Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 1 articles for you...
89
security advisoryfedoraupdateArch Linux 2026 gcc 5.4 update 45 a3c8d4fef2 release details
Frameworks 6.25.0 + KDE Plasma 6.6.4. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-fe3d8d4767 2026-04-16 23:40:54.273526+00:00 -------------------------------------------------------------------------------- Name : kf6-kquickcharts Product : Fedora 44 Version : 6.25.0 Release : 1.fc44 URL : https://invent.kde.org/frameworks/kquickcharts Summary : A QtQuick module providing high-performance charts Description : The Quick Charts module provides a set of charts that can be used from QtQuick applications. They are intended to be used for both simple display of data as well as continuous display of high-volume data (often referred to as plotters). The charts use a system called distance fields for their accelerated rendering, which provides ways of using the GPU for rendering 2D shapes without loss of quality. -------------------------------------------------------------------------------- Update Information: Frameworks 6.25.0 + KDE Plasma 6.6.4 -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 9 2026 Steve Cossette - 6.25.0-1 - 6.25.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2455469 - Configuring WifI network via Network pane appears to not work https://bugzilla.redhat.com/show_bug.cgi?id=2455469 [ 2 ] Bug #2457573 - FE: KDE Frameworks 6.25.0 + Plasma 6.6.4 https://bugzilla.redhat.com/show_bug.cgi?id=2457573 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-fe3d8d4767' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. Moredetails on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Apr 16, 2026
•Informational
Fedora
98
security advisoryRed Hat Enterprise Linuxkernel fixRed Hat Enterprise Linux 9 RHSA-2023-5069-01 Important Kernel Security Fix
An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Important: kernel security, bug fix, and enhancement update Advisory ID: RHSA-2023:5069-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:5069 Issue date: 2023-09-12 CVE Names: CVE-2023-1637 CVE-2023-3390 CVE-2023-3610 CVE-2023-3776 CVE-2023-4004 CVE-2023-4147 CVE-2023-20593 CVE-2023-21102 CVE-2023-31248 CVE-2023-35001 ===================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64 Red Hat Enterprise Linux BaseOS (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64 Red Hat Enterprise Linux CRB (v. 9) - aarch64, ppc64le, s390x, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. The following packages have been upgraded to a later upstream version: kernel (5.14.0). Security Fix(es): * kernel: UAF in nftables when nft_set_lookup_global triggered after handling named and anonymous sets in batch requests (CVE-2023-3390) * kernel: netfilter: nf_tables: fix chain bindingtransaction logic in the abort path of NFT_MSG_NEWRULE (CVE-2023-3610) * kernel: net/sched: cls_fw component can be exploited as result of failure in tcf_change_indev function (CVE-2023-3776) * kernel: netfilter: use-after-free due to improper element removal in nft_pipapo_remove() (CVE-2023-4004) * kernel: netfilter: nf_tables_newrule when adding a rule with NFTA_RULE_CHAIN_ID leads to use-after-free (CVE-2023-4147) * kernel: nf_tables: use-after-free in nft_chain_lookup_byid() (CVE-2023-31248) * kernel: nf_tables: stack-out-of-bounds-read in nft_byteorder_eval() (CVE-2023-35001) * kernel: save/restore speculative MSRs during S3 suspend/resume (CVE-2023-1637) * hw: amd: Cross-Process Information Leak (CVE-2023-20593) * kernel: bypass of shadow stack protection due to a logic error (CVE-2023-21102) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * [Intel 9.3 BUG] [SPR][EMR][FHF] ACPI: Fix system hang during S3 wakeup (BZ#2218026) * [Dell 9.2 BUG] Monitor lost after replug WD19TBS to SUT port wiith VGA/DVI to type-C dongle (BZ#2219463) * rtmutex: Incorrect waiter woken when requeueing in rt_mutex_adjust_prio_chain() (BZ#2222121) * RHEL AWS ARM Instability During Microshift e2e tests (BZ#2223310) * RHEL 9.x updates for SEV-SNP guest support (BZ#2224587) * Lock state corruption from nested rtmutex blocking in blk_flush_plug() (BZ#2225623) * bpf_jit_limit hit again - copy_seccomp() fix (BZ#2226945) * libceph: harden msgr2.1 frame segment length checks (BZ#2227070) * Temporary values used for the