Alerts This Week
Warning Icon 1 560
Alerts This Week
Warning Icon 1 560

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -3 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorysendmailmoderate severity

SUSE: 2024:0742-1 Moderate: Sendmail SMTP Smuggling Attack

* bsc#1218351 Cross-References: * CVE-2023-51765 . # Security update for sendmail Announcement ID: SUSE-SU-2024:0742-1 Rating: moderate References: * bsc#1218351 Cross-References: * CVE-2023-51765 CVSS scores: * CVE-2023-51765 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2023-51765 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Affected Products: * Legacy Module 12 * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 * SUSE Linux Enterprise Server 12 SP1 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 * SUSE Linux Enterprise Server for SAP Applications 12 SP1 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for sendmail fixes the following issues: * CVE-2023-51765: Fixed new SMTP smuggling attack. (bsc#1218351) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Legacy Module 12 zypper in -t patch SUSE-SLE-Module-Legacy-12-2024-742=1 ## Package List: * Legacy Module 12 (aarch64 ppc64le s390x x86_64) * sendmail-8.14.9-4.9.1 * sendmail-debuginfo-8.14.9-4.9.1 * sendmail-debugsource-8.14.9-4.9.1 ## References: * https://www.suse.com/security/cve/CVE-2023-51765.html *https://bugzilla.suse.com/show_bug.cgi?id=1218351 . Urgent security patch available for SUSE sendmail impacting multiple versions. Apply immediately to reduce vulnerabilities.. sendmail security, SUSE update, moderate severity, SMTP attack, software patching. . LinuxSecurity.com Team

Calendar 2 Mar 04, 2024 SuSE
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisoryemail spoofingpostfix

Mageia 9 Security Advisory MGASA-2024-0029: Postfix SMTP Exploit Alert

Postfix has been updated to fix smtp smuggling, an email spoofing attack that involves a composition of email services with specific differences in the way they handle line endings other than . References: . MGASA-2024-0029 - Updated postfix packages fix a security vulnerability Publication date: 09 Feb 2024 URL: https://advisories.mageia.org/MGASA-2024-0029.html Type: security Affected Mageia releases: 9 CVE: CVE-2023-51764 Postfix has been updated to fix smtp smuggling, an email spoofing attack that involves a composition of email services with specific differences in the way they handle line endings other than . References: - https://bugs.mageia.org/show_bug.cgi?id=32647 - https://www.postfix.org/smtp-smuggling.html - https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/ - https://www.cve.org/CVERecord?id=CVE-2023-51764 SRPMS: - 9/core/postfix-3.8.4-1.mga9 . A recent security patch for Postfix tackles SMTP smuggling flaws, providing robust fixes for Mageia 9 users.. Postfix Security, Mageia Update, Email Vulnerability, SMTP Attack Fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 09, 2024 Important Mageia
Banner 1 1028x280 1708121660 1771599717
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisoryimportantsuse enterprise

