Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian LTS openssl Important Use-After-Free NULL Pointer Issues DLA-4624-1

Calendar White Jun 09, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 alsa-lib Important Denial of Service Fix USN-8044-2

Calendar White Jun 09, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS node-shell-quote Important Denial of Service CVE-2026-9277

Calendar White Jun 09, 2026
Important
Mageia Large Esm H800
Mageia

Mageia 9 Suricata Critical Performance Security Issues MGASA-2026-0181

Calendar White Jun 09, 2026
Critical
Mageia Large Esm H900
Mageia

Mageia 9 PackageKit Important TOCTOU Race Escalation CVE-2026-41651

Calendar White Jun 09, 2026
Important
Mageia Large Esm H900
Mageia

Mageia 9 Unbound Critical Remote Code Execution Advisory 2026-0034

Calendar White Jun 09, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 26.04 LTS Netatalk Multiple Security Issues USN-8395-1

Calendar White Jun 09, 2026
Important
Fedora Large Esm H900
Fedora

Fedora 43 mingw-objfw 1.5.5 Update Security Fix FEDORA-2026-de23fedf3e

Calendar White Jun 08, 2026
Fedora Large Esm H900
Fedora

Fedora 43 objfw Important Update 1.5.5 Bug Fixes June 2026

Calendar White Jun 08, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hat Enterprise Linuximportant