FIPS integrity test should be zeroized after use (BZ#2227768) * Important iavf bug fixes July 2023 (BZ#2228156) * [i40e/ice] error: Cannot set interface MAC/vlanid to 1e:b7:e2:02:b1:aa/0 for ifname ens4f0 vf 0: Resource temporarily unavailable (BZ#2228158) * lvconvert --splitcache, --uncache operations getting hung (BZ#2228481) * perf: EMR core anduncore PMU support (BZ#2230175) * NVIDIA - Grace: Backport i2c: tegra: Set ACPI node as primary fwnode (BZ#2230483) * NVIDIA - Grace: Backport i2c: tegra: Fix PEC support for SMBUS block read (BZ#2230488) * [Hyper-V][RHEL 9]incomplete fc_transport implementation in storvsc causes null dereference in fc_timed_out() (BZ#2230747) * Kernel config option CONFIG_CRYPTO_STATS should be disabled until it is enhanced (BZ#2231850) * [RHEL 9][Hyper-V]Excessive hv_storvsc driver logging with srb_status SRB_STATUS_INTERNAL_ERROR (0x30) (BZ#2231990) * RHEL-9: WARNING: bad unlock balance detected! (BZ#2232213) * NVIDIA - Grace: Backport drm/ast patch expected for kernel 6.4 (BZ#2232302) * [Lenovo 9.1 bug] RHEL 9 will hang when "echo c > /proc/sysrq-trigger". (BZ#2232700) * [RHEL-9] bz2022169 in /kernel/general/process/reg-suit fails on aarch64 (/proc/[pid]/wchan broken) (BZ#2233928) Enhancement(s): * [Intel 9.3 FEAT] cpufreq: intel_pstate: Enable HWP IO boost for all servers (BZ#2210270) * [Dell 9.3 FEAT] - New MB with AMP Codec Change on Maya Bay (audio driver) (BZ#2218960) * [Lenovo 9.3 FEAT] MDRAID - Update to the latest upstream (BZ#2221170) * [Intel 9.3 FEAT] [EMR] Add EMR support to uncore-frequency driver (BZ#2230169) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 2181891 - CVE-2023-1637 kernel: save/restore speculative MSRs during S3 suspend/resume 2213260 - CVE-2023-3390 kernel: UAF in nftables when nft_set_lookup_global triggered after handling named and anonymous sets in batch requests 2213455 - CVE-2023-21102 kernel: bypass of shadow stack protection due to a logic error 2217845 - CVE-2023-20593 hw: amd: Cross-Process Information Leak 2220892 - CVE-2023-35001 kernel: nf_tables: stack-out-of-bounds-read in nft_byteorder_eval() 2220893 - CVE-2023-31248 kernel: nf_tables:use-after-free in nft_chain_lookup_byid() 2225097 - CVE-2023-3776 kernel: net/sched: cls_fw component can be exploited as result of failure in tcf_change_indev function 2225198 - CVE-2023-3610 kernel: netfilter: nf_tables: fix chain binding transaction logic in the abort path of NFT_MSG_NEWRULE 2225239 - CVE-2023-4147 kernel: netfilter: nf_tables_newrule when adding a rule with NFTA_RULE_CHAIN_ID leads to use-after-free 2225275 - CVE-2023-4004 kernel: netfilter: use-after-free due to improper element removal in nft_pipapo_remove() 6. Package List: Red Hat Enterprise Linux AppStream (v.9): aarch64: bpftool-debuginfo-7.0.0-284.30.1.el9_2.aarch64.rpm kernel-64k-debug-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-debug-devel-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-debug-devel-matched-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-devel-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-devel-matched-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debug-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debug-devel-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debug-devel-matched-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debuginfo-common-aarch64-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-devel-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-devel-matched-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-headers-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-tools-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm perf-5.14.0-284.30.1.el9_2.aarch64.rpm perf-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm python3-perf-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm rtla-5.14.0-284.30.1.el9_2.aarch64.rpm noarch: kernel-doc-5.14.0-284.30.1.el9_2.noarch.rpm ppc64le: bpftool-debuginfo-7.0.0-284.30.1.el9_2.ppc64le.rpm kernel-debug-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debug-devel-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debug-devel-matched-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debuginfo-common-ppc64le-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-devel-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-devel-matched-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-headers-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-tools-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm perf-5.14.0-284.30.1.el9_2.ppc64le.rpm perf-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm python3-perf-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm rtla-5.14.0-284.30.1.el9_2.ppc64le.rpm s390x: bpftool-debuginfo-7.0.0-284.30.1.el9_2.s390x.rpm kernel-debug-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debug-devel-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debug-devel-matched-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debuginfo-common-s390x-5.14.0-284.30.1.el9_2.s390x.rpm kernel-devel-5.14.0-284.30.1.el9_2.s390x.rpm kernel-devel-matched-5.14.0-284.30.1.el9_2.s390x.rpm kernel-headers-5.14.0-284.30.1.el9_2.s390x.rpm kernel-tools-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm kernel-zfcpdump-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm kernel-zfcpdump-devel-5.14.0-284.30.1.el9_2.s390x.rpm kernel-zfcpdump-devel-matched-5.14.0-284.30.1.el9_2.s390x.rpm perf-5.14.0-284.30.1.el9_2.s390x.rpm perf-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm python3-perf-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm rtla-5.14.0-284.30.1.el9_2.s390x.rpm x86_64: bpftool-debuginfo-7.0.0-284.30.1.el9_2.x86_64.rpm kernel-debug-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debug-devel-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debug-devel-matched-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debuginfo-common-x86_64-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-devel-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-devel-matched-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-headers-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-tools-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm perf-5.14.0-284.30.1.el9_2.x86_64.rpm perf-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm python3-perf-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm rtla-5.14.0-284.30.1.el9_2.x86_64.rpm Red Hat Enterprise Linux BaseOS (v.9): Source: kernel-5.14.0-284.30.1.el9_2.src.rpm aarch64: bpftool-7.0.0-284.30.1.el9_2.aarch64.rpm bpftool-debuginfo-7.0.0-284.30.1.el9_2.aarch64.rpm kernel-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-core-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-debug-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-debug-core-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-debug-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-debug-modules-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-debug-modules-core-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-debug-modules-extra-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-modules-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-modules-core-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-modules-extra-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-core-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debug-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debug-core-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debug-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debug-modules-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debug-modules-core-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debug-modules-extra-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debuginfo-common-aarch64-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-modules-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-modules-core-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-modules-extra-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-tools-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-tools-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-tools-libs-5.14.0-284.30.1.el9_2.aarch64.rpm perf-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm python3-perf-5.14.0-284.30.1.el9_2.aarch64.rpm python3-perf-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm noarch: kernel-abi-stablelists-5.14.0-284.30.1.el9_2.noarch.rpm ppc64le: bpftool-7.0.0-284.30.1.el9_2.ppc64le.rpm bpftool-debuginfo-7.0.0-284.30.1.el9_2.ppc64le.rpm