openSUSE: 2024:0012-1 Important: CVE-2023-51764 SMTP Fix

This update for postfix fixes the following issues: CVE-2023-51764: Fixed SMTP smuggling attack (bsc#1218304).. # Security update for postfix Announcement ID: SUSE-SU-2024:0012-1 Rating: important References: * bsc#1218304 * bsc#1218314 Cross-References: * CVE-2023-51764 CVSS scores: * CVE-2023-51764 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Affected Products: * Basesystem Module 15-SP4 * Legacy Module 15-SP4 * openSUSE Leap 15.3 * openSUSE Leap 15.4 * Server Applications Module 15-SP4 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for postfix fixes the following issues: * CVE-2023-51764: Fixed SMTP smuggling attack (bsc#1218304). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patchSUSE-SLE-Product-SLES_SAP-15-SP4-2024-12=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-12=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-12=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-12=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-12=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-12=1 * openSUSE Leap 15.4 zypper in -t patch openSUSE-SLE-15.4-2024-12=1 * Basesystem Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2024-12=1 * Legacy Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP4-2024-12=1 * Server Applications Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP4-2024-12=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-ESPOS-2024-12=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-12=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-12=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-12=1 * SUSE Linux Enterprise Real Time 15 SP4 zypper in -t patch SUSE-SLE-Product-RT-15-SP4-2024-12=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-12=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-12=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-12=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patchSUSE-SLE-Product-SLES_SAP-15-SP3-2024-12=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debugsource-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-debuginfo-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 * postfix-bdb-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-3.5.9-150300.5.15.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * SUSE Manager Proxy 4.3 (x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * SUSE Manager Proxy 4.3 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 *postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * SUSE Manager Server 4.3 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debugsource-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-debuginfo-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 * postfix-bdb-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-3.5.9-150300.5.15.1 * SUSE Enterprise Storage 7.1 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debugsource-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-debuginfo-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 * postfix-postgresql-3.5.9-150300.5.15.1 * postfix-bdb-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-3.5.9-150300.5.15.1 * postfix-postgresql-debuginfo-3.5.9-150300.5.15.1 * openSUSE Leap 15.3 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debugsource-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-debuginfo-3.5.9-150300.5.15.1 *postfix-devel-3.5.9-150300.5.15.1 * postfix-postgresql-3.5.9-150300.5.15.1 * postfix-bdb-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-3.5.9-150300.5.15.1 * postfix-postgresql-debuginfo-3.5.9-150300.5.15.1 * openSUSE Leap 15.4 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * Basesystem Module 15-SP4 (aarch64 ppc64le s390x x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * Basesystem Module 15-SP4 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * Legacy Module 15-SP4 (aarch64 ppc64le s390x x86_64) * postfix-bdb-debugsource-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-3.5.9-150300.5.15.1 * postfix-bdb-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-3.5.9-150300.5.15.1 * Server Applications Module 15-SP4 (aarch64 ppc64le s390x x86_64) * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (aarch64 x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debugsource-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-debuginfo-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 * postfix-bdb-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-3.5.9-150300.5.15.1 * SUSELinux Enterprise High Performance Computing ESPOS 15 SP3 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debugsource-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-debuginfo-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 * postfix-bdb-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-3.5.9-150300.5.15.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debugsource-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-debuginfo-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 * postfix-bdb-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-3.5.9-150300.5.15.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debugsource-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-debuginfo-3.5.9-150300.5.15.1 *postfix-devel-3.5.9-150300.5.15.1 * postfix-bdb-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-3.5.9-150300.5.15.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * SUSE Linux Enterprise Real Time 15 SP4 (x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * SUSE Linux Enterprise Real Time 15 SP4 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debugsource-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-debuginfo-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 * postfix-bdb-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-3.5.9-150300.5.15.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) *postfix-doc-3.5.9-150300.5.15.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debugsource-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-debuginfo-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 * postfix-bdb-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-3.5.9-150300.5.15.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * postfix-doc-3.5.9-150300.5.15.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * postfix-ldap-debuginfo-3.5.9-150300.5.15.1 * postfix-debugsource-3.5.9-150300.5.15.1 * postfix-mysql-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debugsource-3.5.9-150300.5.15.1 * postfix-ldap-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-debuginfo-3.5.9-150300.5.15.1 * postfix-devel-3.5.9-150300.5.15.1 * postfix-bdb-3.5.9-150300.5.15.1 * postfix-3.5.9-150300.5.15.1 * postfix-mysql-3.5.9-150300.5.15.1 * postfix-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-debuginfo-3.5.9-150300.5.15.1 * postfix-bdb-lmdb-3.5.9-150300.5.15.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * postfix-doc-3.5.9-150300.5.15.1 ## References: * https://www.suse.com/security/cve/CVE-2023-51764.html * https://bugzilla.suse.com/show_bug.cgi?id=1218304 * https://bugzilla.suse.com/show_bug.cgi?id=1218314 . Due to the critical CVE-2023-51764 vulnerability in Postfix, users must update installations urgently to secure mail servers against unauthorized access risks. SMTP Security, Postfix Update, openSUSE Advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 02, 2024 Important OpenSUSE
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorycode executiondebian