Red Hat Enterprise Linux 8: RHSA-2021-3893-01 Important: Java Update

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: java-1.8.0-openjdk security and bug fix update Advisory ID: RHSA-2021:3893-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:3893 Issue date: 2021-10-20 CVE Names: CVE-2021-35550 CVE-2021-35556 CVE-2021-35559 CVE-2021-35561 CVE-2021-35564 CVE-2021-35565 CVE-2021-35567 CVE-2021-35578 CVE-2021-35586 CVE-2021-35588 CVE-2021-35603 ==================================================================== 1. Summary: An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat CodeReady Linux Builder (v. 8) - aarch64, ppc64le, x86_64 Red Hat Enterprise Linux AppStream (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix(es): * OpenJDK: Loop in HttpsServer triggered during TLS session close (JSSE, 8254967) (CVE-2021-35565) * OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689) (CVE-2021-35567) * OpenJDK: Weak ciphers preferred over stronger ones for TLS (JSSE, 8264210) (CVE-2021-35550) * OpenJDK: Excessive memory allocation inRTFParser (Swing, 8265167) (CVE-2021-35556) * OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580) (CVE-2021-35559) * OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097) (CVE-2021-35561) * OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137) (CVE-2021-35564) * OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729) (CVE-2021-35578) * OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735) (CVE-2021-35586) * OpenJDK: Incomplete validation of inner class references in ClassFileParser (Hotspot, 8268071) (CVE-2021-35588) * OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618) (CVE-2021-35603) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Previously, OpenJDK's FIPS mode would be enabled if it detected that the system crypto policy was set to FIPS. This meant that containers running on a FIPS mode kernel would not enable FIPS mode without the crypto policy being changed. With this update, OpenJDK queries the NSS library as to whether FIPS mode is active or not. (RHBZ#2014201) * The use of the NSS FIPS mode by OpenJDK requires the JDK to login to the NSS software token. Previously, this happened indirectly as part of some crypto operations, but not others. With this update, the JDK logs in to the token on initialisation. (RHBZ#2014204) * While in FIPS mode, the NSS Software Token does not allow the import of private or secret plain keys. This caused the OpenJDK keytool application to fail when used with OpenJDK in FIPS mode. With this update, OpenJDK will now import such keys into the NSS database. This behaviour may be disabled using -Dcom.redhat.fips.plainKeySupport=false. (RHBZ#2014193) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, referto: https://access.redhat.com/articles/11258 All running instances of OpenJDK Java must be restarted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 2014193 - Enable the import of plain keys into the NSS Software Token while in FIPS mode [rhel-8, openjdk-8] [rhel-8.4.0.z] 2014201 - Improve system FIPS detection [java-1.8.0-openjdk, RHEL 8] [rhel-8.4.0.z] 2014204 - Login to the NSS software token in FIPS [java-1.8.0-openjdk, RHEL 8] [rhel-8.4.0.z] 2014508 - CVE-2021-35565 OpenJDK: Loop in HttpsServer triggered during TLS session close (JSSE, 8254967) 2014515 - CVE-2021-35556 OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167) 2014518 - CVE-2021-35559 OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580) 2014524 - CVE-2021-35561 OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097) 2015061 - CVE-2021-35564 OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137) 2015308 - CVE-2021-35586 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735) 2015311 - CVE-2021-35603 OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618) 2015648 - CVE-2021-35550 OpenJDK: Weak ciphers preferred over stronger ones for TLS (JSSE, 8264210) 2015653 - CVE-2021-35578 OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729) 2015658 - CVE-2021-35567 OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689) 2015659 - CVE-2021-35588 OpenJDK: Incomplete validation of inner class references in ClassFileParser (Hotspot, 8268071) 6. Package List: Red Hat Enterprise Linux AppStream (v.8): Source: java-1.8.0-openjdk-1.8.0.312.b07-1.el8_4.src.rpm aarch64: java-1.8.0-openjdk-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-accessibility-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-debugsource-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-demo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-devel-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-headless-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-src-1.8.0.312.b07-1.el8_4.aarch64.rpm noarch: java-1.8.0-openjdk-javadoc-1.8.0.312.b07-1.el8_4.noarch.rpm java-1.8.0-openjdk-javadoc-zip-1.8.0.312.b07-1.el8_4.noarch.rpm ppc64le: java-1.8.0-openjdk-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-accessibility-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-debugsource-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-demo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-devel-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-headless-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-src-1.8.0.312.b07-1.el8_4.ppc64le.rpm s390x: java-1.8.0-openjdk-1.8.0.312.b07-1.el8_4.s390x.rpm java-1.8.0-openjdk-accessibility-1.8.0.312.b07-1.el8_4.s390x.rpm java-1.8.0-openjdk-debuginfo-1.8.0.312.b07-1.el8_4.s390x.rpm java-1.8.0-openjdk-debugsource-1.8.0.312.b07-1.el8_4.s390x.rpm java-1.8.0-openjdk-demo-1.8.0.312.b07-1.el8_4.s390x.