Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 8 articles for you...
197
security advisorysecurity issuedebianDebian 11 bullseye: DLA-4132-1 critical: erlang remote code execution
Multiple vulnerabilties were fixed in erlang. CVE-2023-48795 (Terrapin attack) . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4132-1
Apr 20, 2025
•Critical
Debian LTS
87
security advisorydenial of servicedebianDebian: DSA-5906-1 erlang critical: SSH protocol issues
Several vulnerabilities were discovered in the Erlang/OTP implementation of the SSH protocol, which may result in denial of service or the execution of arbitrary code. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5906-1
Apr 20, 2025
•Critical
Debian
172
security advisorymoderate threatinformation exposureUbuntu 23.10: USN-6589-1 moderate: filezilla information exposure
FileZilla could be made to expose sensitive information over the network.. ========================================================================== Ubuntu Security Notice USN-6589-1 January 18, 2024 filezilla vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 23.10 - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: FileZilla could be made to expose sensitive information over the network. Software Description: - filezilla: Full-featured graphical FTP/FTPS/SFTP client Details: Fabian Baeumer, Marcus Brinkmann and Joerg Schwenk discovered that the SSH protocol used in FileZilla is prone to a prefix truncation attack, known as the "Terrapin attack". A remote attacker could use this issue to downgrade or disable some security features and obtain sensitive information. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 23.10: filezilla 3.65.0-3ubuntu0.1 filezilla-common 3.65.0-3ubuntu0.1 Ubuntu 22.04 LTS: filezilla 3.58.0-1ubuntu0.1 filezilla-common 3.58.0-1ubuntu0.1 Ubuntu 20.04 LTS: filezilla 3.46.3-1ubuntu0.1 filezilla-common 3.46.3-1ubuntu0.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6589-1 CVE-2023-48795 Package Information: https://launchpad.net/ubuntu/+source/filezilla/3.46.3-1ubuntu0.1 . A critical flaw in FileZilla affects multiple Ubuntu releases, posing a threat to confidential information. Please upgrade without delay.. FileZilla Vulnerability, Information Exposure, Network Security. . LinuxSecurity.com Team
Jan 18, 2024
Ubuntu
100
security advisoryncursessecurity patchSUSE: 2023:4241-3 important: Kubernetes proxy-ssh security patch
The container suse/manager/4.3/proxy-ssh was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/manager/4.3/proxy-ssh ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:4230-1 Container Tags : suse/manager/4.3/proxy-ssh:4.3.10 , suse/manager/4.3/proxy-ssh:4.3.10.9.33.5 , suse/manager/4.3/proxy-ssh:latest , suse/manager/4.3/proxy-ssh:susemanager-4.3.10 , suse/manager/4.3/proxy-ssh:susemanager-4.3.10.9.33.5 Container Release : 9.33.5 Severity : important Type : security References : 1201384 1214788 1217950 1218014 CVE-2023-48795 CVE-2023-50495 ----------------------------------------------------------------- The container suse/manager/4.3/proxy-ssh was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4891-1 Released: Mon Dec 18 16:31:49 2023 Summary: Security update for ncurses Type: security Severity: moderate References: 1201384,1218014,CVE-2023-50495 This update for ncurses fixes the following issues: - CVE-2023-50495: Fixed a segmentation fault via _nc_wrap_entry() (bsc#1218014) - Modify reset command to avoid altering clocal if the terminal uses a modem (bsc#1201384) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4902-1 Released: Tue Dec 19 13:09:42 2023 Summary: Security update for openssh Type: security Severity: important References: 1214788,1217950,CVE-2023-48795 This update for openssh fixes the following issues: - CVE-2023-48795: Fixed prefix truncation breaking ssh channel