Debian 10-11: DSA-5034-1 Critical: Thunderbird Code Execution Risk

Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code, spoofing, information disclosure, downgrade attacks on SMTP STARTTLS connections or misleading display of OpenPGP/MIME signatures. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5034-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff January 02, 2022 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : thunderbird CVE ID : CVE-2021-4126 CVE-2021-38496 CVE-2021-38500 CVE-2021-38502 CVE-2021-38503 CVE-2021-38504 CVE-2021-38506 CVE-2021-38507 CVE-2021-38508 CVE-2021-38509 CVE-2021-43528 CVE-2021-43529 CVE-2021-43534 CVE-2021-43535 CVE-2021-43536 CVE-2021-43537 CVE-2021-43538 CVE-2021-43539 CVE-2021-43541 CVE-2021-43542 CVE-2021-43543 CVE-2021-43545 CVE-2021-43546 CVE-2021-44538 Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code, spoofing, information disclosure, downgrade attacks on SMTP STARTTLS connections or misleading display of OpenPGP/MIME signatures. For the oldstable distribution (buster), these problems have been fixed in version 1:91.4.1-1~deb10u1. For the stable distribution (bullseye), these problems have been fixed in version 1:91.4.1-1~deb11u1. We recommend that you upgrade your thunderbird packages. For the detailed security status of thunderbird please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/thunderbird Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list:This email address is being protected from spambots. You need JavaScript enabled to view it. . Various vulnerabilities in Thunderbird may enable code execution, impersonation, and additional threats. It's advised to upgrade for enhanced security.. thunderbird update, security issues, debian advisory, email vulnerability, code execution risk. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jan 02, 2022 Critical Debian
Banner 1 1028x280 1708121660 1771599717
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hat Enterprise Linuxsecurity impact