kernel-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-core-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debug-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debug-core-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debug-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debug-modules-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debug-modules-core-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debug-modules-extra-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debuginfo-common-ppc64le-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-modules-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-modules-core-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-modules-extra-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-tools-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-tools-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-tools-libs-5.14.0-284.30.1.el9_2.ppc64le.rpm perf-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm python3-perf-5.14.0-284.30.1.el9_2.ppc64le.rpm python3-perf-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm s390x: bpftool-7.0.0-284.30.1.el9_2.s390x.rpm bpftool-debuginfo-7.0.0-284.30.1.el9_2.s390x.rpm kernel-5.14.0-284.30.1.el9_2.s390x.rpm kernel-core-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debug-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debug-core-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debug-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debug-modules-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debug-modules-core-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debug-modules-extra-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debuginfo-common-s390x-5.14.0-284.30.1.el9_2.s390x.rpm kernel-modules-5.14.0-284.30.1.el9_2.s390x.rpm kernel-modules-core-5.14.0-284.30.1.el9_2.s390x.rpm kernel-modules-extra-5.14.0-284.30.1.el9_2.s390x.rpm kernel-tools-5.14.0-284.30.1.el9_2.s390x.rpm kernel-tools-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm kernel-zfcpdump-5.14.0-284.30.1.el9_2.s390x.rpm kernel-zfcpdump-core-5.14.0-284.30.1.el9_2.s390x.rpm kernel-zfcpdump-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm kernel-zfcpdump-modules-5.14.0-284.30.1.el9_2.s390x.rpm kernel-zfcpdump-modules-core-5.14.0-284.30.1.el9_2.s390x.rpm kernel-zfcpdump-modules-extra-5.14.0-284.30.1.el9_2.s390x.rpm perf-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm python3-perf-5.14.0-284.30.1.el9_2.s390x.rpm python3-perf-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm x86_64: bpftool-7.0.0-284.30.1.el9_2.x86_64.rpm bpftool-debuginfo-7.0.0-284.30.1.el9_2.x86_64.rpm kernel-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-core-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debug-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debug-core-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debug-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debug-modules-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debug-modules-core-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debug-modules-extra-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debug-uki-virt-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debuginfo-common-x86_64-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-modules-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-modules-core-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-modules-extra-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-tools-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-tools-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-tools-libs-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-uki-virt-5.14.0-284.30.1.el9_2.x86_64.rpm perf-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm python3-perf-5.14.0-284.30.1.el9_2.x86_64.rpm python3-perf-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm Red Hat Enterprise Linux CRB (v.9): aarch64: bpftool-debuginfo-7.0.0-284.30.1.el9_2.aarch64.rpm kernel-64k-debug-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-64k-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-cross-headers-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debug-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-debuginfo-common-aarch64-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-tools-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm kernel-tools-libs-devel-5.14.0-284.30.1.el9_2.aarch64.rpm