integrity (bsc#1217950). the following non-security bug was fixed: - Fix the 'no route to host' error when connecting via ProxyJump The following package changes have been done: - libncurses6-6.1-150000.5.20.1 updated - terminfo-base-6.1-150000.5.20.1 updated -ncurses-utils-6.1-150000.5.20.1 updated - openssh-common-8.4p1-150300.3.27.1 updated - openssh-fips-8.4p1-150300.3.27.1 updated - openssh-server-8.4p1-150300.3.27.1 updated - openssh-clients-8.4p1-150300.3.27.1 updated - openssh-8.4p1-150300.3.27.1 updated . SUSE Container Release Alert for suse/manager/4.3/proxy-ssh addresses urgent security vulnerabilities and necessary upgrades. SUSE Manager, Proxy SSH, Security Fix, Container Update. . Severity: Important. LinuxSecurity.com Team
Dec 20, 2023
•Important
SuSE
100
security advisoryupdatepatchSUSE: 2022:874-1 Important: Proxy SSH Security Update for Manager
The container suse/manager/4.3/proxy-ssh was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/manager/4.3/proxy-ssh ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:874-1 Container Tags : suse/manager/4.3/proxy-ssh:4.3.0-public-beta , suse/manager/4.3/proxy-ssh:4.3.0-public-beta.2.16 , suse/manager/4.3/proxy-ssh:beta , suse/manager/4.3/proxy-ssh:latest Container Release : 2.16 Severity : important Type : security References : 1191157 1194883 1196093 1196275 1196406 1196647 1197004 1197024 1197459 1198062 CVE-2018-25032 CVE-2022-1271 ----------------------------------------------------------------- The container suse/manager/4.3/proxy-ssh was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:936-1 Released: Tue Mar 22 18:10:17 2022 Summary: Recommended update for filesystem and systemd-rpm-macros Type: recommended Severity: moderate References: 1196275,1196406 This update for filesystem and systemd-rpm-macros fixes the following issues: filesystem: - Add path /lib/modprobe.d (bsc#1196275, jsc#SLE-20639) systemd-rpm-macros: - Make %_modprobedir point to /lib/modprobe.d (bsc#1196275, bsc#1196406) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:1047-1 Released: Wed Mar 30 16:20:56 2022 Summary: Recommended update for pam Type: recommended Severity: moderate References: 1196093,1197024 This update for pam fixes the following issues: - Define _pam_vendordir as the variable is needed by systemd and others. (bsc#1196093) - Between allocating the variable 'ai' and free'ing them, there are two 'return NO' were we don't free this variable. This patch inserts freaddrinfo() calls before the 'return NO;'s.(bsc#1197024) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:1061-1 Released: Wed Mar 30 18:27:06 2022 Summary: Security update for zlib Type: security Severity: important References: 1197459,CVE-2018-25032 This update for zlib fixes the following issues: - CVE-2018-25032: Fixed memory corruption on deflate (bsc#1197459). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:1099-1 Released: Mon Apr 4 12:53:05 2022 Summary: Recommended update for aaa_base Type: recommended Severity: moderate References: 1194883 This update for aaa_base fixes the following issues: - Set net.ipv4.ping_group_range to allow ICMP ping (bsc#1194883) - Include all fixes and changes for systemwide inputrc to remove the 8 bit escape sequence which interfere with UTF-8 multi byte characters as well as support the vi mode of readline library ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:1158-1 Released: Tue Apr 12 14:44:43 2022 Summary: Security update for xz Type: security Severity: important References: 1198062,CVE-2022-1271 This update for xz fixes the following issues: - CVE-2022-1271: Fixed an incorrect escaping of malicious filenames (ZDI-CAN-16587). (bsc#1198062) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:1281-1 Released: Wed Apr 20 12:26:38 2022 Summary: Recommended update for libtirpc Type: recommended