Alerts This Week
Warning Icon 1 666
Alerts This Week
Warning Icon 1 666

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoracritical

Fedora 43 perl-HTTP-Tiny Critical Header Smuggling Fix CVE-2026-7010

0.094 - fix to prevent invalid characters in all headers, and prevent header smuggling (CVE-2026-7010). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-3bfb774625 2026-06-05 04:07:33.979891+00:00 -------------------------------------------------------------------------------- Name : perl-HTTP-Tiny Product : Fedora 43 Version : 0.094 Release : 1.fc43 URL : https://metacpan.org/release/HTTP-Tiny Summary : Small, simple, correct HTTP/1.1 client Description : This is a very simple HTTP/1.1 client, designed for doing simple GET requests without the overhead of a large framework like LWP::UserAgent. It is more correct and more complete than HTTP::Lite. It supports proxies (currently only non-authenticating ones) and redirection. It also correctly resumes after EINTR. -------------------------------------------------------------------------------- Update Information: 0.094 - fix to prevent invalid characters in all headers, and prevent header smuggling (CVE-2026-7010) -------------------------------------------------------------------------------- ChangeLog: * Wed May 20 2026 Jitka Plesnikova - 0.094-1 - 0.094 bump (rhbz#2478249) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2478249 - perl-HTTP-Tiny-0.094 is available https://bugzilla.redhat.com/show_bug.cgi?id=2478249 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-3bfb774625' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . This advisory details security fixes for perl-HTTP-Tiny on Fedora 43 addressing header smuggling issues.. perl-HTTP-Tiny security patch, Fedora 43 update, header injection fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 05, 2026 Critical Fedora
99
Ls Advisories Slackware Esm H240
Price Tag 1security advisorysecurity issuecritical

Slackware: 2023-067-01 Critical: Httpd Request Smuggling Attack

New httpd packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] httpd (SSA:2023-067-01) New httpd packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: +--------------------------+ patches/packages/httpd-2.4.56-i586-1_slack15.0.txz: Upgraded. This update fixes two security issues: HTTP Response Smuggling vulnerability via mod_proxy_uwsgi. HTTP Request Smuggling attack via mod_rewrite and mod_proxy. For more information, see: https://www.cve.org/CVERecord?id=CVE-2023-27522 https://www.cve.org/CVERecord?id=CVE-2023-25690 (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you. Updated package for Slackware 14.0: Updated package for Slackware x86_64 14.0: Updated package for Slackware 14.1: Updated package for Slackware x86_64 14.1: Updated package for Slackware 14.2: Updated package for Slackware x86_64 14.2: Updated package for Slackware 15.0: Updated package for Slackware x86_64 15.0: Updated package for Slackware -current: Updated package for Slackware x86_64 -current: MD5 signatures: +-------------+ Slackware 14.0 package: aa5ba4ca65ef5e2f1a556dce59499f53 httpd-2.4.56-i486-1_slack14.0.txz Slackware x86_64 14.0 package: 6b3b96f0f263ce160c248e432feb9e22 httpd-2.4.56-x86_64-1_slack14.0.txz Slackware 14.1 package: 0466df1d0b695e06423b3b74e4b3001c httpd-2.4.56-i486-1_slack14.1.txz Slackware x86_64 14.1 package: 24c7e5cdc84dadc5dbb4d2492be91211 httpd-2.4.56-x86_64-1_slack14.1.txz Slackware 14.2 package: 44303214ead7652ff59b0482721c40a2 httpd-2.4.56-i586-1_slack14.2.txz Slackware x86_64 14.2 package: 6d87a8aafce21046bf8182a72cb3adb3 httpd-2.4.56-x86_64-1_slack14.2.txz Slackware 15.0 package: eb75e6a814fadb936efa78bb394f37a2 httpd-2.4.56-i586-1_slack15.0.txz Slackware x86_64 15.0 package: 66bc518f7d6aca2ea55f8da4979df3aa httpd-2.4.56-x86_64-1_slack15.0.txz Slackware -current package: 2c0db3136e67efd747d3305dfb1cc4a5 n/httpd-2.4.56-i586-1.txz Slackware x86_64 -current package: 3618ff7ab4a7253d1cd485b5c696fe8c n/httpd-2.4.56-x86_64-1.txz Installation instructions: +------------------------+ Upgrade the package as root: # upgradepkg httpd-2.4.56-i586-1_slack15.0.txz Then, restart Apache httpd: # /etc/rc.d/rc.httpd stop # /etc/rc.d/rc.httpd start +-----+ . Updated httpd versions for Slackware tackle urgent security vulnerabilities and enhance overall system reliability.. httpd Security Update,Slackware Packages,Response Smuggling,Request Smuggling,Security Issues. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 08, 2023 Critical Slackware
Banner 4 1028x280 1708121825 1771600306
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorymoderatesecurity issue

Mageia 7: MGASA-2021-0123 Low: Undertow HTTP Request Smuggling Threat

A flaw was found in Undertow in versions before 2.1.1.Final, regarding the processing of invalid HTTP requests with large chunk sizes. This flaw allows an attacker to take advantage of HTTP request smuggling (CVE-2020-10719). References: . MGASA-2021-0052 - Updated undertow packages fix security vulnerability Publication date: 22 Jan 2021 URL: https://advisories.mageia.org/MGASA-2021-0052.html Type: security Affected Mageia releases: 7 CVE: CVE-2020-10719 A flaw was found in Undertow in versions before 2.1.1.Final, regarding the processing of invalid HTTP requests with large chunk sizes. This flaw allows an attacker to take advantage of HTTP request smuggling (CVE-2020-10719). References: - https://bugs.mageia.org/show_bug.cgi?id=28076 - https://security-tracker.debian.org/tracker/CVE-2020-10719 - https://www.cve.org/CVERecord?id=CVE-2020-10719 SRPMS: - 7/core/undertow-1.4.0-2.1.mga7 . Improvements for Undertow rectify a vulnerability allowing HTTP request smuggling exploits in Mageia 7 environments. Security measures detailed.. Mageia Update, Undertow Security, HTTP Request Fix. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Jan 22, 2021 Low Mageia
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here