perf-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm python3-perf-debuginfo-5.14.0-284.30.1.el9_2.aarch64.rpm ppc64le: bpftool-debuginfo-7.0.0-284.30.1.el9_2.ppc64le.rpm kernel-cross-headers-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debug-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-debuginfo-common-ppc64le-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-tools-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm kernel-tools-libs-devel-5.14.0-284.30.1.el9_2.ppc64le.rpm perf-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm python3-perf-debuginfo-5.14.0-284.30.1.el9_2.ppc64le.rpm s390x: bpftool-debuginfo-7.0.0-284.30.1.el9_2.s390x.rpm kernel-cross-headers-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debug-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm kernel-debuginfo-common-s390x-5.14.0-284.30.1.el9_2.s390x.rpm kernel-tools-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm kernel-zfcpdump-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm perf-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm python3-perf-debuginfo-5.14.0-284.30.1.el9_2.s390x.rpm x86_64: bpftool-debuginfo-7.0.0-284.30.1.el9_2.x86_64.rpm kernel-cross-headers-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debug-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-debuginfo-common-x86_64-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-tools-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm kernel-tools-libs-devel-5.14.0-284.30.1.el9_2.x86_64.rpm perf-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm python3-perf-debuginfo-5.14.0-284.30.1.el9_2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2023-1637 https://access.redhat.com/security/cve/CVE-2023-3390 https://access.redhat.com/security/cve/CVE-2023-3610 https://access.redhat.com/security/cve/CVE-2023-3776 https://access.redhat.com/security/cve/CVE-2023-4004 https://access.redhat.com/security/cve/CVE-2023-4147 https://access.redhat.com/security/cve/CVE-2023-20593 https://access.redhat.com/security/cve/CVE-2023-21102 https://access.redhat.com/security/cve/CVE-2023-31248 https://access.redhat.com/security/cve/CVE-2023-35001 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJlAINbAAoJENzjgjWX9erEARoP/jJ+4CHBFtrifOQosCrOXWCC i05W/70cNpdO6sIo+OPPEv+tObejjaZxBGkYEa+IVnVp3V/fL+RIMuev+ehK90Oz hATe79lBjwh8GcMQbrKwj04thnrb4CFyW3Beq+NjMB96HUGwveAMTWA5lRdxNaa+ eG+xGRRAH9wz/9TlxfJX4zR02zwJTg45Gy6lMZmQmdQcVg0fcMDZjRhCs1rB1gCY dfhqqW6ZEqT4ZPfIhJ3xO30i7nIMQOvNahuRX75/PuUyMHo6GJzeAelMpWZDbLOp oIl2Bui93Zz0PFZ2g096x7yuhiUqloe/twC815YKvGhRKOIBXYJxQPqtVhS8ETFF A03A6ij9aDLHo0nq2O9A+F7oB4Jruq6CdKkk8zCpCREFfDSgI4SXtE6bLeZcFYYV juMhGatXIQPH8OHuQB8kOn0Y4gdjAr4j3vnBuU5sLVIu8gqKsVqjA/Ml0TZj0VBH 54xbpiROqJ3uC4xfSBLtAyU3SWzlZzTRVDkaae/VOH5BYexOIoQTeS7sK1+UyYlg UtEsWgQ+e4ipz6VIud4eY9XCg/tRyhTbXATW0ucJ6TSHzNalIGkJY+4ujuqMmWou sUbTaLxcw32AAKgVkNJoHjH/g9aScZwQZev4aJomP5PxbgmflSnRQMnqxA6znJlu Ymf/e27r5QiB0SFPrIgO =wo3n -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Sep 12, 2023
•Important
Red Hat
203
security advisoryupdateremote code executionMageia 8 MGASA-2023-0212 Moderate: Xonotic Remote Code Execution
A bug was discovered in versions older than 0.8.6 that is believed to be exploitable by malicious server admins to crash clients or, if they defeat mitigations, execute arbitrary code. No working exploit code is known to exist at this time, See referenced release notes for other changes. . MGASA-2023-0212 - Updated xonotic packages fix security vulnerability Publication date: 28 Jun 2023 URL: https://advisories.mageia.org/MGASA-2023-0212.html Type: security Affected Mageia releases: 8 A bug was discovered in versions older than 0.8.6 that is believed to be exploitable by malicious server admins to crash clients or, if they defeat mitigations, execute arbitrary code. No working exploit code is known to exist at this time, See referenced release notes for other changes. References: - https://bugs.mageia.org/show_bug.cgi?id=32038 - https://xonotic.org/posts/2023/xonotic-0-8-6-release/ SRPMS: - 8/core/xonotic-0.8.6-1.mga8 . Recent xonotic updates address a vulnerability that could permit remote code execution by threat agents on Mageia platforms.. Mageia Security, Xonotic Update, Exploit Mitigation, Software Vulnerability. . LinuxSecurity.com Team
Jun 28, 2023
