Alerts This Week
Warning Icon 1 681
Alerts This Week
Warning Icon 1 681

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian LTS openssl Important Use-After-Free NULL Pointer Issues DLA-4624-1

Calendar White Jun 09, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 alsa-lib Important Denial of Service Fix USN-8044-2

Calendar White Jun 09, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS node-shell-quote Important Denial of Service CVE-2026-9277

Calendar White Jun 09, 2026
Important
Mageia Large Esm H800
Mageia

Mageia 9 Suricata Critical Performance Security Issues MGASA-2026-0181

Calendar White Jun 09, 2026
Critical
Mageia Large Esm H900
Mageia

Mageia 9 PackageKit Important TOCTOU Race Escalation CVE-2026-41651

Calendar White Jun 09, 2026
Important
Mageia Large Esm H900
Mageia

Mageia 9 Unbound Critical Remote Code Execution Advisory 2026-0034

Calendar White Jun 09, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS Netatalk Multiple Security Issues USN-8395-1

Calendar White Jun 09, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 mingw-objfw 1.5.5 Update Security Fix FEDORA-2026-de23fedf3e

Calendar White Jun 08, 2026
Fedora Large Esm H900
Fedora

Fedora 43 objfw Important Update 1.5.5 Bug Fixes June 2026

Calendar White Jun 08, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryremote code executionaccess control

Critical Security Update for Red Hat Fuse 7.3.1 RHSA-2019:1545-01

A micro version update (from 7.3 to 7.3.1) is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: Red Hat Fuse 7.3.1 security update Advisory ID: RHSA-2019:1545-01 Product: Red Hat JBoss Fuse Advisory URL: https://access.redhat.com/errata/RHSA-2019:1545 Issue date: 2019-06-18 CVE Names: CVE-2016-2510 CVE-2017-5645 CVE-2017-15691 CVE-2018-3258 CVE-2018-11798 ==================================================================== 1. Summary: A micro version update (from 7.3 to 7.3.1) is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: This release of Red Hat Fuse 7.3.1 serves as a replacement for Red Hat Fuse 7.3, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Security Fix(es): * bsh2: remote code execution via deserialization (CVE-2016-2510) * log4j: Socket receiver deserialization vulnerability (CVE-2017-5645) * uima: XML external entity expansion (XXE) can allow attackers to execute arbitrary code (CVE-2017-15691) * mysql-connector-java: Connector/J unspecified vulnerability (CPU October 2018) (CVE-2018-3258) * thrift: Improper Access Control grants access to files outside the webservers docroot path (CVE-2018-11798) For more details about the security issue(s),including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on. Installation instructions are available from the Fuse 7.3.0 product documentation page: https://access.redhat.com/documentation/en-us/red_hat_fuse/7.3/ 4. Bugs fixed (https://bugzilla.redhat.com/): 1310647 - CVE-2016-2510 bsh2: remote code execution via deserialization 1443635 - CVE-2017-5645 log4j: Socket receiver deserialization vulnerability 1572463 - CVE-2017-15691 uima: XML external entity expansion (XXE) can allow attackers to execute arbitrary code 1640615 - CVE-2018-3258 mysql-connector-java: Connector/J unspecified vulnerability (CPU October 2018) 1667188 - CVE-2018-11798 thrift: Improper Access Control grants access to files outside the webservers docroot path 5. References: https://access.redhat.com/security/cve/CVE-2016-2510 https://access.redhat.com/security/cve/CVE-2017-5645 https://access.redhat.com/security/cve/CVE-2017-15691 https://access.redhat.com/security/cve/CVE-2018-3258 https://access.redhat.com/security/cve/CVE-2018-11798 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=jboss.fuse&version=7.3.1 https://access.redhat.com/documentation/en-us/red_hat_fuse/7.3 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBXQlBI9zjgjWX9erEAQh77w/+PsSuUAlieEwI9nv+bv7r8zfDnPx4c6yB EoLphmrN/thQ4cuBmPOjZjhoHuvxFNxPN8+n4s21qSJiPLDWdBZ37JPyukSQqKOo OvZwGOiSiQrvo0kWZIDwnSv6eqv5V2CfLW2BZpVYdpx/SN24LeKX9E9hDC4E/4+p oE3xc27npAkmkVwmLlESuQyPTzAMYL+gWgbxaz9U2YCyxqEPnqnfFqhGsa5SPJhf GfSVjCH6ck6RXf6rARZWJSCakP5NWK5zJ2DHYFEUyf1/hKrtvG5/8ndGF8CjuQ+I Tx1VzoEJXjM6FRihnoWZsE/e3jjNi6+32tqVrgAnWwdegozKvOU/MLBw8tTdul1g 6ivX51OrOdosa13gEpLWdk/yBlbeB0LKRiSnpy+ireTvd6cy657p+F6gXyS7qqA1 hlpNWqSp/iGY3wU5+z3XbGuY0eElkvYtj6itTxsBY7xW+s/GR10PkHQPvpSCHPv2 3uFWBu10QPdx6IF2CNHs1NAToQcgonIYmx5zcO8u06RJ7smvwZT2uVYEtWUqAn1X KqRjMLTXrp0uYPiBvZcAfZ+w3N4dhzUjN82aJGtU+Vz+hyP9vkQMGFNuMx5fANVL cUuFrK1uqLVNXjaLQe4YRknSDJpyWeAa4NvEDTKpPLTcLn0UhpiXo64N2g+A2RKb zlWsqxiu5w0=He6i -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . This release tackles significant vulnerabilities in Red Hat Fuse 7.3.1, improving both security and efficiency.. Red Hat Fuse Update, Security Patch, Remote Code Execution, Deserialization Vulnerability. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 18, 2019 Important Red Hat
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedorasecurity fix

Fedora 25 log4j12 Security Fix: CVE-2017-5645 Socket Deserialization

Security fix for CVE-2017-5645. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-8348115acd 2017-06-12 13:03:55.241822 --------------------------------------------------------------------------------Name : log4j12 Product : Fedora 25 Version : 1.2.17 Release : 19.fc25 URL : https://logging.apache.org/log4j/1.x/ Summary : Java logging package Description : Log4j is a tool to help the programmer output log statements to a variety of output targets. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2017-5645 --------------------------------------------------------------------------------References: [ 1 ] Bug #1443635 - CVE-2017-5645 log4j: Socket receiver deserialization vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=1443635 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade log4j12' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. . The recent log4j12 update fixes CVE-2017-5645, which relates to a deserialization vulnerability in the socket receiver present in Fedora systems.. Fedora Security, log4j12 Update, Java logging package, security fix. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 12, 2017 Critical Fedora
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here