Severity: moderate References: 1196647 This update for libtirpc fixes the following issues: - Add option to enforce connection via protocol version 2 first (bsc#1196647) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:1374-1 Released: Mon Apr 25 15:02:13 2022 Summary: Recommended update for openldap2 Type: recommended Severity: moderate References: 1191157,1197004 This update for openldap2 fixes the followingissues: - allow specification of max/min TLS version with TLS1.3 (bsc#1191157) - libldap was able to be out of step with openldap in some cases which could cause incorrect installations and symbol resolution failures. openldap2 and libldap now are locked to their related release versions. (bsc#1197004) - restore CLDAP functionality in CLI tools (jsc#PM-3288) The following package changes have been done: - filesystem-15.0-11.8.1 updated - libldap-data-2.4.46-150200.14.5.1 updated - libtirpc-netconfig-1.2.6-150300.3.3.1 updated - libssh-config-0.9.6-150400.1.2 updated - libzstd1-1.5.0-150400.1.58 updated - libuuid1-2.37.2-150400.6.12 updated - libudev1-249.11-150400.5.4 updated - libsmartcols1-2.37.2-150400.6.12 updated - libsepol1-3.1-150400.1.54 updated - libeconf0-0.4.4+git20220104.962774f-150400.1.26 updated - libcom_err2-1.46.4-150400.1.66 updated - libbz2-1-1.0.8-150400.1.105 updated - libblkid1-2.37.2-150400.6.12 updated - libaudit1-3.0.6-150400.1.35 updated - libgcrypt20-1.9.4-150400.4.1 updated - libgcrypt20-hmac-1.9.4-150400.4.1 updated - libfdisk1-2.37.2-150400.6.12 updated - libz1-1.2.11-150000.3.30.1 updated - liblzma5-5.2.3-150000.4.7.1 updated - libopenssl1_1-1.1.1l-150400.4.7 updated - libopenssl1_1-hmac-1.1.1l-150400.4.7 updated - libelf1-0.185-150400.3.22 updated - libselinux1-3.1-150400.1.54 updated - libxml2-2-2.9.12-150400.3.1 updated - libsystemd0-249.11-150400.5.4 updated - libreadline7-7.0-150400.25.10 updated - libdw1-0.185-150400.3.22 updated - libsemanage1-3.1-150400.1.51 updated - libmount1-2.37.2-150400.6.12 updated - krb5-1.19.2-150400.1.6 updated - bash-4.4-150400.25.10 updated - bash-sh-4.4-150400.25.10 updated - libssh4-0.9.6-150400.1.2 updated - login_defs-4.8.1-150400.8.42 updated - cpio-2.13-150400.1.84 updated - libldap-2_4-2-2.4.46-150200.14.5.1 updated - libtirpc3-1.2.6-150300.3.3.1 updated - sles-release-15.4-150400.51.3 updated - rpm-config-SUSE-1-150400.12.25 updated - permissions-20201225-150400.2.1 updated - pam-1.3.0-150000.6.55.3 updated -shadow-4.8.1-150400.8.42 updated - sysuser-shadow-3.1-150400.1.19 updated - system-group-hardware-20170617-150400.22.17 updated - util-linux-2.37.2-150400.6.12 updated - aaa_base-84.87+git20180409.04c9dae-3.57.1 updated - libexpat1-2.4.4-150400.2.17 updated . The latest update for the SUSE container suse/manager/4.3/proxy-ssh introduces essential security improvements and resolves key vulnerabilities.. SUSE Container Update,SUSE Manager,Proxy SSH,Security Patch,Software Update. . Severity: Important. LinuxSecurity.com Team
May 05, 2022
•Important
SuSE
199
security advisorymoderatesecurity issueCentOS 7 CESA-2021-4782 Moderate: Important OpenSSH Security Update
Upstream details at : https://access.redhat.com/errata/RHSA-2021:4782. CentOS Errata and Security Advisory 2021:4782 Moderate Upstream details at : https://access.redhat.com/errata/RHSA-2021:4782 The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64: d2d641c7cc9c03e9ca6482ca35b0c36b1e23ba7b853e1bdc6bec25eb9af46a6e openssh-7.4p1-22.el7_9.x86_64.rpm a7333d8c99f660e6187ca76984c04c77a50d5b4767823ec52cc7f53fbdeb43bc openssh-askpass-7.4p1-22.el7_9.x86_64.rpm 15d88fa90e0a746ab04810e8c5001282b587b8a21da83e08f7a05195f6fdd775 openssh-cavs-7.4p1-22.el7_9.x86_64.rpm e95f299b4e1d9a775808bed9298856196169c363ce0d077bfc1bda79e4c4d4f4 openssh-clients-7.4p1-22.el7_9.x86_64.rpm 11d891b8f8df76c76199d0d95bc23fe7ef53c80851883e2f7981576c44654966 