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.312.b07-1.el8_4.s390x.rpm java-1.8.0-openjdk-devel-1.8.0.312.b07-1.el8_4.s390x.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.312.b07-1.el8_4.s390x.rpm java-1.8.0-openjdk-headless-1.8.0.312.b07-1.el8_4.s390x.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.312.b07-1.el8_4.s390x.rpm java-1.8.0-openjdk-src-1.8.0.312.b07-1.el8_4.s390x.rpm x86_64: java-1.8.0-openjdk-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-accessibility-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-debugsource-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-demo-fastdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-devel-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-devel-fastdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-fastdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-headless-fastdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-src-1.8.0.312.b07-1.el8_4.x86_64.rpm Red Hat CodeReady Linux Builder (v.8): aarch64: java-1.8.0-openjdk-accessibility-slowdebug-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-debugsource-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-demo-slowdebug-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-devel-slowdebug-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-headless-slowdebug-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-slowdebug-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.aarch64.rpm java-1.8.0-openjdk-src-slowdebug-1.8.0.312.b07-1.el8_4.aarch64.rpm ppc64le: java-1.8.0-openjdk-accessibility-slowdebug-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-debugsource-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-demo-slowdebug-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-devel-slowdebug-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-headless-slowdebug-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-slowdebug-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.ppc64le.rpm java-1.8.0-openjdk-src-slowdebug-1.8.0.312.b07-1.el8_4.ppc64le.rpm x86_64: java-1.8.0-openjdk-accessibility-fastdebug-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-accessibility-slowdebug-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-debugsource-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-demo-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-demo-fastdebug-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-demo-fastdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-demo-slowdebug-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-demo-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-devel-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-devel-fastdebug-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-devel-fastdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-devel-slowdebug-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-devel-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-fastdebug-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-fastdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-headless-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-headless-fastdebug-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-headless-fastdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-headless-slowdebug-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-headless-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-slowdebug-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-slowdebug-debuginfo-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-src-fastdebug-1.8.0.312.b07-1.el8_4.x86_64.rpm java-1.8.0-openjdk-src-slowdebug-1.8.0.312.b07-1.el8_4.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are availablefrom https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2021-35550 https://access.redhat.com/security/cve/CVE-2021-35556 https://access.redhat.com/security/cve/CVE-2021-35559 https://access.redhat.com/security/cve/CVE-2021-35561 https://access.redhat.com/security/cve/CVE-2021-35564 https://access.redhat.com/security/cve/CVE-2021-35565 https://access.redhat.com/security/cve/CVE-2021-35567 https://access.redhat.com/security/cve/CVE-2021-35578 https://access.redhat.com/security/cve/CVE-2021-35586 https://access.redhat.com/security/cve/CVE-2021-35588 https://access.redhat.com/security/cve/CVE-2021-35603 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYXAcNNzjgjWX9erEAQiJ4Q//UddBL88/MjLVs+frZBSi36rxZBQQNPPg bp+vFKl7zK/6Hp3dkt72PZ5OcvNiWiRxpbJ03gkei+L+OhWhwdoqDwzBqi1r1Uov 1fW4eC/8EACG5ufTttdtJsmPHx2IILvWLgwdBYnZXMWvU6aPcgzv+R8qQscqy+t2 +pgTZStHzYnvFqeHtBSlKo1WxR55rIkkQDrO4+Skd8WDrx/TeAkq3rvztTmBt2MA +xQZ3jsFd8X8+8mBTTQaoqrP4a+2DekeNaeu5xiSt0cKmsAxINf7asXrBlY7H20b zOF5SvaZ9ZSVPsKGpcBHkzNU2z9DRXi/DnEw2fPpvg86qfMUxH6Ik+EabIY4GftQ 1KFYjehdGsvkg3n/vpiCFL7xjxZtWxoHiwAzIsB9ZFw+V3H6EdR50uls2+Iabt5h u/dp3uZJVdyfiNYNn4q1o+Z0ampF8/BSb4pG96zALJP/In2zLh1ckr35eTAH46Dd p7acsrpp7fw2NVgBz62HRks9SfZ2P7jdu/xCUZiX7Uxb6S4YgHVQ5RAIHjNNIhz6 WmOtiZr6gLjMqF9PHAXT+AwVknJT2ecVZ+sszoB/u1rw7gf/V27d324+u7XmACHe oVkoDkJW+nG0Ne3+1LCx1r5diZgvixf79AwJfN1seN6Wakwgfc0uhxdMRev9papT DQ91bE0p86E=D/9w -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Important security patches released for RedHat's java-1.8.0-openjdk, targeting various vulnerabilities. Discover further details on the updates.. Red Hat OpenJDK Security Updates, Java Runtime Environment Fixes, Linux Enterprise Security. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 20, 2021 Important Red Hat
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hat Enterprise Linuxsecurity impact

