Alerts This Week
Warning Icon 1 562
Alerts This Week
Warning Icon 1 562

Stay Secure with the Latest Linux Advisories

Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H800
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorySuSEimportant

SUSE Linux 16.0 Python-Cryptography Important Fix CVE-2026-26007

An update that solves two vulnerabilities can now be installed.. # Security update for python-cryptography Announcement ID: SUSE-SU-2026:21165-1 Release Date: 2026-04-10T11:27:11Z Rating: important References: * bsc#1258074 * bsc#1260876 Cross-References: * CVE-2026-26007 * CVE-2026-34073 CVSS scores: * CVE-2026-26007 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-26007 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-26007 ( NVD ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-26007 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N * CVE-2026-34073 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-34073 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-34073 ( NVD ): 1.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-34073 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for python-cryptography fixes the following issues: * CVE-2026-34073: Fixed X.509 bypass of name constraints on wildcard SANs with matching peer names. (bsc#1260876) * CVE-2026-26007: missing validation can lead to security issues for signature verification (ECDSA) and shared key negotiation (ECDH) (bsc#1258074). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE LinuxEnterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-522=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-522=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * python-cryptography-debugsource-44.0.3-160000.3.1 * python313-cryptography-debuginfo-44.0.3-160000.3.1 * python313-cryptography-44.0.3-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * python-cryptography-debugsource-44.0.3-160000.3.1 * python313-cryptography-debuginfo-44.0.3-160000.3.1 * python313-cryptography-44.0.3-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-26007.html * https://www.suse.com/security/cve/CVE-2026-34073.html * https://bugzilla.suse.com/show_bug.cgi?id=1258074 * https://bugzilla.suse.com/show_bug.cgi?id=1260876 . An important update for python-cryptography addresses security issues for SUSE regarding signature verification vulnerabilities.. python-cryptography update, SUSE Linux patch, security advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 21, 2026 Important SuSE
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycritical issuefedora

Fedora 34: FEDORA-2021-2383d950fd Critical RPM Signature Issues

Security fix for CVE-2021-3421, CVE-2021-20271 and CVE-2021-20266.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-2383d950fd 2021-03-30 00:15:25.049835 --------------------------------------------------------------------------------Name : rpm Product : Fedora 34 Version : 4.16.1.3 Release : 1.fc34 URL : http://rpm.org/ Summary : The RPM package management system Description : The RPM Package Manager (RPM) is a powerful command line driven package management system capable of installing, uninstalling, verifying, querying, and updating software packages. Each software package consists of an archive of files along with information about the package like its version, a description, etc. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2021-3421, CVE-2021-20271 and CVE-2021-20266. --------------------------------------------------------------------------------ChangeLog: * Mon Mar 22 2021 Panu Matilainen - 4.16.1.3-1 - Rebase to rpm 4.16.1.3 (https://rpm.org/wiki/Releases/4.16.1.3) --------------------------------------------------------------------------------References: [ 1 ] Bug #1927741 - CVE-2021-20266 rpm: missing length checks in hdrblobInit() https://bugzilla.redhat.com/show_bug.cgi?id=1927741 [ 2 ] Bug #1927747 - CVE-2021-3421 rpm: unsigned signature header leads to string injection into an rpm database https://bugzilla.redhat.com/show_bug.cgi?id=1927747 [ 3 ] Bug #1934125 - CVE-2021-20271 rpm: Signature checks bypass via corrupted rpm package https://bugzilla.redhat.com/show_bug.cgi?id=1934125 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-2383d950fd' at the command line. For more information, refer to the dnf documentationavailable at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Urgent patch released for vulnerabilities in RPM on Fedora 34, mitigating several CVE threats. Apply the update immediately!. Fedora RPM security fix, critical RPM issue, RPM package issues. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 29, 2021 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorygnupgdebian

Debian: DSA-010-1 Moderate: GnuPG Signature Flaws and Key Import Threats

Two bugs in GnuPG have recently been found:. - ------------------------------------------------------------------------ Debian Security Advisory DSA-010-1 This email address is being protected from spambots. You need JavaScript enabled to view it. Debian -- Security Information Wichert Akkerman December 25, 2000 - ------------------------------------------------------------------------ Package : gnupg Problem type : cheating with detached signatures, circumvention of web of trust Debian-specific: no Two bugs in GnuPG have recently been found: 1. false positives when verifying detached signatures - ----------------------------------------------------- There is a problem in the way gpg checks detached signatures which can lead to false positives. Detached signature can be verified with a command like this: gpg --verify detached.sig < mydata If someone replaced detached.sig with a signed text (ie not a detached signature) and then modified mydata gpg would still report a successfully verified signature. To fix the way the --verify option works has been changes: it now needs two options when verifying detached signatures: both the file with the detached signature, and the file with the data to be verified. Please note that this makes it incompatible with older versions! 2. secret keys are silently imported - ------------------------------------ Florian Weimer discovered that gpg would import secret keys from key-servers. Since gpg considers public keys corresponding to known secret keys to be ultimately trusted an attacked can use this circumvent the web of trust. To fix this a new option was added to to tell gpg it is allowed to import secret keys: --allow-key-import. Both these fixes are in version 1.0.4-1.1 and we recommend that you upgrade your gnupg package immediately. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. Debian GNU/Linux 2.2 alias potato - --------------------------------- Potato was released for alpha, arm,i386, m68k, powerpc and sparc. Source archives: MD5 checksum: 3e6a792f3bbb566650ea37a286feedf4 MD5 checksum: 866059ad036f47c59bad9e5c3a0f0749 MD5 checksum: bef2267bfe9b74a00906a78db34437f9 Alpha architecture: MD5 checksum: 616e391a4eb5561bf32714e40bed38c5 ARM architecture: MD5 checksum: e496f7aed98098feef2869be81b774b7 Intel ia32 architecture: MD5 checksum: a6c0494c737250b0ccc7dc33056d8e7c Motorola 680x0 architecture: MD5 checksum: a07cbf5bce2890fe85cfae4d796c5b0d PowerPC architecture: MD5 checksum: e251364c24066cc88a3de11b4ba23275 Sun Sparc architecture: MD5 checksum: b15f4ad07949fb0fa24a221b656691ae These files will be moved into soon. For not yet released architectures please refer to the appropriate directory . - -- - ---------------------------------------------------------------------------- apt-get: deb Debian -- Security Information stable/updates main dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Fedora faces security flaws in OpenSSL, impacting secure communications and encryption processes that require immediate attention.. GnuPG Security, Debian Advisory, Cryptography Issues, Key Management. . LinuxSecurity.com Team

Calendar 2 Dec 25, 2000 Debian
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here