Red Hat Enterprise Linux 8 RHSA-2021-3838-01 Important: Thunderbird Update

An update for thunderbird is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: thunderbird security update Advisory ID: RHSA-2021:3838-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:3838 Issue date: 2021-10-13 CVE Names: CVE-2021-32810 CVE-2021-38496 CVE-2021-38497 CVE-2021-38498 CVE-2021-38500 CVE-2021-38501 CVE-2021-38502 ==================================================================== 1. Summary: An update for thunderbird is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64 3. Description: Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.2.0. Security Fix(es): * Mozilla: Use-after-free in MessageTask (CVE-2021-38496) * Mozilla: Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2 (CVE-2021-38500) * Mozilla: Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2 (CVE-2021-38501) * Mozilla: Downgrade attack on SMTP STARTTLS connections (CVE-2021-38502) * rust-crossbeam-deque: race condition may lead to double free (CVE-2021-32810) * Mozilla: Validation message could have been overlaid on anotherorigin (CVE-2021-38497) * Mozilla: Use-after-free of nsLanguageAtomService object (CVE-2021-38498) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 All running instances of Thunderbird must be restarted for the update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1990342 - CVE-2021-32810 rust-crossbeam-deque: race condition may lead to double free 2011097 - CVE-2021-38496 Mozilla: Use-after-free in MessageTask 2011098 - CVE-2021-38497 Mozilla: Validation message could have been overlaid on another origin 2011099 - CVE-2021-38498 Mozilla: Use-after-free of nsLanguageAtomService object 2011100 - CVE-2021-38500 Mozilla: Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2 2011101 - CVE-2021-38501 Mozilla: Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2 2013469 - CVE-2021-38502 Mozilla: Downgrade attack on SMTP STARTTLS connections 6. Package List: Red Hat Enterprise Linux AppStream (v. 8): Source: thunderbird-91.2.0-1.el8_4.src.rpm aarch64: thunderbird-91.2.0-1.el8_4.aarch64.rpm thunderbird-debuginfo-91.2.0-1.el8_4.aarch64.rpm thunderbird-debugsource-91.2.0-1.el8_4.aarch64.rpm ppc64le: thunderbird-91.2.0-1.el8_4.ppc64le.rpm thunderbird-debuginfo-91.2.0-1.el8_4.ppc64le.rpm thunderbird-debugsource-91.2.0-1.el8_4.ppc64le.rpm s390x: thunderbird-91.2.0-1.el8_4.s390x.rpm thunderbird-debuginfo-91.2.0-1.el8_4.s390x.rpm thunderbird-debugsource-91.2.0-1.el8_4.s390x.rpm x86_64: thunderbird-91.2.0-1.el8_4.x86_64.rpm thunderbird-debuginfo-91.2.0-1.el8_4.x86_64.rpm thunderbird-debugsource-91.2.0-1.el8_4.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are availablefrom https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2021-32810 https://access.redhat.com/security/cve/CVE-2021-38496 https://access.redhat.com/security/cve/CVE-2021-38497 https://access.redhat.com/security/cve/CVE-2021-38498 https://access.redhat.com/security/cve/CVE-2021-38500 https://access.redhat.com/security/cve/CVE-2021-38501 https://access.redhat.com/security/cve/CVE-2021-38502 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYWank9zjgjWX9erEAQjC1BAAgimxjq1dn216oSAC+ccBTX6XbQ/z9WW3 7moPWhe3CR55MrQhyo0TXz/98l26iGzjj+61FrhTuP2ZtZJYUMOHez+sAFaQVjzr DIdOV8UhDAk3Ym8hbMgAGKViDuBS/y9gYxSzsLUxJlMBg+UsQWH+aX71zkij58IK HFN/NWCIFH6A2LkPaGSwkFkQ95PNH00TrzmHMCukH8iTw+AVbleh93skJFfIZjKW OOq8G7Ek/whqUwyHxzuf+WgNHgWnW3N7zpgMdujvBfA4jYqJb+4VZgNfmGAEFJiP Q8E7jcxiL4/LQjjNHdSCeikdPvesMEodUf04g802anamPrZrgJhR89jBl+sDS/Ry vwKkkgNTev1Ko6OyZnZXq8xiDN1QhFNfjWgwminbDc6mw8FAOGDM2s+N/myBkNP/ KCi4MO81x73Df1eBTw0/vMPvTtBxBelyPPvc7FXBbDSq/mu767QGnfcp7k6E2TaD HV/A4/1+YfHzeKGoCr09gnmWL2qiK6HJHaFpQ14g+CKRIEcVGp+gRYCJ0IDWIy3X 2t5PcDQLGN9DGRoVb8ljx9blBRRr5sNx4OyCCzkAjURHDyyFph9aRPkW+dJWoNBl 4IYMX0vqbHAhuGnjcucnlvn555dL2HH7Pxq5o18sWGjFyg0fnQeJC7puvwB6MCD8 wTcx4nlU+zA=Z0OO -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . The recent Firefox upgrade greatly enhances Debian safety by resolving several vulnerabilities in release 89.0.. Red Hat Update, Thunderbird Security, Important Security Advisory, Linux Thunderbird Fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 13, 2021 Important Red Hat
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryred hat enterprisethunderbird