Red Hat 7 RHSA-2019-1973-01 Important: Kernel-Alt DoS Addressed

An update for kernel-alt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel-alt security and bug fix update Advisory ID: RHSA-2019:1973-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2019:1973 Issue date: 2019-07-30 CVE Names: CVE-2019-3900 ==================================================================== 1. Summary: An update for kernel-alt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7) - aarch64, noarch, ppc64le, s390x Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7) - aarch64, noarch, ppc64le 3. Description: The kernel-alt packages provide the Linux kernel version 4.x. Security Fix(es): * Kernel: vhost_net: infinite loop while receiving packets leads to DoS (CVE-2019-3900) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Pegas1.1 - 7.5-alt s390x kernel oops in update_cfs_rq_h_load (BZ#1557242) * race of lockd/nfsd inetaddr notifiers with pointers change (BZ#1637541) * lockd: possible double unregister of inetaddr notifiers (BZ#1637542) *[Huawei AArch64 7.6 Bug] During the virtual machine migration process, NFS may trigger a system panic. (BZ#1671943) * RHEL-Alt-7.6 - jit'd java code on power9 ppc64le experiences stack corruption (BZ#1707630) Users of kernel-alt are advised to upgrade to these updated packages, which fix these bugs. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1698757 - CVE-2019-3900 Kernel: vhost_net: infinite loop while receiving packets leads to DoS 6. Package List: Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v.7): Source: kernel-alt-4.14.0-115.10.1.el7a.src.rpm aarch64: kernel-4.14.0-115.10.1.el7a.aarch64.rpm kernel-debug-4.14.0-115.10.1.el7a.aarch64.rpm kernel-debug-debuginfo-4.14.0-115.10.1.el7a.aarch64.rpm kernel-debug-devel-4.14.0-115.10.1.el7a.aarch64.rpm kernel-debuginfo-4.14.0-115.10.1.el7a.aarch64.rpm kernel-debuginfo-common-aarch64-4.14.0-115.10.1.el7a.aarch64.rpm kernel-devel-4.14.0-115.10.1.el7a.aarch64.rpm kernel-headers-4.14.0-115.10.1.el7a.aarch64.rpm kernel-tools-4.14.0-115.10.1.el7a.aarch64.rpm kernel-tools-debuginfo-4.14.0-115.10.1.el7a.aarch64.rpm kernel-tools-libs-4.14.0-115.10.1.el7a.aarch64.rpm perf-4.14.0-115.10.1.el7a.aarch64.rpm perf-debuginfo-4.14.0-115.10.1.el7a.aarch64.rpm python-perf-4.14.0-115.10.1.el7a.aarch64.rpm python-perf-debuginfo-4.14.0-115.10.1.el7a.aarch64.rpm noarch: kernel-abi-whitelists-4.14.0-115.10.1.el7a.noarch.rpm kernel-doc-4.14.0-115.10.1.el7a.noarch.rpm ppc64le: kernel-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-bootwrapper-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-debug-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-debug-debuginfo-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-debuginfo-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-debuginfo-common-ppc64le-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-devel-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-headers-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-tools-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-tools-debuginfo-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-tools-libs-4.14.0-115.10.1.el7a.ppc64le.rpm perf-4.14.0-115.10.1.el7a.ppc64le.rpm perf-debuginfo-4.14.0-115.10.1.el7a.ppc64le.rpm python-perf-4.14.0-115.10.1.el7a.ppc64le.rpm python-perf-debuginfo-4.14.0-115.10.1.el7a.ppc64le.rpm s390x: kernel-4.14.0-115.10.1.el7a.s390x.rpm kernel-debug-4.14.0-115.10.1.el7a.s390x.rpm kernel-debug-debuginfo-4.14.0-115.10.1.el7a.s390x.rpm kernel-debug-devel-4.14.0-115.10.1.el7a.s390x.rpm kernel-debuginfo-4.14.0-115.10.1.el7a.s390x.rpm kernel-debuginfo-common-s390x-4.14.0-115.10.1.el7a.s390x.rpm kernel-devel-4.14.0-115.10.1.el7a.s390x.rpm kernel-headers-4.14.0-115.10.1.el7a.s390x.rpm kernel-kdump-4.14.0-115.10.1.el7a.s390x.rpm kernel-kdump-debuginfo-4.14.0-115.10.1.el7a.s390x.rpm kernel-kdump-devel-4.14.0-115.10.1.el7a.s390x.rpm perf-4.14.0-115.10.1.el7a.s390x.rpm perf-debuginfo-4.14.0-115.10.1.el7a.s390x.rpm python-perf-4.14.0-115.10.1.el7a.s390x.rpm python-perf-debuginfo-4.14.0-115.10.1.el7a.s390x.rpm Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7): aarch64: kernel-debug-debuginfo-4.14.0-115.10.1.el7a.aarch64.rpm kernel-debuginfo-4.14.0-115.10.1.el7a.aarch64.rpm kernel-debuginfo-common-aarch64-4.14.0-115.10.1.el7a.aarch64.rpm kernel-tools-debuginfo-4.14.0-115.10.1.el7a.aarch64.rpm kernel-tools-libs-devel-4.14.0-115.10.1.el7a.aarch64.rpm perf-debuginfo-4.14.0-115.10.1.el7a.aarch64.rpm python-perf-debuginfo-4.14.0-115.10.1.el7a.aarch64.rpm noarch: kernel-doc-4.14.0-115.10.1.el7a.noarch.rpm ppc64le: kernel-debug-debuginfo-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-debug-devel-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-debuginfo-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-debuginfo-common-ppc64le-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-tools-debuginfo-4.14.0-115.10.1.el7a.ppc64le.rpm kernel-tools-libs-devel-4.14.0-115.10.1.el7a.ppc64le.rpm perf-debuginfo-4.14.0-115.10.1.el7a.ppc64le.rpm python-perf-debuginfo-4.14.0-115.10.1.el7a.ppc64le.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2019-3900 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBXUBDj9zjgjWX9erEAQgGrg/9HRH0oQRTZlGXK82h+ALuuDu5mdNb/v/W fxHbw6SHj+DVW5hYt+iccL/FoBhPRs4uZ519S5oyJbm95STbzs4/zrg3SMWpe8fW Hn1Y1A2nZJAliOsZI8i0ALfr6hUxTHUVsve7Fg4rBestLYP0g4QEC4LIvBU0c2xL L0aQG6FbKvlFFD2ATvXhoBpgHkqDSx8d6J9YTxTAYNHTf7ssEqZ+++bUupqdUpVo Ausl9xSC0lKDecXbvrBnIbeK3hrqTZgBSMZLflhGDM1PILNxKZ9OPRq4ToJGSPCG SSS3uEuqSCsqN/j95997xUCeTfFk54/aCkN66c86rlsMUlCUYB7Id45RZ7tqiAW8 h7ZwJGFXhTQh4oMLJOztgsk8e7Vaj84b8mniScGt3J7TgUZnPwTdTeV7HhmrMyzO 9A0niRfceacygOuv1wkPJG4pEGO6S6r0UGAD22mCmhCssD5MJ3FoyMj4/BIHHqUO OO0SidzPNZi6vYoeFo766Oa4Er6wkacRJHfC+mv5MOExLMqTZB0JPCrbFqNMlC46 kaYdbYlaLI9OHQ6GULpXn10dTohY6mK19rKeu+fPnT6X7TkKFmVQj/nZdquEflfi JFcF8JbdnKJBI1stqDNPE4E+yRShgtZQDGXZU/KXBbESIK62m+LeoIeqTFF2+tIe uAZZt03xGt8=KLm4 -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . The latest kernel-alt release for Red Hat Enterprise Linux 7 targets significant security vulnerabilities and resolves various bugs, ensuring improved overall system performance.. Red Hat Update, Kernel Alt Security, DoS Fix, Linux Security Advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jul 30, 2019 Important Red Hat
Banner 4 1028x280 1708121825 1771600306
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryinformation leakmoderate impact

