Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydenial of serviceupdate

Debian: DLA-2592-1 Moderate: Golang 1.8 DoS and Code Execution Threats

Several vulnerabilities were discovered in the Go programming language. An attacker could trigger a denial-of-service (DoS), bypasss access control, and execute arbitrary code on the developer's computer. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2592-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Sylvain Beucler March 13, 2021 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : golang-1.8 Version : 1.8.1-1+deb9u3 CVE ID : CVE-2017-15041 CVE-2018-16873 CVE-2018-16874 CVE-2019-9741 CVE-2019-16276 CVE-2019-17596 CVE-2021-3114 Debian Bug : 924630 941173 942628 942629 Several vulnerabilities were discovered in the Go programming language. An attacker could trigger a denial-of-service (DoS), bypasss access control, and execute arbitrary code on the developer's computer. CVE-2017-15041 Go allows "go get" remote command execution. Using custom domains, it is possible to arrange things so that /pkg1 points to a Subversion repository but /pkg1/pkg2 points to a Git repository. If the Subversion repository includes a Git checkout in its pkg2 directory and some other work is done to ensure the proper ordering of operations, "go get" can be tricked into reusing this Git checkout for the fetch of code from pkg2. If the Subversion repository's Git checkout has malicious commands in .git/hooks/, they will execute on the system running "go get." CVE-2018-16873 The "go get" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, as it may treat the parent directory as a Git repository root, containing malicious configuration. CVE-2018-16874 The "go get" command is vulnerable to directory traversal when executed with the importpath of a malicious Go package which contains curly braces (both '{' and '}' characters). The attacker can cause an arbitrary filesystem write, which can lead to code execution. CVE-2019-9741 In net/http, CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the second argument to http.NewRequest with \r\n followed by an HTTP header or a Redis command. CVE-2019-16276 Go allows HTTP Request Smuggling. CVE-2019-17596 Go can panic upon an attempt to process network traffic containing an invalid DSA public key. There are several attack scenarios, such as traffic from a client to a server that verifies client certificates. CVE-2021-3114 crypto/elliptic/p224.go can generate incorrect outputs, related to an underflow of the lowest limb during the final complete reduction in the P-224 field. For Debian 9 stretch, these problems have been fixed in version 1.8.1-1+deb9u3. We recommend that you upgrade your golang-1.8 packages. For the detailed security status of golang-1.8 please refer to its security tracker page at: Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Critical security patch released for golang-1.8 addresses multiple vulnerabilities. Debian users are urged to update without delay.. Debian LTS,Golang Security Update,Denial of Service Threats,Code Execution Prevention. . LinuxSecurity.com Team

Calendar 2 Mar 13, 2021 Debian LTS
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryhigh severityFedora

Fedora 32: FEDORA-2020-3ea2253402 Critical: PHP Memory Leak Fix

**PHP version 7.4.6** (14 May 2020) **Core:** * Fixed bug php#78434 (Generator yields no items after valid() call). (Nikita) * Fixed bug php#79477 (casting object into array creates references). (Nikita) * Fixed bug php#79514 (Memory leaks while including unexistent file). (cmb, Nikita) * Fixed bug php#79470 (PHP incompatible with 3rd party file system on demand). (cmb) * Fixed bug php#78784. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-3ea2253402 2020-05-19 02:52:04.490396 --------------------------------------------------------------------------------Name : php Product : Fedora 32 Version : 7.4.6 Release : 1.fc32 URL : https://www.php.net/ Summary : PHP scripting language for creating dynamic web sites Description : PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. The php package contains the module (often referred to as mod_php) which adds support for the PHP language to Apache HTTP Server. --------------------------------------------------------------------------------Update Information: **PHP version 7.4.6** (14 May 2020) **Core:** * Fixed bug php#78434 (Generator yields no items after valid() call). (Nikita) * Fixed bug php#79477 (casting object into array creates references). (Nikita) * Fixed bug php#79514 (Memory leaks while including unexistent file). (cmb, Nikita) * Fixed bug php#79470 (PHP incompatible with 3rd party file system on demand). (cmb) * Fixed bug php#78784 (Unable to interact with files inside a VFS for Git repository). (cmb) * Fixed bug php#78875 (Long variables cause OOM and temp files are not cleaned).(cmb) (**CVE-2019-11048**) * Fixed bug php#78876 (Long variables cause OOM and temp files are not cleaned). (cmb) (**CVE-2019-11048**) **DOM:** * Fixed bug php#78221 (DOMNode::normalize() doesn't remove empty text nodes). (cmb) **EXIF:** * Fixed bug php#79336 (ext/exif/tests/bug79046.phpt fails on Big endian arch). (Nikita) **FCGI:** * Fixed bug php#79491 (Search for .user.ini extends up to root dir). (cmb) **MBString:** * Fixed bug php#79441 (Segfault in mb_chr() if internal encoding is unsupported). (Girgias) **OpenSSL:** * Fixed bug php#79497 (stream_socket_client() throws an unknown error sometimes with

Calendar 2 May 18, 2020 Critical Fedora
Banner 4 1028x280 1708121825 1771600306
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorysecurity updatesoftware bugs

