Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -7 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorydenial of serviceSUSE Linux

SUSE: 2024:0455-1 Important: Squid DoS Fix and Stack Overflow Risk

* bsc#1217654 * bsc#1219131 Cross-References: * CVE-2023-50269 . # Security update for squid Announcement ID: SUSE-SU-2024:0455-1 Rating: important References: * bsc#1217654 * bsc#1219131 Cross-References: * CVE-2023-50269 * CVE-2024-23638 CVSS scores: * CVE-2023-50269 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-50269 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-23638 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-23638 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.5 * Server Applications Module 15-SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves two vulnerabilities can now be installed. ## Description: This update for squid fixes the following issues: * CVE-2023-50269: fixed X-Forwarded-For Stack Overflow. (bsc#1217654) * CVE-2024-23638: fixed Denial of Service attack against Cache Manager error responses. (bsc#1219131) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-455=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-455=1 * Server ApplicationsModule 15-SP5 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP5-2024-455=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-455=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-455=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-455=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-455=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-455=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-455=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-455=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * squid-debuginfo-5.7-150400.3.23.1 * squid-5.7-150400.3.23.1 * squid-debugsource-5.7-150400.3.23.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * squid-debuginfo-5.7-150400.3.23.1 * squid-5.7-150400.3.23.1 * squid-debugsource-5.7-150400.3.23.1 * Server Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * squid-debuginfo-5.7-150400.3.23.1 * squid-5.7-150400.3.23.1 * squid-debugsource-5.7-150400.3.23.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * squid-debuginfo-5.7-150400.3.23.1 * squid-5.7-150400.3.23.1 * squid-debugsource-5.7-150400.3.23.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * squid-debuginfo-5.7-150400.3.23.1 * squid-5.7-150400.3.23.1 * squid-debugsource-5.7-150400.3.23.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * squid-debuginfo-5.7-150400.3.23.1 *squid-5.7-150400.3.23.1 * squid-debugsource-5.7-150400.3.23.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * squid-debuginfo-5.7-150400.3.23.1 * squid-5.7-150400.3.23.1 * squid-debugsource-5.7-150400.3.23.1 * SUSE Manager Proxy 4.3 (x86_64) * squid-debuginfo-5.7-150400.3.23.1 * squid-5.7-150400.3.23.1 * squid-debugsource-5.7-150400.3.23.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * squid-debuginfo-5.7-150400.3.23.1 * squid-5.7-150400.3.23.1 * squid-debugsource-5.7-150400.3.23.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * squid-debuginfo-5.7-150400.3.23.1 * squid-5.7-150400.3.23.1 * squid-debugsource-5.7-150400.3.23.1 ## References: * https://www.suse.com/security/cve/CVE-2023-50269.html * https://www.suse.com/security/cve/CVE-2024-23638.html * https://bugzilla.suse.com/show_bug.cgi?id=1217654 * https://bugzilla.suse.com/show_bug.cgi?id=1219131 . SUSE reveals major security patch for nginx, tackling critical vulnerabilities associated with denial of service and buffer overflow.. SUSE Squid Update, DoS Attack Fix, Stack Overflow Security, SUSE Security Patch. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Feb 13, 2024 Important SuSE
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorybug fixsecurity fix

Red Hat: RHSA-2015-2378 Moderate: Squid SSL Issue (CVE-2015-3455)

Updated squid packages that fix one security issue and two bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: squid security and bug fix update Advisory ID: RHSA-2015:2378-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2015:2378.html Issue date: 2015-11-19 CVE Names: CVE-2015-3455 ==================================================================== 1. Summary: Updated squid packages that fix one security issue and two bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server (v. 7) - aarch64, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - aarch64, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. It was found that Squid configured with client-first SSL-bump did not correctly validate X.509 server certificate host name fields. A man-in-the-middle attacker could use this flaw to spoof a Squid server using a specially crafted X.509 certificate. (CVE-2015-3455) This update fixes the following bugs: * Previously, the squid process did not handle file descriptors correctly when receiving Simple Network Management Protocol (SNMP) requests. Asa consequence, the process gradually accumulated open file descriptors. This bug has been fixed and squid now handles SNMP requests correctly, closing file descriptors when necessary. (BZ#1198778) * Under high system load, the squid process sometimes terminated unexpectedly with a segmentation fault during reboot. This update provides better memory handling during reboot, thus fixing this bug. (BZ#1225640) Users of squid are advised to upgrade to these updated packages, which fix these bugs. After installing this update, the squid service will be restarted automatically. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1102842 - missing /var/run/squid needed for smp mode 1161600 - Squid does not serve cached responses with Vary headers1198778 - Filedescriptor leaks on snmp 1204375 - squid sends incorrect ssl chain breaking newer gnutls using applications 1218118 - CVE-2015-3455 squid: incorrect X509 server certificate validation (SQUID-2015:1) 1263338 - squid with digest auth on big endian systems start looping 6. Package List: Red Hat Enterprise Linux Server (v. 7): Source: squid-3.3.8-26.el7.src.rpm aarch64: squid-3.3.8-26.el7.aarch64.rpm squid-debuginfo-3.3.8-26.el7.aarch64.rpm ppc64: squid-3.3.8-26.el7.ppc64.rpm squid-debuginfo-3.3.8-26.el7.ppc64.rpm ppc64le: squid-3.3.8-26.el7.ppc64le.rpm squid-debuginfo-3.3.8-26.el7.ppc64le.rpm s390x: squid-3.3.8-26.el7.s390x.rpm squid-debuginfo-3.3.8-26.el7.s390x.rpm x86_64: squid-3.3.8-26.el7.x86_64.rpm squid-debuginfo-3.3.8-26.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional (v.7): aarch64: squid-debuginfo-3.3.8-26.el7.aarch64.rpm squid-sysvinit-3.3.8-26.el7.aarch64.rpm ppc64: squid-debuginfo-3.3.8-26.el7.ppc64.rpm squid-sysvinit-3.3.8-26.el7.ppc64.rpm ppc64le: squid-debuginfo-3.3.8-26.el7.ppc64le.rpm squid-sysvinit-3.3.8-26.el7.ppc64le.rpm s390x: squid-debuginfo-3.3.8-26.el7.s390x.rpm squid-sysvinit-3.3.8-26.el7.s390x.rpm x86_64: squid-debuginfo-3.3.8-26.el7.x86_64.rpm squid-sysvinit-3.3.8-26.el7.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: squid-3.3.8-26.el7.src.rpm x86_64: squid-3.3.8-26.el7.x86_64.rpm squid-debuginfo-3.3.8-26.el7.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: squid-debuginfo-3.3.8-26.el7.x86_64.rpm squid-sysvinit-3.3.8-26.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2015-3455 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFWTkUYXlSAg2UNWIIRAmt+AJ0UKKM0S/EznZMtJ2MjAWiSoVJYewCeLxlB OsBIyCrEW9EYlvDhwY46l2w=c8ZS -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Recent patches for squid packages address a significant security flaw and fix several issues in Red Hat Enterprise Linux 7.. Red Hat Advisory,Squid Security Fix,Moderate Impact Security,Linux Package Update,Bug Fixes. . LinuxSecurity.com Team

Calendar 2 Nov 19, 2015 Red Hat
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here