Mageia
89
security advisoryfedoraupdateFedora 34: FEDORA-2021-f74148c6d4 moderate: MySQL Update Issues
**MySQL 8.0.27** Release notes: https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-27.html. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-f74148c6d4 2021-11-10 08:15:33.329124 --------------------------------------------------------------------------------Name : community-mysql Product : Fedora 34 Version : 8.0.27 Release : 1.fc34 URL : http://www.mysql.com Summary : MySQL client programs and shared libraries Description : MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon (mysqld) and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files. --------------------------------------------------------------------------------Update Information: **MySQL 8.0.27** Release notes: https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-27.html --------------------------------------------------------------------------------ChangeLog: * Sun Oct 31 2021 Lars Tangvald - 8.0.27-1 - Update to MySQL 8.0.27 --------------------------------------------------------------------------------References: [ 1 ] Bug #2015421 - community-mysql-8.0.27 is available https://bugzilla.redhat.com/show_bug.cgi?id=2015421 [ 2 ] Bug #2016141 - CVE-2021-2478 CVE-2021-2479 CVE-2021-2481 CVE-2021-35546 CVE-2021-35575 CVE-2021-35577 CVE-2021-35591 CVE-2021-35596 CVE-2021-35597 CVE-2021-35602 CVE-2021-35604 CVE-2021-35607 CVE-2021-35608 CVE-2021-35610 ... community-mysql: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2016141 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-f74148c6d4' at the command line. For more information, refer to the dnf documentation availableat https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Nov 10, 2021
Fedora
203
security advisoryupdatephpMageia: 2020-0119 Moderate: PHP Memory Corruption Issues and Fixes
Updated php packages fix bugs and security vulnerabilities: Core: - Fixed bug #71876 (Memory corruption htmlspecialchars(): charset `*' not supported). . MGASA-2020-0119 - Updated php packages fix bugs and security vulnerabilities Publication date: 06 Mar 2020 URL: https://advisories.mageia.org/MGASA-2020-0119.html Type: security Affected Mageia releases: 7 CVE: CVE-2020-7061, CVE-2020-7062, CVE-2020-7063 Updated php packages fix bugs and security vulnerabilities: Core: - Fixed bug #71876 (Memory corruption htmlspecialchars(): charset `*' not supported). - Fixed bug #79146 (cscript can fail to run on some systems). - Fixed bug #78323 (Code 0 is returned on invalid options). - Fixed bug #76047 (Use-after-free when accessing already destructed backtrace arguments). CURL: - Fixed bug #79078 (Hypothetical use-after-free in curl_multi_add_handle()). Intl: - Fixed bug #79212 (NumberFormatter::format() may detect wrong type). Libxml: - Fixed bug #79191 (Error in SoapClient ctor disables DOMDocument::save()). MBString: - Fixed bug #79154 (mb_convert_encoding() can modify $from_encoding). MySQLnd: - Fixed bug #79084 (mysqlnd may fetch wrong column indexes with MYSQLI_BOTH). OpenSSL: - Fixed bug #79145 (openssl memory leak). Phar: - Fixed bug #79082 (Files added to tar with Phar::buildFromIterator have all-access permissions). (CVE-2020-7063) - Fixed bug #79171 (heap-buffer-overflow in phar_extract_file). (CVE-2020-7061) - Fixed bug #76584 (PharFileInfo::decompress not working). Reflection: - Fixed bug #79115 (ReflectionClass::isCloneable call reflected class __destruct). Session: - Fixed bug #79221 (Null Pointer Dereference in PHP Session Upload Progress). (CVE-2020-7062) SPL: - Fixed bug #79151 (heap use after free caused by spl_dllist_it_helper_move_forward). Standard: - Fixed bug #78902 (Memory leak when using stream_filter_append). XSL: - Fixed bug #70078 (XSL callbacks with nodes as parameter leak memory). References: - https://bugs.mageia.org/show_bug.cgi?id=26234 -https://www.php.net/ChangeLog-7.php#7.3.15 - https://www.cve.org/CVERecord?id=CVE-2020-7061 - https://www.cve.org/CVERecord?id=CVE-2020-7062 - https://www.cve.org/CVERecord?id=CVE-2020-7063 SRPMS: - 7/core/php-7.3.15-1.mga7 . Ubuntu 2021-3032 resolves multiple Python errors and security flaws, improving overall system reliability and protective features.. Mageia Security Update, PHP Bug Fixes, Software Security Advisory. . LinuxSecurity.com Team
Mar 06, 2020
Mageia
203