Red Hat OpenStack 5: RHSA-2015-0430 Moderate: Nova Security Flaw

Updated openstack-glance packages that fix one security issues and multiple bugs are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: openstack-glance security and bug fix update Advisory ID: RHSA-2014:0229-01 Product: Red Hat OpenStack Advisory URL: https://access.redhat.com/errata/RHSA-2014:0229.html Issue date: 2014-03-04 CVE Names: CVE-2014-1948 ==================================================================== 1. Summary: Updated openstack-glance packages that fix one security issues and multiple bugs are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: OpenStack 4 - noarch 3. Description: OpenStack Image service (glance) provides discovery, registration, and delivery services for disk and server images. It provides the ability to copy or snapshot a server image, and immediately store it away. Stored images can be used as a template to get new servers up and running quickly and more consistently than installing a server operating system and individually configuring additional services. An information leak flaw was found in the way glance stored certain logging information. An attacker with access to the glance log files could use this flaw to obtain authentication credentials to the OpenStack Object Storage (swift) back end. Note that only setups using the swift back end were affected. (CVE-2014-1948) Theopenstack-glance packages have been upgraded to upstream version 2013.2.2, which provides a number of bug fixes over the previous version. (BZ#1065313) All users of openstack-glance are advised to upgrade to these updated packages, which correct these issues. After installing the updated packages, the running OpenStack Image services must be manually restarted (using "service [service name] restart") for this update to take effect. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1064589 - CVE-2014-1948 openstack-glance: Glance Swift store backend password leak 1065313 - Rebase openstack-glance to 2013.2.2 6. Package List: OpenStack 4: Source: noarch: openstack-glance-2013.2.2-2.el6ost.noarch.rpm openstack-glance-doc-2013.2.2-2.el6ost.noarch.rpm python-glance-2013.2.2-2.el6ost.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2014-1948 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2014 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFTFil+XlSAg2UNWIIRAjeWAJ9ZNxtWp9JNVMjIL2rEDIQWFf76uwCfd92v OSzLUzPlx+4AGf6qCJyvgFw=XktN -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . A substantial update for OpenStack Glance addresses critical security vulnerabilities and rectifies various bugs found in Red Hat Enterprise Linux.. Red Hat OpenStack, OpenStack Glance, Security Update,Bug Fix, Information Leak. . LinuxSecurity.com Team

Calendar 2 Mar 04, 2014 Red Hat
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":549,"type":"x","order":1,"pct":78.54,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.29,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.86,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.3,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here