4-2ubuntu0.1 python3-requests 2.18.4-2ubuntu0.1 Ubuntu 16.04 LTS: python-requests 2.9.1-3ubuntu0.1 python3-requests 2.9.1-3ubuntu0.1 Ubuntu 14.04 LTS: python-requests 2.2.1-1ubuntu0.4 python-requests-whl 2.2.1-1ubuntu0.4 python3-requests 2.2.1-1ubuntu0.4 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-3790-1 CVE-2018-18074 Package Information: https://launchpad.net/ubuntu/+source/requests/2.18.4-2ubuntu0.1 https://launchpad.net/ubuntu/+source/requests/2.9.1-3ubuntu0.1 https://launchpad.net/ubuntu/+source/requests/2.2.1-1ubuntu0.4 . Ubuntu Security Update USN-3791-1 addresses a critical vulnerability in handling requests that could lead to unintended data exposure through speciallydesigned HTTP headers.. Requests Vulnerability, Ubuntu Security Advisory, Information Exposure, HTTP Header Exploit. . LinuxSecurity.com Team
Oct 15, 2018
Ubuntu
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!