security advisorydenial of servicesecurity updateMageia 7: MGASA-2020-0017 Critical: Libdwarf Denial of Service
Updated libdwarf packages fix security vulnerability: dwarf_elf_load_headers.c in libdwarf before 2019-07-05 allows attackers to cause a denial of service (division by zero) via an ELF file with a zero-size section group (SHT_GROUP), as demonstrated by dwarfdump . MGASA-2020-0017 - Updated libdwarf packages fix security vulnerability Publication date: 05 Jan 2020 URL: https://advisories.mageia.org/MGASA-2020-0017.html Type: security Affected Mageia releases: 7 CVE: CVE-2019-14249 Updated libdwarf packages fix security vulnerability: dwarf_elf_load_headers.c in libdwarf before 2019-07-05 allows attackersto cause a denial of service (division by zero) via an ELF file with a zero-size section group (SHT_GROUP), as demonstrated by dwarfdump (CVE-2019-14249). References: - https://bugs.mageia.org/show_bug.cgi?id=25955 - https://lists.fedoraproject.org/archives/list/
Jan 05, 2020
•Critical
Mageia
89
security advisoryFedoracritical updateFedora 26: FEDORA-2018-1078a5cabc High: transmission Remote Code Execution
Update to the latest releases. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-4994d364de 2017-12-03 22:48:46.794804 --------------------------------------------------------------------------------Name : qbittorrent Product : Fedora 25 Version : 4.0.1 Release : 1.fc25 URL : https://www.qbittorrent.org/ Summary : A Bittorrent Client Description : A Bittorrent client using rb_libtorrent and a Qt4 Graphical User Interface. It aims to be as fast as possible and to provide multi-OS, unicode support. --------------------------------------------------------------------------------Update Information: Update to the latest releases --------------------------------------------------------------------------------References: [ 1 ] Bug #1466432 - CVE-2017-9847 rb_libtorrent: Heap-buffer overflow in bdecode function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1466432 [ 2 ] Bug #1438986 - rb_libtorrent-1.1.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1438986 [ 3 ] Bug #1516073 - qbittorrent-4.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1516073 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade qbittorrent' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Dec 03, 2017
•Critical
Fedora
172
security advisorydenial of serviceubuntuUbuntu 17.04, 16.10, 16.04 LTS Security Advisory: Zziplib DoS
zziplib could be made to crash or run programs as your login if it opened a specially crafted file.. =========================================================================Ubuntu Security Notice USN-3320-1 June 15, 2017 zziplib vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 17.04 - Ubuntu 16.10 - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS Summary: zziplib could be made to crash or run programs as your login if it opened a specially crafted file. Software Description: - zziplib: library providing read access on ZIP-archives Details: Agostino Sarubbo discovered that zziplib incorrectly handled certain malformed ZIP files. If a user or automated system were tricked into opening a specially crafted ZIP file, a remote attacker could cause zziplib to crash, resulting in a denial of service, or possibly execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 17.04: libzzip-0-13 0.13.62-3ubuntu0.17.04.1 Ubuntu 16.10: libzzip-0-13 0.13.62-3ubuntu0.16.10.1 Ubuntu 16.04 LTS: libzzip-0-13 0.13.62-3ubuntu0.16.04.1 Ubuntu 14.04 LTS: libzzip-0-13 0.13.62-2ubuntu0.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-3320-1 CVE-2017-5974, CVE-2017-5975, CVE-2017-5976, CVE-2017-5978, CVE-2017-5979, CVE-2017-5980, CVE-2017-5981 Package Information: https://launchpad.net/ubuntu/+source/zziplib/0.13.62-3ubuntu0.17.04.1 https://launchpad.net/ubuntu/+source/zziplib/0.13.62-3ubuntu0.16.10.1 https://launchpad.net/ubuntu/+source/zziplib/0.13.62-3ubuntu0.16.04.1 https://launchpad.net/ubuntu/+source/zziplib/0.13.62-2ubuntu0.1 . Ubuntu 20.04, 18.04, 18.10, 19.10 zlib vulnerabilities that couldresult in security breaches or unauthorized access.. zziplib issues, Ubuntu update, denial of service, software flaw, code execution. . Severity: Important. LinuxSecurity.com Team
Jun 15, 2017
•Important
Ubuntu
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!