Mageia: 2019-0026 Moderate: Avidemux Security Issues Fixed

The avidemux package has been updated to version 2.7.1. Avidemux includes a bundled copy of the ffmpeg libraries, which have been updated from version 3.3.3 to version 3.3.9, fixing several security issues and other bugs. . MGASA-2019-0026 - Updated avidemux packages fix security vulnerabilities Publication date: 08 Jan 2019 URL: https://advisories.mageia.org/MGASA-2019-0026.html Type: security Affected Mageia releases: 6 The avidemux package has been updated to version 2.7.1. Avidemux includes a bundled copy of the ffmpeg libraries, which have been updated from version 3.3.3 to version 3.3.9, fixing several security issues and other bugs. References: - https://bugs.mageia.org/show_bug.cgi?id=24098 - http://fixounet.free.fr/avidemux/news.html#2018-06-05 - https://ffmpeg.org//security.html SRPMS: - 6/tainted/avidemux-2.7.1-1.mga6.tainted - 6/core/avidemux-2.7.1-1.mga6 . Revised Avidemux distributions for Mageia addressed various concerns released on March 12, 2020.. avidemux update,mageia advisory,security issues,security patch,software integrity. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 08, 2019 Important Mageia
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorysecurity updateinteger overflow

Red Hat Enterprise Linux 3: RHSA-2005:659-01 Low: Binutils Integer Overflow

An updated binutils package that fixes several bugs and minor security issues is now available. This update has been rated as having low security impact by the Red Hat Security Response Team.. - --------------------------------------------------------------------- Red Hat Security Advisory Synopsis: Low: binutils security update Advisory ID: RHSA-2005:659-01 Advisory URL: https://access.redhat.com/errata/RHSA-2005:659.html Issue date: 2005-09-28 Updated on: 2005-09-28 Product: Red Hat Enterprise Linux CVE Names: CAN-2005-1704 - ---------------------------------------------------------------------1. Summary: An updated binutils package that fixes several bugs and minor security issues is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64 3. Problem description: Binutils is a collection of utilities used for the creation of executable code. A number of bugs were found in various binutils tools. Several integer overflow bugs were found in binutils. If a user is tricked into processing a specially crafted executable with utilities such as readelf, size, strings, objdump, or nm, it may allow the execution of arbitrary code as the user running the utility. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-1704 to this issue. Additionally, the following bugs have been fixed: - -- correct alignment of .tbss section if the requested alignment of .tbss is bigger than requested alignment of .tdata section - -- by default issue an error if IA-64 hint@pause instruction is put into the B slot, add assembler command line switchto override this behaviour All users of binutils should upgrade to this updated package, which contains backported patches to resolve these issues. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command: up2date For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system: https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/10 5. Bug IDs fixed (http://bugzilla.redhat.com/): 157983 - gcc produces inadequate alignment for __thread vars 164364 - CAN-2005-1704 Integer overflow in the Binary File Descriptor (BFD) library 6. RPMs required: Red Hat Enterprise Linux AS version 3: SRPMS: 64bdd095087e29551e0db7d77def0abb binutils-2.14.90.0.4-39.src.rpm i386: 40f698290ea2271c9452dd40f0d88429 binutils-2.14.90.0.4-39.i386.rpm ia64: d3ec28074b9a8c2c0ff0e91570f1d3a8 binutils-2.14.90.0.4-39.ia64.rpm ppc: 80f84bae3f54898f94bfca3f63281fe9 binutils-2.14.90.0.4-39.ppc.rpm s390: 2decc07a7a4765f8b51c5a6e346a6ab9 binutils-2.14.90.0.4-39.s390.rpm s390x: 525405b42381b13512b184ba2c43a12b binutils-2.14.90.0.4-39.s390x.rpm x86_64: 3ea049872ff3705f9e6bfe42a8a3f964 binutils-2.14.90.0.4-39.x86_64.rpm Red Hat Desktop version 3: SRPMS: 64bdd095087e29551e0db7d77def0abb binutils-2.14.90.0.4-39.src.rpm i386: 40f698290ea2271c9452dd40f0d88429 binutils-2.14.90.0.4-39.i386.rpm x86_64: 3ea049872ff3705f9e6bfe42a8a3f964 binutils-2.14.90.0.4-39.x86_64.rpm Red Hat Enterprise Linux ES version 3: SRPMS: 64bdd095087e29551e0db7d77def0abb binutils-2.14.90.0.4-39.src.rpm i386: 40f698290ea2271c9452dd40f0d88429 binutils-2.14.90.0.4-39.i386.rpm ia64: d3ec28074b9a8c2c0ff0e91570f1d3a8 binutils-2.14.90.0.4-39.ia64.rpm x86_64: 3ea049872ff3705f9e6bfe42a8a3f964 binutils-2.14.90.0.4-39.x86_64.rpm Red Hat Enterprise Linux WS version 3: SRPMS: 64bdd095087e29551e0db7d77def0abb binutils-2.14.90.0.4-39.src.rpm i386: 40f698290ea2271c9452dd40f0d88429 binutils-2.14.90.0.4-39.i386.rpm ia64: d3ec28074b9a8c2c0ff0e91570f1d3a8 binutils-2.14.90.0.4-39.ia64.rpm x86_64: 3ea049872ff3705f9e6bfe42a8a3f964 binutils-2.14.90.0.4-39.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://www.cve.org/CVERecord?id=CAN-2005-1704 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2005 Red Hat, Inc. . A revised glibc library with minimal risk now fixes issues and vulnerabilities in CentOS operating systems.. binutils Update, Red Hat Enterprise, Integer Overflow Fix. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Sep 28, 2005 Low Red Hat
Banner 4 1028x280 1708121825 1771600306
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here