openssh-keycat-7.4p1-22.el7_9.x86_64.rpm 339f233813e1f39b24e1e909a69e3050071f267633c137494ad16972ff55f201 openssh-ldap-7.4p1-22.el7_9.x86_64.rpm 01b2d6f4dd3c509eda7a3396036cc2ba36461c6d867b18c64e8358fba4982e34 openssh-server-7.4p1-22.el7_9.x86_64.rpm bc124f709e0c7debfdda22b0a98dbce5ebc798a8c16477f0129128e573b3a65c openssh-server-sysvinit-7.4p1-22.el7_9.x86_64.rpm 75e71ed053fe00917b68d0c20c63e517d0ac97df8a4844808522ccadcc94f568 pam_ssh_agent_auth-0.10.3-2.22.el7_9.i686.rpm 5a1a14cf6500d688cfc898ef4ad3cdca51ca829da10e098f412a9a7c63ce86a6 pam_ssh_agent_auth-0.10.3-2.22.el7_9.x86_64.rpm Source: e1e961c0d80a242cfb27252a95f955401ce3e153a3767bf1f0405e18fc563c16 openssh-7.4p1-22.el7_9.src.rpm -- Johnny Hughes CentOS Project { https://www.centos.org/ } irc: hughesjr, #
Dec 01, 2021
•Important
CentOS
197
security advisoryDebianpackage updateDebian Jessie: DLA-2184-1 Moderate: jsch Path Traversal Issue
It was discovered that there was a path traversal vulnerability in jsch, a pure Java implementation of the SSH2 protocol. . Package : jsch Version : 0.1.51-1+deb8u1 CVE ID : CVE-2016-5725 It was discovered that there was a path traversal vulnerability in jsch, a pure Java implementation of the SSH2 protocol. For Debian 8 "Jessie", this problem has been fixed in version 0.1.51-1+deb8u1. We recommend that you upgrade your jsch packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Strengthen jsch to mitigate a path traversal weakness within Debian LTS, ensuring enhanced security and stability.. Debian LTS, jsch Update, Path Traversal Fix. . LinuxSecurity.com Team
Apr 25, 2020
Debian LTS
89
security advisoryfedoracriticalFedora 30: FEDORA-2019-0f4190cdb0 Critical: OpenSSH Flaws Resolved
New upstream release with significantly reworked PKCS#11 support, GSSAPI key exchange and several fixes for CVE-2019-6111 and CVE-2019-6109. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-0f4190cdb0 2019-05-04 00:16:11.078321 --------------------------------------------------------------------------------Name : openssh Product : Fedora 30 Version : 8.0p1 Release : 1.fc30 URL : https://www.openssh.org/portable.html Summary : An open source implementation of SSH protocol version 2 Description : SSH (Secure SHell) is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forwarded over the secure channel. OpenSSH is OpenBSD's version of the last free version of SSH, bringing it up to date in terms of security and features. This package includes the core files necessary for both the OpenSSH client and server. To make this package useful, you should also install openssh-clients, openssh-server, or both. --------------------------------------------------------------------------------Update Information: New upstream release with significantly reworked PKCS#11 support, GSSAPI key exchange and several fixes for CVE-2019-6111 and CVE-2019-6109 --------------------------------------------------------------------------------ChangeLog: * Fri Apr 26 2019 Jakub Jelen - 8.0p1-1 + 0.10.3-7 - New upstream release (#1701072) - Removed support for VendroPatchLevel configuration option - Significant rework of GSSAPI Key Exchange - Significant rework of PKCS#11 URI support --------------------------------------------------------------------------------References: [ 1 ] Bug #1666127 - CVE-2019-6111 openssh: Improper validation of object names allows malicious server tooverwrite files via scp client https://bugzilla.redhat.com/show_bug.cgi?id=1666127 [ 2 ] Bug #1666119 - CVE-2019-6109 openssh: Missing character encoding in progress display allows for spoofing of scp client output https://bugzilla.redhat.com/show_bug.cgi?id=1666119 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-0f4190cdb0' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
May 03, 2019
•Important
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!