Red Hat: RHSA-2021-3840-01 Important: Thunderbird Security Update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: thunderbird security update Advisory ID: RHSA-2021:3840-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:3840 Issue date: 2021-10-13 CVE Names: CVE-2021-32810 CVE-2021-38496 CVE-2021-38497 CVE-2021-38498 CVE-2021-38500 CVE-2021-38501 CVE-2021-38502 ==================================================================== 1. Summary: An update for thunderbird is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream EUS (v. 8.1) - ppc64le, x86_64 3. Description: Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 91.2.0. Security Fix(es): * Mozilla: Use-after-free in MessageTask (CVE-2021-38496) * Mozilla: Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2 (CVE-2021-38500) * Mozilla: Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2 (CVE-2021-38501) * Mozilla: Downgrade attack on SMTP STARTTLS connections (CVE-2021-38502) * rust-crossbeam-deque: race condition may lead to double free (CVE-2021-32810) * Mozilla: Validation message could have been overlaid on another origin (CVE-2021-38497) * Mozilla:Use-after-free of nsLanguageAtomService object (CVE-2021-38498) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 All running instances of Thunderbird must be restarted for the update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1990342 - CVE-2021-32810 rust-crossbeam-deque: race condition may lead to double free 2011097 - CVE-2021-38496 Mozilla: Use-after-free in MessageTask 2011098 - CVE-2021-38497 Mozilla: Validation message could have been overlaid on another origin 2011099 - CVE-2021-38498 Mozilla: Use-after-free of nsLanguageAtomService object 2011100 - CVE-2021-38500 Mozilla: Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2 2011101 - CVE-2021-38501 Mozilla: Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2 2013469 - CVE-2021-38502 Mozilla: Downgrade attack on SMTP STARTTLS connections 6. Package List: Red Hat Enterprise Linux AppStream EUS (v. 8.1): Source: thunderbird-91.2.0-1.el8_1.src.rpm ppc64le: thunderbird-91.2.0-1.el8_1.ppc64le.rpm thunderbird-debuginfo-91.2.0-1.el8_1.ppc64le.rpm thunderbird-debugsource-91.2.0-1.el8_1.ppc64le.rpm x86_64: thunderbird-91.2.0-1.el8_1.x86_64.rpm thunderbird-debuginfo-91.2.0-1.el8_1.x86_64.rpm thunderbird-debugsource-91.2.0-1.el8_1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7.References: https://access.redhat.com/security/cve/CVE-2021-32810 https://access.redhat.com/security/cve/CVE-2021-38496 https://access.redhat.com/security/cve/CVE-2021-38497 https://access.redhat.com/security/cve/CVE-2021-38498 https://access.redhat.com/security/cve/CVE-2021-38500 https://access.redhat.com/security/cve/CVE-2021-38501 https://access.redhat.com/security/cve/CVE-2021-38502 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYWam9tzjgjWX9erEAQgF6BAAqDJ8d18sSf4Y8ZT/OWODznBIiEWm6W6i ohn4aCh5u2lSluN4aMApw54s1d8jbcSgKgWMRHZA+ClVVuvJ5XgAhs89IJMzSIUv 1HXmneS8zt9ZGd0qyddujV3QX89OprLbiP8SB1JqXFpXA/D0mcUWMRfAYUbSI7jp WJjK+LG6syTZBBs0HiLd850MqAAggb4y/kkCWtRlT6gT15bownjrO0hCLxbFoTpR Z78ZPy47+jvMbAxnzNtCjpV6uOdVLjiH/NpLTnjN7UfE1l61TVzgyNXoxIeXB+3d nB+6tN9JCm0nwu091hpMn2ZNMO1Ui6lsB6YS8pYEQkCn1R+lrXR3/0lQ3vii4zRs lkM/um9sVCwxMP/7h7GQLh8D6qprKiqZMN/tWoM4B7y6kVc9tFbESLhd13BCfDfa 2hTvB4mfDnIhz0wOdJA1VTnmuieXOBVRae8tLnuoG/5A5xaqoApfkYQmFJxYwJ42 xWoaZHuYb5lwxukOVsmVRhDyHfUF01xXJjMUqn2p4wzF6iz/0p+fWbNSqtevhtBH cI8492voeHUoyQVSUNqaa21BmN8jtzL0fkgDn7YPiol/xGAZFmD2fNgTVm5cLrfQ y26+s3EYvBYrniSWAG9XROsTqrzE9Ngh1wgfW+K//dvAiQ8vdEg65CwRvlDaDC6d DOckdPLQXLE=qTTz -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Ubuntu rolls out a critical patch for Firefox in 20.04 LTS focusing on several vulnerabilities.. Thunderbird Update, Security Advisory, Memory Safety Issues, Red Hat Alerts. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 13, 2021 Important Red Hat
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here